slide1
Download
Skip this Video
Download Presentation
StoneBeat™ FullCluster Labs Installation Files

Loading in 2 Seconds...

play fullscreen
1 / 61

StoneBeat™ FullCluster Labs Installation Files - PowerPoint PPT Presentation


  • 143 Views
  • Uploaded on

StoneBeat™ FullCluster Labs Installation Files. Lab. Installation Files on Windows NT:. Create installation folders: C:\Install\Sbfc C:\Install\Sbgui Use WinZip to unzip files to installation folders: CDROM:\sbfc_fw1_20\nt\sbfc_xxx.zip to folder c:\install\sbfc

loader
I am the owner, or an agent authorized to act on behalf of the owner, of the copyrighted work described.
capcha
Download Presentation

PowerPoint Slideshow about ' StoneBeat™ FullCluster Labs Installation Files' - barb


An Image/Link below is provided (as is) to download presentation

Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author.While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server.


- - - - - - - - - - - - - - - - - - - - - - - - - - E N D - - - - - - - - - - - - - - - - - - - - - - - - - -
Presentation Transcript
slide1

StoneBeat™

FullCluster

LabsInstallation Files

Lab

installation files on windows nt
Installation Files on Windows NT:
  • Create installation folders:
    • C:\Install\Sbfc
    • C:\Install\Sbgui
  • Use WinZip to unzip files to installation folders:
    • CDROM:\sbfc_fw1_20\nt\sbfc_xxx.zip to folder c:\install\sbfc
    • CDROM:\sbgui_42\nt\sbgui_xxx.zip to folder c:\install\sbgui
installation files on solaris
Installation Files on Solaris:
  • Create installation folder:
    • mkdir /install
  • Copy files from the cdrom to the installation folder:
    • cp /cdrom/cdrom0/sbfc_fw1_20/solaris/sbfc_xxx.gz /install
    • cp /cdrom/cdrom0/sbgui_42/solaris/sbgui_xxx.gz /install
  • Unzip files:
    • /cdrom/cdrom0/Zip/gunzip.bin /install/sbfc_xxx.gz
    • /cdrom/cdrom0/Zip/gunzip.bin /install/sbgui_xxx.gz
  • Untar files:
    • tar xvf /install/sbfc_xxx
    • tar xvf /install/sbgui_xxx
slide4

