This document provides information about Cisco Crosswork Data Gateway 6.0.1 for Cloud applications, including features, compatibility information, known issues, and limitations.

Product Overview

Cisco Crosswork Data Gateway is a model-driven scalable data collection platform that enables real-time data collection from multi-protocol capable devices, thereby reducing the need for multiple collection points for multiple applications requiring data from the network.

Cisco Crosswork Data Gateway offers central visibility into services collecting data and the type of data being collected.

Cisco Crosswork Data Gateway is not a standalone product and is expected to be used with Crosswork Cloud applications. There is no separate software license needed for Cisco Crosswork Data Gateway.

Release Details

Cisco releases updated builds of Crosswork Data Gateway on the Cisco Support & Software Download site.

Cisco Crosswork Data Gateway can be installed into a data center using any of the platforms listed in the following table. The file used for deployment is unique to each of these environments.

Table 1. Crosswork Data Gateway 6.0.1 Supported Virtualization Platforms

Platform

File Extension

VMware

*.ova

Note

 
Some versions of Mozilla Firefox may change the .ova installer file extension to .dms during the download. After the file is downloaded, change the file extension to .ova.

OpenStack

*.qcow2

Amazon EC2

.ami


Note


Direct upgrade from a previous Crosswork Data Gateway version is not supported. You must create a new VM with the same parameters to replace the existing Crosswork Data Gateway.


What's New

This section lists the features and enhancements delivered in Crosswork Data Gateway 6.0.1 for Cloud Applications.

Table 2. New Feature in Crosswork Data Gateway 6.0.1 for Cloud Applications

Feature

Description

Auto enroll Crosswork Data Gateway with Crosswork Cloud1

Crosswork Cloud enrolls Cisco Crosswork Data Gateway, permitting it the ability to receive collection job configurations and gather data from network devices.

Previously, enrolling a data gateway with Crosswork Cloud was possible only after the installation of the data gateway on the VM. To enroll the data gateway, you would generate an enrollment package from Crosswork Data Gateway and upload it using the Crosswork Cloud UI.

In the 6.0.1 release, you would generate an enrollment token from the Crosswork Cloud UI and incorporate it into the configuration file during the deployment of the data gateway VM. Through this approach, the data gateway seamlessly enrolls with the Crosswork Cloud upon VM startup.

You can choose to enroll the data gateways manually or automatically using this feature. For information on the enrollment procedures, see Enroll Crosswork Data Gateway with Crosswork Cloud.

Ability to configure multiple Syslog servers1

In the Day 0 configuration, you can configure one or more remote servers to use the same port and protocol. After the Day 1 configuration, you can modify the remote server settings using the interactive menu. You can customize the server IP, port, protocol, TLS peer name, and Syslog root certificate with this option.

When one of the servers becomes inaccessible, a standby server takes its place to ensure continuity. The objective of having numerous servers is to achieve high availability.

Option to modify the interface address1

Crosswork Data Gateway allows you to modify the interfaces that are already associated with a data gateway instance after it has been installed. When Crosswork Data Gateway indicates IP address difficulties such as address conflicts or erroneous addresses, this may be required.

Reconfiguring an interface involves modifying the interface name, assigning it an IP address, and obtaining access to the security group that is linked to it.

Included the auto-configuration functionality to deploy Crosswork Data Gateway

To use the auto-configuration feature, the user defines only the essential parameters with default values in the Day 0 configuration. Auto-configuration feature discovers the missing configuration parameters and configures the required parameters to install Base VM.

The Dynamic Host Configuration Protocol (DHCP) framework is used to communicate the configuration settings.

For more information about the auto-configuration feature, see the Auto-configuration for Deploying Crosswork Data Gateway section in Cisco Crosswork Data Gateway 6.0.1 Installation and Configuration Guide for Cloud Applications.

Support to assign roles to the vNICs

Role assignment allows you to control the traffic that an interface must handle. By default, all form of communication occurs through the network using eth0. During the installation, you can assign roles to different interfaces to match the unique requirements of your environment.

Each parameter has a predefined role. The parameter accepts the interface value as eth0, eth1, or eth2. The fourth interface, eth3, allows you to separate SSH, Management, Control (Crosswork Cloud service), and Northbound External Data, and Southbound Data traffic.

For more information about the different roles, see Cisco Crosswork Data Gateway Deployment Parameters and Scenarios.

1 For more information about the features, see Cisco Crosswork Data Gateway 6.0.1 Installation and Configuration Guide for Cloud Applications.

Compatibility Information

Cisco Crosswork Data Gateway 6.0.1 for Cloud applications is validated for use with the following Crosswork Cloud applications:

  • Cisco Crosswork Trust Insights is a cloud-based SaaS solution that reports on the integrity of devices and provides forensics for assured inventory.

  • Cisco Crosswork Cloud Traffic Analysis is a cloud-based SaaS solution that provides rich analysis, visualization, and recommended optimizations for network traffic flows.

Cisco Crosswork Data Gateway must be deployed using the Crosswork Cloud profile for use with Crosswork Cloud applications. For information on deployment, see Cisco Crosswork Data Gateway 6.0.1 Installation and Configuration Guide for Cloud Applications.

