This document illustrates several use cases as references for users.

Sync data then switch network

  1. Deploy airgap appliance OVA.
  2. Open firewall-1 port 443 and 8043 for airgap appliance to fetch data from the internet.
  3. Configure user-inputs.yml and start sync operation, agctl sync.
  4. Close firewall-1 when the sync operation is complete.
  5. Modify user-inputs.yml with new IP address, new FQDN (Optional), certificate type, and related information, and run agctl deploy.

Sync data from private network via proxy

  1. Deploy airgap appliance OVA while enabling proxy in vApp options.
  2. Sync data from the internet with command agctl sync.

Export bundle and import

  1. Deploy airgap appliance OVA.
  2. Open firewall-1 port 443 and 8043 for airgap appliance to fetch data from the internet.
  3. Configure user-inputs.yml and start export operation, agctl export.
  4. Close the firewall-1 when the export operation is complete.
  5. Copy the exported bundle to the /photon-reps folder of the internal airgap appliance.
  6. Import data bundle by command, agctl import.

Sync data then remote sync

  1. Deploy airgap appliance OVA in DMZ zone or public network.
  2. Open firewall-1 port 443 and 8043 for airgap appliance to fetch data from the internet.
  3. Configure user-inputs.yml and start sync operation, agctl sync.
  4. Close firewall-1 when sync operation is done.
  5. Deploy airgap appliance OVA in a private network.
  6. Open port 443 and 8043 on firewall-2.
  7. Configure user-inputs.yml on private network airgap appliance and start replication by agctl rsync.
  8. Close firewall-2 when the replication is complete.

Migrate existing airgap server to new airgap appliance

  1. Deploy airgap appliance OVA in DMZ zone or a public network.
  2. Open firewall-1 port 443 and 8043 for airgap appliance to fetch data from the internet.
  3. Configure user-inputs.yml and start sync operation, agctl sync.
  4. Close firewall-1 when sync operation is done.
  5. Deploy airgap appliance OVA in a private network.
  6. Configure user-inputs.yml in private network airgap appliance and run replication, “agctl rsync”, from existing TCA 2.3.x airgap server.
  7. Open port 443 and 8043 on firewall-2.
  8. Configure user-inputs.yml on a private network airgap appliance and start replication by “agctl rsync'' to fetch data from DMZ zone airgap appliance.
    Note: The endpoint_name and policy_name cannot be the same with the TCA 2.3 configurations.
  9. Close firewall-2 when the replication is done.
  10. Modify private network airgap appliance user-inputs.yml with TCA 2.3 airgap server’s IP address, FQDN, and certificates. Run agctl deploy, then power off TCA 2.3 airgap server.