Академический Документы
Профессиональный Документы
Культура Документы
After install is done, you can remove EPEL with the following command:
sudo yum remove -y epel-release
7. Make sure all servers’ hostname are known for each server (edit /etc/hosts in each server).
8. Make sure the following ports are accessible (port 22 (SSH) is mandatory to all servers in
deployment).
TCP
Port
Source Destination Port | Direction Justification
Details
No UDP
(eg.
(Forward/Bi tcp/443
Source Destination - -
Function Destination IP Function Number Directional) HTTPS) (Reason for rule request)
Ansible
https access to sas server
1 server ses.sas.download 443 TCP Forward 443
Ansible
https access to sas server
2 server bwp1.ses.sas.download 443 TCP Forward 443
Ansible
https access to sas server
3 server bwp2.ses.sas.download 443 TCP Forward 443
Ansible
https access to sas server
4 server sesbw.sas.download 443 TCP Forward 443
Ansible
https access to sas server
5 server opnsta.sas.com 443 TCP Forward 443
Ansible
https access to sas server
6 server opnstb.sas.com 443 TCP Forward 443
Ansible
https access to sas server
7 server opnstc.sas.com 443 TCP Forward 443
SAS CAS Ansible https access to ansible
8 Server server 443 TCP Forward 443 server
SAS CAS Ansible http access to ansible
9 Server server 80 TCP Forward 80 server
SAS App Ansible https access to ansible
10 Server server 443 TCP Forward 443 server
SAS App Ansible http access to ansible
11 Server server 80 TCP Forward 80 server
4369, 4369,
5430- 5430-
5439, 5439,
5570, 5570,
5672, 5672,
15672, 15672,
25672, 25672,
7080, 7080,
8200, 8200,
8300, 8300,
8301, 8301,
8302, 8302,
SAS Services
8500, 8500,
8501, 8501,
8591, 8591,
8777, 8777,
17541, 17541,
17551, 17551,
18201- 18201-
18250, 18250,
18501- 18501-
18600, 18600,
SAS CAS SAS App 18601- Bi- 18601-
12 Server Server 19000 TCP Directional 19000
SAS CAS Database
13 Server Server 1521 TCP Forward 1521 Database access
SAS App Database
16 Server Server 1521 TCP Forward 1521 Database access
Verify that you can authenticate to all target hosts without being prompted for a password.
From Ansible server:
ssh cas-server-host
ssh app-server-host
vi /etc/security/limits.conf
* - nofile 150000
Redhat 6: vi /etc/security/limits.d/90-nproc.conf
Redhat 7: vi /etc/security/limits.d/20-nproc.conf
* - nproc 100000
vi /etc/sysctl.conf
kernel.sem=512 32000 256 1024
net.core.somaxconn=2048
sudo sysctl –p
vi /etc/systemd/system.conf
DefaultTimeoutStartSec=1800s
DefaultTimeoutStopSec=1800s
Installation/Deployment
Edit Inventory file