Author Archives: admin

netapp aggr efficiency

To view compaction, dedupe and compression results. cl1::*> aggr show-efficiency -aggregate n2_aggr1 Name of the Aggregate: n2_aggr1 Node where Aggregate Resides: cl1-02 Logical Size Used by Volumes, Clones, Snapshot Copies in the Aggregate: 118.8MB Total Physical Used: 126.5MB Total Storage … Continue reading

Posted in Uncategorized | Leave a comment

Netapp add snapmirror relationship with altavault nfs share

cl1::> snapmirror create -source-path svm1:vol1 -destination-path 192.168.4.244:/share/rfs/nfs -type xdp Operation succeeded: snapmirror create for the relationship with destination “192.168.4.244:/share/rfs/nfs”.

Posted in Uncategorized | Leave a comment

docker service swarm web example

Docker service swarm web 4 nodes 6 containers PDF Docker service swarm web 4 nodes 6 containers PDF

Posted in Uncategorized | Leave a comment

cdot snapmirror exercise with commands

1. Create a new SVM (SVMcl1) on cluster1 and add a LIF to the SVM: 192.168.0.200 vserver create -vserver SVMcl1 -rootvolume root -aggregate aggr1_n1 -rootvolume-security-style unix net int create -vserver SVMcl1 -lif lif1 -address 192.168.0.200 -netmask 255.255.255.0 -role data \ … Continue reading

Posted in Uncategorized | Leave a comment

cdot snapmirror exercise without commands

1. Create a new SVM (SVMcl1) on cluster1 and add a LIF to the SVM: 192.168.0.200 2. Add a 500MB volume (cl1data) to the SVM with junction-path: /data 3. Add an export-policy with a rule for the CentOS VM: (192.168.0.10) … Continue reading

Posted in Uncategorized | Leave a comment

redhat clustering

Redhat Clustering

Posted in Uncategorized | Leave a comment

cdot autosupport test

cluster1::> system node autosupport invoke -type test -node node1

Posted in Uncategorized | Leave a comment

openstack compute node on centos7

yum install -y https://rdo.fedorapeople.org/rdo-release.rpm

Posted in Uncategorized | Leave a comment

openstack storagebackends

storage backends

Posted in Uncategorized | Leave a comment

openstack lvm and cinder

If you do not specify a volume group, cinder will create his own volume group called cinder-volumes and use loopback devices for physical volumes. If you do create and specify a volume group, you should specify the volume group to … Continue reading

Posted in Uncategorized | Leave a comment

CDOT 8.3 statistics catalog example

statistics catalog instance show -object lif statistics catalog instance show -object volume statistics catalog counter show -object lif statistics catalog counter show -object volume statistics start -object lif -counter recv_data statistics stop statistics show -object lif

Posted in Uncategorized | Leave a comment

ceph

ceph

Posted in Uncategorized | Leave a comment

solaris 11 exercise zones (1)

1. The zones will have /software as root. # df -h | grep software software 20G 33K 16G 1% /software 2. Create a vnic for a new zone. # dladm show-phys LINK MEDIA STATE SPEED DUPLEX DEVICE net0 Ethernet up … Continue reading

Posted in solaris | Leave a comment

clustermode SFO

In CMode, when a failover or takeover has taken place, the root-aggregate of the partnernode is owned by the surviving partner. How to get to the rootvolume of the partner’s root-aggregate? 1. Log in to she systemshell. 2. Run the … Continue reading

Posted in netapp | Leave a comment

netapp hwassist

There are specific Data ONTAP commands for configuring the hardware-assisted takeover feature. If you want to… Use this command… Disable or enable hardware-assisted takeover storage failover modify hwassist Set the partner address storage failover modify hwassist-partner-ip Set the partner port … Continue reading

Posted in netapp | Leave a comment

netapp adding disks

7-mode and cmode

Posted in netapp | Leave a comment

linux allocate memory

#!/bin/bash echo “Provide sleep time in the form of NUMBER[SUFFIX]” echo ” SUFFIX may be ‘s’ for seconds (default), ‘m’ for minutes,” echo ” ‘h’ for hours, or ‘d’ for days.” read -p “> ” delay echo “begin allocating memory…” … Continue reading

