Friday, March 17, 2017

How to check which process is holding the port

How to check which process is holding the port

Most of the time we are in situation to find the process which is holding the same port which may cause the application issues. This post will help us whenever we are in same position. Yes, we can find the  process with using port in different methods. Let we start to search it.....

root@unixrock # ndd /dev/tcp tcp_listen_hash
    TCP            zone IP addr         port  seqnum   backlog (q0/q/max)
----skipped------
281 ffffffff81d46440 0 ::ffff:127.0.0.1 00025 00000000 0/0/16
----skipped------
from the above output we can find the process of the port 25, please follow the below steps
root@unixrock # mdb -k
Loading modules:[unix krtld genunix specfs dtrace cpu.generic uppc pcplusmp ufs md mpt ip hook neti sctp arp usba fctl nca lofs audiosup cpc fcip random crypto zfs logindmux ptm sppp sata nfs]
>
> ffffffff81d46440::print tcp_t tcp_rq
tcp_rq = 0xffffffff8961f028
>
> 0xffffffff8961f028::q2stream
ffffffff87052e10
>
> ffffffff87052e10$ 0xffffffff874bc780::whereopen
file ffffffff893689d8
ffffffff88dc8900
>
> ffffffff88dc8900::ps
S    PID   PPID   PGID    SID    UID      FLAGS             ADDR NAME
R    935      1    935    935      0 0x52010000 ffffffff88dc8900 sendmail
>
root@unixrock #
Yes !!! we have found the process (sendmail) which using the port 25

we can use lsof utility to find the process with using port. although lsof will not be available on all solaris server, we have to install the lsof package. NOTE : This utlity can't be used in Non-global zones.
root@unixrock # /usr/local/bin/lsof -i :25
lsof: WARNING: access /.lsof_unixrock: No such file or directory
lsof: WARNING: created device cache file: /.lsof_unixrock
COMMAND  PID USER   FD   TYPE             DEVICE SIZE/OFF NODE NAME
sendmail 935 root    5u  IPv4 0xffffffff81d46240      0t0  TCP localhost:smtp (LISTEN)
root@unixrock #
Yes, we have found the process with using port by using lsof utility.

Now our concern would be how to check the process with using port in non-global zone level. Yes, we have the option to do that by using our customized script. Please follow the steps...
root@unixrock # cat /var/tmp/check_port.sh
#!/bin/ksh

CODE='---------------------------------------------'
PID=$(/usr/bin/ps -ef | sed 1d | awk '{print $2}')

if [ $# -eq 0 ]; then
   read PORT?"Enter port you would like to know pid for: "
else
   PORT=$1
fi

for f in $PID
do
   /usr/proc/bin/pfiles $f 2>/dev/null | /usr/xpg4/bin/grep -q "port: $PORT"
   if [ $? -eq 0 ]; then
      echo $CODE
      echo "Port: $PORT is being used by PID:\c"
      /usr/bin/ps -ef -o pid -o args | egrep -v "grep|pfiles" | grep $f
   fi
done
exit 0
root@unixrock #

Copy the script and executed as mentioned below
root@unixrock # /var/tmp/check_port.sh
Enter port you would like to know pid for: 25
---------------------------------------------
Port: 25 is being used by PID:  935 /usr/lib/sendmail -bl -q15m
root@unixrock #
Yes...We have found the process with using the port by executing customized scripts.

How to change hostname in Solaris 11

 How to change hostname in Solaris 11

Here is the step by step procedure to change/rename hostname on Solaris 11. In Solaris 10 all we know that we need to edit few files in order to change the hostname, but in Solaris 11 we need to change the hostname in SMF service level. Let we can start doing that.

Checking the SMF Services
root@unixrock_SOL11:~# svcs -a|grep -i node
online         21:53:28 svc:/system/identity:node
root@unixrock_SOL11:~#
Checking the current property settings
root@unixrock_SOL11:~# svccfg -s system/identity:node
svc:/system/identity:node> listprop config
config                       application
config/enable_mapping       boolean     true
config/ignore_dhcp_hostname boolean     true
config/nodename             astring     unixrock_SOL11
config/loopback             astring     unixrock_SOL11
svc:/system/identity:node>
Change/Rename the hostname entries
root@unixrock_SOL11:~# svccfg -s system/identity:node
svc:/system/identity:node>
svc:/system/identity:node> setprop config/nodename=unixrocks11
svc:/system/identity:node> setprop config/loopback=unixrocks11
svc:/system/identity:node>
Verifying the changes
root@unixrock_SOL11:~# svccfg -s system/identity:node
svc:/system/identity:node> listprop config
config                       application
config/enable_mapping       boolean     true
config/ignore_dhcp_hostname boolean     true
config/nodename             astring     unixrocks11
config/loopback             astring     unixrocks11
svc:/system/identity:node>
Restart the service to take effect the changes
root@unixrock_SOL11:~# svccfg -s system/identity:node refresh
root@unixrock_SOL11:~# svcadm restart system/identity:node
root@unixrock_SOL11:~# svccfg -s system/identity:node listprop config
config                       application
config/enable_mapping       boolean     true
config/ignore_dhcp_hostname boolean     true
config/nodename             astring     unixrocks11
config/loopback             astring     unixrocks11
root@unixrock_SOL11:~# hostname
unixrocks11
root@unixrock_SOL11:~#
Cool and simple way to do the hostname changes in Solaris 11. You can see the changes while opening new session.

