Skip to main content

Clean Install on VMware

Overview

This procedure is for a clean installation of DaneOS on a non-cloud virtual machine. Any existing data on the machine will be deleted.

Prerequisites

General Requirements

  • You cannot use IP Tables with DaneOS. In addition, all IP Tables rules will be flushed when installing.

  • Your servers must have sufficient CPUs, disk storage and main memory for DaneOS to work effectively. The resources required can be categorized by system size.

  • All resources need to be dedicated to the DaneOS machine. Do not use shared CPU or memory and if the datastore is shared, the disk performance must meet the requirements at all times.

  • Do not install any software on your server before or after the deployment of DaneOS that is not specified in the current procedure.

  • Your server requires an SSD disk with 7,500 IOPS and 250 MB/s throughput or higher.

  • Once DaneOS has been installed, changing the host name or IP address will require reinstalling. If you need assistance, consult with your sales engineer or Dane support.

  • Dane should be treated as high-risk security resource, similar to how you would treat any LDAP product (for example, Active Directory). Therefore, you should only install Dane in an appropriately secured network and physical location, and only authorized users should be granted access to Dane products and the operating system on the server.

  • If you are using NFS, your backup server needs to be running NFS 4.

VMware Requirements

  • Your ESX host must be running VMware ESXi 7.0 or 8.0 only.
info

ESXi 6 is already EOL (end of life). ESXi 7 is planned to reach EOL in April 2025

Network Requirements

  • You must allow access to required Ports and Services.

  • Allocate a 24-bit CIDR subnet for the Kubernetes service network and a16-bit CIDR subnet for the Kubernetes pods network (10.244.0.0/16 is used by default).

  • The pods and services networks must be inside the following private networks: 10.0.0.0/8, 172.16.0.0/12, 192.168.0.0/16. In addition, ensure that the dedicated CIDR for the service network and pods network don't overlap with:

    • Each other
    • The physical addresses of your Dane servers
    • Your primary VIP or external load balancer IP
    • Any other subnets communicating with Dane

  • If a proxy is configured on your system make sure this network is excluded.

  • You must have available the following dedicated IP addresses:

    • For on-premise deployments, a primary VIP that will serve as the external IP address used to access Dane from your browser. The primary VIP will not be needed in the installation of the operating system, except in the final step - the installation command.
    • The physical network IP address of the first network interface used by the administrator for CLI commands. This is the IP address you will use in most steps of the procedure.

Downloads

  • Download the DaneOS installation package.
  • Download the DaneApp installation package. The downloaded files are in .tgz format <FILENAME>.tgz. The run file name includes the release, version, build number, and type of installation.
  • Verify the integrity of the DaneOS & DaneAPP installation packages by entering the following commands and comparing the output with the checksum information.
[<ADMIN> ~]$ sha256sum DaneOS-xxxx-final.run.tgz
[<ADMIN> ~]$ sha256sum DaneAPP-xxxx-final.run.tgz

The Install Procedure

Before you proceed, read and understand Prerequisites to avoid risk of failure.

Deploy DaneOS OVA

  • Upload OVA to VMware Navigate to File > Deploy OVF Template or File > Import depending on your VMware product version.

  • Deploy OVF Template:

    • Choose Deploy OVF Template or Import OVF Template from the menu.
    • Browse and select the DaneOS OVA file from your local system.
    • Click Next to proceed.

  • Boot and Initialize DaneOS:

    • VMware will deploy the DaneOS VM from the OVA file.
    • Once deployment completes, power on the VM.
    • The VM will boot from the DaneOS image contained within the OVA file.

  • Log in using the default admin user credentials:

Set Up DaneOS

  • If you want to reset the host name or IP of the machine, do so now. Once DaneOS has been installed, changing the host name or IP address will require reinstalling. To change the host name, use the command below, replacing <mynode> with your preferred name:
[<ADMIN> ~]$ sudo hostnamectl set-hostname <mynode>
  • Configure the server timezone:
[<ADMIN> ~]$ timedatectl set-timezone <timezone>

where <timezone> is in the format Area/Location. Examples: America/Jamaica, Hongkong, GMT, Europe/Prague. To view a list of the time-zone formats that can be used, run:

[<ADMIN> ~]$ timedatectl list-timezones

Synchronize your machine time with a trusted NTP server. Follow the steps in Configuring NTP Using Chrony.

  • To assign a static IP address:

    • Run the command :

      [<ADMIN> ~]$ sudo nmtui edit ens192

      and set the following parameters in the window:

      • Set IPv4 CONFIGURATION to Manual
      • Set Addresses for the physical IP, together with the chosen subnet
      • Set Gateway and DNS Servers to the IPs used by your organization

    • Restart the network service.

      [<ADMIN> ~]$ sudo systemctl restart NetworkManager.service

Install DaneOS

  • Transfer the run file (already downloaded) to the /var/tmp/ directory.
  • Go to /var/tmp/
  • Extract the TOS run file from its archive.
[<ADMIN> ~]$ tar -zvxf DaneOS-xxxx-final.run.tgz
  • Grant execution rights.
[<ADMIN> ~]$ chmod +x  DaneOS-xxxx-final.run
  • Run the DaneOS run file with command, replacing the parameters:
    • <PRIMARY> - The VIP you will use to access Dane.

There is also an option to do a debug. To do a debug, add the parameter --debug to the install command.

[<ADMIN> ~]$ sudo sh DaneOS-xxxx-final.run --primary-vip=<PRIMARY>

Examples :

[<ADMIN> ~]$ sudo sh DaneOS-xxxx-final.run --primary-vip=192.168.201.11

Install DaneAPP

  • Transfer the run file (already downloaded) to the /var/tmp/ directory.
  • Go to /var/tmp/
  • Extract the TOS run file from its archive.
[<ADMIN> ~]$ tar -zvxf DaneAPP-xxxx-final.run.tgz
  • Grant execution rights.
[<ADMIN> ~]$ chmod +x  DaneAPP-xxxx-final.run
  • Run the DaneOS run file with command There is also an option to do a debug. To do a debug, add the parameter --debug to the install command.
[<ADMIN> ~]$ sudo sh DaneAPP-xxxx-final.run
  • The EULA is displayed. After reading, enter q to exit the document. If you accept the EULA, enter y and wait until the command completes.
info
  • log into Dane at https://<VIP> in your browser with user=admin, password=D@n3.
  • If a warning message is shown regarding the site security certificate, 'accept the risk' and continue to the site.