Posted in linux | Leave a comment

solaris 11 integrated load balancer example

ilb example

Posted in solaris | Leave a comment

solaris 11 lacp dlmp link-aggregate

1. create an aggregate (aggr0) over net1 net2 and net3 ( in vbox Adapter1=net3 Adapter2=net0 Adapter3=net1 Adapter4=net2 ) dladm create-aggr -l net1 -l net2 -l net3 aggr0 dladm modify-aggr -m trunk aggr0 (trunk is the default though) dladm show-aggr -L … Continue reading

Posted in solaris | Leave a comment

solaris11 distro_const

distribution constructor pfexec pkg install SUNWdistro-const mkdir -p /ips/manifests cp /usr/share/distro_const/dc_text_x86.xml /ips/manifests/ distro_const build /ips/manifests/dc_text_x86.xml

Posted in Uncategorized | Leave a comment

solaris 11 exercise pkg search and install

To search for a package in a particular publisher: # pkg search -s http://192.168.4.150 (output skipped) To install a package from a particular publisher: # pkg install -g http://192.168.4.150 (output skipped)

Posted in solaris | Leave a comment

solaris script to create and delete a zone

1. create a filesystem and install a zone then snapshot the filesystem and use it for cloning at zonecreation zonecfg -z basezone create set zonepath=/zonepool/basezone exit zoneadm -z base install zfs snapshot zonepool/basezone@base script: zcreate ========================================== #!/usr/bin/bash if test $# … Continue reading

Posted in solaris | Leave a comment

testje

ssh hello

Posted in Uncategorized | Leave a comment

esxi mac address

vim-cmd hostsvc/net/info | grep “mac =” mac = (string) [ mac = “00:1b:78:59:eb:52″, mac = “00:1b:78:59:eb:53″, mac = “80:ee:73:63:4e:1c”, mac = “00:1b:78:59:eb:52″,

Posted in Virtualization | Leave a comment

solaris11 network stack

solaris 11 network stack

Posted in solaris | Leave a comment

solaris11 networking getting started

oracle html Oracle New Features of Oracle Solaris 11 Network Configuration Manual and Automatic Networking Modes Manual Network Configuration Name Service Configuration Using SMF Setting the Host Name Changes to /etc/hosts Automatic Network Configuration Using Profiles Network Profiles Creating a … Continue reading

Posted in solaris | Leave a comment

solaris11 ai_installer non_global zones

installing non-global zones with ai

Posted in solaris, Uncategorized | Leave a comment

solaris 11 exercise zones (2) resource control

Situation: global zone, zone1 and zone2. First bring all processes under FSS control dispadmin -d FSS this will set the default scheduling to FSS at reboot. file: /etc/dispadmin.conf To set up a running system. priocntl -s -c FSS -i all … Continue reading

Posted in solaris | Leave a comment

distro_const example

distro_const

Posted in solaris | Leave a comment

solaris 11 exercise zones (3) clone zone

1. create webzone-1 root@global:~# zonecfg -z webzone-1 “create ; set zonepath=/zones/webzone-1″ 2. install webzone-1 root@global:~# zoneadm -z webzone-1 install 3. login and configure webzone-1 root@global:~# zoneadm -z webzone-1 boot; zlogin -C webzone-1 4. create template-profile in webzone-1 root@global:~# zlogin webzone-1 … Continue reading

Posted in solaris | Leave a comment

solaris 11 exercise smf (3) system identity

# svccfg –s svc:/system/identity:node setprop config/nodename = “myhost” # svcadm refresh svc:/system/identity:node # svcadm restart svc:/system/identity:node Configuring console keyboard layout: # svccfg –s keymap:default setprop keymap/layout = UK-English # svcadm refresh keymap # svcadm restart keymap Configuring system locale: # … Continue reading

Posted in Uncategorized | Leave a comment

solaris11 create multiple repositoryservers

original url: omnios.omniti Creating Repos # Why? Because it’s easy. It’s also a good way to separate packages with different dispositions, such as core OS vs. site-specific. First, create the repo. Any directory will do, but it’s usually a good … Continue reading

Posted in solaris | Leave a comment

linux install vmwaretools (CentOS)

create /etc/yum.repos.d/vmware.repo with the following content: [vmware-tools] name=VMware Tools #baseurl=http://packages.vmware.com/tools/esx/5.1latest/rhel5/i386 #baseurl=http://packages.vmware.com/tools/esx/5.1latest/rhel5/x86_64 #baseurl=http://packages.vmware.com/tools/esx/4.0latest/rhel6/x86_64 #baseurl=http://packages.vmware.com/tools/esx/4.0latest/rhel5/i686 baseurl=http://packages.vmware.com/tools/esx/4.0latest/rhel6/i686 enabled=1 gpgcheck=1 gpgkey=http://packages.vmware.com/tools/keys/VMWARE-PACKAGING-GPG-RSA-KEY.pub run the following command: yum install vmware-tools-esx-nox

