tag:blogger.com,1999:blog-70310752024-03-13T15:24:04.199+00:00Andy Paton's most Technical AdventureAndy Patonhttp://www.blogger.com/profile/06107484106140835311noreply@blogger.comBlogger68125tag:blogger.com,1999:blog-7031075.post-41087710031615306982023-04-11T18:40:00.002+01:002023-04-11T18:40:36.883+01:00Life in the old dog yet - Solaris and me<span style="font-family: inherit;"><span style="font-size: medium;">As I approach my 35th year at WTL, I am reminded of the countless times I have supported, deployed, migrated, and virtualized Solaris systems. Despite its age, Solaris remains an incredibly secure, reliable, capable, and stable platform that delivers critical applications to millions of users every day. And I'm happy to report that Solaris is not going anywhere soon - nor am I.<br /><br />Over the years, Solaris has proven itself time and time again, earning the trust of organizations that require a dependable operating system for their most critical applications. And while there may be newer, flashier options out there, Solaris continues to provide the features and functionality that many users require.<br /><br />Solaris and I may be getting up there in years, but we're not ready to slow down just yet. We still have plenty to offer, and we're not going anywhere anytime soon. So if you're looking for a secure, reliable, and stable platform for your critical applications, consider giving Solaris a try - and know that you'll have experienced professionals like me to support you every step of the way.</span></span>Andy Patonhttp://www.blogger.com/profile/06107484106140835311noreply@blogger.com0tag:blogger.com,1999:blog-7031075.post-50357340250733648582016-03-12T16:13:00.002+00:002016-03-12T16:13:34.159+00:002016 - 30 Years in Unix - Tools of the trade<h3>
Celebrating my 30th Year in Unix.</h3>
<br />
Expect some reminiscing from the days gone by.<br />
<br />
I still have my first "vi" reference guide, dog eared and tea stain (I'm British), dated 1987.<br />
I came to vi late as I started with "<a href="https://en.wikipedia.org/wiki/Ed_%28text_editor%29" target="_blank">ed</a>" writing Cobol on a PDP11/44, AT&T V7 Unix. Yes I did have to use coding sheets, before I could start coding on the terminal. <br />
<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEinwduVTJDvOuZ-20VqHzzFfR8oWoDE7FWXfeZr5S7pSRjYDmGQezrRWfPrtO_cYMcPXI-fyA60lkePNZBlXM9YAOZMB1XWZPfjEDEUK9NlDXMwzRr5ISY8V0luEvKXhwOMADHCbA/s1600/vidoc.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="640" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEinwduVTJDvOuZ-20VqHzzFfR8oWoDE7FWXfeZr5S7pSRjYDmGQezrRWfPrtO_cYMcPXI-fyA60lkePNZBlXM9YAOZMB1XWZPfjEDEUK9NlDXMwzRr5ISY8V0luEvKXhwOMADHCbA/s640/vidoc.png" width="289" /></a></div>
<br />Andy Patonhttp://www.blogger.com/profile/06107484106140835311noreply@blogger.com0tag:blogger.com,1999:blog-7031075.post-33763197125161712462015-12-30T13:50:00.003+00:002015-12-30T13:50:22.306+00:00KeePassX 2.0 On Redhat 6 / Cent OS 6 / OL6<br />
<br />
I'm sure we all know the virtues of long, complex and unrememberable passwords and the need for a tool to store them. My favourite has been KeePass, with a shared database on a cloud drive.<br />
<br />
<a href="https://www.keepassx.org/" target="_blank">KeePassX</a> has long been around for native Linux support, but hasn't been compatibility with the <a href="http://keepass.info/" target="_blank">KeePass 2 (Professional Edition)</a> database format kdbx. Well the excellent authors have release <a href="https://www.keepassx.org/news/2015/12/533" target="_blank">KeePassX 2.0</a> which is a rewrite with kdbx support. Currently only available as source code, the following instructions will help you to compile and install on Redhat 6/ CentOS 6 /Oracle Linux 6.<br />
<br />
<b>Required packages</b><br />
<span style="font-family: "Courier New",Courier,monospace;">$ sudo yum install cmake gcc-c++ qt-devel qt libgcrypt libgcrypt-devel libXtst libXtst-devel</span><br />
<span style="font-family: "Courier New",Courier,monospace;"><br /></span>
<span style="font-family: "Courier New",Courier,monospace;">NOTE* GIT version https://github.com/keepassx/keepassx uses QT5 plus other packages.</span><br />
<br />
<span style="font-family: "Courier New", Courier, monospace;"><b>Download source</b></span><br />
<span style="font-family: "Courier New", Courier, monospace;">$ wget https://www.keepassx.org/releases/2.0/keepassx-2.0.tar.gz</span><br />
<span style="font-family: "Courier New", Courier, monospace;">$ tar zxvf </span><span style="font-family: "Courier New", Courier, monospace;">keepassx-2.0.tar.gz</span><br />
<span style="font-family: "Courier New", Courier, monospace;">$ cd </span><span style="font-family: "Courier New", Courier, monospace;">keepassx-2.0</span><br />
<br />
<span style="font-family: "Courier New", Courier, monospace;"><b><span style="font-family: Arial,Helvetica,sans-serif;">Create UNIX Makefiles</span></b> </span><br />
<span style="font-family: "Courier New", Courier, monospace;">$ cmake -DCMAKE_INSTALL_PREFIX=/usr/local -DCMAKE_VERBOSE_MAKEFILE=ON -DWITH_GUI_TESTS=ON </span><br />
<br />
<span style="font-family: "Courier New", Courier, monospace;"><b><span style="font-family: inherit;">Compile and install </span></b></span><br />
<span style="font-family: "Courier New", Courier, monospace;">$ make</span><br />
<span style="font-family: "Courier New", Courier, monospace;">$ sudo make install</span><br />
<br />
<b><span style="font-family: "Courier New", Courier, monospace;">Execute</span></b><br />
<span style="font-family: "Courier New", Courier, monospace;">$ /usr/local/bin/keepassx</span><br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgdjGaYS4jcPyjRLOyn2oj5T__S-Nvch29du61k5ma9BH8XQm0eJ0pP28BTJzVD4a4owlKEtMAAkwnmatd4h1-pSj9gOLmsue6RvwYoDRSQBzokdrRpWm7k1iIY0QM4zVBh9iocLg/s1600/keepassX2.0.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="208" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgdjGaYS4jcPyjRLOyn2oj5T__S-Nvch29du61k5ma9BH8XQm0eJ0pP28BTJzVD4a4owlKEtMAAkwnmatd4h1-pSj9gOLmsue6RvwYoDRSQBzokdrRpWm7k1iIY0QM4zVBh9iocLg/s320/keepassX2.0.png" width="320" /></a></div>
<br />
<span style="font-family: "Courier New", Courier, monospace;"><br /></span>
<span style="font-family: "Courier New", Courier, monospace;"><br /></span>
<span style="font-family: "Courier New", Courier, monospace;"><br /></span>Andy Patonhttp://www.blogger.com/profile/06107484106140835311noreply@blogger.com0tag:blogger.com,1999:blog-7031075.post-58722827624279642032015-07-01T01:44:00.002+01:002015-07-01T01:44:57.854+01:00Solaris Leap second - Time well spent<br />
<br />Stayed on line for the extra second 01:00BST.<br />
<br />
Glad to say all Solaris system good so far.<br />
<br />
<br />
<b>Solaris 11.2 Latest SRU - NTPv4 Slew mode</b><br /><span style="font-family: "Courier New",Courier,monospace;">Jul 1 01:00:01 sol11-2 ntpd[659]: [ID 702911 daemon.notice] Positive leap second, expect slowdown slew soon. System clock will be inaccurate until it finishes.</span><br />
<br />
<b>Solaris 11.1 - NTPv4 Slew mode (bug doesn't handle leap second correctly)</b><br />
<span style="font-family: "Courier New",Courier,monospace;">Jul 1 01:00:00 sol11-1 ntpd[3459]: [ID 702911 daemon.notice] Inserting positive leap second.</span><br />
<br />
<b>Solaris 10 NTPv3 client in slew mode</b><br /><span style="font-family: "Courier New",Courier,monospace;">Jul 1 01:01:48 sol10 xntpd[3183]: [ID 774427 daemon.notice] time reset (slew) -0.997015 s</span><br />
<br />
<br />
<br />
<br />
<br />
<br />Andy Patonhttp://www.blogger.com/profile/06107484106140835311noreply@blogger.com0tag:blogger.com,1999:blog-7031075.post-47734692777746139372015-05-03T15:04:00.001+01:002015-05-03T15:04:50.777+01:00Pocket full of caps!Pocket full of LC Fibre dust caps, after all-nighter DC relocation and SAN build.<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj1yj4rhTZxPMjrMk1PeKl42B9lgl-YyQpqHlFGFTSe6_n0aVAWP9ylKP4MG9_iJHNzFBlqDp5vXNLbjYACX70NRm0Nir5JHxHfJ_AW7jX3Gx22LoRgPGQt9SGWSRfSNIXVzZ7XqA/s1600/san-datum.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEj1yj4rhTZxPMjrMk1PeKl42B9lgl-YyQpqHlFGFTSe6_n0aVAWP9ylKP4MG9_iJHNzFBlqDp5vXNLbjYACX70NRm0Nir5JHxHfJ_AW7jX3Gx22LoRgPGQt9SGWSRfSNIXVzZ7XqA/s1600/san-datum.jpg" height="400" width="225" /></a></div>
<br />Andy Patonhttp://www.blogger.com/profile/06107484106140835311noreply@blogger.com0tag:blogger.com,1999:blog-7031075.post-64692388390900044292014-04-24T23:33:00.002+01:002014-04-24T23:35:47.686+01:0025 years as an IT Professional. 25 years today I started work at <a href="http://www.wtluk.com/" target="_blank">WTL PLC</a>. Then known as CEC, which was Data General and Wang broker. I came on board in 1989 at the start of the Unix technical workstation revolution, "Power to the Desktop". Along came Apollo's running Aegis/Domain OS and Sun MicroSystems Sun-3 range with SunOS 3. Installing and patching from QIC tape was the highlight of my day!<br />
<br />
A lot of things have changed over the years in IT, which is itself is the catalyst that has kept me challenged, motivated and passionate about delivering solutions to customers.<br />
<br />
As the longest serving employee at WTL I've seen a few people come and go, but the core people and values haven't. The technical team around me, are dedicated to the customers challenges and issues and continue to make my life easier. Equally the WTL sales team, driven commitment in finding outstanding projects, to which the WTL technical team can deliver the foremost technology with latest servers, storage, software and networks.<br />
<br />
Thanks to all customers and colleagues(friends) for all your support over the years.<br />
<br />
AndyAndy Patonhttp://www.blogger.com/profile/06107484106140835311noreply@blogger.com0tag:blogger.com,1999:blog-7031075.post-65493442447747660092012-08-27T20:50:00.000+01:002012-08-27T20:52:33.573+01:00A Multitude of Putty Sessions<br />
Many hands may light work, doesn't really work with in IT. I usually look for consistency and reproducible results. So let change this for one hand and many windows make light work!<br />
<br />
Come across a nice tool <a href="http://www.millardsoftware.com/puttycs" target="_blank">PuttyCS</a> for Windows people which did just the job.<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhRMG9pcKupcv4XBmy-gkfM20HmaNG4LqITHZubP2IFCPDH92Mwaxw8fc3DfRyAp8DaCcDpsb-JDP59tfQfLMWvE0ozLM7F2MRsV5yoIMea9701PBE_qhniQSHQFmMr4fPSchYK7g/s1600/PuttyCS.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="180" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhRMG9pcKupcv4XBmy-gkfM20HmaNG4LqITHZubP2IFCPDH92Mwaxw8fc3DfRyAp8DaCcDpsb-JDP59tfQfLMWvE0ozLM7F2MRsV5yoIMea9701PBE_qhniQSHQFmMr4fPSchYK7g/s320/PuttyCS.png" width="320" /></a></div>
<br />
In the Solaris world I would use Sun's <a href="https://blogs.oracle.com/jkshah/entry/sun_cluster_console_how_it" target="_blank">Cluster Console</a> on CDE, but other seem to favour <a href="http://sourceforge.net/projects/clusterssh/" target="_blank">Cluster SSH</a> or <a href="http://code.google.com/p/parallel-ssh/" target="_blank">PSSH</a>.<br />
<br />
I would be amiss to say, a better answer to issues above is to automate and use confguration management tools such as <a href="http://www.opscode.com/chef/" target="_blank">Chef</a> and <a href="http://puppetlabs.com/" target="_blank">Puppet</a>.<br />
<br />Andy Patonhttp://www.blogger.com/profile/06107484106140835311noreply@blogger.com0tag:blogger.com,1999:blog-7031075.post-20827597430494964862012-07-28T23:53:00.002+01:002018-02-04T11:27:58.988+00:00Solaris 11 Locale en_GB.UTF-8 / en_GB.ISO8859-1 / en_GB.ISO8859-15<br />
<span style="font-family: "trebuchet ms" , sans-serif;">When you install Solaris 11/11 from standard text installer cdrom, the en_GB-UTF-8 locales are not installed, even if you select British locales on install.</span><br />
<br />
<span style="color: blue;">EDIT 4th FEB 2018 - Still valid for Solaris 11.4 Beta. </span><br />
<br />
<span style="font-family: "trebuchet ms" , sans-serif;">To make sure packages are have the correct localisation, <a href="http://hub.opensolaris.org/bin/view/Project+pkg/" target="_blank">IPS</a> uses facet as a localisation personality.</span><br />
<span style="background-color: white; font-family: "courier new" , "courier" , monospace;">$ pkg facet</span><br />
<span style="background-color: white; font-family: "courier new" , "courier" , monospace;">FACETS VALUE</span><br />
<span style="font-family: "courier new" , "courier" , monospace;">facet.locale.pt_BR True<br clear="none" />facet.locale.es_ES True<br clear="none" />facet.locale.en_US True<br clear="none" />facet.locale.zh_TW True<br clear="none" />facet.locale.zh_CN True<br clear="none" />facet.locale.de_DE True<br clear="none" />facet.locale.fr_FR True<br clear="none" />facet.locale.it_IT True<br clear="none" />facet.locale.ko_* True<br clear="none" />facet.locale.ja_* True<br clear="none" />facet.locale.es True<br clear="none" />facet.locale.de True<br clear="none" />facet.locale.zh True<br clear="none" />facet.locale.ko True<br clear="none" />facet.locale.it True<br clear="none" />facet.locale.pt True<br clear="none" />facet.locale.fr True<br clear="none" />facet.locale.en True<br clear="none" />facet.locale.ja True<br clear="none" />facet.locale.* False</span><br />
<div>
<br /></div>
<br />
<span style="font-family: "trebuchet ms" , sans-serif;">As you can see no en_GB is described and "</span><span style="background-color: white;"><span style="font-family: "courier new" , "courier" , monospace;">facet.locale.* False</span></span><span style="background-color: white; font-family: "trebuchet ms" , sans-serif;">"</span><span style="background-color: white; font-family: "trebuchet ms" , sans-serif;"> is a deny everything else rule. So let change this. I'm assuming you have a <a href="http://docs.oracle.com/cd/E23824_01/html/E21803/index.html" target="_blank">Solaris 11 repository</a> already configured. </span><span style="background-color: white; font-family: "trebuchet ms" , sans-serif;">Install en_GB packages/files and creates a backup boot environment.</span><br />
<br />
<span style="background-color: white; font-family: "courier new" , "courier" , monospace;">$ sudo pkg change-facet 'facet.locale.en_GB=True'</span><br />
<span style="background-color: white;"></span><br />
<span style="font-family: "courier new" , "courier" , monospace;"> Packages to update: 463 </span><br />
<span style="font-family: "courier new" , "courier" , monospace;"> Create boot environment: No</span><br />
<span style="font-family: "courier new" , "courier" , monospace;">Create backup boot environment: Yes</span><br />
<span style="font-family: "courier new" , "courier" , monospace;"><br /></span> <span style="font-family: "courier new" , "courier" , monospace;"><br /></span> <span style="font-family: "courier new" , "courier" , monospace;">PHASE ITEMS</span><br />
<span style="font-family: "courier new" , "courier" , monospace;">Image State Update Phase 2/2 </span><br />
<div style="font-family: 'Courier New', Courier, monospace;">
<br /></div>
<span style="font-family: "trebuchet ms" , sans-serif;">Now let's make the en_GB.UTF-8 the default locale. Previously in Solaris 10 we would edit /etc/default/init. But a<span style="background-color: white;">s with many things in Solaris 11 this has moved to SMF and </span></span><span style="background-color: white; font-family: "trebuchet ms" , sans-serif;">/etc/default/init is read-only.</span><br />
<br />
<div>
<span style="background-color: white; font-family: "courier new" , "courier" , monospace;">$ sudo svccfg -s svc:/system/environment:init setprop \</span></div>
<div>
<span style="font-family: "courier new" , "courier" , monospace;"> environment/LANG = astring: en_GB.UTF-8</span></div>
<div>
<span style="font-family: "courier new" , "courier" , monospace;"><br /></span></div>
<div>
<span style="font-family: "courier new" , "courier" , monospace;">$ sudo svcadm refresh svc:/system/environment</span></div>
<div>
<br /></div>
<div>
<span style="background-color: white; font-family: "trebuchet ms" , sans-serif;">Now the system defaults to </span><span style="font-family: "trebuchet ms" , sans-serif;"><span style="background-color: white;">en_GB.UTF-8 for new processes, but remember not children processes. So thing like </span><span style="background-color: #f6d5d9;">CRON a</span><span style="background-color: white;">nd ssh have to be restarted, but I would go for a reboot.</span></span></div>
<div>
<span style="background-color: white; font-family: "courier new" , "courier" , monospace;">$ sudo svcadm restart ssh</span></div>
<div>
<span style="font-family: "courier new" , "courier" , monospace;">$ sudo svcadm restart cron</span></div>
<div>
<span style="background-color: white; font-family: "trebuchet ms" , sans-serif;"><br /></span>
<br />
<h4>
<b><span style="background-color: white; font-family: "trebuchet ms" , sans-serif;">Settings for Non-UTF-8 locales (</span><span style="font-family: "trebuchet ms" , sans-serif;">en_GB.ISO8859-15 / </span><span style="font-family: "trebuchet ms" , sans-serif;">en_GB.ISO8859-1)</span></b></h4>
