跳转到主内容

无法从管理LIF访问外部密钥管理器

Views:
Visibility:
Public
Votes:
0
Category:
ontap-9
Specialty:
core<a>2009-181294</a>
Last Updated:

适用场景

  • ONTAP 9
  • 外部密钥管理器服务器(KMIP)

问题描述

  • KMIP启动接口使用的端口不正确。  

::*> security key-manager external boot-interfaces show
Address Network Override
Node Type Address/Mask Gateway Port Default?
-------- ------- ------------------ --------------- ----- --------
node1
ipv4 10.148.137.7/26 10.148.137.1 e0e false

node2
ipv4 192.168.139.103/24 192.168.139.1 e0c false
2 entries were displayed.

::*> debug kenv show -node node1
kmip.init.gateway: 10.148.137.1
kmip.init.interface: e0e
kmip.init.ipaddr: 10.148.137.7
kmip.init.netmask: 255.255.255.192

  • 无法使用一个节点管理接口对KMIP服务器执行ping操作。LIF node1_mgmt_2 无法与KMIP服务器通信。LIFnode1_mgmt_1 可以:

::*> network ping -vserver Admin_svm -lif node1_mgmt_2 -destination x.x.x.x
no answer from x.x.x.x

::*> network ping -vserver Admin_svm -lif node1_mgmt_1 -destination x.x.x.x
x.x.x.x is alive

Sign in to view the entire content of this KB article.

New to NetApp?

Learn more about our award-winning Support

NetApp provides no representations or warranties regarding the accuracy or reliability or serviceability of any information or recommendations provided in this publication or with respect to any results that may be obtained by the use of the information or observance of any recommendations provided herein. The information in this document is distributed AS IS and the use of this information or the implementation of any recommendations or techniques herein is a customer's responsibility and depends on the customer's ability to evaluate and integrate them into the customer's operational environment. This document and the information contained herein may be used solely in connection with the NetApp products discussed in this document.