Posted in linux, Virtualization | Leave a comment

solaris 11 zones (4) delegation example

Delegate zonemanagement of zone3 to user peter. # zoneadm list -cv ID NAME STATUS PATH BRAND IP 0 global running / solaris shared 2 zone3 running /rpool/zones/zone3 solaris excl # zonecfg -z zone3 zonecfg:zone3> add admin zonecfg:zone3:admin> set user=peter zonecfg:zone3:admin> … Continue reading

Posted in solaris | Leave a comment

solaris 11 exercise zfs (2) and intentlog (zil)

sync=standard This is the default option. Synchronous file system transactions (fsync, O_DSYNC, O_SYNC, etc) are written out (to the intent log) and then secondly all devices written are flushed to ensure the data is stable (not cached by device controllers). … Continue reading

Posted in Uncategorized | Leave a comment

solaris 11 exercise zfs (6) encryption

example with key zfs create -o encryption=on rpool/cryptfs Enter passphrase for ‘rpool/cryptfs’: Enter again: zfs snapshot rpool/cryptfs@snap1 zfs clone rpool/cryptfs@snap1 rpool/cryptclone Enter passphrase for ‘rpool/cryptclone’: Enter again: example with keyfile # pktool genkey keystore=pkcs11 keytype=aes keylen=128 label=mykey Enter PIN for … Continue reading

Posted in Uncategorized | Leave a comment

solaris11 flowadm (1)

Simple flowadm example. server1 – 192.168.4.142, nic-name – net0 client1 – 192.168.4.161 client2 – 192.168.4.6 On server1 that runs solaris 11 run the following commands: # flowadm add-flow -l net0 -a remote_ip=192.168.4.161 ssh-1 # flowadm add-flow -l net0 -a remote_ip=192.168.4.6 … Continue reading

Posted in Uncategorized | Leave a comment

solaris 11 crossbow

crossbow

Posted in Uncategorized | Leave a comment

solaris11 integrated load balancer (3)

ILB Operation Modes ILB supports stateless Direct Server Return (DSR) and Network Address Translator (NAT) modes of operation for IPv4 and IPv6, in single-legged and dual-legged topologies. Stateless DSR topology NAT mode (full-NAT and half-NAT) topology Direct Server Return Topology … Continue reading

Posted in solaris | Leave a comment

solaris11 integrated load balancer (2)

Configuring ILB This section describes the steps for setting up ILB to use a half-NAT topology to load balance traffic among two servers. See the NAT topology implementation in ILB Operation Modes. How to Configure ILB Assume a role that … Continue reading

Posted in Uncategorized | Leave a comment

solaris11 integrated load balancer (1)

How to Enable ILB Before You Begin Make sure that the system’s role-based access control (RBAC) attribute files have the following entries. If the entries are not present, add them manually. File name: /etc/security/auth_attr solaris.network.ilb.config:::Network ILB Configuration::help=NetworkILBconf.html solaris.network.ilb.enable:::Network ILB Enable … Continue reading

Posted in Uncategorized | Leave a comment

solaris11 zone delegation

Delegation of Solaris Zone Administration By darrenm on Jul 04, 2012 In Solaris 11 ‘Zone Delegation’ is a built in feature. The Zones system now uses finegrained RBAC authorisations to allow delegation of management of distinct zones, rather than all … Continue reading

Posted in Uncategorized | Leave a comment

solaris11 linkprop

From the global zone enable link protection on vnic0: We can set different modes: ip-nospoof, dhcp-nospoof, mac-nospoof and restricted. ip-nospoof: Any outgoing IP, ARP, or NDP packet must have an address field that matches either a DHCP-configured IP address or … Continue reading

Posted in Uncategorized | Leave a comment

solaris 11 FMA event classes

(svccfg setnotify -g mailto:) For convenience, the tags problem- {diagnosed,updated,repaired,resolved} describe the lifecycle of a problem diagnosed by the FMA subsystem – from initial diagnosis to interim updates and finally problem closure. These tags are aliases for underlying FMA protocol … Continue reading

