This section explains how to install VPN keys on your Qumulo cluster over a network. You can install the VPN keys by using the qq CLI from a machine on the same network as your cluster or from one of your nodes.

Prerequisites

Before you begin, make sure that you have done the following.

  • Obtain a .zip file with VPN keys from Qumulo Care

  • Whitelist the following domains in your firewall rules:

    • ep.qumulo.com

    • missionq.qumulo.com

    • api.missionq.qumulo.com

    • monitor.qumulo.com

    • api.nexus.qumulo.com

  • Permit outbound HTTPS traffic on port 443

To Install VPN Keys from a Networked Machine

  1. Copy the .zip file from Qumulo Care to a computer on the same network as your cluster, and decompress the file.

  2. Install the qq CLI on the same computer. For more information, see QQ CLI: Get Started on Qumulo Care.

  3. To log in to your cluster, use the qq CLI and specify your cluster’s IP address. For example:

    qq --host 203.0.113.0 login
    
  4. To install the VPN keys on your cluster, specify your cluster’s IP address and the path to the directory that contains the VPN keys. For example:

    qq --host 203.0.113.0 install_vpn_keys /my/path
    
  5. To verify that the VPN keys installed correctly, use the get_vpn_keys command. For example:

    qq --host 203.0.113.0 get_vpn_keys
    
  6. Remove any local copies of the VPN key files.

To Install VPN Keys from a Node

  1. Copy the .zip file from Qumulo Care to a computer on the same network as your cluster, and decompress the file.

  2. To copy the VPN key files to one of your nodes, use the scp command. For example:

    scp /my-path/* admin@203.0.113.0:~/
    
  3. To connect to the node to which you copied the VPN key files, use the ssh command. For example:

    ssh admin@203.0.113.0
    

    The qq CLI is available to the admin user. For example:

    qq version
    
  4. To install the VPN keys on your cluster, specify the path to the directory that contains the VPN keys. For example:

    sudo qq install_vpn_keys /my/path/
    
  5. To verify that the VPN keys installed correctly, use the get_vpn_keys command. For example:

    sudo qq get_vpn_keys
    

To Register Cluster with Cloud-Based Monitoring

  1. To retrieve your cluster ID, use the node_state_get command.

  2. Send the output of the command to Qumulo Care.

  3. Use the Web UI to enable Qumulo Care Remote Support.

  4. Notify Qumulo Care when this process is complete.

    Qumulo Care verifies your VPN functionality and then adds your cluster to Cloud-Based Monitoring.