Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
aner_sagi
Contributor

Smartcenter gaia on nutanix ?

Jump to solution

Hi All,

A new customer of mine want to move his R80.10 smartcenter (currently on Hyper-V) to Nutanix.

is it supported ?

Thanks in advance

Aner

43 Replies
Amir_Arama
Collaborator

Hi Dima,

i want to understand better, if i install the qcow2 file on nutanix. will i get regular vm of security mgmt/smartevent (for example) or it's limited in some ways or have any changes than regular VM? i just don't understand why mgmt Vm for nutanix is called CloudGuard. is it completely nomral ordinary mgmt ? would love to get to know the details on it. thx

0 Kudos
PhoneBoy
Admin
Admin

In short, yes. 

Our cloud offerings collectively collectively bear the CloudGuard brand. 
This includes virtualized versions of our Security Gateway (otherwise known as CloudGuard Network Security) and Management running on the various hypervisors.

0 Kudos
Amir_Arama
Collaborator

Thank you

one more question please,

i installed the qcow2 image of r80.40 mgmt for nutanix, and it came with 100g disk. we tried and resize the disk on nutanix virtual platform to 1.8T, then i reboot the machine, and run lvm_manager, and i saw only 6gb free space. like it didn't recognize the extra space at all. do you have any idea of it's possible to increase disk size or it's hardened in the virtual appliance image? because especially on mgmt/log/smartevent servers we need an extra space for the logs..

0 Kudos
PhoneBoy
Admin
Admin

Not sure how resizing works with KVM images.

That said, the qcow2 images are primarily for gateways.
You should be able to install the regular ISO in a KVM image with a disk of whatever size you want.

Garrett_DirSec
Advisor

Hello @PhoneBoy  -- thanks for the post and update. 

Is there an official position on deployment of GAIA on Nutanix for both (a) SmartCenter, and (b) Gateway.

I know both officially supported with R80.40+, but the topic of whether to use qcow2 image or build from scratch for SmartCenter seems to be vague.

 

0 Kudos
PhoneBoy
Admin
Admin

Both should be supported (from R80.40) per the HCL: https://www.checkpoint.com/support-services/hcl/#os 
The qcow2 images we provide are effectively pre-installed images for gateways without First Time Wizard run.
That makes them much more suitable for automated deployments.
If you install from ISO, you can customize the partitioning, initial admin user, etc., which is definitely more appropriate for management. 

0 Kudos
Amir_Arama
Collaborator

Hi

As someone on this post wrote. The regular iso with disk configured as scsi bus type shows the error that no hard drive found and ask me to choose drivers. Only with sata it's working fine. But it degrade performance and bot recommended by nutanix. There is sk on this message in relation to vmware which give the solution to change to sas. But no such option in nutanix. Can you specify what exactly is the problem and how to solve it. Thx

0 Kudos
Garrett_DirSec
Advisor

Hello @PhoneBoy -- per @DS9ish post, the pre-built qcow2 images for Nutanix include SCSI driver for Nutanix.   the ISO does not. 

Unsure if this on purpose or an oversight? 

If Nutanix recommends SCSI device for guest build, the only path forward for R80.40 and Nutanix is the qcow2 images. 

0 Kudos
PhoneBoy
Admin
Admin

Possible it was an oversight.
My guess is the TAC can get an ISO with the correct drivers on it, but sk94671 might be a better approach.

0 Kudos
DS9ish
Explorer

Read sk94671.  To add space to virtualized Gaia machines, the general path is to add a brand new disk to the guest, prep it for Linux LVM from within Gaia, add it to the volume group, then use lvm_manager to expand the logical volumes where you want more space.

Garrett_DirSec
Advisor

great reference to sk94671.   thanks! 

0 Kudos
Amir_Arama
Collaborator

Hi

Did you find any solution to install mgmt on nutanix with scsi disk? Nutanix recommends using scsi for maximum performance and its important for mgmt/log server.

0 Kudos
DS9ish
Explorer

@Amir_AramaI was able to import the R80.40 OpenStack / Nutanix AHV / KVM qcow2 image from sk158292 to our Nutanix image service, then clone the disk as a SCSI disk during creation of the Management guest VM.  This created a system that booted and was ready to run the first-time wizard.  From there I was able to install it as a secondary management server, and sync to it from our primary.  At this point I am currently actively testing this build so I don't have further results to share (positive or negative).

Note this does only give you the single 100GB disk - as I indicated in my previous post I was able to add additional storage capacity by following the general process outlined in sk94671: creating a new disk, adding it to the VM definition, then going through the LVM process within Gaia to add the new disks' capacity at the OS level.

View solution in original post

Amir_Arama
Collaborator

did you encountered the issue i'm having? while doing ethtool eth0 it shows only link detected:yes without the other lines. and on show interface eth0 it shows link up, but speed: N/A duplex N/A even it has ping connectivity. i wonder if it's by deisgn or an error? also after you first start the vm with the disk cloned from image, should it require for first time wizard, or should it be all set? thx

0 Kudos