Bootloader
The FortiAnalyzer-BigData Bootloader is a system software that manages the FortiAnalyzer-BigData host's firmware. The Bootloader can be accessed during host reboot. The Bootloader can be accessed on all the BigData hosts (Blade A2-A13) except the Main host (Blade A1).
|
Improper selection of options in FortiAnalyzer-BigData Bootloader can have an adverse impact on the whole system, and even lead to system failure. Approach these options with great care and when in doubt, err on the side of caution. |
To access the Bootloader
- Connect to the CMM web management utility (see Connect to the Chassis Management Module).
- Select one of the Security Event Manager host (see Remotely control blades via CMM) to enter its bootloader.
For example: Go to Blade System > Summary and select Blade A2 to access the BMC (Blade Management Console).
- Click the BMC IPV4 link to enter the BMC for the host.
The default login credentials are on the Fortinet Product Credentials card
- Go to Remote Control > Console Redirection or iKVM/HTML5.
- Click Power Control > Set Power Reset.
-
Immediately after you reboot a host, press the
Tabkey within 10 seconds to bring out the action options. - When the following options show up, type
bootloaderto enter the bootloader's main page.
Bootloader Main Page
From the main page of the bootloader, you can select the following options:
- 1. Configure Network
- 2. Install OS
- 3. Set Role
- 4. Set Chassis ID
- 5. Set Blade ID
- 6. Reset OS
- 7. Reset OS and Clear User Data
- 8. Upgrade Bootloader
- 0. Reboot
- sh. shell
1. Configure Network
The Configure Network option enables users to configure their IP, network mask, and network gateway information for the bootloader on the host in order to communicate with external servers hosting bootloader or FortiAnalyzer-BigData firmware images. Users can choose to specify static or DHCP IP addresses when available.
|
This option only configures the network for the bootloader, not the OS of the FortiAnalyzer-BigData host. |
Before users can use this option to configure the network, they need to have the network interface associated with the external network. By default, the external network interface defaults to eth1.
2. Install OS
The Install OS option enables users to install FortiAnalyzer-BigData OS images on the host. Upon selection, users are prompted to provide server and image information. After confirmation, the FortiAnalyzer-BigData OS is downloaded from the server and installed.
Generally, users should use the fazbdctl -c upgrade command in FortiAnalyzer-BigData OS to upgrade the system software instead of using the bootloader Install OS option.
3. Set Role
The Set Role option enables users to select a role for each host. You can see the current role of the host by the option.
In a FortiAnalyzer-BigData Security Event Manager architecture, each host has a designated role in order to collaborate with other hosts. There are two roles from the bootloader perspective: controller and worker.
- Controller: Refers to the Security Event Manager Controller and acts as the master of the other hosts.
- Worker: Nodes that are managed by the controller.
In a given Security Event Manager, only one active controller is allowed.
4. Set Chassis ID
The Set Chassis ID is used to identify the chassis in multi-chassis cluster use case. Chassis IDs may range from 1 to 254. By default, it is 1. When you connect an extension chassis to an existing chassis cluster, the chassis ID needs to be changed to a unique number in 1 to 254 range. You can see the current Chassis ID by option.
5. Set Blade ID
A Blade ID is used to identify the blade slot within a chassis. The order of the blade slots starts from the left side of the FortiAnalyzer-BigData appliance, starting from 1 to 14.
By default, all Blade IDs are set to reflect its physical slot number and users should not change the Blade ID. For example, the controller is in blade slot #2 and has a Blade ID of 2.
If you need to add a replacement blade to the chassis, you must first set the Blade ID to reflect its slot number so the firmware running on the blade knows its physical slot and its role.
6. Reset OS
The Reset OS option enables users to soft reset the FortiAnalyzer-BigData firmware of this BigData host. To soft reset the whole Security Event Manager, use fazbdctl CLI commands on the BigData Controller instead (see Soft reset FortiAnalyzer-BigData).
|
A soft reset only restores the firmware and will not touch the data volume. |
|
|
If this action is performed on the BigData Controller, all the BigData member hosts will have to be rebooted during the progress in order to sync with the BigData Controller. |
7. Reset OS and Clear User Data
The Reset OS and Clear User Data option enables users to hard reset the FortiAnalyzer-BigData firmware of this BigData host. To hard reset the whole Security Event Manager, use fazbdctl CLI commands on the BigData Controller instead (see Hard reset FortiAnalyzer-BigData).
|
|
This will restore the firmware AND clear all the data volume. |
8. Upgrade Bootloader
The Upgrade Bootloader option enables users to specify server and image information to perform upgrades to the existing bootloader.
To upgrade the bootloader of the Security Event Manager Controller, run the following command:
fazbdctl -c upgrade -t bootloader
To sync all the bootloaders on the Security Event Manager members to the Controller’s, run the following command:
fazbdctl -c upgrade -t bootloader -h members
0. Reboot
The Reboot option enables you to reboot and restart the host.
sh. shell
If you enter sh into the Bootloader prompt, you can access the shell and use tools under /sbin/. For example, you can use xfs_repair to fix root disk errors if they occur.