StoneBeat™

FullCluster

LabsNetwork Topology

Lab

slide5

StoneBeat FullCluster

Lab Network Topology

Site #1

FTP-SERVER

204.32.38.254

204.32.38.101

204.32.38.1

204.32.38.102

204.32.38.1

SBFC101

192.168.1.101

SBFC102

192.168.1.102

10.0.1.110.0.1.101

10.0.1.1

10.0.1.102

FTP-CLIENT1

10.0.1.254

site 1 etc hosts
Site #1: /etc/hosts

127.0.0.1 localhost

#Ftp-server for all the sites

204.32.38.254 ftp-server

#Site 1

192.168.1.101 sbfc101 #Control

192.168.1.102 sbfc102

204.32.38.1 site1-external #External

204.32.38.101 sbfc101-external

204.32.38.102 sbfc102-external

10.0.1.1 site1-internal #Internal

10.0.1.101 sbfc101-internal

10.0.1.102 sbfc102-internal

10.0.1.254 ftp-client1 #Ftp-client

slide7

StoneBeat FullCluster

Lab Network Topology

Site #2

FTP-SERVER

204.32.38.254

204.32.38.103

204.32.38.2

204.32.38.104

204.32.38.2

SBFC103

192.168.1.103

SBFC104

192.168.1.104

10.0.2.110.0.2.103

10.0.2.1

10.0.2.104

FTP-CLIENT2

10.0.2.254

site 2 etc hosts
Site #2: /etc/hosts

127.0.0.1 localhost

#Ftp-server for all the sites

204.32.38.254 ftp-server

#Site 2

192.168.1.103 sbfc103 #Control

192.168.1.104 sbfc104

204.32.38.2 site1-external #External

204.32.38.103 sbfc103-external

204.32.38.104 sbfc104-external

10.0.2.1 site1-internal #Internal

10.0.2.103 sbfc103-internal

10.0.2.104 sbfc104-internal

10.0.2.254 ftp-client2 #Ftp-client

slide9

StoneBeat FullCluster

Lab Network Topology

Site #3

FTP-SERVER

204.32.38.254

204.32.38.105

204.32.38.3

204.32.38.106

204.32.38.3

SBFC105

192.168.1.105

SBFC106

192.168.1.106

10.0.3.110.0.3.105

10.0.3.1

10.0.3.106

FTP-CLIENT3

10.0.3.254

site 3 etc hosts
Site #3: /etc/hosts

127.0.0.1 localhost

#Ftp-server for all the sites

204.32.38.254 ftp-server

#Site 3

192.168.1.105 sbfc105 #Control

192.168.1.106 sbfc106

204.32.38.3 site3-external #External

204.32.38.105 sbfc105-external

204.32.38.106 sbfc106-external

10.0.3.1 site3-internal #Internal

10.0.3.105 sbfc105-internal

10.0.3.106 sbfc106-internal

10.0.3.254 ftp-client3 #Ftp-client

slide11

StoneBeat FullCluster

Lab Network Topology

Site #4

FTP-SERVER

204.32.38.254

204.32.38.107

204.32.38.4

204.32.38.108

204.32.38.4

SBFC107

192.168.1.107

SBFC108

192.168.1.108

10.0.4.110.0.4.107

10.0.4.1

10.0.4.108

FTP-CLIENT4

10.0.4.254

site 4 etc hosts
Site #4: /etc/hosts

127.0.0.1 localhost

#Ftp-server for all the sites

204.32.38.254 ftp-server

#Site 4

192.168.1.107 sbfc107 #Control

192.168.1.108 sbfc108

204.32.38.4 site4-external #External

204.32.38.107 sbfc107-external

204.32.38.108 sbfc108-external

10.0.4.1 site4-internal #Internal

10.0.4.107 sbfc107-internal

10.0.4.108 sbfc108-internal

10.0.4.254 ftp-client4 #Ftp-client

slide13

StoneBeat™

FullCluster

LabInstallation on Sun Solaris(FireWall-1)