<span style="background-color: white;"><span style="font-family: "trebuchet ms" , sans-serif;">Non-UTF-8 locales such as </span></span><span style="font-family: "trebuchet ms" , sans-serif;">en_GB.ISO8859-15 require the "system/locale/extra" package to be installed.</span></div>
<div>
<span style="background-color: white; font-family: "courier new" , "courier" , monospace;">$ sudo pkg install </span><span style="font-family: "courier new" , "courier" , monospace;">system/locale/extra</span><br />
<span style="font-family: "courier new" , "courier" , monospace;"><br /></span>
<br />
<div>
<span style="background-color: white; font-family: "courier new" , "courier" , monospace;">$ sudo svccfg -s svc:/system/environment:init setprop \</span></div>
<div>
<span style="font-family: "courier new" , "courier" , monospace;"> environment/LANG = astring: </span><span style="font-family: "courier new" , "courier" , monospace;">en_GB.ISO8859-15</span><br />
<br />
<h4>
<b><span style="font-family: "trebuchet ms" , sans-serif;">Additional</span><span style="background-color: white; font-family: "trebuchet ms" , sans-serif;"> Options</span></b></h4>
</div>
<br />
<span style="background-color: white; font-family: "trebuchet ms" , sans-serif;">These are set correctly on install, but added here for completeness.</span></div>
<div>
<span style="background-color: white; font-family: "courier new" , "courier" , monospace;">$ svccfg -s keymap:default setprop keymap/layout = UK-English</span></div>
<div>
<span style="font-family: "courier new" , "courier" , monospace;">$ svcadm refresh keymap<br clear="none" />$ svcadm restart keymap</span><br />
<span style="font-family: "courier new" , "courier" , monospace;">$ svccfg -s timezone:default setprop timezone/localtime= astring: GB<br clear="none" />$ svcadm refresh timezone:default</span></div>
Andy Patonhttp://www.blogger.com/profile/06107484106140835311noreply@blogger.com0tag:blogger.com,1999:blog-7031075.post-5770411505753449032012-06-22T17:23:00.000+01:002012-06-22T17:23:11.152+01:00My Raspberry PiHow can you be a <a href="http://en.wikipedia.org/wiki/Geek" target="_blank">geek</a> without a <a href="http://www.raspberrypi.org/" target="_blank">Raspberry Pi</a> ? You can't!<br />
<br />
Raided my daughter Lego box and now my Raspberry Pi has got a case.<br />
<br />
Debian installed and updated. Planning to put my mail project on it.<br />
<br />
<ul>
<li><span style="background-color: white;">Python</span></li>
<li><span style="background-color: white;">Django</span></li>
<li><span style="background-color: white;">Rabbit MQ</span></li>
<li>Twisted 12</li>
<li>lighttpd</li>
</ul>
<br />
Next project I'm planning to integrate <a href="http://www.nagios.org/" target="_blank">Nagios</a> with physical alarms/lights.<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEQBJcTvA0Gw4XmU_eAu5c1a1z2l50UlGF_OyVAS1vfNrxMFrL_VnV3raIxyXGuxDTKRQ1Ezvlusw4KNmaUVtyLqYM3o7K8C4pWWTd_5k4WKpJkJFPlb6mphrjbRFE_wZbXHM49A/s1600/raspberry-pi-lego.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="480" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjEQBJcTvA0Gw4XmU_eAu5c1a1z2l50UlGF_OyVAS1vfNrxMFrL_VnV3raIxyXGuxDTKRQ1Ezvlusw4KNmaUVtyLqYM3o7K8C4pWWTd_5k4WKpJkJFPlb6mphrjbRFE_wZbXHM49A/s640/raspberry-pi-lego.jpg" width="640" /></a></div>
<br />
<br />Andy Patonhttp://www.blogger.com/profile/06107484106140835311noreply@blogger.com0tag:blogger.com,1999:blog-7031075.post-77221983584962533082011-07-12T23:48:00.000+01:002011-07-12T23:48:27.414+01:00Sun Security Tool Kit - Finish Script DescriptionsSun Security Tool Kit (SUNWjass) provides a Oracle Solaris OS Hardening driver (template). Behind this is a number of Finish scripts (.fin) which actually does the OS hardening. This a brief description of each one when the name isn't obvious..<br />
<br />
<TABLE BORDER=1 CELLPADDING=1 CELLSPACING=1> <TR>
<TD><br />
<P>disable-ab2.fin </P> </TD>
<TD><br />
<P>Answer Book 2</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-apache.fin</P> </TD>
<TD></TD>
</TR>
<TR>
<TD><br />
<P>disable-apache2.fin</P> </TD>
<TD></TD>
</TR>
<TR>
<TD><br />
<P>disable-appserv.fin <br />
</P> </TD>
<TD><br />
<P>Java App Server</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-asppp.fin <br />
</P> </TD>
<TD><br />
<P>Async PPP</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-autoinst.fin <br />
</P> </TD>
<TD><br />
<P>Disables SYS-UNCONFIG</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-automount.fin</P> </TD>
<TD><br />
<P>NFS Automouter</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-dhcpd.fin</P> </TD>
<TD><br />
<P>Disables DHCP server</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-directory.fin</P> </TD>
<TD><br />
<P>Sun One Directory Server LDAP</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-dmi.fin <br />
</P> </TD>
<TD><br />
<P>Desktop Management Interface lrc:/etc/rc3_d/S77dmi</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-dtlogin.fin <br />
</P> </TD>
<TD><br />
<P>Disabled CDE from starting</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-face-log.fin <br />
</P> </TD>
<TD><br />
<P>Removed write permission on log for SUNWfac - rarely used</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-ipv6.fin <br />
</P> </TD>
<TD><br />
<P>Disables IPV6</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-IIim.fin</P> </TD>
<TD><br />
<P>Internet-Intranet Input Method - Asian input</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-kdc.fin <br />
</P> </TD>
<TD><br />
<P>Kerberos Key Server</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-keyserv-uid-nobody.fin</P> </TD>
<TD><br />
<P>disables User ID Nobody for secure RPC</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-ldap-client.fin</P> </TD>
<TD><br />
<P>Prevents LDAP Client from starting</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-lp.fin <br />
</P> </TD>
<TD><br />
<P>Stop Print Services</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-mipagent.fin <br />
</P> </TD>
<TD><br />
<P>Mobile IP</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-named.fin <br />
</P> </TD>
<TD><br />
<P>BIND DNS Server</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-nfs-client.fin</P> </TD>
<TD></TD>
</TR>
<TR>
<TD><br />
<P>disable-nfs-server.fin</P> </TD>
<TD></TD>
</TR>
<TR>
<TD><br />
<P>disable-nscd-caching.fin <br />
</P> </TD>
<TD><br />
<P>disable caching of passwords/groups & hosts</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-ppp.fin <br />
</P> </TD>
<TD><br />
<P>Sync PPP</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-preserve.fin <br />
</P> </TD>
<TD><br />
<P>Stops moving saved files - been edited</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-power-mgmt.fin <br />
</P> </TD>
<TD></TD>
</TR>
<TR>
<TD><br />
<P>disable-remote-root-login.fin</P> </TD>
<TD VALIGN=TOP></TD>
</TR>
<TR>
<TD><br />
<P>disable-rhosts.fin <br />
</P> </TD>
<TD><br />
<P>Disable use of .rhosts changes PAM config</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-routing.fin <br />
</P> </TD>
<TD><br />
<P>Disables RDISC/RIP/Forwarding - routeadm</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-rpc.fin <br />
</P> </TD>
<TD><br />
<P>RPC - Also breaks NFS</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-samba.fin <br />
</P> </TD>
<TD><br />
<P>Disable from starting</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-sendmail.fin <br />
</P> </TD>
<TD><br />
<P>Disable sendmail accepting mail</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-slp.fin <br />
</P> </TD>
<TD><br />
<P>Disables Service Location Protocol RFC 2608</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-sma.fin <br />
</P> </TD>
<TD><br />
<P>System Management Agent - NET-SNMP</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-smcwebserver.fin <br />
</P> </TD>
<TD><br />
<P>Solaris Management Console</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-snmp.fin <br />
</P> </TD>
<TD><br />
<P>SNMP</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-spc.fin <br />
</P> </TD>
<TD><br />
<P>Sun Soft print Client svc:/application/print/cleanup:default</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-ssh-root-login.fin <br />
</P> </TD>
<TD><br />
<P>Disables ROOT login via SSH</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-syslogd-listen.fin <br />
</P> </TD>
<TD><br />
<P>Disable SYSLOGD from accepting logs</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-system-accounts.fin <br />
</P> </TD>
<TD><br />
<P>remove smtp listen nobody4 <br />
</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-uucp.fin <br />
</P> </TD>
<TD><br />
<P>Disable Unix to Unix Copy</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-vold.fin <br />
</P> </TD>
<TD><br />
<P>VOLD = CDROM automount <br />
</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-xfs.fin <br />
</P> </TD>
<TD><br />
<P>X Font Server</P> </TD>
</TR>
<TR>
<TD><br />
<P>disable-xserver-listen.fin <br />
</P> </TD>
<TD><br />
<P>Disable X11 port 6000</P> </TD>
</TR>
<TR>
<TD><br />
<P>enable-account-lockout.fin <br />
</P> </TD>
<TD><br />
<P>Enabling account lockout to lock user accounts with repeated<br />
failed entries</P> </TD>
</TR>
<TR>
<TD><br />
<P>enable-coreadm.fin <br />
</P> </TD>
<TD><br />
<P>Save cores</P> </TD>
</TR>
<TR>
<TD><br />
<P>enable-ftpaccess.fin <br />
</P> </TD>
<TD><br />
<P>Enable -a flag - FTPACCESS</P> </TD>
</TR>
<TR>
<TD><br />
<P>enable-ftp-syslog.fin <br />
</P> </TD>
<TD><br />
<P>Enable -l flag - SYSLOG</P> </TD>
</TR>
<TR>
<TD><br />
<P>enable-inetd-syslog.fin <br />
</P> </TD>
<TD><br />
<P>SYSLOG all connections to inetd services</P> </TD>
</TR>
<TR>
<TD><br />
<P>enable-ipfilter.fin <br />
</P> </TD>
<TD><br />
<P>Enable Firewall - rules /etc/ipf/ipf.conf</P> </TD>
</TR>
<TR>
<TD><br />
<P>enable-password-history.fin <br />
</P> </TD>
<TD><br />
<P>Remember previous passwords</P> </TD>
</TR>
<TR>
<TD><br />
<P>enable-priv-nfs-ports.fin <br />
</P> </TD>
<TD><br />
<P>Allow NFS access from port <1024 <br />
</P> </TD>
</TR>
<TR>
<TD><br />
<P>enable-process-accounting.fin <br />
</P> </TD>
<TD><br />
<P>Enable process accounting SUNWaccr</P> </TD>
</TR>
<TR>
<TD><br />
<P>enable-rfc1948.fin <br />
</P> </TD>
<TD><br />
<P>TCP Sequence Number - TCP_STRONG_ISS=2</P> </TD>
</TR>
<TR>
<TD><br />
<P>enable-stack-protection.fin <br />
</P> </TD>
<TD><br />
<P>Kernel Level Stack Protection</P> </TD>
</TR>
<TR>
<TD><br />
<P>enable-tcpwrappers.fin <br />
</P> </TD>
<TD><br />
<P>create hosts.allow and hosts.deny SSHD may be too restrictive.</P> </TD>
</TR>
<TR>
<TD><br />
<P>install-at-allow.fin <br />
</P> </TD>
<TD><br />
<P>at.allow - restrict access to at command</P> </TD>
</TR>
<TR>
<TD><br />
<P>install-ftpusers.fin <br />
</P> </TD>
<TD><br />
<P>Add all users for ftpusers to denied access</P> </TD>
</TR>
<TR>
<TD><br />
<P>install-loginlog.fin <br />
</P> </TD>
<TD><br />
<P>Enable logging of failed login attempts - loginlog</P> </TD>
</TR>
<TR>
<TD><br />
<P>install-md5.fin <br />
</P> </TD>
<TD><br />
<P>Install MD5 on Solaris 8 and 9, Sol 10 use digest cmd</P> </TD>
</TR>
<TR>
<TD><br />
<P>install-nddconfig.fin <br />
</P> </TD>
<TD><br />
<P>Enable secure network settings</P> </TD>
</TR>
<TR>
<TD><br />
<P>install-newaliases.fin <br />
</P> </TD>
<TD><br />
<P>Creates correct aliases for Sendmail - minimal install</P> </TD>
</TR>
<TR>
<TD><br />
<P>install-sadmind-options.fin <br />
</P> </TD>
<TD><br />
<P>Sol 8 & 9 - Security level for sadmind service</P> </TD>
</TR>
<TR>
<TD><br />
<P>install-security-mode.fin <br />
</P> </TD>
<TD><br />
<P>Enable OBP Command security - need passwd</P> </TD>
</TR>
<TR>
<TD><br />
<P>install-shells.fin <br />
</P> </TD>
<TD><br />
<P>Add SHELLS</P> </TD>
</TR>
<TR>
<TD><br />
<P>install-sulog.fin <br />
</P> </TD>
<TD><br />
<P>Track SU use and attempted use</P> </TD>
</TR>
<TR>
<TD><br />
<P>print-rhosts.fin <br />
</P> </TD>
<TD><br />
<P>Finds .rhosts & hosts.equiv</P> </TD>
</TR>
<TR>
<TD><br />
<P>remove-unneeded-accounts.fin <br />
</P> </TD>
<TD><br />
<P>Removes unneeded accounts</P> </TD>
</TR>
<TR>
<TD><br />
<P>set-banner-dtlogin.fin <br />
</P> </TD>
<TD><br />
<P>adds banner to DTLOGIN</P> </TD>
</TR>
<TR>
<TD><br />
<P>set-banner-ftpd.fin <br />
</P> </TD>
<TD></TD>
</TR>
<TR>
<TD><br />
<P>set-banner-sendmail.fin</P> </TD>
<TD></TD>
</TR>
<TR>
<TD><br />
<P>set-banner-sshd.fin</P> </TD>
<TD></TD>
</TR>
<TR>
<TD><br />
<P>set-banner-telnetd.fin</P> </TD>
<TD></TD>
</TR>
<TR>
<TD><br />
<P>set-flexible-crypt.fin <br />
</P> </TD>
<TD><br />
<P>Enable stronger encryption of local passwords - md5</P> </TD>
</TR>
<TR>
<TD><br />
<P>set-ftpd-umask.fin <br />
</P> </TD>
<TD></TD>
</TR>
<TR>
<TD><br />
<P>set-login-retries.fin <br />
</P> </TD>
<TD><br />
<P>Allow 3 attempts to login</P> </TD>
</TR>
<TR>
<TD><br />
<P>set-power-restrictions.fin <br />
</P> </TD>
<TD><br />
<P>Restrict access to power commands</P> </TD>
</TR>
<TR>
<TD><br />
<P>set-rmmount-nosuid.fin <br />
</P> </TD>
<TD><br />
<P>Disable mounting of SET-UID files of CDROMS</P> </TD>
</TR>
<TR>
<TD><br />
<P>set-root-group.fin <br />
</P> </TD>
<TD><br />
<P>Change root group to 0</P> </TD>
</TR>
<TR>
<TD><br />
<P>set-strict-password-checks.fin <br />
</P> </TD>
<TD><br />
<P>Complex passwords for local users</P> </TD>
</TR>
<TR>
<TD><br />
<P>set-sys-suspend-restrictions.fin <br />
</P> </TD>
<TD><br />
<P>Restrict suspend function</P> </TD>
</TR>
<TR>
<TD><br />
<P>set-system-umask.fin <br />
</P> </TD>
<TD><br />
<P>Create umask 022 <br />
</P> </TD>
</TR>
<TR>
<TD><br />
<P>set-tmpfs-limit.fin <br />
</P> </TD>
<TD><br />
<P>Set to 512Mb</P> </TD>
</TR>
<TR>
<TD><br />
<P>set-user-password-reqs.fin <br />
</P> </TD>
<TD><br />
<P>Min Length, Expire etc..</P> </TD>
</TR>
<TR>
<TD><br />
<P>set-user-umask.fin <br />
</P> </TD>
<TD><br />
<P>Profile /etc/skel ..</P> </TD>
</TR>
<TR>
<TD><br />
<P>update-at-deny.fin <br />
</P> </TD>
<TD></TD>
</TR>
<TR>
<TD><br />
<P>update-cron-allow.fin</P> </TD>
<TD></TD>
</TR>
<TR>
<TD><br />
<P>update-cron-deny.fin</P> </TD>
<TD></TD>
</TR>
<TR>
<TD><br />
<P>update-cron-log-size.fin <br />
</P> </TD>
<TD><br />
<P>CRON LOG set to 512K</P> </TD>
</TR>
<TR>
<TD><br />
<P>update-inetd-conf.fin <br />
</P> </TD>
<TD><br />
<P>JASS_SVCS_DISABLE Drivers/finish.init</P> </TD>
</TR>
<TR>
<TD><br />
<P>enable-bart.fin <br />
</P> </TD>
<TD><br />
<P>Sol10 only - Setup BART - basic audit reporting tool</P> </TD>
</TR>
