All Products
Search
Document Center

Create and configure an on-premises gateway

Last Updated: Sep 09, 2019

Create and configure an on-premises gateway

To create an on-premises gateway, you must meet the configuration requirements of virtual machines and learn the installation methods for installing gateways.

Configuration requirements of virtual machines

Make sure that the virtual machine where you want to deploy the gateway meets the following hardware requirements:

• The virtual machine has at least 4 vCPUs.

• The virtual machine has at least 8 GB of memory.

• The virtual machine has at least 100 GB of disk space, which is required for installing the CSG image and storing system data.

• We recommend that you choose a thick LUN to provision cache disks on the virtual machine for higher I/O throughput. The capacity of each cache disk must be 40 GB or larger.

Installation methods

The installation methods and installation files vary depending on the hypervisor. You can obtain the installation file on the image installation page. The following table shows the installation methods and installation file formats supported by different hypervisors.

Hypervisor Installation method File format
VMware You can import an OVA file to VMware to install a gateway. ova
KVM You can import a QCOW2 file to Virtual Machine Manager to install a gateway. qcow2
HyperV You can import a VHD file to Hyper-V to install a gateway. vhd

Deploy a gateway on-premises

This topic describes how to deploy a gateway on-premises. To deploy a gateway on-premises, you must download the file gateway image from the Alibaba Cloud CSG console, install the image, configure networks, and activate the gateway.

Download the file gateway image from the Alibaba Cloud CSG console

File gateways can be deployed in on-premises data centers. Currently, you can deploy gateways on these platforms: VMware vSphere, Hyper-V, and KVM. You can download file gateway images for different platforms from the CSG console.

1.Log on to the Alibaba Cloud CSG console and create a gateway cluster. Note that the region of the cluster must be the same as that of the OSS bucket. The time zone of the gateway must be the same as that of the region. The following figures show how to create a gateway cluster:

1-1

2.Click the cluster that you have created to go to the Gateway Clusters page, and then click Create in the upper-right corner, as shown in the following figures:

6243

6244

Select and download the target file gateway image. You can use the image to deploy gateways in an on-premises data center. For more information, see https://www.alibabacloud.com/help/faq-detail/54123.htm?spm=a2c63.q38357.a3.2.67384af2fgV8Fw the following figure shows how to download the image:

6245

Configure the gateway in the gateway CLI

After the file gateway image is installed, you must use the gateway CLI to assign an IP address to the gateway.

The gateway CLI allows you to configure basic gateway settings. The default username and password of the gateway CLI are root and Alibaba#sgw#1030, respectively.

After the gateway is activated, enter the username and password in the Linux terminal of the virtual machine and log on to the gateway CLI.

Network configuration

The gateway CLI supports these features: display system information, configure network settings, configure the NTP server, and restart services.

After you configure the network and DNS settings, you can then log on to the gateway.

Due to compatibility issues, we recommend that you set the language to English for the gateway CLI, as shown in the following figures:

4-6

Specify the static IP address: Choose Configure the Network → use static ip address in the gateway CLI.

Note: Valid values of the netmask: 1 to 32. For example, if the subnet mask is 255.255.255.0, enter the value 24.

4-7

4-8

Configure DNS: Choose Configure the Network → config dns in the CLI.

4-9

After the DNS configuration is completed, choose Configure the Network → Test in the CLI to verify that the network configuration is correct. The gateway can be activated only if the network configuration is correct.

4-10

If the result shows “test passed”, it indicates that the network configuration is correct, as shown in the following figure:

4-11

Configure NTP server: Select Configure the Date/time in the gateway CLI.

1、The Alibaba Cloud NTP server is selected by default. You can specify another NTP server. Make sure that the time is the same as Alibaba Cloud.

4-12

4-13

Activate the gateway

In the Alibaba Cloud CSG console, when you click Next on the Image Download page, a dialog box appears verifying that you have deployed the gateway and specified the IP address, as described in the Download the file gateway image from the Alibaba Cloud CSG console topic.

6246

2.Click OK to go to the Gateway Activation page. Specify the required information to activate the gateway, as shown in the following figure:

Note: To use this method to activate a gateway, you must make sure that the gateway can access the Internet through the assigned IP address and can be logged on from the current browser.

6247

3.Enter the required information and click OK to activate the gateway.

After the gateway is activated, you can log on to the gateway. Since it is the first time that you have logged on to the gateway, you are required to enter the AccessKey information in the dialog box. Make sure that the AccessKey information is the same as the one used to create the gateway in the Alibaba Cloud CSG console. You can use the gateway only after you enter the AccessKey information.

Note: To activate an on-premises gateway, the account that owns the AccessKey pair must have these permissions: AliyunHCSSGWFullAccess and AliyunOSSFullAccess.

4.If you failed to activate the gateway by using this method, download a certificate to activate the gateway, as described in the following example:

Step 1: The following figure shows an inactivated gateway. Click More and select Buy in the Actions column to purchase the gateway. After you settle the payment, click Download Certificate, as shown in the following figure:

6248

Step 2: Open your browser and enter https:// into the address bar to go to the CSG logon page, as shown in the following figure:

Notes:

1.The AccessKey pair must be the same as the one used to log on to the Alibaba Cloud CSG console to create the gateway.

2.You can specify a custom username and password.

1

Step 3: Upload the certificate, as shown in the following figure:

10

Step 4: Enter the required information to log on to the gateway, as shown in the following figure:

1

Step 5: Log on to the gateway and check the status of the gateway on the About page. The gateway is activated, as shown in the following figure:

6249

Step 6: The gateways that you have created are listed on the Gateway Cluster page. The status of a gateway is Activated if it is activated. The billing method of a gateway is displayed in the Payment Type column, as shown in the following figure:

10

Step 7: After the gateway is created, you can activate, upgrade, and delete the gateway, edit the gateway name and description, and renew the subscription. You can also download the certificate and image and upload a support bundle, as shown in the following figure:

11

How to log on to the gateway console

Open your browser, enter https:// into the address bar, enter the username and password, and click OK to log on to the gateway, as shown in the following figure:

13