在vManage升級之前配置AURA部署
簡介
本文檔介紹如何在vManage升級之前配置AURA部署。
必要條件
需求
思科建議您瞭解以下主題:
- 思科軟體定義廣域網路(SD-WAN)。
採用元件
本檔案中的資訊是根據Cisco vManager版本20.9.4
本文中的資訊是根據特定實驗室環境內的裝置所建立。文中使用到的所有裝置皆從已清除(預設)的組態來啟動。如果您的網路運作中,請確保您瞭解任何指令可能造成的影響。
背景資訊
Cisco AURA-SDWAN(SURE)命令列工具在SDWAN重疊的不同級別上執行總計30次(非群集模式)或36次(群集模式)檢查。該工具的用途是防止潛在故障,並建議用於無縫升級過程的糾正措施。該工具使用GET API呼叫和show/shell命令檢索資料。
基本概念
- 簡單而直接地使用在vManage伺服器上可用的預設python模組
- 自動生成TXT報告。
- 僅需要 — vManage和密碼。
- vManage user with admin or RO network operator privileges(使用管理員或RO網路運營商許可權管理使用者)。
- vManage使用者密碼不得包含「!」 字元.
- 要執行,只需將檔案複製到vManage並在伺服器上運行即可。
- 非侵入式
- 運行時間 — 通常少於60秒,具體取決於您的部署規模
- 執行任何檢查都不需要超級使用者訪問許可權。
- 不會收集任何資料或將其共用給任何人。該工具使用的所有資訊將保留在提供的報告和日誌中
- 請勿使用具有擴展限制的Real Time API
在vManage上下載指令碼
根據vManage版本確定要執行的Python版本檔案
|
vManage版本 |
Python版本 |
要執行的Python檔案 |
|
20.5之前 |
Python2 |
python2/py2_sure.py |
|
20.5以上 |
Python3 |
python3/py3_sure.py |
附註:vmanage的版本是20.9.4,因此需要使用py3_sure.py檔案。
附註:應用程式可以下載到任何所需的目錄下,通常下載到使用者主目錄下。
備選方案1.隔離環境
從此網站獲取檔案內容,然後通過SCP複製到伺服器。
scp source_file.py {user}@{vManageIP}:/home/{user}MAC OS
felix:Downloads felix$ scp -P 28215 py3_sure.py admin@10.124.x.x:/home/admin/
viptela 20.9.4
(admin@10.124.x.x) Password:
py3_sure.py 100% 167KB 340.5KB/s 00:00 Windows作業系統
C:\Users\felix>scp C:\Users\felix\py3_sure.py admin@10.124.x.x:/home/admin/
viptela 20.9.4
(admin@10.124.x.x) Password:
py3_sure.py
選項2.粘貼方法
- 開啟py2_sure.py或py3_sure.py檔案,按一下複製原始檔案按鈕。
- 通過SSH連線到vManage,然後使用vshell命令。
vmanage# vshell
- 開啟vi,按Esc,然後i(字母i),然後paste內容。
vmanage:~$ vi py3_sure.py
E1187: Failed to source defaults.vim
Press ENTER or type command to continue
- 貼上後,按Esc, :wq(符號:和字母w、q)來儲存它。
:wq
附註:儲存並退出:在命令模式下,按Esc鍵退出插入模式,然後鍵入:wq或:x,然後按enter儲存修改並退出vi編輯器。
不儲存exit:在命令模式下,按Esc鍵,然後鍵入:q! ,按enter鍵不儲存修改並強制退出vi editor。
選項3. WGET
登入vManage CLI會話:
vmanage# vs
vmanage:~$ wget https://raw.githubusercontent.com/CiscoDevNet/sure/main/python3/py3_sure.py
OR
vmanage:~$ wget https://raw.githubusercontent.com/CiscoDevNet/sure/main/python2/py2_sure.py
警告:如果使用WGET,則必須進行設定,以便vmanage可以訪問GItHub.com。
如何運行
命令列選項
用法:sure.py [-h] [-q] [-v] [-d] -u使用者名稱
SURE - SDWAN升級就緒引擎 — v3.2.1
可選引數:
-h, —help顯示此幫助消息並退出
-q, — 安靜指令碼的安靜執行
-v, —verbose指令碼的詳細執行
-d, —debug調試指令碼執行
-u使用者名稱, — 使用者名稱使用者名稱
vManage使用者名稱
-vp VMANAGE_PORT, —vmanage_port VMANAGE_PORT
vManage密碼
在正常執行模式下運行
vmanage:~$ python3 py3_sure.py -u admin
vManage Password (Note: Tool doesn't support passwords containing "!") :
#########################################################
### AURA SDWAN (SURE) - Version 3.2.0 ###
#########################################################
### Performing SD-WAN Audit & Upgrade Readiness ###
#########################################################
****Collecting Preliminary Data
*Starting Checks, this may take several minutes
**** Performing Critical checks
Critical Check:#01
Critical Check:#02
Critical Check:#03
Critical Check:#04
Critical Check:#05
Critical Check:#06
Critical Check:#07
Critical Check:#08
Critical Check:#09
Critical Check:#10
Critical Check:#11
Critical Check:#12
Critical Check:#13
Critical Check:#14
Critical Check:#15
Critical Check:#16
Critical Check:#17
**** Performing Warning checks
Warning Check:#18
Warning Check:#19
Warning Check:#20
Warning Check:#21
Warning Check:#22
Warning Check:#23
Warning Check:#24
Warning Check:#25
**** Performing Informational checks
Informational Check:#26
Informational Check:#27