</TABLE>Andy Patonhttp://www.blogger.com/profile/06107484106140835311noreply@blogger.com0tag:blogger.com,1999:blog-7031075.post-17915494376613778642011-06-04T12:38:00.000+01:002011-06-04T12:38:23.998+01:00Windows - Must Install Open Source Utilities<style type="text/css">ol{margin:0;padding:0}p{margin:0}.c0{vertical-align:top;width:172.5pt;border-style:solid;border-color:#000000;border-width:1.0pt;padding:5.0pt 5.0pt 5.0pt 5.0pt}.c5{vertical-align:top;width:120.0pt;border-style:solid;border-color:#000000;border-width:1.0pt;padding:5.0pt 5.0pt 5.0pt 5.0pt}.c6{vertical-align:top;width:175.5pt;border-style:solid;border-color:#000000;border-width:1.0pt;padding:5.0pt 5.0pt 5.0pt 5.0pt}.c3{width:468.0pt;background-color:#ffffff;padding:72.0pt 72.0pt 72.0pt 72.0pt}.c13{height:11pt;direction:ltr}.c8{text-align:center;direction:ltr}.c12{text-align:right;direction:ltr}.c2{line-height:1.0;direction:ltr}.c1{color:#000099;text-decoration:underline}.c4{color:inherit;text-decoration:inherit}.c9{font-size:18pt;font-family:Trebuchet MS}.c11{line-height:1.0}.c14{border-collapse:collapse}.c7{font-weight:bold}.c10{height:22pt}body{color:#000000;font-size:11pt;font-family:Arial}h1{padding-top:24.0pt;color:#000000;font-size:24pt;font-family:Arial;font-weight:bold;padding-bottom:6.0pt}h2{padding-top:18.0pt;color:#000000;font-size:18pt;font-family:Arial;font-weight:bold;padding-bottom:4.0pt}h3{padding-top:14.0pt;color:#000000;font-size:14pt;font-family:Arial;font-weight:bold;padding-bottom:4.0pt}h4{padding-top:12.0pt;color:#000000;font-size:12pt;font-family:Arial;font-weight:bold;padding-bottom:2.0pt}h5{padding-top:11.0pt;color:#000000;font-size:11pt;font-family:Arial;font-weight:bold;padding-bottom:2.0pt}h6{padding-top:10.0pt;color:#000000;font-size:10pt;font-family:Arial;font-weight:bold;padding-bottom:2.0pt}</style><p class="c8"><span class="c9">Windows - Must Install Open Source Utilities</span></p><p class="c13"><span></span></p><table cellpadding="0" cellspacing="0" class="c14"><tbody><tr class="c10"><td class="c5"><p class="c8 c11"><span class="c7">Name</span></p></td><td class="c0"><p class="c8 c11"><span class="c7">Description</span></p></td><td class="c6"><p class="c8 c11"><span class="c7">URL</span></p></td></tr><tr><td class="c5"><p class="c2"><span>7Zip</span></p></td><td class="c0"><p class="c2"><span>Archive/Compression</span></p></td><td class="c6"><p class="c2"><span class="c1"><a class="c4" href="http://www.7-zip.org/">http://www.7-zip.org</a></span></p></td></tr><tr><td class="c5"><p class="c2"><span>Putty</span></p></td><td class="c0"><p class="c2"><span>The default SSH client</span></p></td><td class="c6"><p class="c2"><span class="c1"><a class="c4" href="http://www.chiark.greenend.org.uk/~sgtatham/putty/">http://www.chiark.greenend.org.uk/~sgtatham/putty/</a></span></p></td></tr><tr><td class="c5"><p class="c2"><span>GIMP</span></p></td><td class="c0"><p class="c2"><span>Graphics</span></p></td><td class="c6"><p class="c2"><span class="c1"><a class="c4" href="http://www.gimp.org/">http://www.gimp.org/</a></span></p></td></tr><tr><td class="c5"><p class="c2"><span>Wireshark</span></p></td><td class="c0"><p class="c2"><span>Network Sniffer/Analyser</span></p></td><td class="c6"><p class="c2"><span class="c1"><a class="c4" href="http://www.wireshark.org/">http://www.wireshark.org/</a></span></p></td></tr><tr><td class="c5"><p class="c2"><span>WINscp</span></p></td><td class="c0"><p class="c2"><span>SCP/FTP client</span></p></td><td class="c6"><p class="c2"><span class="c1"><a class="c4" href="http://winscp.net/">http://winscp.net</a></span></p></td></tr><tr><td class="c5"><p class="c2"><span>UltraVNC</span></p></td><td class="c0"><p class="c2"><span>VNC Server/Client</span></p></td><td class="c6"><p class="c2"><span class="c1"><a class="c4" href="http://www.uvnc.com/">http://www.uvnc.com/</a></span></p></td></tr><tr><td class="c5"><p class="c2"><span>FreeMind</span></p></td><td class="c0"><p class="c2"><span>Mind Mapper</span></p></td><td class="c6"><p class="c2"><span class="c1"><a class="c4" href="http://freemind.sourceforge.net/">http://freemind.sourceforge.net</a></span></p></td></tr><tr><td class="c5"><p class="c2"><span>Lanchy</span></p></td><td class="c0"><p class="c2"><span>Windows Quick Launcher</span></p></td><td class="c6"><p class="c2"><span class="c1"><a class="c4" href="http://www.launchy.net/">http://www.launchy.net/</a></span></p></td></tr><tr><td class="c5"><p class="c2"><span>Greenshot</span></p></td><td class="c0"><p class="c2"><span>Screen Capture </span></p></td><td class="c6"><p class="c2"><span class="c1"><a class="c4" href="http://getgreenshot.org/">http://getgreenshot.org/</a></span></p></td></tr><tr><td class="c5"><p class="c2"><span>VIM</span></p></td><td class="c0"><p class="c2"><span>VI Improved Editor</span></p></td><td class="c6"><p class="c2"><span class="c1"><a class="c4" href="http://www.vim.org/">http://www.vim.org/</a></span></p></td></tr><tr><td class="c5"><p class="c2"><span>CCleaner</span></p></td><td class="c0"><p class="c2"><span>Remove cache and cookies</span></p></td><td class="c6"><p class="c2"><span class="c1"><a class="c4" href="http://www.piriform.com/ccleaner">http://www.piriform.com/ccleaner</a></span></p></td></tr><tr><td class="c5"><p class="c2"><span>Notepad++</span></p></td><td class="c0"><p class="c2"><span>Notepad replacement</span></p></td><td class="c6"><p class="c2"><span class="c1"><a class="c4" href="http://notepad-plus-plus.org/">http://notepad-plus-plus.org/</a></span></p></td></tr><tr><td class="c5"><p class="c2"><span>NX Client</span></p></td><td class="c0"><p class="c2"><span>NoMachine Client</span></p></td><td class="c6"><p class="c2"><span class="c1"><a class="c4" href="http://www.nomachine.com/">http://www.nomachine.com/</a></span></p></td></tr><tr><td class="c5"><p class="c2"><span>NMAP</span></p></td><td class="c0"><p class="c2"><span>Port Scanner Zenmap GUI </span></p></td><td class="c6"><p class="c2"><span class="c1"><a class="c4" href="http://nmap.org/">http://nmap.org/</a></span></p></td></tr><tr><td class="c5"><p class="c2"><span>LibreOffice</span></p></td><td class="c0"><p class="c2"><span>Word processor, Spreadsheet</span></p></td><td class="c6"><p class="c2"><span class="c1"><a class="c4" href="http://www.libreoffice.org/">http://www.libreoffice.org</a></span></p></td></tr><tr><td class="c5"><p class="c2"><span>Putty Session Manager</span></p></td><td class="c0"><p class="c2"><span>Putty Quick Launcher - Hot Keys</span></p></td><td class="c6"><p class="c2"><span class="c1"><a class="c4" href="http://puttysm.sourceforge.net/">http://puttysm.sourceforge.net/</a></span></p></td></tr><tr class="c10"><td class="c5"><p class="c2"><span>VirtualBox</span></p></td><td class="c0"><p class="c2"><span>Desktop Virtualisation</span></p></td><td class="c6"><p class="c2"><span class="c1"><a class="c4" href="http://www.virtualbox.org/">http://www.virtualbox.org/</a></span></p></td></tr><tr><td class="c5"><p class="c2"><span>Firefox 4</span></p></td><td class="c0"><p class="c2"><span>Mozilla Browser</span></p></td><td class="c6"><p class="c2"><span class="c1"><a class="c4" href="http://www.mozilla.com/">http://www.mozilla.com</a></span></p></td></tr><tr><td class="c5"><p class="c2"><span>Google Chrome 11</span></p></td><td class="c0"><p class="c2"><span>Google Browser</span></p></td><td class="c6"><p class="c2"><span class="c1"><a class="c4" href="http://www.google.com/chrome">http://www.google.com/chrome</a></span></p></td></tr><tr><td class="c5"><p class="c2"><span>Drop Box</span></p></td><td class="c0"><p class="c2"><span>Cloud Storage</span></p></td><td class="c6"><p class="c2"><span class="c1"><a class="c4" href="http://www.dropbox.com/">http://www.dropbox.com/</a></span></p></td></tr></tbody></table>Andy Patonhttp://www.blogger.com/profile/06107484106140835311noreply@blogger.com0tag:blogger.com,1999:blog-7031075.post-65407936495402764912011-01-03T13:15:00.000+00:002011-01-03T13:15:40.956+00:002011 Todo List<b>Certifications</b><br />
Veritas Storage Foundation HA re-certify for 5.1<br />
RedHat RHCE<br />
Translate Sun Microsystems certifications to Oracle Knowledge Zones<br />
<br />
<b>Courses</b><br />
VMware 4.x Design Workshop (Required for Partner Enterprise Certification)<br />
<br />
<b>Learn</b><br />
IBM Director for AIX and x86 world<br />
Oracle VM Server (x86)<br />
Cloud Deployment of Infrastucture and Services.<br />
Solaris 11, been playing with OpenSolaris but need to get serious now.<br />
<br />
<b>WTL Internal,</b><br />
Move vSphere 4.0 ESX hosts to 4.1 ESXi<br />
Updated Firewall hardware.Andy Patonhttp://www.blogger.com/profile/06107484106140835311noreply@blogger.com0tag:blogger.com,1999:blog-7031075.post-53975442712924092512010-12-24T00:00:00.005+00:002012-01-10T23:07:39.812+00:00An Ode to a putty and screen. Also keeping greenI love the simple things in life, especially those that make life simple.<br />
<br />
I was requested to build two Solaris 10 servers remotely, Setup SUNWjet & template (very straight forward these days)<br />
One putty session over VPN, loaded with screen utility with named split screens.<br />
<br />
<br />
I didn't use any carbon travelling to site, but shouldn't I get some bonus points for low bandwidth as well!!<br />
<div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjoboi9BhUvxf89pYSxHnCHsZxFXkzjTTLzo0PplBVZsc0tdTKynhGYSpT6fhyphenhyphenJw4PNU2H7dNJLRnWN7eTlYtmhKhcsbgmP1zMVE0HthnTYdyDUHs3yqNQ3d4p_-RW3lpWdbCdsPw/s1600/Screenshot.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="500" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjoboi9BhUvxf89pYSxHnCHsZxFXkzjTTLzo0PplBVZsc0tdTKynhGYSpT6fhyphenhyphenJw4PNU2H7dNJLRnWN7eTlYtmhKhcsbgmP1zMVE0HthnTYdyDUHs3yqNQ3d4p_-RW3lpWdbCdsPw/s640/Screenshot.png" width="640" /></a></div><br />
Screen Options<br />
<br />
^AA = to name a session<br />
^As = Split screen<br />
^ATAB<tab><tab> = Switch split screen</tab></tab><br />
<br />
Putty Setting's, SSH2, Compression and Blowfish encryption.Andy Patonhttp://www.blogger.com/profile/06107484106140835311noreply@blogger.com0tag:blogger.com,1999:blog-7031075.post-88377073516395276092010-09-15T23:32:00.000+01:002010-09-15T23:32:24.422+01:00OpenIndiana - First install<h3 class="post-title entry-title"> </h3><h3 class="post-title entry-title"><a href="http://paton-life.blogspot.com/2010/09/openindiana-first-install.html"></a></h3><h3 class="post-title entry-title"> </h3><div class="post-header"> </div>Curious on how this will evolve. OpenSolaris life outside of Oracle/Sun is uncertain, will the community strength or fold?<br />
<br />
<div class="separator" style="clear: both; text-align: center;"><a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi1tTqhU9HS3RnIYpEwOzBvDckeJCHwR3cY4TpbVL84riC46QZPBSfazLPgNIogS1UkkfSysdpytb_TbLrymH_GUvL0ONVncF4Pi2q243FyIWHdBi7XO-IzoB9-YMvdzScF7z20ew/s1600/Screenshot-OpenIndiana+%5BRunning%5D+-+Oracle+VM+VirtualBox.png" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" height="528" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi1tTqhU9HS3RnIYpEwOzBvDckeJCHwR3cY4TpbVL84riC46QZPBSfazLPgNIogS1UkkfSysdpytb_TbLrymH_GUvL0ONVncF4Pi2q243FyIWHdBi7XO-IzoB9-YMvdzScF7z20ew/s640/Screenshot-OpenIndiana+%5BRunning%5D+-+Oracle+VM+VirtualBox.png" width="640" /></a></div>Andy Patonhttp://www.blogger.com/profile/06107484106140835311noreply@blogger.com0tag:blogger.com,1999:blog-7031075.post-87584316361559028692010-09-15T16:58:00.003+01:002010-09-15T17:01:05.200+01:00Can you use Solaris wanboot to boot a system into single user mode?Can you use Solaris wanboot to boot a system into single user mode?<br />
<br />
Google or Sun Docs didn't have the definitive answer for me.<br />
<br />
Answer is <b>YES</b><br />
<br />
<span style="font-size: small;"><span style="font-family: "Courier New",Courier,monospace;">T5240, No Keyboard </span><br style="font-family: "Courier New",Courier,monospace;" /><span style="font-family: "Courier New",Courier,monospace;">Copyright 2010 Sun Microsystems, Inc. All rights reserved. </span><br style="font-family: "Courier New",Courier,monospace;" /><span style="font-family: "Courier New",Courier,monospace;">OpenBoot 4.30.7, 8192 MB memory available, Serial #xxxxxx. </span><br style="font-family: "Courier New",Courier,monospace;" /><span style="font-family: "Courier New",Courier,monospace;">Ethernet address 0:ff:ff:ff:f:ff, Host ID: 8xxxxxx. </span><br style="font-family: "Courier New",Courier,monospace;" /><br style="font-family: "Courier New",Courier,monospace;" /><span style="font-family: "Courier New",Courier,monospace;">{0} ok </span><br style="font-family: "Courier New",Courier,monospace;" /><br style="font-family: "Courier New",Courier,monospace;" /><b><span style="font-family: "Courier New",Courier,monospace;">{0} ok setenv network-boot-arguments host-ip=10.1.1.1,router-ip=10.1.1.254,subnet-mask=255.255.255.0,hostname=hostname-gd,file=http://172.16.1.1:80/cgi-bin/wanboot-cgi </span></b><br style="font-family: "Courier New",Courier,monospace;" /><span style="font-family: "Courier New",Courier,monospace;">network-boot-arguments = host-ip=10.1.1.1,router-ip=10.1.1.254,subnet-mask=255.255.255.0,hostname=hostname-gd,file=http://172.16.1.1:80/cgi-bin/wanboot-cgi </span><br style="font-family: "Courier New",Courier,monospace;" /><b><span style="font-family: "Courier New",Courier,monospace;">{0} ok boot net -s </span></b><br style="font-family: "Courier New",Courier,monospace;" /><span style="font-family: "Courier New",Courier,monospace;">Boot device: /virtual-devices@100/channel-devices@200/network@0 File and args: -s </span><br style="font-family: "Courier New",Courier,monospace;" /><span style="font-family: "Courier New",Courier,monospace;"><time unavailable=""> wanboot info: WAN boot messages->console </time></span><br style="font-family: "Courier New",Courier,monospace;" /><span style="font-family: "Courier New",Courier,monospace;"><time unavailable=""> wanboot info: configuring /virtual-devices@100/channel-devices@200/network@0 </time></span><br style="font-family: "Courier New",Courier,monospace;" /><br style="font-family: "Courier New",Courier,monospace;" /><span style="font-family: "Courier New",Courier,monospace;"><time unavailable=""> wanboot progress: wanbootfs: Read 368 of 368 kB (100%) </time></span><br style="font-family: "Courier New",Courier,monospace;" /><span style="font-family: "Courier New",Courier,monospace;"><time unavailable=""> wanboot info: wanbootfs: Download complete </time></span><br style="font-family: "Courier New",Courier,monospace;" /><span style="font-family: "Courier New",Courier,monospace;">Wed Sep 15 14:04:06 wanboot info: WAN boot messages->172.16.1.1:80</span><br style="font-family: "Courier New",Courier,monospace;" /><span style="font-family: "Courier New",Courier,monospace;">SunOS Release 5.10 Version Generic_141444-09 64-bit </span><br style="font-family: "Courier New",Courier,monospace;" /><span style="font-family: "Courier New",Courier,monospace;">Copyright 1983-2009 Sun Microsystems, Inc. All rights reserved. </span><br style="font-family: "Courier New",Courier,monospace;" /><span style="font-family: "Courier New",Courier,monospace;">Use is subject to license terms. </span><br style="font-family: "Courier New",Courier,monospace;" /><span style="font-family: "Courier New",Courier,monospace;">Booting to milestone "milestone/single-user:default". </span><br style="font-family: "Courier New",Courier,monospace;" /><span style="font-family: "Courier New",Courier,monospace;">Configuring devices. </span><br style="font-family: "Courier New",Courier,monospace;" /><span style="font-family: "Courier New",Courier,monospace;">Network interface was configured manually. </span><br style="font-family: "Courier New",Courier,monospace;" /><span style="font-family: "Courier New",Courier,monospace;">10.1.1.1</span><br style="font-family: "Courier New",Courier,monospace;" /><span style="font-family: "Courier New",Courier,monospace;">Requesting System Maintenance Mode </span><br style="font-family: "Courier New",Courier,monospace;" /><span style="font-family: "Courier New",Courier,monospace;">SINGLE USER MODE </span><br style="font-family: "Courier New",Courier,monospace;" /><span style="font-family: "Courier New",Courier,monospace;"><b># ls /dev/dsk</b> </span><br style="font-family: "Courier New",Courier,monospace;" /><span style="font-family: "Courier New",Courier,monospace;">c0d0s0 c0d0s1 c0d0s2 c0d0s3 c0d0s4 c0d0s5 c0d0s6 c0d0s7 </span><br style="font-family: "Courier New",Courier,monospace;" /><b><span style="font-family: "Courier New",Courier,monospace;"># mount /dev/dsk/c0d0s0 /a </span></b><br style="font-family: "Courier New",Courier,monospace;" /><b><span style="font-family: "Courier New",Courier,monospace;"># ls /a </span></b><br style="font-family: "Courier New",Courier,monospace;" /><span style="font-family: "Courier New",Courier,monospace;">bin etc lost+found proc tmp </span><br style="font-family: "Courier New",Courier,monospace;" /><span style="font-family: "Courier New",Courier,monospace;">boot export mnt root usr </span><br style="font-family: "Courier New",Courier,monospace;" /><span style="font-family: "Courier New",Courier,monospace;">dev kernel opt sbin var </span><br style="font-family: "Courier New",Courier,monospace;" /><span style="font-family: "Courier New",Courier,monospace;">devices lib platform system </span></span><br />
<br />
<br />
<br />
<a name='more'></a><br />
<br />
The Jumpstart/Wanboot environment was created using <a href="http://wikis.sun.com/display/JET/Home">Sun JET</a> with the wanboot module.<br />
<span style="font-size: small;"><br />
</span><br />
<span style="font-family: "Courier New",Courier,monospace; font-size: small;">apaton@jedi:~ $ pkginfo -l JetWanBoot<br />
PKGINST: JetWanBoot<br />
NAME: JET WanBoot support<br />
CATEGORY: application<br />
ARCH: sparc<br />
VERSION: 1.3.2<br />
BASEDIR: /opt/SUNWjet<br />
VENDOR: Sun Microsystems<br />
PSTAMP: ceng20100122090411<br />
INSTDATE: Jun 19 2010 13:06<br />
STATUS: completely installed<br />
FILES: 29 installed pathnames<br />
5 shared pathnames<br />
7 directories<br />
20 executables<br />
115 blocks used (approx)</span>Andy Patonhttp://www.blogger.com/profile/06107484106140835311noreply@blogger.com0tag:blogger.com,1999:blog-7031075.post-47838526670741910242010-07-11T16:19:00.000+01:002010-07-11T16:19:52.168+01:00Reduce Swap in Red Hat 5Red Hat recommended SWAP to be no larger than 4Gb, <br />
<br />
1) Show current swap<br />
swapon -s <br />
<br />
2) Unmount Swap<br />
swapoff /dev/mapper/VolGroup00-LogVol01<br />
<br />
3) Reduce from 54Gb to 4Gb (Each LV Extent is 32Mb)<br />
lvreduce -l -1600 /dev/VolGroup00/LogVol01<br />
<br />
4) Reformat swap<br />
mkswap /dev/VolGroup00/LogVol01<br />
<br />
5) Mount swap as defined in /etc/fstab<br />
swapon -aAndy Patonhttp://www.blogger.com/profile/06107484106140835311noreply@blogger.com0tag:blogger.com,1999:blog-7031075.post-86583271598790851482010-02-20T12:25:00.001+00:002010-02-20T12:27:32.950+00:00VMware vMA - UK setupVMware's <a href="http://www.vmware.com/support/developer/vima/">vMA</a> is an execllet tool for managing ESXi environments and comes as a pre-built Virtual machine (Appliance).<br />
<br />
My method of setting it up for the UK, thus my cronjobs run in GMT/BST.<br />
<br />
Setup Authentification to vCenter/ESX hosts <br />
<pre>sudo vifp addserver <192.168.10.90>
vifp listservers
vifpinit
Test it works
vicfg-nics -l --vihost <esx host="">
</esx></pre><br />
Update vMA <br />
<pre>$ sudo vi /etc/vmware/esxupdate/vimaupdate.conf
