Presentation is loading. Please wait.

Presentation is loading. Please wait.

AFM-CPS 2.1.

Published byJob Thompson Modified over 7 years ago

Similar presentations

Presentation on theme: "AFM-CPS 2.1."— Presentation transcript:

1 AFM-CPS 2.1

2 New Features Supported in CPS 2.1
Support for REST APIs To take switch configuration backup and restore the configuration in the fabric/devices To take DB backup in AFM To perform image upgrade and activation for the switches in fabric To modify the SNMP & cli credentials for the deployed devices Rack contraction support After the Rack Expansion of a fabric, The user would be allowed to go back to the deployed number of racks if there is no deployed devices present in the Expanded Rack. Password Encryption in AFM DB and configuration files generated Store Switch passwords in AFM database and config files as encrypted For new fabrics the passwords will be generated as encrypted in the config files June 2016

3 New Features Supported in CPS 2.1
Unused Interfaces shutdown as per stamp size Unused interlinks are shutdown and the corresponding port channels are added to vlan 2 During expansion of rack ipv4,ipv6 address, ip related commands are added to the interlink portchannels June 2016

4 Changes from CPS 2.0 version
Rack CPS 2015 renamed to CPS 2016 Supported image version for device types S4180,S4048-ON,S3048-ON P3 CPS Rack Expansion Workflow changes Heterogeneous rack expansion is not supported in CPS 2.1 Homogenous rack expansion is supported only for RACK CPS 2016 design. Expanding the CPS fabric with S3038-ON & S4048-ON devices is allowed June 2016

5 Vulnerability issues fixed in CPS 2.1
Type Severity Apache Tomcat Arbitrary File Upload Vulnerability Practice 4 Apache Tomcat Input Validation Security Bypass Vulnerability Vuln 3 SSL/TLS use of weak RC4 cipher Apache Tomcat Multiple Vulnerabilities Apache Tomcat Information Disclosure and Denial of Service Vulnerability Apache Tomcat AsyncListener Method RuntimeException Vulnerability Apache Tomcat Chunked Transfer Encoding Denial of Service Vulnerability Apache Tomcat FormAuthenticator Session Hijacking Weakness Apache Tomcat CSRF Prevention Filter Bypass Apache Tomcat Security Constraints Bypass Apache Tomcat Denial of Service Vulnerabilities OpenSSH LoginGraceTime Denial of Service Vulnerability OpenSSH Xauth Command Injection Vulnerability Apache Commons FileUpload Content Type Denial of Service Vulnerability OpenSSH "child_set_env()" Security Bypass Issue 2 June 2016

6 List of RestAPIs supported in CPS 2.1
To Login To take switch configuration backup To view backup details for the fabric To view details of taken backup To restore the configuration in the switch with the taken backup To delete the switch backup To take AFM DB backup To update the Software in the switch To view all ScheduledJobs To view all ScheduledJobs using jobname To view all job Results To view JobResult by job Name To view software details of the switch To delete a scheduled job To activate the secondary/standby image in the switches To update the CLI & SNMP credentials in the fabric To view the deployment status of the switch after updating the credentials June 2016

7 Sample switch image upgrade flow using RESTAPIs
June 2016

8 REST API call to get the session-id cookie to authenticate the further requests for the REST client
June 2016

9 Switch will be reload with new downloaded image if reboot set to true
REST API to Schedule a job to do software upgrade for the switch(s) in the fabric Switch will be reload with new downloaded image if reboot set to true June 2016

10 REST API to get the job Results for a particular job name
Job is in progress June 2016

11 Activate the standby image after software image download Job Status is Success
June 2016

12 REST API to activate the switch with standby partition image
June 2016

13 REST API to get the job Results for a particular job name
Check the Job status June 2016

14 Rest APIs supported in CPS2.1
RestAPIs document has the list of Rest APIs support and its functionality June 2016

15 Design and Deploy 2016 Rack June 2016

16 2016 Rack Design Flow June 2016

17 June 2016

18 Select CPS 2016 to design Rack with S4048-ON and S3048-ON device types
June 2016

19 June 2016

20 June 2016

21 June 2016

22 Click Finish to Complete design and do wiring based on the wiring plan
June 2016

23 Predeployment Flow June 2016

24 Click on “Pre-deployment configuration” to provide MAC address, ip address ,upload properties file, etc June 2016

25 June 2016

26 Upload MAC address csv file and map the MAC to the Switch name
June 2016

27 Provide IP address for the switches
June 2016

28 2016 Rack template appended with switch type
Select and upload the CPS IP generator output file. 2016 Rack template appended with switch type June 2016

29 June 2016

30 June 2016

31 Click Finish and power on /reload all the rack one devices in bmp mode
Summary screen shows the file transfer completed status and software image details Click Finish and power on /reload all the rack one devices in bmp mode June 2016

32 Select “Deploy and Validate” option to deploy the devices after bmp process completed on the devices
June 2016

33 Click OK to trigger deployment
June 2016

34 Deployment complete June 2016

35 Expansion of CPS 2016 rack June 2016

36 Click Edit Fabric to Expand
June 2016

37 Select the rack number to expand
June 2016

38 Expand rack added to the existing fabric
June 2016

39 Click on “Pre-deployment configuration” to provide MAC address, ip address ,upload properties file, etc for the expanded fabric June 2016

40 Upload MAC address csv file and map the MAC to the Switch name
June 2016

41 Provide IP address for the new switches
June 2016

42 Click Finish to complete predeployment
June 2016

43 Contraction of undeployed Rack
June 2016

44 Rack contraction allowed for the deployment not triggered rack
June 2016

45 Undeployed 3rd rack devices would be removed
June 2016

46 June 2016

47 AFM rpm upgrade using VM Console option
August 2015

48 August 2015

49 August 2015

50 August 2015

51 August 2015

52 August 2015

53 August 2015

54 Thank you

Download ppt "AFM-CPS 2.1."

