Creating a load balancer endpoint for FabricPool

11/22/2022 Contributors

When configuring StorageGRID for use with FabricPool, you configure a load balancer endpoint and upload the load balancer endpoint certificate, which is used to secure the connection between ONTAP and StorageGRID.

What you'll need

You must be signed in to the Grid Manager using a supported browser.
You must have the Root Access permission.
You have the following files:
- Server Certificate: The custom server certificate file.
- Server Certificate Private Key: The custom server certificate private key file.
- CA Bundle: A single file containing the certificates from each intermediate issuing Certificate Authority (CA). The file should contain each of the PEM-encoded CA certificate files, concatenated in certificate chain order.

About this task

For details about this task, see Configuring load balancer endpoints.

Steps

Select Configuration > Network Settings > Load Balancer Endpoints.
Select Add endpoint.

Enter the following information.

Field	Description
Display name	A descriptive name for the endpoint
Port	The StorageGRID port you want to use for load balancing. This field defaults to 10433, but you can enter any unused external port. If you enter 80 or 443, the endpoint is configured only on Gateway Nodes, since these ports are reserved on Admin Nodes. Note: Ports used by other grid services are not permitted. See the list of ports used for internal and external communications: Network port reference You must provide this same port number to ONTAP when you attach StorageGRID as a FabricPool cloud tier.
Protocol	Must be HTTPS.
Endpoint Binding Mode	Use the Global setting (recommended) or restrict the accessibility of this endpoint to one of the following: Specific high availability (HA) virtual IP addresses (VIPs). Use this selection only if you require much higher levels of isolation of workloads. Specific network interfaces of specific nodes.

Field

Description

Display name

A descriptive name for the endpoint

Port

The StorageGRID port you want to use for load balancing. This field defaults to 10433, but you can enter any unused external port. If you enter 80 or 443, the endpoint is configured only on Gateway Nodes, since these ports are reserved on Admin Nodes.

Note: Ports used by other grid services are not permitted. See the list of ports used for internal and external communications:

Network port reference

You must provide this same port number to ONTAP when you attach StorageGRID as a FabricPool cloud tier.

Protocol

Must be HTTPS.

Endpoint Binding Mode

Use the Global setting (recommended) or restrict the accessibility of this endpoint to one of the following:

Specific high availability (HA) virtual IP addresses (VIPs). Use this selection only if you require much higher levels of isolation of workloads.
Specific network interfaces of specific nodes.

Select Save.

The Edit Endpoint dialog box appears.
For Endpoint Service Type, select S3.
Select Upload Certificate (recommended) and then browse to your server certificate, certificate private key, and CA bundle.
Select Save.

Creating a load balancer endpoint for FabricPool

Creating your file...