Lab

installation step 1 operating system
Installation: Step 1 - Operating System
  • Install Solaris 7 - DONE 
  • Install Solaris 7 suggested patches - DONE 
  • Check the hostname - DONE 
  • Check the /etc/hosts and /etc/netmasks files - DONE 
  • Configure the Control Interfaces - DONE 
  • Connect the Control Network Cables - DONE 
installation step 2 firewall 1
Installation: Step 2 - FireWall-1
  • Install FireWall-1 4.1 - DONE 
  • Install FireWall-1 Policy - DONE 
  • Check the /.profile - DONE 
  • Configure Operative Interfaces
    • Edit /etc/hostname.qfe files:qfe0 External Dedicated IP: 204.32.38.yyy/255.255.255.0qfe0:1 External Cluster IP: 204.32.38.x/255.255.255.0qfe1 Internal Dedicated IP: 10.0.x.yyy/255.255.255.0qfe1:1 Internal Cluster IP: 10.0.x.1/255.255.255.0
    • Delete the directly connected route from the alias interface/etc/rc3.d/S99staticroutes: route delete net 204.32.38.0 204.32.38.x route delete net 10.0.x.0 10.0.x.1
    • x=site number, yyy=node number and zzz=partner node number
installation step 2 firewall 11
Installation: Step 2 - FireWall-1
  • Enable FireWall-1 Synchronization
    • Edit $FWDIR/conf/sync.conf192.168.1.zzz
    • $FWDIR/bin/fwstop
    • $FWDIR/bin/fw putkey 192.168.1.zzz
    • $FWDIR/bin/fwstart
  • Edit /etc/fw.boot/ifdev
    • Add row: sbif accept
  • Reboot
installation step 3 fullcluster
Installation: Step 3 - FullCluster
  • Install FullCluster
    • cd /install
    • pkgadd -d .
    • Choose all packages: SBFCbase, SBFCconf, SBFCdrv,SBFCgui, SBFCmod and SBFCsnmp
  • Create the SBFCHOME environment variable
    • Edit /.profile:SBFCHOME=/opt/fullclusterPATH=$SBFCHOME/bin:$PATHexport PATH SBFCHOME
  • Use Web Configuration GUI Wizard:
    • hotjava http://localhost:3003/install/
    • $SBFCHOME/bin/sbfcwebconfig install
installation step 3 fullcluster node 11
Installation: Step 3 - FullCluster node #1
  • How many nodes: 2
  • How many operative interfaces: 2
  • Configuration type: multicast
  • Heartbeat IP addresses: 192.168.1.yyy and 192.168.1.zzz
  • Cluster mode: balancing
  • Is this machine FireWall-1 management station: Yes
    • Username: fwadmin
    • Password: password
    • Policy name: Standard
  • Remember to download and rename the GUI certificate files to
    • /install/guikey.pem and /install/guicerts.pem
  • Check the node.conf file!
installation step 4 stonebeat gui
Installation: Step 4 - StoneBeat GUI
  • Install StoneBeat GUI version 4.2
    • pkgadd -d /install/SBFCgui - DONE 
    • Copy Key and Certificate Files:From /install/gui*.pem to /stonebeat/etc
installation step 4 stonebeat gui1
Installation: Step 4 - StoneBeat GUI
  • Create and connect a new FullCluster Site
    • Run: /opt/stonebeat/gui/bin/sbgui
    • Select: Site->New->FullCluster
    • Enter Site Name and Password
    • Enter ID, Hostname, IP address and SSL port (3002)
    • Retrieve
    • Select: Site->Connect
installation step 5 testing
Installation: Step 5 - Testing
  • Connect the Operative Network Cables
  • Configure Ftp-Server
    • Control Panel->Network->Protocols->TCP/IP Protocol->Properties
    • IP Address 204.32.38.254/255.255.255.0
    • Add routes to internal networks: 10.0.x.0
  • Configure Ftp-Client
    • Control Panel->Network->Protocols->TCP/IP Protocol->Properties
    • IP Address 10.0.x.254/255.255.0.0 - Default Gateway: 10.0.x.1
  • Test Programs in Ftp-Client
    • Run: \\ftp-server\avi\forest.avi
    • Run: telnet ftp-server 19
    • Run: ftp ftp-server (configure filter.conf)
installation additional step 6
Installation: Additional Step 6
  • Install StoneBeat GUI in FTP-Client
  • Create installation folder:
    • C:\Install\Sbgui
  • Use WinZip to unzip files to installation folder:
    • CDROM:\sbgui_42\nt\sbgui_xxx.zip to folder c:\install\sbgui
  • Install StoneBeat GUI
    • Run from C:\Install\Sbgui\Setup.exe
    • Copy Key and Certificate Files
    • Run: Start->Programs->StoneBeat->StoneBeat GUI
    • Create and connect a new FullCluster Site
slide27

StoneBeat™

FullCluster

LabInstallation on Windows NT(FireWall-1)