proxy = <a class="external free" href="http:///" rel="nofollow" title="http://">http://</a><proxy fqdn="" ip="">
proxyport = <port>
$ sudo vima-update scan
$ sudo vima-update update</port></proxy></pre><br />
Setup SSH Keys <br />
<pre>$ mkdir ~/.ssh
$ vi ~/.ssh/authorized_keys2
$ chmod 700 ~/.ssh/authorized_keys2</pre><br />
Set Time and local <br />
<pre>$ sudo mv /etc/localtime /etc/localtime.org
$ sudo ln -s /usr/share/zoneinfo/Europe/London /etc/localtime
$ sudo vi /etc/sysconfig/keyboard
KEYTABLE="uk"
$ sudo vi /boot/grub/menu.1st
title Red Hat Enterprise Linux Server (2.6.18-164.el5)
root (hd0,0)
kernel /vmlinuz-2.6.18-164.el5 ro root=/dev/VolGroup00/root quiet <b>notsc divider=10</b>
initrd /initrd-2.6.18-164.el5.img </pre><pre>$ sudo vi /etc/ntp.conf
comment out lines
#server 127.127.1.0
#fudge 127.127.1.0 stratum 10
add lines
server <1st NTPSERVER FQDN/IP>
server <2nd NTPSERVER FQDN/IP>
</pre><pre>$ sudo vi /etc/ntp/step-tickers
<1st NTPSERVER FQDN/IP>
<2nd NTPSERVER FQDN/IP></pre>Andy Patonhttp://www.blogger.com/profile/06107484106140835311noreply@blogger.com0tag:blogger.com,1999:blog-7031075.post-67952003693480885062010-02-20T12:08:00.005+00:002010-02-20T12:17:40.196+00:00Scheduled network capture on Windows using Wireshark (tshark.exe)A customer had an iSCSI issue and was required to capture network packets at a specific time on a Windows 2008 server.<br />
<br />
I came up with simple method using <a href="http://www.wireshark.org/">Wireshark's</a> <a href="http://www.wireshark.org/docs/man-pages/tshark.html">tshark.exe</a> and Windows scheduler "AT".<br />
<br />
<b>at <time> cmd /c c:\capture.bat</time></b><br />
<br />
<b>type c:\capture.bat</b><br />
<span style="font-family: "Trebuchet MS",sans-serif;">rem Capture WireShark example</span><br />
<span style="font-family: "Trebuchet MS",sans-serif;">rem Andy Paton</span><br />
<span style="font-family: "Trebuchet MS",sans-serif;">rem WTL</span><br />
<span style="font-family: "Trebuchet MS",sans-serif;">rem use AT to run batch</span><br />
<span style="font-family: "Trebuchet MS",sans-serif;">rem example at 01:50 cmd /c c:\capture.bat</span><br />
<br />
<span style="font-family: "Trebuchet MS",sans-serif;">rem debug at issues</span><br />
<span style="font-family: "Trebuchet MS",sans-serif;">rem example at 09:50 /interactive cmd /k c:\capture.bat</span><br />
<br />
<span style="font-family: "Trebuchet MS",sans-serif;">rem -a duration:1200 in seconds</span><br />
<span style="font-family: "Trebuchet MS",sans-serif;">rem -B Buffer Size - default is 1Mb</span><br />
<span style="font-family: "Trebuchet MS",sans-serif;">rem -i Interface number - use "tshark.exe -D" to list interface numbers</span><br />
<span style="font-family: "Trebuchet MS",sans-serif;">rem -n don't resolve IP addresses</span><br />
<span style="font-family: "Trebuchet MS",sans-serif;">rem -q Quiet output</span><br />
<span style="font-family: "Trebuchet MS",sans-serif;">rem -w output file</span><br />
<span style="font-family: "Trebuchet MS",sans-serif;">rem capture filter "host <ip address="">"</ip></span><br />
<br />
<span style="font-family: "Trebuchet MS",sans-serif;">c:\"Program Files"\Wireshark\tshark -a duration:1200 -B 2 -i 4 -n -q -w c:\network.out host 192.168.1.1</span>Andy Patonhttp://www.blogger.com/profile/06107484106140835311noreply@blogger.com0tag:blogger.com,1999:blog-7031075.post-15616770022713049462010-02-06T14:28:00.006+00:002010-02-07T09:17:26.453+00:00ZFS Compression Vs Deduplication (dedup)Been playing with ZFS dedupe for the last two weeks and just wanted to share my findings. <br />
<br />
Setup OpenSolaris build 131<br />
Sun X4200, 2 x Dual Core Opteron 2.6Ghz, 8Gb Ram, 4 x 73Gb SAS 10Krpm<br />
<br />
<span style="font-family: "Courier New",Courier,monospace;">root@osol:~# zfs list</span><br />
<span style="font-family: "Courier New",Courier,monospace;">NAME USED AVAIL REFER MOUNTPOINT</span><br />
<span style="font-family: "Courier New",Courier,monospace;">compress 72K 66.9G 21K /compress</span><br />
<span style="font-family: "Courier New",Courier,monospace;">dedupe 72K 66.9G 21K /dedupe</span><br />
<br />
<span style="font-family: "Courier New",Courier,monospace;">root@osol:~# zfs set compression=on compress</span><br />
<span style="font-family: "Courier New",Courier,monospace;">root@osol:~# zfs set dedup=on dedupe</span><br />
<br />
Wanted to see how much real data would dedupe.<br />
<br />
I loaded the my company project/Software folders, 68,000 files (Visio/PDF/Project/Word/OpenOffice/Excel,ISO's... ) total of 38.9Gb<br />
<br />
Load times, copying files from local UFS filesystem to ZFS dataset.<br />
<br />
<span style="font-family: "Courier New",Courier,monospace;">root@osol:/ufs# ptime tar cf - iso projects software | pv | ( cd /dedupe/ ; tar xf - )</span><br />
<span style="font-family: "Courier New",Courier,monospace;">real 19:51.930407394</span><br />
<span style="font-family: "Courier New",Courier,monospace;">user 5.807881662</span><br />
<span style="font-family: "Courier New",Courier,monospace;">sys 1:48.025965013</span><br />
<span style="font-family: "Courier New",Courier,monospace;">38.8GB 0:19:51 [33.3MB/s] </span><br />
<br />
<span style="font-family: "Courier New",Courier,monospace;">root@osol:/ufs# ptime tar cf - iso projects software | pv | ( cd /compress/ ; tar xf - )</span><br />
<span style="font-family: "Courier New",Courier,monospace;">real 18:46.544321180</span><br />
<span style="font-family: "Courier New",Courier,monospace;">user 3.368262960</span><br />
<span style="font-family: "Courier New",Courier,monospace;">sys 1:52.065809786</span><br />
<span style="font-family: "Courier New",Courier,monospace;">38.8GB 0:18:46 [35.3MB/s]</span><br />
<br />
The deupe ZFS volume was 66 seconds slower than the compress volume.<br />
<br />
Let see how much space we saved for both methods<br />
<br />
<span style="font-family: "Courier New",Courier,monospace;">root@osol:/ufs# zpool list</span><br />
<span style="font-family: "Courier New",Courier,monospace;">NAME SIZE ALLOC FREE CAP DEDUP HEALTH ALTROOT</span><br />
<span style="font-family: "Courier New",Courier,monospace;">compress 68G 36.1G 31.9G 53% 1.00x ONLINE -</span><br />
<span style="font-family: "Courier New",Courier,monospace;">dedupe 68G 38.4G 29.6G 56% <b>1.02x</b> ONLINE -</span><br />
<span style="font-family: "Courier New",Courier,monospace;">rpool 67G 49.8G 17.2G 74% 1.00x ONLINE -</span><br />
<br />
<span style="font-family: "Courier New",Courier,monospace;">root@osol:/ufs# zfs get compressratio compress</span><br />
<span style="font-family: "Courier New",Courier,monospace;">NAME PROPERTY VALUE SOURCE</span><br />
<span style="font-family: "Courier New",Courier,monospace;">compress compressratio <b>1.08x</b> -</span><br />
<br />
The compressed volume did a better job than dedupe and saving an extra 6% storage.<br />
<br />
Conclusion<br />
There isn't any advantages for dedupe on a general home file share, slight slower performance and less space saved when compared to compression.<br />
<br />
Now why would you want to dedupe ? Well just look at my dedupe ratio of 2.28 for a NFS share with VMware, now this is exciting! <br />
<br />
<div style="font-family: "Courier New",Courier,monospace;">root@osol:~$ zpool list vm-dedupe<br />
<span style="font-family: "Courier New",Courier,monospace;">NAME SIZE ALLOC FREE CAP DEDUP HEALTH ALTROOT</span> </div><span style="font-family: "Courier New",Courier,monospace;">vm-dedupe 68G 16.1G 51.9G 23% <b>2.28x</b> ONLINE -</span><br />
<br />
Therefore I can only say "Some data is more equal than others."<br />
<br />
Andy<br />
(Minor edit 7.02.10)Andy Patonhttp://www.blogger.com/profile/06107484106140835311noreply@blogger.com0tag:blogger.com,1999:blog-7031075.post-40610206625689947892009-11-27T14:59:00.000+00:002009-11-27T14:59:11.791+00:00VIM in WindowsI've been using <a href="http://www.vim.org/">VIM</a> as my main editor on windows desktop for a number of years. I've resisted my peers suggesting programs like <a href="http://notepad-plus.sourceforge.net/uk/site.htm">Notepad++.</a><br />
<br />
But today I found a new little hack.From the windows CLI, I can convert my shell scripts in html quickly for my documentation. (I could do this from GUI but took a little time). Next little adventure is write a PowerShell/VBS script to make it even easier.<br />
<br />
<div style="font-family: "Courier New",Courier,monospace;">"C:\Program Files\Vim\vim72\gvim.exe" -n -c ":so $VIMRUNTIME\syntax\2html.vim" -c ":wqa" SourceFilename<bashscript>.sh</bashscript><br />
</div><div style="font-family: "Courier New",Courier,monospace;"><br />
</div><div style="font-family: "Courier New",Courier,monospace;"><br />
</div>Andy Patonhttp://www.blogger.com/profile/06107484106140835311noreply@blogger.com0tag:blogger.com,1999:blog-7031075.post-31053927961131462982009-11-21T13:21:00.004+00:002009-11-21T20:44:48.756+00:00Solaris10Guide<div><p style="margin: 0pt; text-align: center;"><span style="font-family: Arial;"><b><font size="5">Solaris 10 Quick Reference (Work In Progress)<br />
</font></b></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">This document is a quick reference to the major difference and new technologies in Solaris 10. Its is not fully extensive and will only feature on.</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">ZFS</font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">Solaris Containers (Zones)</font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">Resource Management</font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">Predictive Self Healing</font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">DTrace</font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">Misc</font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><h1 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><font size="5">ZFS – Solaris Zettabyte File System</font></b></span></h1><h2 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><i><font size="4">Features</font></i></b></span></h2><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">128-bit Filesystem</font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">File System and Volume Manager Integrated</font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">RAID 0, RAID 1, RAID-Z (RAID5) & RAID-Z2 Double Parity</font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">Snap Shot and Clone Support</font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">Compression</font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">Self healing</font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">Checksum of data blocks</font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">Does not use /etc/vfstab as standard</font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">Setup NFS through zfs</font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">Does not support ufsdump/ufsrestore</font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><h2 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><i><font size="4">Commands</font></i></b></span></h2><table style="margin-left: 0pt;" class="zeroBorder" cellpadding="0" cellspacing="0"><tbody>
<tr><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">zpool</font></span></p></td><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Manages Pools (disks)</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">zfs</font></span></p></td><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Manages file systems </font></span></p></td></tr>
</tbody></table><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><h2 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><i><font size="4">Pool tasks</font></i></b></span></h2><table style="margin-left: 0pt;" class="zeroBorder" cellpadding="0" cellspacing="0"><tbody>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zpool create mypool c0t1d0</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Create mypool with whole disk</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zpool create mypool c0t1d0s7</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Create mypool with slice</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zpool create mypool c1t0d0 c2t0d0</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Create mypool with stripe</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zpool create mypool mirror c1t0d0 c2t0d0</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Create mypool with mirror</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zpool create mypool raidz c1t0d0 c1t1d0 c1t2d0</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Create mypool with RAID-Z</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zpool create mypool raidz2 c1t0d0 c1t1d0 c1t2d0</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Create mypool with RAID-Z Double Parity</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zpool create -m /export/home mypool c2t0d0</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Create mypool with whole disk with mount point /export/home</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">mkdir 2g /disk1 ; mkdir 2g /disk2 ; mkdir 2g /disk3 ; mkdir 2g /disk4</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zpool create mypool mirror /disk1 /disk2</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zpool add mypool mirror /disk3 /disk4</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> Create mypool from files!!<br />
</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zpool destroy mypool</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">DESTROY POOL AND FILESYSTEM</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zpool list</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">List pools</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zpool status -x</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Display pool status</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zpool replace mypool c1t0d0 c1t4d0</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Replaces drive </font></span><span style="font-family: 'Courier New';"><font size="2">c1t0d0 to c1t4s0</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zpool clear mypool c1t2d0</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Clears transient errors from drive</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zpool online mypool c1t3d0</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Notify ZFS to rescan c1t3d0</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zpool scrub mypool</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Disk scrubber (checks drives & data)</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zpool iostat [-v] [<pool>] <interval></font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Display disk status</font></span></p></td></tr>
</tbody></table><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><h2 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><i><font size="4">ZFS File system Tasks</font></i></b></span></h2><table style="margin-left: 0pt;" class="zeroBorder" cellpadding="0" cellspacing="0"><tbody>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zfs create mypool/home</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Create filesystem home</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zfs set -o mountpoint=/export/home mypool/home</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Create /export/home</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zfs create mypool/home/user</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Create user directory</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zfs destroy mypool/home</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Delete home filesystem and below (users)</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zfs set quota=20G mypool/home/user</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zfs set compression=on mypool/home</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zfs get all mypool/home</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">View settings</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zfs set sharenfs=on mypool/home/user</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Create NFS share</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zfs set sharenfs=ro myspool/home/jumpstart</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Create Read only NFS share</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zfs set sharenfs=root=192.168.10.162 rpool/export/zones</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zfs unshare mypool/home/user</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">disable NFS share</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zfs list</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">List ZFS filesystem</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zfs list -o name,quota,mountpoint</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">List ZFS filesystem options</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zfs snapshot mypool/home@today</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Create readonly snapshot of home called today</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zfs set snapdir=visable mypool</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Enable access to snapshot</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">ls /export/home/.zfs/snapshot/today</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Access to snapshot</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zfs rollback mypool/home@today</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Rollback to snapshot</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zfs clone myspool/home@today mypool/home_new</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Clone home snapshot and create a writeable mypool/home_new</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zfs promote mypool/home_new </font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Make clone the primary data source</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zfs rename mypool/home mypool/home_old ; zfs </font></span><span style="font-family: 'Courier New';"><font size="2">rename mypool/home_new mypool/home</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">rename clone to replace home, move old </font></span><span style="font-family: 'Times New Roman';"><font size="3">to home_old</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zfs destroy mypool/home@today</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Destroy snapshot</font></span></p></td></tr>
