Deploy Airgap Servers from the Airgap OVA

After uploading the airgap server OVA to the local file server, deploy the airgap server in the VMware Telco Cloud Automation environment.

Prerequisites

To use the airgap server in the VMware Telco Cloud Automation system, you must configure a DNS server for resolving the airgap server domain name. This DNS server is useful when deploying VMware Tanzu Kubernetes clusters.

Procedure

Use the OVA that you imported into the local file system and deploy the airgap server virtual machine on the target Internet-restricted environment.
Power on the virtual machine and log into it.
To prepare the system for the target environment, define the environment-related parameters in the user-input.yml file and run the Ansible Playbook. In the deploy phase, use the deploy-user-inputs.yml as a template for storing customization parameters. The customization parameters include:
- Network adapter IP address.
- FQDN of the airgap server.
- Certificate updates.
- Clear unused settings such as proxy, Harbor service ports, and password.
  Note:
  - From Telco Cloud Automation 2.2 release, the harbor password parameter is removed from user-inputs.yml for security reasons. You should enter the harbor password when deploying Telco Cloud Automation. A harbor password validation is added to verify the password. During deployment, if the entered harbor password is different from the one entered during setup, the validation fails. Therefore, you must enter the same harbor password for both setup and deployment.
  - The certificates generated in the setup phase are stored in the {root-dir}/airgap/certs/ folder. During the deployment phase, if you want to generate new certificates, you must either use a different FQDN with the setup phase or remove the {root-dir}/airgap/certs/ folder apart from setting auto_generate: True in user-inputs.yml. Otherwise, the script skips the certificate generation tasks.
```
root@photon-machine [ ~/airgap/scripts/vars ]# ls
deploy-user-inputs.yml setup-user-inputs.yml
root@photon-machine [ ~/airgap/scripts/vars ]# cp deploy-user-inputs.yml user-inputs.yml
root@photon-machine [ ~/airgap/scripts/vars ]# vi user-inputs.yml
```
The deploy-user-inputs.yml file at scripts/vars provides an example of the required inputs in the deployment phase. You can copy it to your user-inputs.yml file and modify according to your environment requirement.

To customize the airgap server, run the deploy.yml file.

root@photon-machine [ ~/airgap ]# scripts/bin/run.sh deploy

Results

You can lose connection if Ansible Playbook changes the IP address on eth0. If you lose connection, log back in and verify the ansible.log file for changes. During deployment, the airgap server does not synchronize its repository from the Internet. Hence, it takes only a few minutes for completing the customizations.