Posted in Uncategorized | Leave a comment

solaris 11 svcadm listcust -M

Deleting a service from the SMF repository. 1. svcadm disable newsvc 2. svccfg delete newsvc (this will not really delete the service but it ‘MASKS’ it. 3. svcs newsvc (no instances will be found) 4. svccfg listcust -M | grep … Continue reading

Posted in Uncategorized | Leave a comment

solaris 11 zones and more

Best Way to Update Software in Zones Part III of Software Management Best Practices for Oracle Solaris 11 Express By Ginny Henningsen, August 2011 Part I – Best Way to Update Software with IPS Part II – Best Way to … Continue reading

Posted in Uncategorized | 1 Comment

solaris 11 pkg build-branch

Oracle Solaris Package Versioning Package Identifier: FMRI described the pkg.fmri attribute and the different components of the version field, including how the version field can be used to support different models of software development. This section explains how the Oracle … Continue reading

Posted in Uncategorized | Leave a comment

solaris 11 fat packages

Setting up Solaris IPS servers for multiple architecture (fat) packages Monday, August 6, 2012 This is part 2 of a three-part series on building and packaging matplotlib as a multi-architecture, Solaris IPS package. Compiling matplotlib 1.1.0 for Solaris on SPARC … Continue reading

Posted in Uncategorized | Leave a comment

solaris – cpu strands

http://sparcv9.blogspot.nl/2010/02/thread-performance-on-modern-sparc.html

Posted in oracle, solaris | Leave a comment

vmware vCenter Server appliance 5480

After deploying OVF from vSphere client, you cannot use vSphere client to connect to vCenterServer. You will get an “unknown connection error”. Use a browser to connect to port 5480 on the appliance to configure the embedded db, sso, and … Continue reading

Posted in Virtualization | Leave a comment

solaris 11 vncserver

Enable XDMCP connections by editing the /etc/gdm/custom.conf file. [xdmcp] Enable=true Restart the GDM service. # svcadm restart gdm Enable the Xvnc inetd service. # inetadm -e xvnc-inetd Connect from another machine and verify that you see the login screen and … Continue reading

Posted in solaris | Leave a comment

solaris 11 exercise ips (2) local repository

# zfs create rpool/export/repoSolaris11 # zfs set atime=off rpool/export/repoSolaris11 # pkgrepo create /export/repoSolaris11 # pkgrecv -s http://pkg.oracle.com/solaris/release/ -d /export/repoSolaris11 ‘*’ Processing packages for publisher solaris … Retrieving and evaluating 4401 package(s)… Creating Plan \   # svccfg -s application/pkg/server setprop … Continue reading

Posted in solaris | Leave a comment

clustermode add private network

The existing cluster has two dedicated network ports. cl1-02::> net int show (network interface show) Logical Status Network Current Current Is Vserver Interface Admin/Oper Address/Mask Node Port Home ———– ———- ———- —————— ————- ——- —- cl1-02 clus1 up/- 169.254.229.226/16 cl1-02 … Continue reading

Posted in netapp | Leave a comment

Solaris privileges in perspective (2)

System Security in SolarisTM 10: Privileges and Zones in Perspective — Part 2 Peter van der Weerd In part one, I discussed the improvements made to system security by using privileges as opposed to using the su-command. It showed that priviliges can … Continue reading

Posted in Uncategorized | Leave a comment

Solaris privileges in perspective (1)

System Security in SolarisTM 10: Privileges and Zones in Perspective — Part 1 Peter van der Weerd In Unix distributions through the ages, security has been based on two entities: IDs and file permissions. Every file has a UID (user … Continue reading

Posted in Uncategorized | Leave a comment

solaris suncluster quorum issue

Sun Cluster 3.x Quorum Issue Peter van der Weerd Clustering software usually consists of a collection of scripts and binaries that unconfigure an interface, bring down an application, unmount some file systems, give away a group of disks, and reverse … Continue reading

Posted in Uncategorized | Leave a comment

clustermode 8.2 licenses

CLUSTERED SIMULATE ONTAP LICENSES +++++++++++++++++++++++++++++++++ These are the licenses that you use with the clustered Data ONTAP version of Simulate ONTAP to enable Data ONTAP features. There are four groups of licenses in this file: – cluster base license – … Continue reading