</tbody></table><p><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><h1 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><font size="5">Solaris Containers (Zones)</font></b></span></h1><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><h2 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><i><font size="4">Features</font></i></b></span></h2><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">Software partition, single kernel!</font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">share or individual packages and patches.</font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">chroot on steroids!</font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">Consolidation</font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">Test and development</font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">Resource Management</font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">BrandZ (Solaris 8/9 and Linux)</font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">IP Share & Exclusive Mode</font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">Zone enable commands (ps / prstat ..)</font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">Unbundled application Zonestat</font></span></p><h2 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><i><font size="4">Configuration Guide Lines</font></i></b></span></h2><table style="margin-left: 0pt;" class="zeroBorder" cellpadding="0" cellspacing="0"><tbody>
<tr><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Network & Routing</font></span></p></td><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">The global zone must be connected and routing table correctly configured.</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">DHCP </font></span></p></td><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Is not supported in a zone in IP Share mode on in Exclusive Mode</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">NFS Server</font></span></p></td><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Unable to export </font></span></p></td></tr>
</tbody></table><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><h2 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><i><font size="4">Commands</font></i></b></span></h2><table style="margin-left: 0pt;" class="zeroBorder" cellpadding="0" cellspacing="0"><tbody>
<tr><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">zonecfg</font></span></p></td><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Manages zones configuration</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">zoneadm</font></span></p></td><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Manages Zones</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">zlogin</font></span></p></td><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Login into a zone</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">~. (drop to shell but my break ssh shell)</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Change SSH break character.</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">ssh -e ^ <user>@<globalzone></font></span></p></td></tr>
</tbody></table><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><h2 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><i><font size="4">Create Zone</font></i></b></span></h2><table style="margin-left: 0pt;" class="zeroBorder" cellpadding="0" cellspacing="0"><tbody>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg -z myzone</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:myzone> create</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:myzone> set zonepath=/export/zones/myzone</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:myzone> set autoboot=true</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:myzone> add net</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:myzone:net> set address=10.10.25.33</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:myzone:net> set physical=e1000g0</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:myzone:net> end</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:myzone> verify</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:myzone> commit</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:myzone> exit</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Basic Zone</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg -z webzone</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:webzone> set zonepath=/export/zones/webzone</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:webzone> set autoboot=true</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:webzone> add net</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:webzone:net> set address=10.10.25.34</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:webzone:net> set physical=e1000g0</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:webzone:net> end</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:webzone> add fs</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:webzone:fs> set dir=/export/home</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:webzone:fs> set type=lofs</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:webzone:fs> set special=/export/home</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:webzone:fs> end</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:webzone> info</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:webzone> verify</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:webzone> commit</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:webzone> exit</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Zone with home directories shared with Global zone</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg -z ownzone</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:ownzone> create</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:ownzone> set zonepath=/export/zones/ownzone</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:ownzone> set autoboot=true</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:ownzone> add net</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:ownzone:net> set address=10.10.25.35</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:ownzone:net> set physical=e1000g0</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:ownzone:net> end</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:ownzone> remove inherit-pkg-dir dir=/lib</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:ownzone> remove inherit-pkg-dir \ dir=/platform</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:ownzone> remove inherit-pkg-dir dir=/sbin</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:ownzone> remove inherit-pkg-dir dir=/usr</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:ownzone> verify</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:ownzone> commit</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:ownzone> exit</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Zone with no inherited packages</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg -z poolzone</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:poolzone> create</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:poolzone> set zonepath=/export/zones/poolzone</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:poolzone> set autoboot=true</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:poolzone> set pool=qa-pool</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:poolzone> add net</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:poolzone:net> set address=10.10.25.33</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:poolzone:net> set physical=e1000g0</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:poolzone:net> end</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:poolzone> verify</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:poolzone> commit</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:poolzone> exit</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Zone with resource pool “qa-pool” allocated, See pools.</font></span></p></td></tr>
</tbody></table><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">sysidcfg file, copy in <zonepath>/root/etc/sysidcfg to pre answer boot questions</font></span></p><table style="margin-left: 0pt;" class="zeroBorder" cellpadding="0" cellspacing="0"><tbody>
<tr><td style="vertical-align: top; width: 519pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">name_service=DNS</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2"> {domain_name=<domain></font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2"> name_server=<default router>}</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">system_locale=en_GB.ISO8859-1</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">terminal=vt100</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">network_interface=primary {</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2"> hostname=<hostname>}</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">security_policy=NONE</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">nfs4_domain=LOCAL.com</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">timezone=GB-Eire</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">root_password=<encrypted password></font></span></p></td></tr>
</tbody></table><h2 style="margin: 12pt 0pt 6pt;"><br />
<span style="font-family: Arial;"><b><i><font size="4">Administer</font></i></b></span> <span style="font-family: Arial;"><b><i><font size="4"> Zone</font></i></b></span></h2><table style="margin-left: 0pt;" class="zeroBorder" cellpadding="0" cellspacing="0"><tbody>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zoneadm -z myzone install</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Install a configured zone</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zoneadm -z myzone boot</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Boot a zone</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zoneadm -z myzone boot && zlogin -C myzone</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Boot and watch console of a zone </font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zoneadm -z myzone halt</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Stop a zone ( eg pull power)</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zoneadm -z myzone reboot</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zoneadm -z myzone uninstall -F</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Deletes a zone</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg -z myzone delete -F</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Removes a zone config</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zoneadm list -civ</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Display Zones Status</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zoneadm -z myzone detach</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Detach zones (ready to move)</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zoneadm -z myzone attach</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Attach Zone</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zoneadm -z myzone attach -F</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Attach Zone with out verify</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zoneadm -z myzone attach -u</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Attach Zone update any patches with global zone</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zoneadm -z myzone attach -u -b <patch=id></font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Attach Zone update any patches with global zone, backing out patch id</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zlogin -C myzone</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Login to the zone console</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">~. to drop out</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zlogin -l sysadmin myzone</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Login as sysadmin user</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zlogin myzone shutdown -i 0</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Shutdown zone gracefully</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zlogin -S myzone</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Login Safe mode for diagnostics</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonename</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Tell me my zonename</font></span></p></td></tr>
</tbody></table><h2 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><i><font size="4"> </font></i></b></span></h2><h2 style="margin: 12pt 0pt 6pt;"><span style="color: rgb(40, 0, 153); font-family: Arial;"><b><i><font size="4">Clone myzone to dolly (ZFS)</font></i></b></span></h2><table style="margin-left: 0pt;" class="zeroBorder" cellpadding="0" cellspacing="0"><tbody>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zlogin myzone shutdown -i 0</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Shut down zone gracefully</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg -z myzone export -f /export/zones/myzone.cfg</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">chmod 700 /export/zones/dolly</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Strict permissions</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">vi /export/zones/myzone.cfg</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Change path and IP address</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg -z dolly -f /export/zones/myzone.cfg</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Create zone from master template</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zoneadm -z dolly clone myzone</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Clone myzone to dolly.</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zoneadm -z dolly boot</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Boot dolly</font></span></p></td></tr>
</tbody></table><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><h2 style="margin: 12pt 0pt 6pt;"><span style="color: rgb(40, 0, 153); font-family: Arial;"><b><i><font size="4">Move myzone to different server</font></i></b></span></h2><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><b><font size="3">Source Host</font></b></span></p><table style="margin-left: 0pt;" class="zeroBorder" cellpadding="0" cellspacing="0"><tbody>
<tr><td style="vertical-align: top; width: 29.05pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">1</font></span></p></td><td style="vertical-align: top; width: 360.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zlogin myzone shutdown -i 0</font></span></p></td><td style="vertical-align: top; width: 129.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Shut down zone gracefully</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 29.05pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">2</font></span></p></td><td style="vertical-align: top; width: 360.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg -z myzone export -f /export/zones/myzone.cfg</font></span></p></td><td style="vertical-align: top; width: 129.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Create export file</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 29.05pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">3</font></span></p></td><td style="vertical-align: top; width: 360.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zoneadm -z myzone detach</font></span></p></td><td style="vertical-align: top; width: 129.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 29.05pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">4</font></span></p></td><td style="vertical-align: top; width: 360.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">tar cf myzone.tar /export/zones/myzone</font></span></p></td><td style="vertical-align: top; width: 129.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 29.05pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">5</font></span></p></td><td style="vertical-align: top; width: 360.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">scp myzone.cfg <user>@<target-host></font></span></p></td><td style="vertical-align: top; width: 129.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p></td></tr>