Thanks for reading this post. Please leave your valuable comments and queries, I will get back to you at earliest

Solaris 11 - Image Packaging System Basics (IPS)

Solaris 11 - Image Packaging System Basics (IPS)

Last Post we saw how to configure local repository on Solaris 11 server. In this post we will see the brief of New IPS features and troubleshoot methods, Installing and uninstalling the packages, checking the packages contents and package dependencies and package manifest basics and understanding the packages components.

Basics of Repository :
  • Administrators can suggest whether we required Oracle repository or Local repository depends on environment requirements.
  • Oracle Solaris 11 installations will come up with default publisher http://pkg.oracle.com/solaris/release which supplies all packages from the oracle release repository.
  • Administrators can install new software packages, search the content of package or mirror the contents of that repository locally.
  • Oracle Solaris 11 having many IPS pkg command which query the system with using option "list, info, content, search, history can be performed by users.
Basics of Packages FMRI:
below output you can understand the brief about the structure of package FMRI (Fault Managed Resources Identifier).






Listing installed Packages in that server
root@unixrock:~# pkg list |more
NAME (PUBLISHER)                                  VERSION                    IFO
archiver/gnu-tar                                  1.26-0.175.1.0.0.24.0      i--
audio/audio-utilities                             0.5.11-0.175.1.0.0.24.2    i--
codec/flac                                        1.2.1-0.175.0.0.0.0.0      i--
codec/libtheora                                   1.1.1-0.175.1.0.0.15.0     i--
codec/ogg-vorbis                                  2.30.0-0.175.1.0.0.12.0    i--
codec/speex                                       1.2-0.175.1.0.0.15.0       i--
communication/im/pidgin                           2.10.5-0.175.1.0.0.24.0    i--
compress/bzip2                                    1.0.6-0.175.1.0.0.24.0     i--
compress/gzip                                     1.4-0.175.1.0.0.24.0       i--
compress/p7zip                                    9.20.1-0.175.1.0.0.24.0    i--
compress/unzip                                    6.0-0.175.1.0.0.24.0       i--
compress/xz                                       5.0.1-0.175.1.0.0.24.0     i--
compress/zip                                      3.0-0.175.1.0.0.24.0       i--
---------Few lines are confiscated---------------------------------------------- 
x11/xfontsel                                      1.0.4-0.175.1.0.0.24.1317  i--
x11/xfs                                           1.1.2-0.175.1.0.0.24.1317  i--
x11/xfs/xfs-utilities                             7.7-0.175.1.0.0.24.1317    i--
x11/xkill                                         1.0.3-0.175.1.0.0.24.1317  i--
x11/xlock                                         0.5.11-0.175.1.0.0.24.1317 i--
x11/xmag                                          1.0.4-0.175.1.0.0.24.1317  i--
x11/xvidtune                                      1.0.2-0.175.1.0.0.24.1317  i--
root@unixrock:~# 
 
Listing the Version information of particular pkg
root@unixrock:~# pkg list diagnostic/tcpdump
NAME (PUBLISHER)                                  VERSION                    IFO
diagnostic/tcpdump                                4.1.1-0.175.1.0.0.24.0     i--
root@unixrock:~# 
Checking detailed information about the particular pkg
root@unixrock:~# pkg info diagnostic/tcpdump
          Name: diagnostic/tcpdump
       Summary: network traffic sniffer
   Description: A tool for network monitoring and data acquisition
      Category: Applications/Internet
         State: Installed
     Publisher: solaris
       Version: 4.1.1
 Build Release: 5.11
        Branch: 0.175.1.0.0.24.0
Packaging Date: September  4, 2012 05:17:58 PM
          Size: 1.24 MB
          FMRI: pkg://solaris/diagnostic/tcpdump@4.1.1,5.11-0.175.1.0.0.24.0:20120904T171758Z
root@unixrock:~#
 