Posted in Uncategorized | Leave a comment

opensuse grub2

grub2

Posted in Uncategorized | Leave a comment

linux grub2

grub2

Posted in linux | Leave a comment

clustermode 8.2 snapmirror vault

Source Volume and Destination Volume should have the same Language! Source Volume is RW type. Destination Volume is DP type.   1. create a schedule (to be used for the updates of the vault relationship) job schedule cron create -name … Continue reading

Posted in netapp | Leave a comment

clustermode delegate volume create to vserver user

1. security login create -vserver vs1 -username user1 -application ssh -authmethod password -role vsadmin 2. vserver modify -vserver vs1 …. -aggr-list aggr1,… 3. net int show (snipped) vs1 data1 up/up 192.168.4.103/24 cl1-01 e0d false data2 up/up 192.168.4.105/24 cl1-02 e0d true … Continue reading

Posted in netapp | Leave a comment

clustermode login to other node via interconnect

(with thanks to Wietse Muizelaar) If, for whatever reason, you have to do work on a node or copy files from one node to the other node, but the data and management interfaces are unuseable, you can use the interconnect … Continue reading

Posted in netapp | Leave a comment

solaris change miniroot

gunzip < solaris_build/boot/x86.miniroot >/tmp/miniroot lofiadm -a /tmp/miniroot /dev/lofi/2 # mount /dev/lofi/2 /mnt # echo ‘iprb “pci8086,1050″‘ >>/mnt/etc/driver_aliases # tail -2 driver_aliases iprb “pci8086,1050″ umount /mnt # lofiadm -d /dev/lofi/2 # gzip < /tmp/miniroot > solaris_build/boot/x86.miniroot

Posted in solaris | Leave a comment

mac osx burn usb

$ diskutil list Figure out what your USB device is called with mount or sudo dmesg | tail (e.g. /dev/disk1) and unmount the partitions on the device (i.e., /dev/disk1s1) while keeping the device proper (i.e., /dev/disk1): $ diskutil unmountDisk /dev/disk1 … Continue reading

Posted in Uncategorized | Leave a comment

clonezilla

http://www.openlogic.com/wazi/bid/188051/With-Clonezilla-Install-Once-and-Clone-Forever

Posted in linux | Leave a comment

linux opensuse custom init script

1. create the ‘program’ 2. create the init.d script 3. create the links 4. test 1. The ‘program’ is a script that writes its pid to a file in /var/run. The content of the file is used when stopping the … Continue reading

Posted in linux | Leave a comment

suse openvpn cert

Setting Up Your VPN Server Using Certificate Authority This section explains how to build a VPN server that allows more than one connection at the same time. This is done with a public key infrastructure (PKI). A PKI consists of … Continue reading

Posted in Uncategorized | Leave a comment

linux suse openvpn

VPN Server Configuration Install the package openvpn on the machine that will later become your VPN server. Open a shell, become root and create the VPN secret key: openvpn –genkey –secret /etc/openvpn/secret.key Copy the secret key to your client: scp … Continue reading

Posted in linux | Leave a comment

open suse repositories

repos

Posted in linux | Leave a comment

7000 snapvault

#!/usr/bin/bash #variables source=pool_0/local/base/source dest=pool_0/local/base/source node2=”192.168.108.61 confirm shell ” schedule=60 #functions function baseline { zfs snapshot ${source}@currentfs zfs send ${source}@currentfs|ssh ${node2} zfs receive ${dest}@currentfs echo “baseline created” } function dryrun { run=0 ret=5 echo dry while (($run

Posted in solaris | Leave a comment

7000 collect IOPS

#!/bin/bash run=0 #current cycle times=10 #number of times to run interval=5 #interval echo “Operations per second per 5 seconds” > collectfile #while run is smaller than times #dataset-026 collects the number of NFSv4 operations per second #awk reports the third … Continue reading

Posted in solaris | Leave a comment

solaris linux create sparse file

# dd of=sparse-file bs=1k seek=55120 count=0 0+0 records in 0+0 records out 0 bytes transferred in 0.000030 secs (0 bytes/sec) nfs : ls -lh sparse-file -rw-r–r– 1 user1 daemon 54M May 12 20:08 sparse-file

