ZTP or Onboarding New Branch Process Stuck at 30% : Versa Support

Problem :

Onboarding a new branch, be it a Virtual Machine or a baremetal box, in Versa Branch devices sometimes gets stuck at 30%.

Solution:

While doing Zero Touch Provisioning (ZTP) from Branch, the process can get stuck for many reasons.

If bootstrapping CPE is stuck at 30%, it is due to MTU mismatch(TCP MSS) or some underlay connectivity issue between Director > Router > Controller > underlay routers > CPE.

Refer this step to identify the reason for onboarding/ZTP process getting stuck:

Run the /opt/versa/vnms/scripts/netconf-check.sh <CPE IP> command from Versa Director Linux shell and check the results.

admin@Versa-Director:~$ /opt/versa/vnms/scripts/netconf-check.sh <CPE IP>

CPE-IP is the MGMT IP of the Branch on which ZTP is performed.

Output Example 1

This output shows that there are issues with Netconf, and you need to identify the broken location. If ping is not working, you need to check basic IP reachable issues from the Director to the Branch.

admin@Versa-Director:~$ /opt/versa/vnms/scripts/netconf-check.sh 10.3.0.102

PING 10.3.0.102 (10.3.0.102) 56(84) bytes of data.

64 bytes from 10.3.0.102: icmp_seq=1 ttl=63 time=5.29 ms

64 bytes from 10.3.0.102: icmp_seq=2 ttl=63 time=8.72 ms

64 bytes from 10.3.0.102: icmp_seq=3 ttl=63 time=5.83 ms

--- 10.3.0.102 ping statistics ---

3 packets transmitted, 3 received, 0% packet loss, time 2003ms

rtt min/avg/max/mdev = 5.293/6.620/8.729/1.507 ms

===== FAIL: IPAddress is reachable but Netconf port is not reachable. Please check if confd is running in appliance or any firewall blocking 2022 port access====

If ZTP is stuck at 30% even after successful ping and proper Netcong configuration, contact Versa Support Team at support@versa-networks.com.

Output Example 2

This output shows that IPAddress and NetConf port is reachable, and is able to do a basic hand-shake.

admin@Versa-Director01:~$ /opt/versa/vnms/scripts/netconf-check.sh
Usage: ./netconf-check.sh appliance-ipaddress [password]
admin@Versa-Director01:~$ /opt/versa/vnms/scripts/netconf-check.sh 10.1.64.101
PING 10.1.64.101 (10.1.64.101) 56(84) bytes of data.
64 bytes from 10.1.64.101: icmp_seq=1 ttl=63 time=33.8 ms
64 bytes from 10.1.64.101: icmp_seq=2 ttl=63 time=2.84 ms
64 bytes from 10.1.64.101: icmp_seq=3 ttl=63 time=2.82 ms
--- 10.1.64.101 ping statistics ---
3 packets transmitted, 3 received, 0% packet loss, time 2002ms
rtt min/avg/max/mdev = 2.822/13.165/33.831/14.613 ms
/usr/lib/python2.7/dist-packages/Crypto/Cipher/blockalgo.py:141: FutureWarning: CTR mode needs counter parameter, not IV
self._cipher = factory.new(key, *args, **kwargs)
<?xml version="1.0" encoding="UTF-8"?>
<hello xmlns="urn:ietf:params:xml:ns:netconf:base:1.0">
<capabilities>
<capability>urn:ietf:params:netconf:base:1.0</capability>
<capability>urn:ietf:params:netconf:base:1.1</capability>
---- > Few lines truncated for viewing
<capability>urn:ietf:params:xml:ns:yang:ietf-yang-types?module=ietf-yang-types&revision=2013-07-15</capability>
<capability>urn:ietf:params:xml:ns:yang:smiv2:IANAifType-MIB?module=IANAifType-MIB&revision=2009-05-06</capability>
</capabilities>
<session-id>2073</session-id>
</hello>
===== SUCCESS: IPAddress and NetConf port is reachable and also able to do basic hand-shake====
admin@Versa-Director01:~$

ZTP or Onboarding New Branch Process Stuck at 30%

Modified on: Wed, 31 May, 2023 at 9:15 AM

More articles in Troubleshooting