This section explains how to enable Cloud-Based Monitoring and VPN Remote Support for your Qumulo cluster.

How Cloud-Based Monitoring Works

Cloud-Based Monitoring (which includes Nexus Monitoring functionality) sends telemetry data to Qumulo to allow the Qumulo Care Team to monitor your Qumulo cluster proactively. All connections are encrypted with TLS.

We use a proprietary application that aggregates diagnostic cluster data and alerts the Qumulo Care Team if an issue arises. Depending on the issue severity and cluster state, a member of the Qumulo Care Team reaches out. For more information, see:

How VPN Remote Support Works

VPN Remote Support lets the Qumulo Care Team access your Qumulo cluster solely to assist you with running a software update, performing diagnostics, or troubleshooting your cluster. All connections are encrypted with TLS.

When you install VPN keys in the /etc/openvpn directory, an authorized member of the Qumulo Care Team uses SSH to connect to the ep1.qumulo.com server and then uses SSH through a secure VPN connection to connect to your cluster (normally, this VPN connection is closed).

By default, the VPN tunnel remains open for four hours to allow members of the Qumulo Care Team to run remote debugging commands on your cluster. You can configure the connection period and enable or disable VPN Remote Support at any time.

What Data Gets Sent to Qumulo

Cloud-Based Monitoring and VPN Remote Support let your cluster send the following detailed diagnostic data to Qumulo through an encrypted connection.

  • Cluster name

  • Number of nodes in cluster

  • Hardware and software incidents

    • Drives

      • CRC errors

      • S.M.A.R.T. status alerts

      • Capacity triggers

    • Nodes

      • PSU failure

      • Fan failure

      • Recused node

      • Offline node

      • Unreachable cluster

    • Qumulo Core

      • New process core dump

  • Configuration data (such as users, groups, SMB shares, and NFS exports)

  • Logs, stack traces, and code dumps

Prerequisites

Before you can use Cloud-Based Monitoring and VPN Remote Support:

  • A member of the Qumulo Care Team must install VPN keys on your Qumulo cluster

  • You must enable TCP traffic on port 443 for the following hostnames:

    Hostname Description
    api.missionq.qumulo.com Cloud-Based Monitoring connectivity
    monitor.qumulo.com Cloud-Based Monitoring log uploads
    api.nexus.qumulo.com Nexus Monitoring connectivity
    ep1.qumulo.com

    VPN Remote Support
    missionq-dumps.s3.amazonaws.com Proxy Forwarding networking configuration

Enabling Cloud-Based Monitoring

You can enable Cloud-Based Monitoring by using the Qumulo Core Web UI or the qq CLI.

To Enable Cloud-Based Monitoring by Using the Qumulo Core Web UI

  1. Log in to the Qumulo Core Web UI.

  2. Click Support > Qumulo Care.

  3. On the Qumulo Care page:

    1. In the Cloud-Based Monitoring section, click Edit.

    2. Click Yes, I want Qumulo Cloud-Based Monitoring and then click Save.

If your configuration is valid, the Qumulo Core Web UI shows the status Enabled | Connected.

To Enable Cloud-Based Monitoring by Using the qq CLI

Run the qq set_monitoring_conf command with the --enabled flag.

Enabling VPN Remote Support

You can enable Remote Support by using the Qumulo Core Web UI or the qq CLI.

To Enable VPN Remote Support by Using the Qumulo Core Web UI

  1. Log in to the Qumulo Core Web UI.

  2. Click Support > Qumulo Care.

  3. On the Qumulo Care page:

    1. In the Remote Support section, click Edit.

    2. Under Do you want to enable Qumulo Remote Support?, click Yes and then click Save.

If your configuration is valid, the Qumulo Core Web UI shows the status Enabled | Connected.

To Enable VPN Remote Support by Using the qq CLI

Run the qq set_monitoring_conf command with the --vpn-enabled flag.