Informational Check:#28
******
Cisco AURA SDWAN tool execution completed.
Total Checks Performed: 28
Overall Assessment: 4 Critical errors, 2 Warnings, please check report for details.
-- Full Results Report: sdwan_sure/sure_report_08_07_2025_06_15_25.txt
-- Logs: sdwan_sure/sure_logs_08_07_2025_06_15_25.log
-- Json Summary: sdwan_sure/sure_json_summary_08_07_2025_06_16_22.json
Reach out to sure-tool@cisco.com if you have any questions or feedback檢查報告
vmanage:~$ cat sdwan_sure/sure_report_08_07_2025_06_15_25.txt
E1187: Failed to source defaults.vim
Press ENTER or type command to continueCisco SDWAN AURA v3.2.0 Report Cisco SDWAN AURA command line tool performs a total of 26(Non Cluster Mode) or 32(Cluster Mode) checks at different levels of the SDWAN overlay. Reach out to sure-tool@cisco.com if you have any questions or feedback Summary of the Results: ----------------------------------------------------------------------------------------------------------------- AURA SDWAN Version: 3.2.0 vManage Details: Software Version: 20.9.4 System IP Address: 1.1.1.1 Script Execution Time: Start Time: 08-07-2025 06:15:20 End Time: 08-07-2025 06:16:22 ----------------------------------------------------------------------------------------------------------------- Overall upgrade evaluation: Critical issues found that need to be resolved before an upgrade ----------------------------------------------------------------------------------------------------------------- Check Results: Total Checks Performed: 28 Total Checks Passed: 24 out of 28 Total Checks Failed: 4 out of 28 Total Checks with Errors: 4 Total Checks with Warnings: 2 ----------------------------------------------------------------------------------------------------------------- Detailed list of failed checks, and actions recommended +----------+----------------------------------------------------+----------------------------------------------------+----------------------------------------------------+ | Check no | Check Name | Check Result | Check Actions | +----------+----------------------------------------------------+----------------------------------------------------+----------------------------------------------------+ | #03 | Memory size | Memory size is 67 GB, it is below the hardware siz | Correct the memory available to the server | | | | e recommendations when DPI is enabled. Memory size | | | | | should be 128 GB. For more information please che | | | | | ck: https://www.cisco.com/c/en/us/td/docs/routers/ | | | | | sdwan/release/notes/compatibility-and-server-recom | | | | | mendations/ch-server-recs-20-3.html | | +----------+----------------------------------------------------+----------------------------------------------------+----------------------------------------------------+ | #04 | CPU Count | No. of Processors is below minimum supported size | Allocate more processors | | | | when DPI is in use. CPU Count is 16, it should be | | | | | 32 or higher. | | +----------+----------------------------------------------------+----------------------------------------------------+----------------------------------------------------+ | #10 | NTP status across network | Devices with invalid ntp association found | Please validate the NTP time synchronization acros | | | | | s the network | +----------+----------------------------------------------------+----------------------------------------------------+----------------------------------------------------+ | #17 | Verify if stale entry of vManage+vSmart UUID prese | The vManage+vSmart UUIDs are not consistent in cEd | Contact TAC to find out why there are inconsistenc | | | nt on any one cEdge | ges | ies in the vManage+vSmart UUIDS in cEdges | +----------+----------------------------------------------------+----------------------------------------------------+----------------------------------------------------+ ----------------------------------------------------------------------------------------------------------------- Preliminary Tabulated data: +----------------------------------------------------+---------------+ | Parameters | Value | +----------------------------------------------------+---------------+ | vManage System IP address | 1.1.1.1 | +----------------------------------------------------+---------------+ | vManage CPU Speed | 2.198 | +----------------------------------------------------+---------------+ | vManage CPU Count | 16 | +----------------------------------------------------+---------------+ | xEdge Count | 10 | +----------------------------------------------------+---------------+ | vManage Cluster Size | 1 | +----------------------------------------------------+---------------+ | vManage Server Mode | Single Server | +----------------------------------------------------+---------------+ | vManage Disk Controller Type | /dev/sdb | +----------------------------------------------------+---------------+
從vManage上傳報告到本地電腦
選項1.Viptela CLI
vmanage# vs
vmanage:~$ scp sdwan_sure/sure_report_08_07_2025_06_15_25.txt /home/admin
vmanage:~$ ls -l
total 1812
-rw------- 1 admin admin 2 Jul 8 06:21 123
-rw------- 1 admin admin 0 Jul 8 06:21 456
-rw-r--r-- 1 admin admin 566 May 9 17:10 archive_id_rsa.pub
-rwxrwxr-x 1 vmanage admin 1235617 Jul 2 03:07 config_db.tar.gz
-rw------- 1 admin admin 178539 Jul 8 07:42 py2_sure.py
-rw------- 1 admin admin 178540 Jul 8 07:09 py3_sure.py
drwx------ 2 admin admin 4096 Jul 8 08:14 sdwan_sure
-rw------- 1 admin admin 25544 Jul 8 08:18 sure_report_08_07_2025_06_15_25.txt <<<<<<
-rw------- 1 admin admin 15260 Jul 4 05:34 test.pcap
-rw------- 1 admin admin 178540 Jul 8 06:13 test0708
-rw-r--r-- 1 admin admin 1216 Jan 15 2024 vmanage_csr
vmanage:~$ exit
vmanage# request upload vpn 512 scp://admin@10.207.x.x:/test.file sure_report_08_07_2025_06_15_25.txt
Warning: Permanently added '10.207.x.x' (ECDSA) to the list of known hosts.
admin@10.207.x.x's pasword:
sure_report_08_07_2025_06_15_25.txt 100% 25KB 479.5KB/s 00:00
Upload successful
選項2. Linux/Mac終端
指令語法:
該命令將讀取為:copy source_file_name from vManage intolocal_destination_path with vManage username。
scp vManageUsername@PublicIp:<source_file_name> <local_destination_path>
範例:
連線到本地Linux/Mac終端,並運行SCP命令將檔案複製到所需的目錄。
adminIT@cisco:~$ scp admin@10.124.X.X:sure_report_08_07_2025_06_15_25.txt /Users/adminIT/Downloads/
viptela 20.9.4
Password:
sure_report_08_07_2025_06_15_25.txt 100% 25KB 479.5KB/s
選項3. FileZilla或任何其他的FTP或SFTP使用者端
連線方式:
- SFTP作為協定或埠22
- vManage URL、公有IP或私有IP(如果vManage為本地)
- 使用有效的使用者名稱和密碼
在FTP或SFTP客戶端上,會列出vManage使用者主目錄中的檔案。只需拖放到左側要傳輸檔案的本地目標位置。
相關資訊
修訂記錄
| 修訂 | 發佈日期 | 意見 |
|---|---|---|
1.0 |
18-Sep-2025
|
初始版本 |
意見