Cisco Cisco Email Security Appliance C190 Guía Del Usuario
35-27
Cisco AsyncOS 8.0.1 for Email User Guide
Chapter 35 Centralized Management Using Clusters
Best Practices and Frequently Asked Questions
Tip: do not make your lab machines part of the same cluster as your production machines. Use a new
cluster name for lab systems. This provides an added layer of protection against unexpected changes
(someone changing a lab system and accidently losing production mail, for example).
cluster name for lab systems. This provides an added layer of protection against unexpected changes
(someone changing a lab system and accidently losing production mail, for example).
Summary of GUI Options for Using CM Settings Other Than the Cluster Default
Override settings, and start with default settings. For example, the default settings for the
SMTPROUTES configuration is a blank table, which you can then build from scratch.
SMTPROUTES configuration is a blank table, which you can then build from scratch.
Override settings, but start with a copy of the settings currently inherited from Cluster xxx, or group yyy.
For example, you may want to a new copy of the SMTPROUTES table at the group level which is
initially identical to the cluster table. All Cisco appliances that are contained in that same group
(SETGROUP) will get this table. Machines not in the group will still use the cluster level settings.
Changing the SMTPROUTES on this independent copy of the table will not affect other groups,
machines inheriting the cluster settings, or machines where the setting is defined at the individual
machine level. This is the most common selection.
For example, you may want to a new copy of the SMTPROUTES table at the group level which is
initially identical to the cluster table. All Cisco appliances that are contained in that same group
(SETGROUP) will get this table. Machines not in the group will still use the cluster level settings.
Changing the SMTPROUTES on this independent copy of the table will not affect other groups,
machines inheriting the cluster settings, or machines where the setting is defined at the individual
machine level. This is the most common selection.
Manage settings, a sub-menu of Centralized Management Options. From this menu you can copy as
above, but you can also move or delete settings. If you move the SMTPROUTES to a group or machine
level, then the routes table will be blank at the cluster level but will exist at the more specific level.
above, but you can also move or delete settings. If you move the SMTPROUTES to a group or machine
level, then the routes table will be blank at the cluster level but will exist at the more specific level.
Manage settings. Continuing our SMTPROUTES example, using the delete option will also result in a
blank SMTPROUTES table for the cluster. This is fine if you previously configured definitions for
SMTPROUTES at the group level or machine levels. It is not a best practice to delete the cluster level
settings and rely only on group or machine settings. The cluster-wide settings are useful as defaults on
newly added machines, and keeping them reduces the number or group or site settings you have to
maintain by one.
blank SMTPROUTES table for the cluster. This is fine if you previously configured definitions for
SMTPROUTES at the group level or machine levels. It is not a best practice to delete the cluster level
settings and rely only on group or machine settings. The cluster-wide settings are useful as defaults on
newly added machines, and keeping them reduces the number or group or site settings you have to
maintain by one.
Setup and Configuration Questions
Q. How do I receive a Centralized Management feature key?
A. All Cisco appliances must have a unique feature key for Centralized Management installed before
they can be joined together in a cluster. Contact Cisco Customer Support to obtain keys. Use the
System Administration > Feature Keys page (GUI) or the
they can be joined together in a cluster. Contact Cisco Customer Support to obtain keys. Use the
System Administration > Feature Keys page (GUI) or the
featurekey
command (CLI) to install
each key.
Q. I have a standalone appliance that has been fully configured and receiving mail with listeners, users,
etc If I apply the Centralized Management feature key and create a new cluster, what happens to my
settings?
etc If I apply the Centralized Management feature key and create a new cluster, what happens to my
settings?
A. If an appliance was previously configured in “standalone” mode, its standalone settings will be
used when creating the cluster. That is, when you create a new cluster, using the
used when creating the cluster. That is, when you create a new cluster, using the
clusterconfig ->
create cluster
command, all configurations are initially set at the cluster level. The next machine
to join the cluster will receive all of these settings.
Q. I have a previously configured standalone machine and I join an existing cluster. What happens to my
settings?
settings?
A. When a machine joins a cluster, all of that machine's clusterable settings will be inherited from
the cluster level. Upon joining a cluster, all locally configured non-network settings will be lost,
overwritten with the settings of the cluster and any associated groups. (This includes the
user/password table; passwords and users are shared within a cluster).
the cluster level. Upon joining a cluster, all locally configured non-network settings will be lost,
overwritten with the settings of the cluster and any associated groups. (This includes the
user/password table; passwords and users are shared within a cluster).
Q. I have a clustered machine and I remove it (permanently) from the cluster. What happens to my
settings?
settings?