Posted in linux, solaris | Leave a comment

7000 automatic login to systemshell

1. Make sure autologin is set up correctly 2. run the following command: # ssh -t 192.168.4.130 confirm shell (where 192.168.4.130 is the appliance) 3. example: query zpools # ssh -t 192.168.4.130 confirm shell zpool list NAME SIZE ALLOC FREE … Continue reading

Posted in solaris | Leave a comment

7000 shadow migration example

example

Posted in solaris | Leave a comment

7000 collect filesystemusage and create html

space.rc

Posted in solaris | Leave a comment

7000 split brain prevention

Preventing “Split-Brain” Conditions A common failure mode in clustered systems is known as “split-brain”; in this condition, each of the clustered heads believes its peer has failed and attempts takeover. Absent additional logic, this condition can cause a broad spectrum … Continue reading

Posted in solaris | Leave a comment

7000 adminguide oracle

guide

Posted in solaris | Leave a comment

7000 list projects filesystems and snapshots

This scripts requires automatic login on 7000 node It lists all projects, filesystems and snapshots. # vi fs #!/usr/bin/bash >data echo type:project:filesystem:snapshot echo ————————— for pr in `ssh node141 shares list` do echo “pr:${pr}::” echo “pr:${pr}::”>>data for fs in `ssh … Continue reading

Posted in solaris | Leave a comment

7000 get snapshot info

appl40:> shares select reversed select repshare snapshots select new get space_data space_data = 304K

Posted in solaris | Leave a comment

7000 datasets

determine datasets: # ssh root@192.168.73.141 analytics datasets list DATASET STATE INCORE ONDISK NAME dataset-000 active 710K 32.6K arc.accesses[hit/miss] dataset-001 active 242K 31.2K arc.l2_accesses[hit/miss] dataset-002 active 242K 31.2K arc.l2_size dataset-003 active 242K 31.2K arc.size dataset-004 active 880K 32.5K arc.size[component] dataset-005 active … Continue reading

Posted in solaris | Leave a comment

7000 datacollection example

This poorman’s example uses 1 script, 1 datacollectionfile and 1 html file 1. script (shares) collects project information from hardcoded 7000 node and stores it in file: collect then it creates an html file. 3. in browser load: http://localhost/test.html script: … Continue reading

Posted in solaris | Leave a comment

7000 get projects from node

#!/usr/bin/bash #get projects set `ssh root@192.168.73.141 shares list` counter=0 while test $# -gt 0 do let counter=$counter+1 shares[$counter]=$1 shift done #count projects count=`echo ${#shares[@]}` echo $0: $count projects found #get data item=1 while test $item -le $count do ssh root@192.168.73.141 … Continue reading

Posted in Uncategorized | Leave a comment

7000 reset SP password

howto

Posted in solaris | Leave a comment

linux suse kiwi

kiwi cookbook

Posted in Uncategorized | Leave a comment

linux suse zypper cheatsheet

zypper cheatsheet

Posted in linux | Leave a comment

7000 snmp

The SNMP Service on a Sun Storage 7000 Appliance By pmonday on Dec 16, 2009 Without a doubt, SNMP rules the playground in terms of monitoring hardware assets, and many software assets, in a data center monitoring ecosystem. It is … Continue reading

Posted in Uncategorized | Leave a comment

7000 cli networking (1)

configuration net interfaces select e1000g0 set admin=true configuration net interfaces select e1000g0 set v4addrs=192.168.4.136/24

Posted in Uncategorized | Leave a comment

7000 command line

configuration version show maintenance hardware show

Posted in Uncategorized | Leave a comment

solaris 7000 replication (2)

1. Client: make mountpoint for source and destination #mkdir source #mkdir dest 2. Source: create replication_target configuration remote_replication + name:target91 address:192.168.1.91 rootpw:******* create project shares projects + name:p90source create share shares + project:p90source name:p90fs1 3. Client: mount p90fs1 to client … Continue reading

Posted in solaris | Leave a comment

linux su to specific user

cat /etc/pam.d/su #%PAM-1.0 auth sufficient pam_rootok.so auth [default=1 success=ok ignore=ignore] pam_wheel.so trust use_uid group=group1 auth [success=2 default=die] pam_listfile.so item=user sense=allow onerr=fail file=/etc/security/su-group1-access auth [default=die success=ok ignore=ignore] pam_wheel.so trust use_uid group=group2 auth requisite pam_listfile.so item=user sense=allow onerr=fail file=/etc/security/su-group2-access auth include system-auth … Continue reading

