What is the default setting for Allowed Addresses when a network service is added during ONTAP upgrade?

Last updated

Dec 23, 2024
Save as PDF
Share
1. Share
2. Tweet
3. Share

Views:: 46

Visibility:: Public

Votes:: 0

Category:: ontap-9

Specialty:: core

Last Updated:: 12/23/2024, 3:07:00 AM

Applies to

ONTAP 9.10.1 or later

Answer

When a new network service is automatically added during ONTAP upgrade, ONTAP uses two methods simultaneously for this addition.
The two methods result in different default settings for the Allowed Addresses of the new network service:
- Method 1
  - Directly add to the existing default network service policy under each SVM.
  - In this case, the default setting for Allowed Addresses is 0.0.0.0/0 :

Vserver Policy Name Service Name Allowed Addresses ------------------------------------------------------------------------------------- SVM1 default-management backup-ndmp-control 0.0.0.0/0

Method 2
- Add along with a new network service policy starting with custom- under each SVM.
- In this case, the default setting for Allowed Addresses is -, meaning it is blank:

Vserver Policy Name Service Name Allowed Addresses ------------------------------------------------------------------------------------- SVM1 custom-data-12345 backup-ndmp-control

There is an exception for admin SVM.
- The existing custom-management- will be deleted, and a new network service policy starting with custom-system- will be added.
- Depending on the system configuration, it is possible for both - (blank) and 0.0.0.0/0 to coexist for Allowed Addresses:

Vserver Policy Name Service Name Allowed Addresses ------------------------------------------------------------------------------------- ONTAP910 custom-system-112233 backup-ndmp-control 0.0.0.0/0 ONTAP910 custom-system-54321 backup-ndmp-control ONTAP910 custom-system-1234 backup-ndmp-control 0.0.0.0/0

Additional Information

Portmap service configuration