The following tables list the software requirements for the supported virtualization platforms along with the physical and network resource requirements needed to support the Crosswork Data Gateway.


Note


The resource requirements to install Crosswork Data Gateway are the same for all platforms.


Table 3. VM Requirements for Cloud applications

Requirement

Description

Virtualization Platform

VMware

  • VMware vCenter server 6.7, ESXi 6.5

  • VMware vCenter Server 7.0, ESXi 6.5 and 6.7

OpenStack

  • OpenStack OSP16

Amazon

  • Amazon Elastic Cloud Compute (Amazon EC2)

Memory

32 GB

Total Disk space (Boot disk + Data disk)

74 GB (50 GB + 24 GB)

vCPU

8

Table 4. Supported Interface Configurations

Interface

Description

Interfaces

Minimum: 1

Maximum: 3

Crosswork Data Gateway can be deployed with either 1, 2, or 3, interfaces as per the following combinations:

No. of NICs

vNIC0

vNIC1

vNIC2

1
  • Management traffic

  • Control/Northbound External Data traffic

  • Southbound Data traffic

2
  • Management traffic

  • Control/Northbound External Data traffic

  • Southbound Data traffic

3
  • Management traffic

  • Control/Northbound External Data traffic

  • Southbound Data traffic

  • Management traffic: for accessing the Interactive Console and troubleshooting the Crosswork Data Gateway VM.

  • Control/Northbound External Data traffic: to receive configuration of collection jobs from the Crosswork Cloud and to forward collected data to the Crosswork Cloud.

    Important

     

    Crosswork Data Gateway can connect to the Cloud only when the Control/Data interface has access to the Internet. For more information on the ports used and how to secure the interface, see Cisco Crosswork Data Gateway 6.0.1 Installation and Configuration Guide for Cloud Applications.

  • Southbound Data traffic: for device management and telemetry data.

Table 5. Configuration Options

Option

Description

IP Addresses

One, two, or three IPv4 or IPv6 addresses based on the number of interfaces you choose to use.

Note

 

Crosswork does not support dual stack configurations. Therefore, ALL addresses for the environment must be either IPv4 or IPv6.

NTP Servers

The IPv4 or IPv6 addresses or host names of the NTP servers you plan to use. If you want to enter multiple NTP servers, separate them with spaces. These should be the same NTP servers you use to synchronize devices, clients, and servers across your network.

Note

 
Confirm that the NTP IP address or host name is reachable on the network or installation fails.

The Crosswork Data Gateway host and virtual machine must be synchronized to an NTP server or the enrollment with Crosswork Cloud may not go through.

DNS Servers

The IPv4 or IPv6 addresses of the DNS servers you plan to use. If you want to enter multiple DNS servers, separate them with spaces. These should be the same DNS servers you use to resolve host names across your network.

DNS Search Domain

The search domain you want to use with the DNS servers (for example, cisco.com). You can only have one search domain.

(Optional) Proxy Server

URL of an optional management network proxy server.

If your environment requires an HTTP or HTTPS proxy in order to access URLs on the public Internet, you must configure a proxy server for the Cisco Crosswork Data Gateway to successfully connect to the Crosswork Cloud service.

(Optional) Syslog Server

Hostname, IPv4, or IPv6 address of an optional syslog server.

(Optional) Auditd Server

Hostname, IPv4, or IPv6 address of an optional Auditd server.

Product Documentation

The following table lists the documentation available for Cisco Crosswork Data Gateway for Cloud applications.

Table 6. Crosswork Data Gateway for Cloud applications Documentation

Document Title

What is included

Cisco Crosswork Data Gateway 6.0.1 Release Notes for Cloud Applications

Provides an overview of the product, compatibility information, and important information that should be considered before using the product.

Cisco Crosswork Data Gateway 6.0.1 Installation and Configuration Guide for Cloud Applications
  • System requirements

  • Installation prerequisites

  • Installation instructions

  • Upgrade instructions

  • Uninstalling Crosswork Data Gateway

  • Configure Crosswork Data Gateway

API Documentation Advanced users can extend the Cisco Crosswork functionality using the APIs. API documentation is available on Cisco Devnet.

Related Product Documentation

This section provides links to additional related documentation for Cisco Crosswork Data Gateway.

Security

Cisco takes great strides to ensure that all our products conform to the latest industry recommendations. We firmly believe that security is an end-to-end commitment and are here to help secure your entire environment. Please work with your Cisco account team to review the security profile of your network.

For details on how we validate our products, see Cisco Secure Products and Solutions and Cisco Security Advisories.

If you have questions or concerns regarding the security of any Cisco products, please open a case with the Cisco Customer Experience team and include details about the tool being used and any vulnerabilities it reports.

Support and Downloads

The Cisco Support and Downloads website provides online resources to download documentation, software, and tools. Use these resources to install and configure the software and to troubleshoot and resolve technical issues with Cisco products and technologies.

Access to most tools on the Cisco Support and Downloads website requires a Cisco.com user ID and password.

For more information, see https://www.cisco.com/c/en/us/support/index.html.

Obtain Additional Information

Information about Cisco products, services, technologies, and networking solutions are available from various online sources.