Posted in Uncategorized | Leave a comment

linux block su

to allow only certain users to use ‘su’ uncomment this line in /etc/pam.d/su auth required pam_wheel.so use_uid add any user you want to allow to run ‘su’ to the wheel group in /etc/group: wheel:x:10:user1,user2

Posted in Uncategorized | Leave a comment

linux block users

How to block ssh users after 3 failed login attempts using pam_tally2.so How to block an ssh user after 3 failed login attempts using PAM 1.Edit /etc/pam.d/sshd and the following parameters auth required pam_tally2.so deny=3 onerr=fail unlock_time=300 The /etc/pam.d/sshd should … Continue reading

Posted in linux | Leave a comment

linux password hashing algorithm

Display Current Hashing Algorithm Type the following command: # authconfig –test | grep hashing Sample outputs: password hashing algorithm is md5 Configure Linux Server To Use The SHA-512 To configure the Linux system to use the SHA-512 algorithm, enter: # … Continue reading

Posted in linux | Leave a comment

7-mode ldap

filer*> options ldap ldap.ADdomain example.com ldap.base dc=example,dc=com ldap.base.group ldap.base.netgroup ldap.base.passwd ldap.enable on ldap.name cn=my_user,ou=my_users,dc=example,dc=com ldap.nssmap.attribute.gecos name ldap.nssmap.attribute.gidNumber msSFU30GidNumber ldap.nssmap.attribute.groupname cn ldap.nssmap.attribute.homeDirectory msSFU30HomeDirectory ldap.nssmap.attribute.loginShell msSFU30LoginShell ldap.nssmap.attribute.memberNisNetgroup ldap.nssmap.attribute.memberUid msSFU30MemberUid ldap.nssmap.attribute.netgroupname ldap.nssmap.attribute.nisNetgroupTriple ldap.nssmap.attribute.uid sAMAccountName ldap.nssmap.attribute.uidNumber msSFU30UidNumber ldap.nssmap.attribute.userPassword msSFU30Password ldap.nssmap.objectClass.nisNetgroup ldap.nssmap.objectClass.posixAccount User ldap.nssmap.objectClass.posixGroup Group ldap.passwd ****** … Continue reading

Posted in netapp | Leave a comment

linux update oracle kernel

wget http://public-yum.oracle.com/public-yum-ol6.repo -P /etc/yum.repos.d/ yum list updates yum update

Posted in linux | Leave a comment

linux raid device

(create raid (raid1)) # mdadm –create md127 –level=1 –raid-devices=2 /dev/sdb1 /dev/sdc1 (add hotspare to raiddevice) # mdadm /dev/md127 -a /dev/sdd1 (check raiddevice) # cat /proc/mdstat Personalities : [raid1] md127 : active raid1 sdd1[2](S) sdc1[1] sdb1[0] 1044181 blocks super 1.2 [2/2] … Continue reading

Posted in linux | Leave a comment

virtualization xm console

In vm.cfg of virtual machine check for this entry: serial=”pty” In the guest, edit the /boot/grub/menu.lst or /boot/grub/grub.conf with the following lines, add them somewhere above the first kernel entry, probably just below the default and timeout directives. serial –unit=0 … Continue reading

Posted in Virtualization | Leave a comment

linux zfs

$ cat /etc/redhat-release CentOS release 6.2 (Final) The build process is quite easy. Prior to compiling source code you will need to install a few dependencies: $ yum install kernel-devel zlib-devel libuuid-devel libblkid-devel libselinux-devel parted lsscsi Once these are installed … Continue reading

Posted in Uncategorized | Leave a comment

clustermode automatic login (from linux) to systemshell of clusternode

On clustermode: You have configured automatic login for the clustershell On linux: You have installed expect (# yum install expect expectk) create an expect script. mind you: grcm1 is my clustername and gr-01 is the name of my first clusternode. … Continue reading

Posted in Uncategorized | Leave a comment

linux automatic mail with expect

Expect script sends me a mail to when someone logs in. 1. In .bash_profile ./.sendloggedin 2. In .sendloggedin #!/usr/bin/expect spawn telnet smtp.online.nl 25 send “ehlo smtp.online.nl\r” expect “250 8BITMIME” send “MAIL FROM: centos@groningen.nl\r” expect “250 2.1.0 Ok” send “RCPT TO: … Continue reading

Posted in linux | Leave a comment