Similar presentations

What’s New in Fireware XTM v11.3.4

What’s New in Fireware XTM v11.3.4
© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 8: Monitoring the Network Connecting Networks.

© 2008 Cisco Systems, Inc. All rights reserved.Cisco ConfidentialPresentation_ID 1 Chapter 8: Monitoring the Network Connecting Networks.
DSL-2730B, DSL-2740B, DSL-2750B.

DSL-2730B, DSL-2740B, DSL-2750B.
Filtering and Security By Mohammad Shanehsaz June 2004.

Filtering and Security By Mohammad Shanehsaz June 2004.
CCNA 2 v3.1 Module 2.

CCNA 2 v3.1 Module 2.
Bonrix Track & Trace System A GPS Based Vehicle Tracing System (SMS, GPRS/3G, Offline) Bonrix Software Systems Ahmedabad (INDIA) Website:

Bonrix Track & Trace System A GPS Based Vehicle Tracing System (SMS, GPRS/3G, Offline) Bonrix Software Systems Ahmedabad (INDIA) Website:
Web Application Vulnerabilities Checklist. EC-Council Parameter Checklist  URL request  URL encoding  Query string  Header  Cookie  Form field 

Web Application Vulnerabilities Checklist. EC-Council Parameter Checklist  URL request  URL encoding  Query string  Header  Cookie  Form field 
Building service testbeds on FIRE D5.2.5 Virtual Cluster on Federated Cloud Demonstration Kit August 2012 Version 1.0 Copyright © 2012 CESGA. All rights.

Building service testbeds on FIRE D5.2.5 Virtual Cluster on Federated Cloud Demonstration Kit August 2012 Version 1.0 Copyright © 2012 CESGA. All rights.
Switch Concepts and Configuration and Configuration Part II Advanced Computer Networks.

Switch Concepts and Configuration and Configuration Part II Advanced Computer Networks.
© 2008 Cisco Systems, Inc. All rights reserved.CIPT1 v6.0—2-1 Administering Cisco Unified Communications Manager Understanding Cisco Unified Communications.

© 2008 Cisco Systems, Inc. All rights reserved.CIPT1 v6.0—2-1 Administering Cisco Unified Communications Manager Understanding Cisco Unified Communications.
Www.ciscopress.com Copyright 2003 CCNA 3 Chapter 7 Switch Configuration By Your Name.

Copyright 2003 CCNA 3 Chapter 7 Switch Configuration By Your Name.
1 © 2003, Cisco Systems, Inc. All rights reserved. CCNA 3 v3.0 Module 6 Switch Configuration.

1 © 2003, Cisco Systems, Inc. All rights reserved. CCNA 3 v3.0 Module 6 Switch Configuration.
1 © 2003, Cisco Systems, Inc. All rights reserved. CCNA 3 v3.0 Module 6 Switch Configuration Cisco Networking Academy.

1 © 2003, Cisco Systems, Inc. All rights reserved. CCNA 3 v3.0 Module 6 Switch Configuration Cisco Networking Academy.
1 © 2003, Cisco Systems, Inc. All rights reserved. CCNA 3 v3.0 Module 6 Switch Configuration.

1 © 2003, Cisco Systems, Inc. All rights reserved. CCNA 3 v3.0 Module 6 Switch Configuration.
1 CCNA 3 v3.1 Module 6 Switch Configuration Claes Larsen, CCAI.

1 CCNA 3 v3.1 Module 6 Switch Configuration Claes Larsen, CCAI.
5.1 © 2004 Pearson Education, Inc. Lesson 5: Administering User Accounts Exam 70-217 Microsoft® Windows® 2000 Directory Services Infrastructure Goals 

5.1 © 2004 Pearson Education, Inc. Lesson 5: Administering User Accounts Exam Microsoft® Windows® 2000 Directory Services Infrastructure Goals 
Saeed Darvish Pazoki – MCSE, CCNA Abstracted From: Cisco Press – ICND 1 – Chapter 9 Ethernet Switch Configuration 1.

Saeed Darvish Pazoki – MCSE, CCNA Abstracted From: Cisco Press – ICND 1 – Chapter 9 Ethernet Switch Configuration 1.
| nectar.org.au NECTAR TRAINING Module 10 Beyond the Dashboard.

| nectar.org.au NECTAR TRAINING Module 10 Beyond the Dashboard.
© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicBSCI Module 6 1 Basic Switch Concept Prepared by: Akhyari Nasir Resources form Internet.

© 2006 Cisco Systems, Inc. All rights reserved.Cisco PublicBSCI Module 6 1 Basic Switch Concept Prepared by: Akhyari Nasir Resources form Internet.
Basic Router Configuration 1.1 Global configuration Cisco allows us to configure the router to support various protocols and interfaces. The router stores.

Basic Router Configuration 1.1 Global configuration Cisco allows us to configure the router to support various protocols and interfaces. The router stores.

Similar presentations

Ads by Google