</tbody></table><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><b><font size="3">Target Host</font></b></span></p><table style="margin-left: 0pt;" class="zeroBorder" cellpadding="0" cellspacing="0"><tbody>
<tr><td style="vertical-align: top; width: 29.05pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">1</font></span></p></td><td style="vertical-align: top; width: 360.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">tar xvf myzone.tar </font></span></p></td><td style="vertical-align: top; width: 129.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Untar in to new root zonepath.</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 29.05pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">2</font></span></p></td><td style="vertical-align: top; width: 360.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">Edit myzone.cfg to reflect new zonepath</font></span></p></td><td style="vertical-align: top; width: 129.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 29.05pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">3</font></span></p></td><td style="vertical-align: top; width: 360.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg -z myzone -f myzone.cfg</font></span></p></td><td style="vertical-align: top; width: 129.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Create zone from master template</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 29.05pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">4</font></span></p></td><td style="vertical-align: top; width: 360.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zoneadm -z myzone attach</font></span></p></td><td style="vertical-align: top; width: 129.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Attach zone</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 29.05pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">5</font></span></p></td><td style="vertical-align: top; width: 360.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zoneadm -z myzone boot</font></span></p></td><td style="vertical-align: top; width: 129.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p></td></tr>
</tbody></table><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><h1 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><font size="5">Resource Management CPU</font></b></span></h1><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><h2 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><i><font size="4">Features</font></i></b></span></h2><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">Fixed number of CPU's per zone</font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">Variable CPU's per zone</font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman'; font-weight: normal;"><font size="3">FSS Fair Share, weighted zones. recommended for most application</font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman'; font-weight: normal;"><font size="3">Mixed workloads</font></span></p><p style="margin: 0pt 0pt 0pt 36pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman'; font-weight: normal;"><font size="3">In Solaris 10 8/07 and later we have dedicated CPU' feature which can be an effective alternative to pools.</font></span></p><h2 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><i><font size="4">Commands</font></i></b></span></h2><table style="margin-left: 0pt;" class="zeroBorder" cellpadding="0" cellspacing="0"><tbody>
<tr><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman'; font-weight: normal;"><font size="3">pooladm</font></span></p></td><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Administer pools</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">poolcfg</font></span></p></td><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Configure pools</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">dispadmin</font></span></p></td><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Dispatch “Scheduler” Admin</font></span></p></td></tr>
</tbody></table><p style="margin: 0pt;"><span style="font-family: 'Times New Roman'; font-weight: normal;"><font size="3"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman'; font-weight: normal;"><font size="3"> </font></span></p><h2 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><i><font size="4">Create Fixed CPU Zone Pool</font></i></b></span></h2><table style="margin-left: 0pt;" class="zeroBorder" cellpadding="0" cellspacing="0"><tbody>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">pooladm -e</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Enable pools</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">svcadm enable pools</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Enable pools</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">pooladm -s</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Save configuration</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">poolcfg -c 'create pset db-pset (uint pset.min=10; uint pset.max=10)'</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Processor Set “db-pset” 10 CPU's</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">poolcfg -c 'create pool db-pool'</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">poolcfg -c 'associate pool db-pool (pset db-pset)'</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">pooladm -c</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Activate configuration</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg -z dbzone</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:dbzone> set pool=db-pool</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:dbzone> verify</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:dbzone> commit</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:dbzone> exit</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Associate the zone with a resource pool</font></span></p></td></tr>
</tbody></table><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><h2 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><i><font size="4">Create FSS Zone (Pool)</font></i></b></span></h2><table style="margin-left: 0pt;" class="zeroBorder" cellpadding="0" cellspacing="0"><tbody>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">pooladm -e</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Enable pools</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">svcadm enable pools</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Enable pools</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">pooladm -s</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Save configuration</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">poolcfg -c 'create pool db-pool ( string pool.scheduler = "FSS" )'</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Resource pool with FSS</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">poolcfg -c 'create pool ap-pool ( string </font></span><span style="font-family: 'Courier New';"><font size="2">pool.scheduler = "FSS" )'</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Resource pool with FSS</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">pooladm -c</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Activate configuration</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">pooladm</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Display configuration</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg -z dbzone</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:dbzone> set pool=dbpool</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:dbzone> add rctl</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:dbzone:rctl>set name=zone.cpu-shares</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:dbzone:rctl>add add value (priv=privileged,limit=3,action=none)</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:dbzone:rctl> end</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:dbzone> verify</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:dbzone> commit</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:dbzone> exit</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Associate the zone with a resource pool and set FSS CPU share to 3</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg -z apzone</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:apzone> set pool=appool</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:apzone> add rctl</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:apzone:rctl>set name=zone.cpu-shares</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:apzone:rctl>add add value (priv=privileged,limit=2,action=none)</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:apzone:rctl> end</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:apzone> verify</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:apzone> commit</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:apzone> exit</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Associate the zone with a resource pool and set FSS CPU share to 2</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zlogin apzone init 6 && zlogin dbzone init 6</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Reboot zones</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">dispadmin -d</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Display default scheduler</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">dispadmin -d FSS</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Set scheduler to FSS</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">priocntl -s -c FSS -i all</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Set scheduler to FSS now</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">prctl -n zone.cpu-shares -i zone global</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Display Global zone CPU shares</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">prctl -n zone.cpu-shares -v 2 -r -i zone global</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Set Global Zone to FSS CPU share to 2</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><i><font size="3">* not persistent after reboots</font></i></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">Prctl -n zone.cpu-shares -r -v 3 -i zone <zone></font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Dynamically change zone CPU shares</font></span></p></td></tr>
</tbody></table><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Oracle Database Example using dedicated (need to add filesystems for /u01 ..)</font></span></p><table style="margin-left: 0pt;" class="zeroBorder" cellpadding="0" cellspacing="0"><tbody>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">In global</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">$ mkdir /usr/local</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><i><font size="3"> </font></i></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg -z orazone</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone> set zonepath /zones/orazone</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone> set max-shm-memory=4G </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone> add dedicated-cpu</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone:dedicated-cpu> set ncpus=12-16</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone:dedicated-cpu> set importance=2</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone:dedicated-cpu> end</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone> add net</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone:net> set address=10.10.25.35</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone:net> set physical=e1000g0</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone:net> end</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone> add fs</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone:fs> set dir=/usr/local</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone:fs> set type=lofs</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone:fs> set special=/usr/local</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone:fs> end</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone> verify</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone> commit</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone> exit</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman'; font-style: normal;"><font size="3">Create zone with </font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg -z orazone</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone> set zonepath /zones/orazone</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone> set max-shm-memory=4G </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone> add capped-cpu</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone:capped-cpu> set ncpus=3.75</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone:capped-cpu> end</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone> add net</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone:net> set address=10.10.25.35</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone:net> set physical=e1000g0</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone:net> end</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone> add fs</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone:fs> set dir=/usr/local</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone:fs> set type=lofs</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone:fs> set special=/usr/local</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone:fs> end</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone> verify</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone> commit</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">zonecfg:orazone> exit</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman'; font-style: normal;"><font size="3"> </font></span></p></td></tr>
</tbody></table><h1 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><font size="5">Services management Facility</font></b></span></h1><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><h2 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><i><font size="4">Features</font></i></b></span></h2><p style="margin: 0pt 0pt 0pt 35.45pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">Predictive hardware monitoring</font></span></p><p style="margin: 0pt 0pt 0pt 35.45pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">isolation and deactivation</font></span></p><p style="margin: 0pt 0pt 0pt 35.45pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">Fault Management Architecture FMA / Service Management Facility SMF</font></span></p><p style="margin: 0pt 0pt 0pt 35.45pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">Message Identifier lookup @ http://www.sun.com/msg/</font></span></p><p style="margin: 0pt 0pt 0pt 35.45pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">RC script, /etc/inetd.conf & /etc/inittab are legacy</font></span></p><p style="margin: 0pt 0pt 0pt 35.45pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">Milestones as wellas run levels</font></span></p><p style="margin: 0pt 0pt 0pt 35.45pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">FMRI – example svc:/network/ssh:default</font></span></p><p style="margin: 0pt 0pt 0pt 35.45pt;"><span style="font-family: StarSymbol;"><font size="2">●</font></span> <span style="font-family: 'Times New Roman';"><font size="3">Methods and Manifest (XML)</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><h2 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><i><font size="4">Commands and Logs</font></i></b></span></h2><table style="margin-left: 0pt;" class="zeroBorder" cellpadding="0" cellspacing="0"><tbody>
<tr><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New'; font-weight: normal;"><font size="2">svcs</font></span></p></td><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Display service status and dependencies </font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">svcadm</font></span></p></td><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Enable/Disable services</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">inetconv</font></span></p></td><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">convert inetd.conf</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">svccfg</font></span></p></td><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Manifest Management</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">/var/adm/messages</font></span></p></td><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">System logs</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">/var/svc/log</font></span></p></td><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Service Logs</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">/etc/svc/volatile</font></span></p></td><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">pre-single user logs</font></span></p></td></tr>
