The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.
You can deploy a Cisco ICFP virtual appliance on a system that meets the following requirements:
Requirement |
Description |
||
---|---|---|---|
Four virtual CPUs |
1.8 GHz |
||
Memory |
8 GB RAM |
||
Disk space |
Disk space that is configured as follows:
|
||
One vNIC |
Management network interface |
Cisco ICFP is a virtual appliance that can be deployed on the VMware vSphere Client or OpenStack KVM Hypervisor.
Hypervisor | Version |
---|---|
VMware |
|
VMware vSphere Client |
ESXi 5.1, 5.5, and 6.0 |
OpenStack |
|
Cisco Intercloud Services OpenStack |
Kilo |
Red Hat Enterprise Linux OpenStack Platform |
Kilo |
Ports must be configured as described in the following tables to ensure that Cisco ICFP can communicate effectively on the internal private network and the public network (Internet).
Protocol |
Port |
Allow/Deny |
Description |
---|---|---|---|
TCP |
443 |
Allow |
Allows inbound HTTPS traffic from the Internet so that Cisco Intercloud Fabric for Business can reach Cisco ICFP. |
Protocol |
Port |
Allow/Deny |
Description |
---|---|---|---|
All |
All |
Deny |
Cisco ICFP does not need to send outbound traffic to the Internet. |
Protocol |
Port |
Allow/Deny |
Description |
---|---|---|---|
TCP |
443 |
Allow |
Allows inbound HTTPS traffic from the internal network, so that the Cisco ICFP web-based GUI can be accessed. |
TCP |
22 |
Allow |
Allows inbound SSH traffic from the internal network for Cisco ICFP administration. |
TCP |
3306 |
Allow |
Allows inbound MySQL traffic from the internal network. Required if Cisco ICFP is configured in a multiple-node cluster. |
TCP |
8080 |
Allow |
Allows inbound HTTP traffic for template uploads to CloudStack. Required if using the CloudStack adapter. |
Note | To ensure that the destination systems receive communications from Cisco ICFP, the ports in the following table must be open on any firewalls on the internal network between Cisco ICFP and the destination systems. |
Protocol |
Firewall Port |
Allow/Deny |
Description |
---|---|---|---|
TCP |
443 |
Allow |
Allows HTTPS traffic to the internal network. Required to reach the cloud provider API/SDK gateway if it is running on HTTPS. |
TCP |
80 |
Allow |
Allows HTTP traffic to the internal network. Required to reach the cloud provider API/SDK gateway if it is running on HTTP. |
TCP |
3306 |
Allow |
Allows outbound MySQL traffic to other Cisco ICFP nodes on the internal network. Required if Cisco ICFP is configured in a multiple-node cluster. |
TCP/UDP |
514 |
Allow |
Allows syslog traffic from Cisco ICFP to the syslog server. |
Required Information | Mandatory / Optional | Your Information / Notes |
---|---|---|
For Preinstallation Configuration |
||
Cisco ICFP image location |
Mandatory |
|
Cisco ICFP OVA or QCOW2 image name |
Mandatory |
|
VM name |
Mandatory |
|
VMware data store location |
Mandatory for VMware |
|
Network / Port Profile for VM management |
Mandatory |
|
KVM flavor name |
Mandatory for OpenStack |
|
KVM Instance Security Group |
Mandatory for OpenStack |
|
For Cisco ICFP Installation |
||
Installation type: Standalone, Primary, or Service Node For OpenStack environments, you can install only in Standalone mode. |
Mandatory |
|
Hostname |
Mandatory |
|
Admin / root / ShellAdmin account password |
Mandatory |
|
Static IP address For OpenStack environments, this must be a public IP address. |
Mandatory |
|
Subnet mask |
Mandatory |
|
Gateway IP address |
Mandatory |
|
Primary node IP address |
Mandatory only for service node installations. |
|
NFS server IP address |
Optional1 |
|
NFS directory to mount |
Optional |
|
Domain name |
Optional |
|
DNS server IP address |
Mandatory |
|
NTP server IP address or fully qualified domain name (FQDN) |
Mandatory |
|
Cisco ICFP license |
Optional |
|
Cisco ICFP Product Authorization Key (PAK) |
Optional |