Lab

installation step 1 operating system1
Installation: Step 1 - Operating System
  • Install WindowsNT 4.0 Server - DONE 
  • Install the network - DONE 
    • Only TCP/IP Protocol
    • Only SNMP Service
    • Enable IP Forwarding
  • Install WindowsNT 4.0 Service Pack 6a - DONE 
  • Check the Computer name and the Hosts file - DONE 
  • Configure the Control Interfaces - DONE 
  • Connect the Control Network Cables - DONE 
installation step 2 firewall 12
Installation: Step 2 - FireWall-1
  • Install FireWall-1 4.1 - DONE 
  • Install FireWall-1 Policy - DONE 
  • Configure Operative Interfaces
    • Do you want to install Windows NT Networking now? NO
    • Control Panel->Network->->Protocols->TCP/IP Protocol->Properties->AdvancedExternal Dedicated IP: 204.32.38.yyy/255.255.255.0External Cluster IP: 204.32.38.x/255.255.255.0 (alias)Internal Dedicated IP: 10.0.0.yyy/255.255.255.0 Internal Cluster IP: 10.0.x.1/255.255.255.0 (alias)
    • x=site number, yyy=node number and zzz=partner node number
installation step 2 firewall 13
Installation: Step 2 - FireWall-1
  • Enable FireWall-1 Synchronization
    • Edit %FWDIR%\conf\sync.conf192.168.1.zzz
    • %FWDIR%\bin\fwstop
    • %FWDIR%\bin\fw putkey 192.168.1.zzz
    • %FWDIR%\bin\fwstart
installation step 3 fullcluster1
Installation: Step 3 - FullCluster
  • Install FullCluster Driver
    • Control Panel->Network->Protocols
    • Add StoneBeat Driver from C:\Install\Sbfc
    • Reboot
  • Install FullCluster Module
    • Run from C:\Install\Sbfc\Setup.exe
    • Use SNMP Agent
    • Destination Folder: C:\Program Files\FullCluster
    • Use WEB Configuration GUI wizard:The browser will be started automatically
installation step 3 fullcluster node 14
Installation: Step 3 - FullCluster node #1
  • How many nodes: 2
  • How many operative interfaces: 2
  • Configuration type: multicast
  • Heartbeat IP addresses: 192.168.1.yyy and 192.168.1.zzz
  • Cluster mode: balancing
  • Is this machine FireWall-1 management station: Yes
    • Username: fwadmin
    • Password: password
    • Policy name: Standard
  • Remember to download and rename the GUI certificate files to
    • C:\Install\guikey.pem and C:\install\guicerts.pem
  • Check the node.conf file!
installation step 4 stonebeat gui2
Installation: Step 4 - StoneBeat GUI
  • Install StoneBeat GUI version 4.2
    • Run from C:\Install\Sbgui\Setup.exe
    • Destination Folder: C:\Program Files\StoneBeat
    • Program Folder: Start->Programs->StoneBeat
    • Copy Key and Certificate Files:From C:\Install\gui*.pem to C:\StoneBeat\etc
installation step 4 stonebeat gui3
Installation: Step 4 - StoneBeat GUI
  • Create and connect a new FullCluster Site
    • Run: Start->Programs->StoneBeat->StoneBeat GUI
    • Select: Site->New->FullCluster
    • Enter Site Name and Password
    • Enter ID, Hostname, IP address and SSL port (3002)
    • Retrieve
    • Select: Site->Connect
installation step 5 testing1
Installation: Step 5 - Testing
  • Connect the Operative Network Cables
  • Configure Ftp-Server
    • Control Panel->Network->Protocols->TCP/IP Protocol->Properties
    • IP Address 204.32.38.254/255.255.255.0
    • Add routes to internal networks: 10.0.x.0
  • Configure Ftp-Client
    • Control Panel->Network->Protocols->TCP/IP Protocol->Properties
    • IP Address 10.0.x.254/255.255.0.0 - Default Gateway: 10.0.x.1
  • Test Programs in Ftp-Client
    • Run: \\ftp-server\avi\forest.avi
    • Run: telnet ftp-server 19
    • Run: ftp ftp-server (configure filter.conf)
installation additional step 61
Installation: Additional Step 6
  • Install StoneBeat GUI in FTP-Client
  • Create installation folder:
    • C:\Install\Sbgui
  • Use WinZip to unzip files to installation folder:
    • CDROM:\sbgui_42\nt\sbgui_xxx.zip to folder c:\install\sbgui
  • Install StoneBeat GUI
    • Run from C:\Install\Sbgui\Setup.exe
    • Copy Key and Certificate Files
    • Run: Start->Programs->StoneBeat->StoneBeat GUI
    • Create and connect a new FullCluster Site
slide41

StoneBeat™

FullCluster

LabFilter.conf settings

Lab

filter conf settings
Filter.conf settings
  • Configure in filter.conf
    • Tunnel statement
    • Hide NAT statement
    • Ignore port statement for FTP
  • Note!
    • Edit filter.conf in all nodes
    • Reread configuration files
slide43

StoneBeat™

FullCluster

LabFetching NAT rules(FireWall-1)

Lab

fetching nat rules
Fetching NAT rules
  • Create a simple NAT rule in your FireWall-1 rule base
  • Fetch NAT rules using FullCluster Web Configuration GUI
  • Check the filter-nat.conf file!
slide45

StoneBeat™

FullCluster

LabTest Subsystem

Lab

test subsystem
Test Subsystem
  • Configure a multiping test that commands node to offline in case of failure for external unicast addresses 204.32.38.254
  • Test multi-ping (configure filter.conf)
    • Edit $SBFCHOME/etc/checklist:multiping 30 online offline 2 1000 multi-ping 204.32.38.254
    • sbfc reconfigure
    • sbfc restart
    • disconnect cable from external interface (blue)
test subsystem1
Test Subsystem
  • Test firewall functionality with
    • fw-module-running (Check Point’s FireWall-1)
    • servicerunning (Network Associate’s Gauntletand Axent’s Raptor)
  • Test fw-module-running
    • Edit $SBFCHOME/etc/checklist:firewall-module-on 60 online offline 1 1 fw-module-running
    • sbfc reconfigure
    • sbfc restart
    • fwstop
slide48