</tbody></table><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><h2 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><i><font size="4">SMF Tasks</font></i></b></span></h2><table style="margin-left: 0pt;" class="zeroBorder" cellpadding="0" cellspacing="0"><tbody>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">svcadm disable system/cron:default</font></span> </p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Disables </font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">svcadm enable system/cron:default</font></span> </p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Enable cron</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">svcadm refresh network/ssh:default</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">reread ssh configuration</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">svcadm restart network/ssh:default</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">restart ssh</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">svcadm -v enable -r nfs/server</font></span> </p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Enables all services required to start nfs</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">svcadm -v enable -r -t nfs/server</font></span> </p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Enables all services required to start nfs</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">until a reboot</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">svcs -a</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">List all services</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">svcs -p ssh</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Show processes attached to ssh server</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">svcs -d /network/smtp</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Show what service smtp depend on</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">svcs -D /network/smtp:sendmail</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Show what service depend on smtp</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">svcs -xv</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Display failed services</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">boot -m verbose</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Display services on boot up.</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">svcadm milestone -d milestone/single-user:default</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">change default run level</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">svcadm milestone milestone/multi-user</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">change run level to multi-user</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 311.8pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">Ok> boot -m milestone=single-user</font></span></p></td><td style="vertical-align: top; width: 207.2pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">boot in to single user</font></span></p></td></tr>
</tbody></table><h1 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><font size="5"> </font></b></span></h1><h1 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><font size="5">Networking</font></b></span></h1><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><h1 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><font size="5"> </font></b></span></h1><h1 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><font size="5">Security</font></b></span></h1><h2 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><i><font size="4">RBAC</font></i></b></span></h2><p style="margin: 0pt 0pt 6pt;"><span style="font-family: StarSymbol;"><font size="2">•</font></span> <span style="font-family: 'Times New Roman';"><font size="3">/etc/user/attr</font></span><span style="font-family: 'Times New Roman';"><font size="3"> </font></span><span style="font-family: 'Times New Roman';"><font size="3"> </font></span><span style="font-family: 'Times New Roman';"><font size="3"> </font></span><span style="font-family: 'Times New Roman';"><font size="3"># User and Role information</font></span></p><p style="margin: 0pt 0pt 6pt;"><span style="font-family: StarSymbol;"><font size="2">•</font></span> <span style="font-family: 'Times New Roman';"><font size="3">/etc/security/prof_attr</font></span><span style="font-family: 'Times New Roman';"><font size="3"> </font></span><span style="font-family: 'Times New Roman';"><font size="3"> </font></span><span style="font-family: 'Times New Roman';"><font size="3"># Predefined profile (collection of rights)</font></span></p><p style="margin: 0pt 0pt 6pt;"><span style="font-family: StarSymbol;"><font size="2">•</font></span> <span style="font-family: 'Times New Roman';"><font size="3">/etc/security/policy.conf</font></span><span style="font-family: 'Times New Roman';"><font size="3"> </font></span><span style="font-family: 'Times New Roman';"><font size="3"># User defaults</font></span></p><p style="margin: 0pt 0pt 6pt;"><span style="font-family: StarSymbol;"><font size="2">•</font></span> <span style="font-family: 'Times New Roman';"><font size="3">/etc/security/exec_attr</font></span><span style="font-family: 'Times New Roman';"><font size="3"> </font></span><span style="font-family: 'Times New Roman';"><font size="3"> </font></span><span style="font-family: 'Times New Roman';"><font size="3"># Rights Profile and associated execution attributes</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><table style="margin-left: 0pt;" class="zeroBorder" cellpadding="0" cellspacing="0"><tbody>
<tr><td style="vertical-align: top; width: 234.15pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">profiles <username></font></span></p></td><td style="vertical-align: top; width: 284.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Display security profiles assigned to user</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 234.15pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">profiles -l <username></font></span></p></td><td style="vertical-align: top; width: 284.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Displays individual commands within a profile </font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 234.15pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">pfexec <cmd></font></span></p></td><td style="vertical-align: top; width: 284.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Executes commands with correct privileges</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 234.15pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">roles <username></font></span></p></td><td style="vertical-align: top; width: 284.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Display roles assigned to user</font></span></p></td></tr>
</tbody></table><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><h2 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><i><font size="4">Solaris Security Toolkit</font></i></b></span></h2><p style="margin: 0pt 0pt 6pt;"><span style="font-family: StarSymbol;"><font size="2">•</font></span> <span style="font-family: 'Times New Roman';"><font size="3">Download from </font></span><a href="http://www.sun.com/software/security/jass/"><span style="font-family: 'Times New Roman'; font-style: normal;"><font size="3">http://www.sun.com/software/security/jass/</font></span></a></p><p style="margin: 0pt 0pt 6pt;"><span style="font-family: StarSymbol;"><font size="2">•</font></span> <span style="font-family: 'Times New Roman'; font-style: normal;"><font size="3">Installed into /opt/SUNWjass</font></span></p><p style="margin: 0pt 0pt 6pt;"><span style="font-family: StarSymbol;"><font size="2">•</font></span> <span style="font-family: 'Times New Roman'; font-style: normal;"><font size="3">Run manual or integrated with Jumpstart</font></span></p><p style="margin: 0pt 0pt 6pt;"><span style="font-family: StarSymbol;"><font size="2">•</font></span> <span style="font-family: 'Times New Roman'; font-style: normal;"><font size="3">Ready made templates in /opt/SUNWjass/Drivers</font></span></p><p style="margin: 0pt 0pt 6pt;"><span style="font-family: StarSymbol;"><font size="2">•</font></span> <span style="font-family: 'Times New Roman'; font-style: normal;"><font size="3">Always have console access, as the tool-kit often blocks remote logins.</font></span></p><table style="margin-left: 0pt;" class="zeroBorder" cellpadding="0" cellspacing="0"><tbody>
<tr><td style="vertical-align: top; width: 234.15pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">./jass-execute -d secure.driver</font></span></p></td><td style="vertical-align: top; width: 284.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Hardens Solaris</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 234.15pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">./jass-execute -a secure.driver</font></span></p></td><td style="vertical-align: top; width: 284.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Audits Solaris against template</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 234.15pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">./jass-execute -c</font></span></p></td><td style="vertical-align: top; width: 284.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Clear previous edits.</font></span></p></td></tr>
</tbody></table><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><h2 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><i><font size="4">Miscellaneous Settings</font></i></b></span></h2><table style="margin-left: 0pt;" class="zeroBorder" cellpadding="0" cellspacing="0"><tbody>
<tr><td style="vertical-align: top; width: 234.15pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">/etc/ssh/sshd_config</font></span></p></td><td style="vertical-align: top; width: 284.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">SSH Settings</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Disable Root, Allow on SSH-2 protocol</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Consider naming specific users.</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Or disable well know users, oracle, admin....</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 234.15pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">vi /etc/security/policy.conf</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">change CRYPT_DEFAULT to 1 (BSD MD5)</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">CRYPT_DEFAULT=1</font></span></p></td><td style="vertical-align: top; width: 284.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Change password encryption</font></span></p></td></tr>
</tbody></table><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><h2 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><i><font size="4">Solaris IP Filter</font></i></b></span></h2><p style="margin: 0pt 0pt 6pt;"><span style="font-family: StarSymbol;"><font size="2">•</font></span> <span style="font-family: 'Times New Roman';"><font size="3">Not enables by default</font></span></p><p style="margin: 0pt 0pt 6pt;"><span style="font-family: StarSymbol;"><font size="2">•</font></span> <span style="font-family: 'Times New Roman';"><font size="3">Packet Filtering available between zones.</font></span></p><p style="margin: 0pt 0pt 6pt;"><span style="font-family: StarSymbol;"><font size="2">•</font></span> <span style="font-family: 'Times New Roman';"><font size="3">NAT</font></span></p><p style="margin: 0pt 0pt 6pt;"><span style="font-family: StarSymbol;"><font size="2">•</font></span> <span style="font-family: 'Times New Roman';"><font size="3">Statefull</font></span></p><p style="margin: 0pt 0pt 6pt;"><span style="font-family: StarSymbol;"><font size="2">•</font></span> <span style="font-family: 'Times New Roman';"><font size="3">Manual configuration only</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><table style="margin-left: 0pt;" class="zeroBorder" cellpadding="0" cellspacing="0"><tbody>
<tr><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt 0pt 6pt;"><span style="font-family: 'Courier New';"><font size="2">vi /etc/ipf/ipf.conf</font></span></p></td><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Edit rules file</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">ipf -f /etc/ipf/ipf.conf</font></span></p></td><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Enabe rules files</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">ipf -Fa</font></span></p></td><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Disable Rules</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">ipf -Fi</font></span></p></td><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Disable incoming filter</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">Ipfstat</font></span></p></td><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">IP Filter stastics</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt 0pt 6pt;"><span style="font-family: 'Courier New';"><font size="2">svcadm enable network/ipfilter</font></span></p></td><td style="vertical-align: top; width: 259.5pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Enable the IP Filter</font></span></p></td></tr>
</tbody></table><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Rule Examples</font></span></p><table style="margin-left: 0pt;" class="zeroBorder" cellpadding="0" cellspacing="0"><tbody>
<tr><td style="vertical-align: top; width: 519pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">#/etc/ipf/ipf.conf</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2"># pass and log everything by default</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">pass in log on elxl0 all</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">pass out log on elxl0 all</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2"># Disable SSH access to this machine from 192.168.10.254</font></span></p><p style="margin: 0pt 0pt 6pt;"><span style="font-family: 'Courier New';"><font size="2">block in quick from 192.168.10.254/32 to port = 22</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2"># block, but don't log, incoming packets from other reserved addresses</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">block in quick on elxl0 from 10.0.0.0/8 to any</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">block in quick on elxl0 from 172.16.0.0/12 to any</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2"># block and log untrusted internal IPs. 0/32 is notation that replaces </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2"># address of the machine running Solaris IP Filter.</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">block in log quick from 192.168.1.15 to <thishost></font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">block in log quick from 192.168.1.43 to <thishost></font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2"># block and log X11 (port 6000) and remote procedure call </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2"># and portmapper (port 111) attempts</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">block in log quick on elxl0 proto tcp from any to elxl0/32 port = 6000 keep state</font></span></p><p style="margin: 0pt 0pt 14.15pt;"><span style="font-family: 'Courier New';"><font size="2">block in log quick on elxl0 proto tcp/udp from any to elxl0/32 port = 111 keep state</font></span></p></td></tr>
