Page tree

Contents

To view and modify host configuration, complete the following:

  1. From the Cloud Services Portal, click Manage -> On-Prem Hosts.

  2. Select the on-prem host for which you want to modify, right-click the Action icon, and then click Edit. You can also select the host check box and click Edit at the top of the page.

  3. On the edit page, you can review and modify the following information:

Note

When you add or modify any of the following settings, services on your on-prem host will restart after you save the configuration. You might experience a minor outage when the services restart. In addition, if the new configuration is invalid, BloxOne DDI will revert back to the previous configuration after a few minutes. For example, if you made a typo while changing the IP address of an interface, the IP address becomes invalid and BloxOne DDI reverts to the previous IP address to ensure that the on-prem host is still operational. This validation process happens in the background and does not affect any operations on your on-prem host.

    • Applications & Services: You can view the licenses and enable or disable services that are applicable to the host.
      • SERVICE: This column lists the services associated with the host and their current states. You can use the service slider to enable or disable the applicable services. All services are disabled by default when you initially deploy the host.
      • LICENSE: This column lists the licenses for the host. You cannot modify this.
      • STATE: This column lists the current state of the service. this can be Enabled or Disabled.
    • IP Interface Settings: This section lists the following information for the network interface of the on-prem host, if applicable. Note that you can add or make changes to this section for the physical appliance or virtual appliance through OVA deployment using the downloaded Infoblox image.
      • NETWORK INTERFACE: The name of the Ethernet port on the appliance, such as enp1s0 or enp2s0.
      • NETWORK MODE: Displays what the interface is being used for, such as dhcp or static.
      • IP ADDRESS: The IP address associated with the interface.
      • CIDR/NETMASK: The netmask for the IP address.
      • DEFAULT GATEWAY: The default gateway for the interface.
    • DNS Local Resolver IP Settings: This section displays the IP addresses of the local DNS resolver. You can also add a new resolver or delete an existing one.
    • Time Settings: In this section, you can set the time zone for the on-prem host, and add or remove NTP server(s) that your on-prem host uses to synchronize time. When you set the time zone for an on-prem host, the time zone information appears in the details panel of the Cloud Services Portal. Setting time zone is useful if you want to synchronize time among multiple on-prem hosts or if you want to set up a maintenance window through the Cloud Services Portal.
      If you select the Sync with ESXi check box for an on-prem host deployed through OVA on ESXi servers, the list of NTP servers in the Time Settings section will not be used for the on-prem host. If desired, for OVA deployments on ESXi servers, you can enable the Synchronize guest time with host option during the deployment to synchronize your on-prem host with the NTP server. If you do not select the Synchronize guest time with host option (or if this option is disabled) during the deployment, the on-prem host synchronizes with the Ubuntu NTP servers: ntp.ubuntu.com and ubuntu.pool.ntp.org. If you choose to disable the Synchronize guest time with host option during the deployment and select the Sync with ESXi check box, ensure that you open the UDP 123 port for time synchronization with the Ubuntu NTP servers. For more information, see Synchronizing Time on the ESXi Servers.
    • Proxy Settings: This section displays the URL of the HTTPS proxy for the on-prem host if configured. You can specify the path for the CA certificate that BloxOne Threat Defense Cloud should use to authenticate the proxy. Note that the proxy setting is for web connection authentication only.
    • Docker Bridge Settings: This section displays the IP addresses of the Docker Bridge that are associated with the on-prem host. You can add new IP addresses or remove existing ones for physical appliances as well as virtual appliances through OVA deployments using the downloaded Infoblox image. If all IP addresses are disabled, the Docker Bridge will default to 172.17.0.0/24.

      Note

      You can use an IP address for the Docker Bridge in a network no larger than a /24 subnet.

  1. Click Save & Close.


  • No labels

This page has no comments.