Creating a load balancer endpoint for FabricPool
When configuring StorageGRID for use with FabricPool, you configure a load balancer endpoint and upload the load balancer endpoint certificate, which is used to secure the connection between ONTAP and StorageGRID.
-
You must be signed in to the Grid Manager using a supported browser.
-
You must have the Root Access permission.
-
You have the following files:
-
Server Certificate: The custom server certificate file.
-
Server Certificate Private Key: The custom server certificate private key file.
-
CA Bundle: A single file containing the certificates from each intermediate issuing Certificate Authority (CA). The file should contain each of the PEM-encoded CA certificate files, concatenated in certificate chain order.
-
For details about this task, see Configuring load balancer endpoints.
-
Select Configuration > Network Settings > Load Balancer Endpoints.
-
Select Add endpoint.
-
Enter the following information.
Field Description Display name
A descriptive name for the endpoint
Port
The StorageGRID port you want to use for load balancing. This field defaults to 10433, but you can enter any unused external port. If you enter 80 or 443, the endpoint is configured only on Gateway Nodes, since these ports are reserved on Admin Nodes.
Note: Ports used by other grid services are not permitted. See the list of ports used for internal and external communications:
You must provide this same port number to ONTAP when you attach StorageGRID as a FabricPool cloud tier.
Protocol
Must be HTTPS.
Endpoint Binding Mode
Use the Global setting (recommended) or restrict the accessibility of this endpoint to one of the following:
-
Specific high availability (HA) virtual IP addresses (VIPs). Use this selection only if you require much higher levels of isolation of workloads.
-
Specific network interfaces of specific nodes.
-
-
Select Save.
The Edit Endpoint dialog box appears.
-
For Endpoint Service Type, select S3.
-
Select Upload Certificate (recommended) and then browse to your server certificate, certificate private key, and CA bundle.
-
Select Save.