Manual Configuration

Manual configuration of the distributed architecture requires advanced knowledge of UNIX-like systems. Communication between nodes uses the SSH service on Flowmon devices.

Generating encryption keys

You must set the SSH encryption keys on single nodes of the distributed architecture. The key pair can be generated using ssh-keygen.

Example of the ssh-keygen utility:

$ssh-keygen -N "" -f /data/ads/tmp/auth.key
Generating public/private rsa key pair.
Your identification has been saved in /data/ads/tmp/auth.key.
Your public key has been saved in /data/ads/tmp/auth.key.pub. The key fingerprint is:
XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX:XX flowmon@testmachine

The generated private key must be added to each node (for example, using the sftp/scp application). The files must have permissions set as per the following example:

chmod 0600 /data/ads/tmp/auth.key
chown flowmon:flowmon /data/ads/tmp/auth.key

The generated public key has to be added on each node to the authorized keys of the flowmon user:

cat /data/ads/tmp/auth.key.pub >> /home/flowmon/.ssh/authorized_keys chmod 600 /home/flowmon/.ssh/authorized_keys
chown flowmon:flowmon /home/flowmon/.ssh/authorized_keys

Configuring the architecture

Each node has to be configured separately using the /data/ads/KADS.cfg configuration file. If the file is not present in the system or if every line of the file is commented, the distributed architecture is turned off. Documentation of the config file is available in the file itself in the comment strings.