</tbody></table><p style="margin: 0pt;"><i><span style="font-family: 'Times New Roman';"><font size="3">Note – example taken from Sun IP Security Manual</font></span></i></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><h1 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><font size="5">DTrace</font></b></span></h1><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">A dynamic tracing facility that provides a comprehensive view of operating system and application behaviour. It has functionality similar to truss, apptrace, prex and mdb, bundled into a single scriptable tool that can examine both userland activity and the kernel. DTrace can be used on live production servers with often negligible impact on performance.</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Example D-scripts are provided in /usr/demo/dtrace </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">DTrace toolkit</font></span><span style="font-family: 'Times New Roman';"><font size="3"> </font></span><span style="font-family: 'Times New Roman';"><font size="3"> </font></span><a href="http://www.opensolaris.org/os/community/dtrace/dtracetoolkit"><span style="font-family: 'Times New Roman';"><font size="3">http://www.opensolaris.org/os/community/dtrace/dtracetoolkit</font></span></a></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">DTrace manual</font></span><span style="font-family: 'Times New Roman';"><font size="3"> </font></span><a href="http://docs.sun.com/app/docs/doc/817-6223"><span style="font-family: 'Times New Roman';"><font size="3">http://docs.sun.com/app/docs/doc/817-6223</font></span></a></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Quick Ref</font></span><span style="font-family: 'Times New Roman';"><font size="3"> </font></span><span style="font-family: 'Times New Roman';"><font size="3"> </font></span><a href="http://developers.sun.com/solaris/articles/dtrace_quickref/dtrace_quickref.html"><span style="font-family: 'Times New Roman';"><font size="3">http://developers.sun.com/solaris/articles/dtrace_quickref/dtrace_quickref.html</font></span></a></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">How to </font></span><span style="font-family: 'Times New Roman';"><font size="3"> </font></span><span style="font-family: 'Times New Roman';"><font size="3"> </font></span><a href="http://www.sun.com/software/solaris/howtoguides/dtracehowto.jsp"><span style="font-family: 'Times New Roman';"><font size="3">http://www.sun.com/software/solaris/howtoguides/dtracehowto.jsp</font></span></a></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Dtrace Cheatsheet</font></span><span style="font-family: 'Times New Roman';"><font size="3"> </font></span><a href="http://blogs.sun.com/brendan/entry/dtrace_cheatsheet"><span style="font-family: 'Times New Roman';"><font size="3">http://blogs.sun.com/brendan/entry/dtrace_cheatsheet</font></span></a></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3"> </font></span></p><h1 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><font size="5">Solaris 10 minor differences</font></b></span></h1><p style="margin: 0pt;"><span style="font-family: 'Times New Roman'; font-style: normal;"><font size="3"> </font></span></p><table style="margin-left: 0pt;" class="zeroBorder" cellpadding="0" cellspacing="0"><tbody>
<tr><td style="vertical-align: top; width: 234.15pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">routeadm -e ipv4-forwarding</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">routeadm -d ipv4-routing</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">routeadm -e ipv4-routing</font></span></p></td><td style="vertical-align: top; width: 284.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Routing commands, for IP Forwarding and routing (in.routed)</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 234.15pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">echo “server IP_ADDRESS” >> /etc/inet/ntp.conf</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">svcadm enable /network/ntp</font></span></p></td><td style="vertical-align: top; width: 284.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Enable NTP</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 234.15pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">vi /etc/security/policy.conf</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">change CRYPT_DEFAULT to 1 (BSD MD5)</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">CRYPT_DEFAULT=1</font></span></p></td><td style="vertical-align: top; width: 284.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Change password encryption</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 234.15pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">svccfg -s x11-server setprop options/tcp_listen = true</font></span></p></td><td style="vertical-align: top; width: 284.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Allow X11 connection Solaris 10</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 234.15pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">dumpadm -d /dev/dsk<device></font></span></p></td><td style="vertical-align: top; width: 284.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Manage Dumps to dedicated device (support ZFS root)</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 234.15pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">dumpadm -c /var/crash/<hostname></font></span></p></td><td style="vertical-align: top; width: 284.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Manage core dumps</font></span></p></td></tr>
</tbody></table><p style="margin: 0pt;"><span style="font-family: 'Times New Roman'; font-style: normal;"><font size="3"> </font></span></p><h1 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><font size="5">Live Upgrade (ZFS)</font></b></span></h1><table style="margin-left: 0pt;" class="zeroBorder" cellpadding="0" cellspacing="0"><tbody>
<tr><td style="vertical-align: top; width: 234.15pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">lucreate -c <be_name> -n <new-be_name></font></span></p></td><td style="vertical-align: top; width: 284.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Name current boot environment and create New BE.</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 234.15pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">lucreate -n <new-be_name></font></span></p></td><td style="vertical-align: top; width: 284.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Create new environment</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 234.15pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">lustatus </font></span></p></td><td style="vertical-align: top; width: 284.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Display boot environment</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 234.15pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">luupgrade -u -n <new-be_name> -s /net/<ip address>/export/install</font></span></p></td><td style="vertical-align: top; width: 284.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Live OS Upgrade</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 234.15pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">cd 10_Recommended</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">luupgrade -t -n <new-be_name> -O \</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">-t -s . ./patch_order</font></span></p></td><td style="vertical-align: top; width: 284.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Patch a live environment from downloaded patch cluster.</font></span></p></td></tr>
<tr><td style="vertical-align: top; width: 234.15pt;"><p style="margin: 0pt;"><span style="font-family: 'Courier New';"><font size="2">luactivate <new-be_name> </font></span></p></td><td style="vertical-align: top; width: 284.85pt;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Activate Boot environment, after reboot.</font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">DON'T USE “reboot” command, always use init or shutdown.</font></span></p></td></tr>
</tbody></table><h1 style="margin: 12pt 0pt 6pt;"><span style="font-family: Arial;"><b><font size="5">Reference Material</font></b></span></h1><p style="margin: 0pt;"><span style="font-family: 'Times New Roman'; font-style: normal;"><font size="3"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman'; font-style: normal;"><font size="3">Little Known Solaris Features </font></span><a href="http://www.c0t0d0s0.org/pages/lksfbook.html"><span style="font-family: 'Times New Roman'; font-style: normal;"><font size="3">http://www.c0t0d0s0.org/pages/lksfbook.html</font></span></a></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman'; font-style: normal;"><font size="3">Solaris Security Tool Kit </font></span><a href="http://docs.sun.com/app/docs/prod/61ec778c-5688-47ba-b4bf-af20b140731a"><span style="font-family: 'Times New Roman'; font-style: normal;"><font size="3">http://docs.sun.com/app/docs/prod/61ec778c-5688-47ba-b4bf-af20b140731a</font></span></a></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman'; font-style: normal;"><font size="3">Solaris Patching Best Practise </font></span><a href="http://www.sun.com/bigadmin/features/articles/patch_management.jsp"><span style="font-family: 'Times New Roman'; font-style: normal;"><font size="3">http://www.sun.com/bigadmin/features/articles/patch_management.jsp</font></span></a></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman'; font-style: normal;"><font size="3">Solaris Zones FAQ </font></span><a href="http://hub.opensolaris.org/bin/view/Community+Group+zones/faq"><span style="font-family: 'Times New Roman'; font-style: normal;"><font size="3">http://hub.opensolaris.org/bin/view/Community+Group+zones/faq</font></span></a></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman'; font-style: normal;"><font size="3">Zonestat Util </font></span><a href="http://hub.opensolaris.org/bin/view/Project+zonestat/"><span style="font-family: 'Times New Roman'; font-style: normal;"><font size="3">http://hub.opensolaris.org/bin/view/Project+zonestat/</font></span></a></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman'; font-style: normal;"><font size="3">SVC SMF </font></span><a href="https://www.sun.com/offers/docs/smfmanifest_howto.pdf"><span style="font-family: 'Times New Roman'; font-style: normal;"><font size="3">https://www.sun.com/offers/docs/smfmanifest_howto.pdf</font></span></a></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman'; font-style: normal;"><font size="3"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman'; font-style: normal;"><font size="3"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman'; font-style: normal;"><font size="3"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman'; font-style: normal;"><font size="3"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman'; font-style: normal;"><font size="3"> </font></span></p><p style="margin: 0pt;"><span style="font-family: 'Times New Roman'; font-style: normal;"><font size="3"> </font></span></p><table style="margin-left: 0pt;" class="zeroBorder" cellpadding="0" cellspacing="0"><tbody>
<tr><th style="vertical-align: top;"><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="3">Andy Paton</font></span></p></th><th style="vertical-align: top;"><p style="margin: 0pt; text-align: center;"><span style="font-family: 'Times New Roman';"><font size="3">18</font></span><span style="font-family: 'Times New Roman';"><font size="3">/</font></span><span style="font-family: 'Times New Roman';"><font size="3">18</font></span></p></th><th style="vertical-align: top;"><p style="margin: 0pt; text-align: right;"><span style="font-family: 'Times New Roman';"><font size="3">7/11/09</font></span></p></th></tr>
</tbody></table><p style="margin: 0pt;"><span style="font-family: 'Times New Roman';"><font size="2">Version 2.1</font></span></p></div>Andy Patonhttp://www.blogger.com/profile/06107484106140835311noreply@blogger.com0tag:blogger.com,1999:blog-7031075.post-87836929390063240702009-10-21T23:42:00.003+01:002009-10-27T11:27:08.830+00:00SMcli Examples<b>SMcli Examples from the command line</b><br />
<br />
<br />
\\ Create snapshot<br />
SMcli <ip address> -c "set session password=\"<password>\" ; create snapshotVolume basevolume=\"TEST_VOL_REPL\" repositoryPercentOfBase=80 repositoryFullPolicy=failSnapShot ; "<br />
<br />
\\ Delete snapshot/volume<br />
SMcli <ip address> -c "set session password=\"<password>\" ; delete volume [\"TEST_VOL_REPL-1\"] ; "<br />
<br />
\\ Create Remote Mirror (ON PRIMARY STORAGE)<br />
SMcli <Primary IP address> -c "set session password=\"<password>\" ; create remoteMirror primary=\"TEST_VOL\" secondary=\"TEST_VOL_REPL\" remotestorageArrayName=\"<Secondary ARRAY NAME>\" remotePassword=\"<password>\" syncPriority=medium writeOrder=preserved writeMode=synchronous;"<br />
<br />
\\ Remove Remote Mirror<br />
SMcli <ip address> -c "set session password=\"<password>\" ; remove remoteMirror localVolume [\"TEST_VOL_REPL\"] ;"<br />
<br />
\\ Map LUN<br />
SMcli <ip address> -c "set session password=\"<password>\" ; set volume [\"TEST_VOL_REPL\"] logicalUnitNumber=6 host=\"<HOST NAME>\"; "<br />
<br />
\\ Un Mapp LUN<br />
SMcli <ip address> -c "set session password=\"<password>\" ; remove volume [\"TEST_VOL_REPL\"] lunMapping host=\"<HOST NAME>\"; "<br />
<br />
\\ View Lun Maps<br />
SMcli <ip address> -c "set session password=\"<password>\" ; Show storageArray lunMappings host [\"<HOST NAME>\"];"<br />
<br />
<b><br />
SMcli Examples from a SMcli Script File</b><br />
<br />
// call by SMcli <ip address> -f <script name><br />
<br />
<br />
// Set Password<br />
set session password="<password>" ;<br />
<br />
// Print statement<br />
show "Hello World" ;<br />
<br />
// Create snapshot<br />
create snapshotVolume basevolume="TEST_VOL_REPL" repositoryPercentOfBase=80 repositoryFullPolicy=failSnapShot ;<br />
<br />
// Delete snapshot-volume<br />
delete volume ["TEST_VOL_REPL-1"] ;<br />
<br />
// Create Remote Mirror<br />
<br />
create remoteMirror primary="TEST_VOL" secondary="TEST_VOL_REPL" remotestorageArrayName="<Secondary ARRAY NAME>" remotePassword="<password>" syncPriority=medium writeOrder=preserved writeMode=synchronous;<br />
<br />
// Remove Remote Mirror<br />
show "* Break Mirror for TEST_VOL_REPL" ;<br />
remove remoteMirror localVolume ["TEST_VOL_REPL"] ;<br />
<br />
// Map LUN to HOST<br />
set volume ["TEST_VOL_REPL"] logicalUnitNumber=<LUN ID> host="<HOST NAME>";<br />
<br />
// Un Mapp LUN<br />
remove volume ["TEST_VOL_REPL"] lunMapping host="<HOST NAME>";<br />
<br />
<br />
// view mappings <br />
show storageArray lunMappings host ["<HOST NAME>"];Andy Patonhttp://www.blogger.com/profile/06107484106140835311noreply@blogger.com0tag:blogger.com,1999:blog-7031075.post-26662309554745441732009-03-06T21:09:00.001+00:002009-03-06T21:12:55.919+00:00Solaris 10 Administration Guide (11/06)My Solaris 10 Admin Guide (Sol10 11/06), needs updating but its a good start. click <a href="http://docs.google.com/Doc?id=dcxf52h3_117dgpdrpcn">here</a> to view.Andy Patonhttp://www.blogger.com/profile/06107484106140835311noreply@blogger.com0tag:blogger.com,1999:blog-7031075.post-78935634690978506192009-02-22T22:11:00.001+00:002013-03-14T15:05:47.758+00:00S92A - Just be glad its them (NZ) and not you (UK)<a href="http://creativefreedom.org.nz/blackout.html"><img alt="New Zealand's new Copyright Law presumes 'Guilt Upon Accusation' and will Cut Off Internet Connections without a trial. Join the black out protest against it!" src="http://creativefreedom.org.nz/library/black-out/banner-300x250.gif" style="border: 1px solid black;" /></a>Andy Patonhttp://www.blogger.com/profile/06107484106140835311noreply@blogger.com0tag:blogger.com,1999:blog-7031075.post-18863530204380086402009-02-14T12:23:00.001+00:002009-02-14T12:23:15.964+00:00P2V Slackware 11<br /><br /> <br /> <br /> <br />P2V Slackware 11 2.4 Kernel 32bit<br><br><br>Slackware running on ESX 3.5u3<br><br>Needed media or ISO's<br><ul><li>VMWARE - Convertor Media</li><li>Slackware 11 CD1 <a title="http://www.mirrorservice.org/sites/ftp.slackware.com/pub/slackware/slackware-11.0-iso" target="_blank" href="http://www.mirrorservice.org/sites/ftp.slackware.com/pub/slackware/slackware-11.0-iso" id="agui">http://www.mirrorservice.org/sites/ftp.slackware.com/pub/slackware/slackware-11.0-iso</a> <br></li><li>Or SLAX 4.2 - <a title="http://ftp.sh.cvut.cz/MIRRORS/slax/SLAX-4.2.x/" target="_blank" href="http://ftp.sh.cvut.cz/MIRRORS/slax/SLAX-4.2.x/" id="syzc">http://ftp.sh.cvut.cz/MIRRORS/slax/SLAX-4.2.x/</a> </li></ul><br><br>Use the VMWARE Convertor CD to transfer the environment.<br>Use cold boot from CD<br><br>FROM ESX/VMWARE<br><br><div style="margin-left: 40px;">Change created VM machine settings to <br></div><ul style="margin-left: 40px;"><li>Linux-32bit</li><li>BusLogic SCSI controller (default)</li><li>Add additional memory if required - recommended at-least 256Mb</li></ul><div style="margin-left: 40px;"><br>Boot from Slackware CD media.<br> Enter scsi module on LILO <br> boot: scsi.s<br><br>Mount local root disk <br>$ mount /dev/<sda2> /mnt <br>$ cd /mnt/dev<br>$ ./MAKEDEV sda1<br>$ ./MAKEDEV sda2<br><br>Enter chrooted environment<br>$ chroot /mnt<br><br>Rebuild Slackware Kernel<br>As default kernel did have BusLogic support for me.<br><br>$ cd /usr/src/linux<br><br>Enable SCSI and BusLogic Support<br>Under SCSI/Advanced put a "*" next BusLogic kernel module<br>$ make menuconfig<br><br>Build images, took 45 minutes on 2.4Ghz CP 256MB Mem.<br>$ make bzImage<br>$ make modules<br>$ make modules_install<br><br>$ cp /usr/src/linux/arch/i386/boot/bzImage /boot/vmlinuz-ESX<br><br>$ vi <code>/etc/lilo.conf</code><br><br /> <div><table class="zeroBorder" id="frf8" border="0" cellpadding="3" cellspacing="0"><tbody><tr><td width="100%">image = /boot/vmlinuz-ESX<br><br />root = /dev/hda1<br><br />label = Slackware-2.4-ESX <br><br />read-only</td></tr></tbody></table></div><br>$ mount /proc<br>$ lilo<br>exit ;exit ;exit ; reboot<br><br>On reboot select Slackware-2.4-ESX on LILO screen<br><br><br></div>Done<br><div><div style="margin-left: 40px;"><br><br></div><br><br><br><br><br><br><br><br></div><br>Andy Patonhttp://www.blogger.com/profile/06107484106140835311noreply@blogger.com0