StoneBeat™

FullCluster

LabManagement GUI and sbfc Command Line Interface

Lab

gui and command line interface
GUI and Command Line Interface
  • Try do following things on both StoneBeat GUI and command line interface
    • Command one node first to offline state and to online state
    • Restart all nodes
    • Check the status of FullCluster site
slide50

StoneBeat™

FullCluster

LabTen problems

Lab

ten problems
Ten problems
  • The instructor has changed ten things in the demo site:
    • 1.
    • 2.
    • 3.
    • 4.
    • 5.
    • 6.
    • 7.
    • 8.
    • 9.
    • 10.
  • Note! Only software configuration changes!
slide52

StoneBeat™

FullCluster

LabSwitch Configuration

Lab

switch configuration
Switch Configuration
  • Cisco Catalyst 2900 Series XL or equivalent
  • Configure VLANs
    • EXTERNAL: external ports of the FullCluster nodes and ftp-server
    • INTERNAL: internal ports of the FullCluster nodes and ftp-client
    • CONTROL: control ports of the FullCluster nodes
  • Configure static multicast support
    • 0104.3238.0100: EXTERNAL VLAN ports
    • 0110.0000.0100: INTERNAL VLAN ports
    • 0192.6801.0100: CONTROL VLAN ports
catalyst 2900 series xl vlan
Catalyst 2900 Series XL: VLAN

Switch>enable

Switch#vlan database

Switch(vlan)#vlan 10 name EXTERNAL media ethernet

Switch(vlan)#exit

Switch#configure terminal

Switch(config)#interface fastEthernet 0/1

Switch(config-if)#switchport access vlan 10

Switch(config-if)#exit

Switch(config)#interface fastEthernet 0/2

Switch(config-if)#switchport access vlan 10

Switch(config-if)#exit

Switch(config)#interface fastEthernet 0/3

Switch(config-if)#switchport access vlan 10

Switch(config-if)#exit

Switch(config)#interface fastEthernet 0/4

Switch(config-if)#switchport access vlan 10

Switch(config-if)#exit

Switch(config)#exit

Switch#write memory

catalyst 2900 series xl vlan1
Catalyst 2900 Series XL: VLAN

Switch#

Switch#show vlan

VLAN Name Status Ports

---- -------------------------------- --------- -------------------------------

1 default active Fa0/5, Fa0/6, Fa0/7, Fa0/8,

Fa0/13, Fa0/14, Fa0/15, Fa0/16,

Fa0/20, Fa0/21, Fa0/22, Fa0/23,

Fa0/24

10 EXTERNAL active Fa0/1, Fa0/2, Fa0/3, Fa0/4

20 INTERNAL active Fa0/9, Fa0/10, Fa0/11, Fa0/12

30 CONTROL active Fa0/17, Fa0/18, Fa0/19

VLAN Type SAID MTU Parent RingNo BridgeNo Stp BrdgMode Trans1 Trans2

---- ----- ---------- ----- ------ ------ -------- ---- -------- ------ ------

1 enet 100001 1500 - - - - - 0 0

10 enet 100110 1500 - - - - - 0 0

20 enet 100120 1500 - - - - - 0 0

30 enet 100130 1500 - - - - - 0 0

Switch#

catalyst 2900 series xl multicast group
Catalyst 2900 Series XL: Multicast Group

Switch>enable

Switch#configure terminal

Switch(config)#

Switch(config)#mac-address-table static 0104.3238.0100 fastEthernet 0/4 fastEthernet 0/1 fastEthernet 0/2 fastEthernet 0/3

Switch(config)#

Switch(config)#mac-address-table static 0110.0000.0100 fastEthernet 0/12 fastEthernet 0/9 fastEthernet 0/10 fastEthernet 0/11

Switch(config)#

Switch(config)#mac-address-table static 0192.6801.0100 fastEthernet 0/17 fastEthernet 0/18 fastEthernet 0/19

