Cisco ISR - Running the NetBeez agent as a virtual service

Cisco Solution Partner

NetBeez is a Cisco Preferred Solution Partner. That means, the NetBeez agents are compatible with Cisco equipment. You can read more here.

cisco_tier_2_large.png

If you are looking for the the agent version compatible with the Cisco Catalyst 9000 switches, you can find the procedure here. Otherwise, for Cisco ISR routers, keep reading ...

 

Requirements

This procedure assumes that you have an existing installation of NetBeez. If you don't, you can request a demo here.

 

Virtual service for Cisco ISR routers

Compatibility

  • Cisco ISR 44xx series routers
  • Cisco IOS XE Software, Version 03.17+

Diagram

 

Resources to be configured

To activate the NetBeez virtual service, you need to create the following resources on the Cisco ISR router:

  • A Virtual Port Group that connects to the interface eth0 of the NetBeez virtual service
  • A DHCP Scope to offer a dynamic IP address to the NetBeez virtual service interface eth0
  • A static NAT association for the IP address assigned to the NetBeez virtual service interface eth0
  • GigabitEthernet0/0/0 is the external NAT interface with a default route

 

Step-by-step installation configuration

1. Login via telnet or SSH to your Cisco ISR router
 
2. Download the NetBeez OVA on bootflash: or on another storage unit:
 
copy https://storage.googleapis.com/netbeez-public/netbeez-cisco-isr.ova bootflash:
 
3. Allow unsigned virtual services to run on the Cisco ISR router:
 
configure terminal
  virtual-service
    signing level unsigned
 
4. Load the NetBeez virtual service:
 
virtual-service install name netbeez package bootflash:netbeez-cisco.ova
 
5. Configure additional resources (change based on requirements)
 
    a. Create a Virtual Port Group to provide network connectivity to the virtual service:
 
configure terminal
 interface VirtualPortGroup 0
   ip address 10.1.1.1 255.255.255.0
   exit
 
b. Create a DHCP scope to assign a DHCP address to the virtual service:
 
ip dhcp pool NB-POOL
  network 10.1.1.0 255.255.255.0
  default-router 10.1.1.1
  dns-server 8.8.8.8
  exit
 
  c. Create NAT rules for the virtual service:
 
conf t
  interface GigabitEthernet0/0/0
    ip nat outside
    exit
  interface VirtualPortGroup0
    ip nat inside
    exit 
  ip nat inside source static 10.1.1.2 192.168.1.10
 
6. Finalize the configuration of the NetBeez virtual service and boot the machine:
 
configure terminal
 virtual-service netbeez
   vnic gateway VirtualPortGroup0
exit    activate
 
7. Connect via console to the NetBeez virtual service with credentials netbeez/netbeez to register the agent to the dashboard:
 
virtual-service connect name netbeez console
 
(To exit the console, hit CTRL-C three times)
 
8. Configure the NetBeez agent following the instructions received with the welcome email when you requested a dashboard instance. 
 
 
show running-config
 
Below is a snippet of the configuration applied:
 
!
version 15.6
service timestamps debug datetime msec
service timestamps log datetime msec
no platform punt-keepalive disable-kernel-core
!
hostname ISR4451x
!
boot-start-marker
boot system flash bootflash:isr4400-universalk9.03.17.01.S.156-1.S1-std.SPA.bin
boot-end-marker
!
!
ip dhcp pool NB-POOL
 network 10.1.1.0 255.255.255.0
 default-router 10.1.1.1
 dns-server 8.8.8.8
!
!
interface VirtualPortGroup0
 ip address 10.1.1.1 255.255.255.0
 ip nat inside
!
interface GigabitEthernet0/0/0
 description To Primary Vlan
 ip address 192.168.1.1 255.255.192.0
 ip nat outside
 media-type rj45
 negotiation auto
!
!
!
virtual-service
 signing level unsigned
!
!
virtual-service netbeez
 vnic gateway VirtualPortGroup0
 activate
!
ip nat inside source static 10.1.1.2 192.168.1.10
!
 

About the NetBeez Cisco ISR OVA image

The NetBeez Cisco ISR OVA is available at:

https://storage.googleapis.com/netbeez-public/netbeez-cisco-isr.ova

The OVA was built following this service containers tutorial available on Cisco DevNet, under the KVM section

 

 

Have more questions? Submit a request

0 Comments

Please sign in to leave a comment.