Upgrading Mobility Controllers to Gateways
6 minute read
In AOS 8, the Mobility Controller provides many services that have been moved to Central in AOS 10. To reflect the change in functionality and to better describe the role of the appliance, the name has been changed to Gateway. The two names often are used interchangeably; however, for AOS 10, the correct terminology is Gateway.
Zero Touch Provisioning
Zero Touch Provisioning (ZTP) is a fast, convenient way to onboard a new or existing Gateway into Central without requiring configuration from the installer. Successful ZTP requires the Gateway to be connected to a switchport configured with an untagged VLAN that provides DHCP addressing and Internet access. Any port on a Gateway except GE 0/0/1 can be used for ZTP.
Depending on how the Gateway is deployed or connected to the LAN, ZTP can be performed over a WAN port, uplink port, or a dedicated staging port. A dedicated staging port can be used to onboard a Gateway in situations where the management VLAN will be 802.1Q tagged on the Gateway uplink, the Gateway is connected using LACP trunks, or DHCP services are not available. After a Gateway is provisioned and configured by Central, the Gateway can be configured to use a desired uplink port(s).
Provision the Gateway
-
To monitor the ZTP process, connect to the serial console port on the Gateway and power on the Gateway. After booting, the initial provisioning screen is presented:
NoteYou can view the full ZTP exchange by typingenable-debug
in the setup screen before connecting the Gateway’s ZTP port to the switchport. -
Connect a ZTP-capable port on the Gateway to a switchport configured with an untagged (access) VLAN that provides DHCP and Internet access. All ports on the Gateway support ZTP except GE 0/0/1.
-
After receiving a DHCP response, the Gateway resolves the Activate FQDN and communicates with Activate for provisioning:
-
If the Gateway is new and has not been previously provisioned, Activate will push a Central-enabled firmware upgrade and reboot the Gateway.
-
Activate provisions the Gateway with the FQDN for the assigned Central instance.
-
-
After booting to a Central enabled firmware and being provisioned with the FQDN, the Gateway can communicate with Central.
-
The firmware version defined in firmware compliance for the Group is enforced and an upgrade is pushed if necessary. After the upgrade is complete, the Gateway reboots.
-
The Gateway initializes using the specified AOS 10 version, contacts Central for configuration, based on the Central’s assigned device configuration.
-
After the configuration is applied successfully, the Gateway is up and operational in Central using the staging port or the configured uplink port(s).
Static Activate
Static activate is a one touch provisioning (OTP) option used to provision a Gateway that requires static addressing or PPPoE authentication. The OTP process requires the installer to use a serial console port or web browser to supply minimum information to the Gateway to permit initial communication with Activate and Central. The use of a web browser requires a computer to be connected to the Gateway on the GE 0/0/1 Ethernet port, which provides a DHCP address for local access.
The available configuration options vary by release when using OTP. A new Gateway shipped from the factory currently is loaded with a version of AOS 8 that permits provisioning over PPPoE WAN links or an untagged VLAN but does not support provisioning a new Gateway over an 802.1Q tagged VLAN or an LACP trunk. Gateways already upgraded to AOS 10 support provisioning using 802.1Q tagged VLANs and/or LACP trunks.
Serial Console
-
Connect to the serial console port on the Gateway and power on the Gateway. After booting, the initial provisioning screen displays:
-
Type “static-activate,” then press ENTER to start the process. Choose the options appropriate for the required uplink type (“static” or “pppoe”), then provide the required information. The example shows a statically configured IP address:
-
After initial provisioning is complete, the Gateway resolves the Activate FQDN and communicates with Activate for further provisioning:
-
If the Gateway is new and has not been provisioned, Activate pushes a Central-enabled firmware upgrade and reboots the Gateway.
-
Activate provisions the Gateway with the FQDN for the assigned Central instance.
-
-
After booting to a Central-enabled firmware and provisioning with the FQDN, the Gateway can communicate with Central.
-
The firmware version defined in firmware compliance for the Group is enforced. An upgrade is pushed if necessary. After the upgrade is complete, the Gateway reboots.
-
The Gateway initializes using the specified AOS 10 version, then contacts Central for configuration based on assigned Central device configuration.
-
After configuration, the Gateway is up and operational in Central.
Web-UI
-
Connect a computer to the GE 0/0/1 Ethernet port on the Gateway. An IP address will be offered by DHCP in the 172.16.0.0/24 network. Open a web browser and navigate to
https://172.16.0.254
, proceeding past the warning for the invalid SSL certificate: -
Select By connecting to activate/central, then click Next:
-
Select Static IP Address or PPPoE as the connection method. Enter the required information. The example below provisions a Gateway to use the GE 0/0/0 port and a static IP address; a Gateway running AOS 10 has additional options for a trunk port and port-channel:
-
Verify that the information is correct then click Deploy and Reboot.
-
After the initial provisioning is complete, the Gateway resolves the Activate FQDN and communicates with Activate for further provisioning:
-
If the Gateway is new and has not been previously provisioned, Activate pushes a Central-enabled firmware upgrade and reboots the Gateway.
-
Activate provisions the Gateway with the FQDN for the assigned Central instance.
-
-
After booting to a Central-enabled firmware and provisioning with the FQDN, the Gateway can communicate with Central.
-
The firmware version defined in firmware compliance for the Group is enforced and an upgrade pushed if necessary. After the upgrade is complete, the Gateway reboots.
-
The Gateway initializes using the specified AOS 10 version and contacts Central for configuration based on the assigned Central device configuration.
-
After the configuration is applied successfully, the Gateway is up and operational in Central.
Feedback
Was this page helpful?
Glad to hear it!
Sorry to hear that.