Switch(config)#mac-address-table static 0192.6801.0100 fastEthernet 0/18 fastEthernet 0/17 fastEthernet 0/19

Switch(config)#mac-address-table static 0192.6801.0100 fastEthernet 0/19 fastEthernet 0/17 fastEthernet 0/18

Switch(config)#

Switch(config)#exit

Switch#write memory

Switch#show conf

Switch#

catalyst 2900 series xl multicast group1
Catalyst 2900 Series XL: Multicast Group

Switch#

Switch#show mac-address-table

Dynamic Address Count: 11

Secure Address Count: 0

Static Address (User-defined) Count: 3

System Self Address Count: 47

Total MAC addresses: 61

Maximum MAC addresses: 8192

Non-static Address Table:

Destination Address Address Type VLAN Destination Port

------------------- ------------ ---- --------------------

0000.d1ec.e3b1 Dynamic 20 FastEthernet0/12

0000.d1ec.fde1 Dynamic 30 FastEthernet0/18

0000.d1ec.fde2 Dynamic 10 FastEthernet0/2

0000.d1ec.fde3 Dynamic 20 FastEthernet0/10

0000.d1ec.fed5 Dynamic 30 FastEthernet0/17

0000.d1ec.fed6 Dynamic 10 FastEthernet0/3

0000.d1ec.fed7 Dynamic 20 FastEthernet0/9

0000.d1ec.fef5 Dynamic 10 FastEthernet0/4

catalyst 2900 series xl multicast group2
Catalyst 2900 Series XL: Multicast Group

0000.d1ed.aa16 Dynamic 10 FastEthernet0/1

0000.d1ed.aa17 Dynamic 20 FastEthernet0/11

0000.d1ed.aa18 Dynamic 30 FastEthernet0/19

Static Address Table:

Destination Address VLAN Input Port Output Ports

------------------- ---- ---------- -----------------------

0104.3238.0100 10 Fa0/1

10 Fa0/2

10 Fa0/3

10 Fa0/4 Fa0/1 Fa0/2 Fa0/3

0110.0000.0100 20 Fa0/9

20 Fa0/10

20 Fa0/11

20 Fa0/12 Fa0/9 Fa0/10 Fa0/11

0192.6801.0100 30 Fa0/17 Fa0/18 Fa0/19

30 Fa0/18 Fa0/17 Fa0/19

30 Fa0/19 Fa0/17 Fa0/18

Switch#

slide59

StoneBeat™

FullCluster

LabVPN Tunnel(FireWall-1)

Note! A separated FireWall-1 management server is needed to load policy with Gateway Cluster Object!

Lab

vpn tunnel between sites 1 and 2
VPN Tunnel between sites #1 and #2
  • See the StoneBeat FullCluster Manual Appendix B:
    • 1. Define FireWall-1 and network objects:
      • Local FireWall-1 Modules: sbfc101 and sbfc102
      • Local FireWall-1 Management: sbfc105
      • Local Network: site1-network
      • Remote Gateway: site2-external (IPSec, Domain: site2-network)
      • Remote Network: site2-network
    • 2. Enable gateway clustering and define a gateway cluster objects:
      • Local FireWall-1 Gateway Cluster: site1-external (IPSec, Domain: site1-network)
      • Cluster members: sbfc101 and sbfc102
    • 3. Create SEP VPN-1 configuration on the management
      • Manual IPSec
      • SPI 0x1234: EPS encryption key 0x1234567890abcdef, no AH
vpn tunnel between sites 1 and 21
VPN Tunnel between sites #1 and #2
  • 4. Add encryption rules in the FireWall-1 security policies
    • sbfc101 site2-external IPSEC accept longsbfc102 sbfc102site2-external sbfc101
    • site1-network site2-network any encrypt longsite2-network site1-network
  • 5. Install the security policy
  • 6. Delete the external routes via dedicated IP addresses and create a route via the cluster IP
  • 7. Configure FullCluster load balancing filter (filter.conf)
    • tunnel 204.32.38.1 204.32.38.2 10.0.2.0 netmask 255.255.255.0
  • 8. Reconfigure and restart FullCluster using GUI
    • sbfc reconfigure all
    • sbfc restart all
ad