Checking contents of particular pkg which shows the complete installation path.
root@unixrock:~# pkg contents diagnostic/tcpdump
PATH
usr
usr/sbin
usr/sbin/tcpdump
usr/share
usr/share/man
usr/share/man/man1
usr/share/man/man1/tcpdump.1
root@unixrock:~#
 
Checking the package history for the recent updates and changes.
root@unixrock:~# pkg history
START                    OPERATION                CLIENT             OUTCOME
2012-09-20T01:18:22      set-property             transfer module    Succeeded
2012-09-20T01:18:22      add-publisher            transfer module    Succeeded
2012-09-20T01:18:22      refresh-publishers       transfer module    Succeeded
2012-09-20T01:18:22      image-create             transfer module    Succeeded
2012-09-20T01:18:30      rebuild-image-catalogs   transfer module    Succeeded
2012-09-20T01:18:36      set-property             transfer module    Succeeded
2012-09-20T01:18:37      install                  transfer module    Succeeded
2012-09-20T02:00:12      update-publisher         transfer module    Succeeded
2012-09-20T02:00:12      refresh-publishers       transfer module    Succeeded
2014-09-31T23:37:48      refresh-publishers       pkg                Failed
2014-09-31T23:37:48      update                   pkg                Failed
2014-08-11T21:34:42      refresh-publishers       pkg                Succeeded
 
Checking the all package Integrity
root@unixrock:~# pkg verify
pkg://solaris/desktop/administration/nwam-manager                 55/847 / 
Checking the particular package Integrity
root@unixrock:~# pkg verify diagnostic/tcpdump
root@unixrock:~#
 
Searching particular packages with details
root@unixrock:~# pkg search -l diagnostic/tcpdump
INDEX       ACTION VALUE                                          PACKAGE
group       depend diagnostic/tcpdump                             pkg:/group/system/solaris-desktop@0.5.11-0.175.1.0.0.24.3
incorporate depend pkg:/diagnostic/tcpdump@4.1.1-0.175.1.0.0.24.0 pkg:/consolidation/userland/userland-incorporation@0.5.11-0.175.1.0.0.24.0
pkg.fmri    set    solaris/diagnostic/tcpdump                     pkg:/diagnostic/tcpdump@4.1.1-0.175.1.0.0.24.0
root@unixrock:~#
 
rebuild the repo index whenever search performance is degraded
root@unixrock:~# pkg rebuild-index
PHASE                                          ITEMS
Building new search index                    847/847
root@unixrock:~#
 
Installing the particular package
root@unixrock:~# pkg install diagnostic/tcpdump
           Packages to install:  1
       Create boot environment: No
Create backup boot environment: No

DOWNLOAD                                PKGS         FILES    XFER (MB)   SPEED
Completed                                1/1           6/6      0.4/0.4    0B/s

PHASE                                          ITEMS
Installing new actions                         20/20
Updating package state database                 Done
Updating image state                            Done
Creating fast lookup database                   Done
Reading search index                            Done
Updating search index                            1/1
root@unixrock:~#
 
Checking the dependency packages
root@unixrock:~# pkg contents -r -o fmri,type -t depend diagnostic/tcpdump
FMRI                                               TYPE
pkg:/system/library/libpcap@1.1.1-0.175.1.0.0.23.0 require
pkg:/system/library@0.5.11-0.175.1.0.0.23.0        require
root@unixrock:~#
 
Uninstalling the package
root@unixrock:~# pkg uninstall diagnostic/tcpdump
            Packages to remove:  1
       Create boot environment: No
Create backup boot environment: No

PHASE                                          ITEMS
Removing old actions                           14/14
Updating package state database                 Done
Updating package cache                           1/1
Updating image state                            Done
Creating fast lookup database                   Done
Reading search index                            Done
Updating search index                            1/1
root@unixrock:~#
 
Solaris 11 IPS will update your system to latest packages with single command "pkg update". Even though we can execute the command with "-nv" option for a dry run to get an idea about the work which needs to be completed.
root@unixrock:~# pkg update -nv
No updates available for this image.
root@unixrock:~#
Trying to update the particular packages from repo
root@unixrock:~# pkg update diagnostic/tcpdump
No updates available for this image.
root@unixrock:~#
 
List the publisher with local repository
root@unixrock:~# pkg publisher
PUBLISHER                   TYPE     STATUS P LOCATION
solaris                     origin   online F file:///unixrepo/repo/repo/
root@unixrock:~#
root@unixrock:~#
 
Listing the local repository packages
root@unixrock:~# pkgrepo -s /unixrepo/repo/repo/ list|more
PUBLISHER NAME                                          O VERSION
solaris   BRCMbnx                                       r 0.5.11,5.11-0.133:20101027T183107Z
solaris   BRCMbnxe                                      r 0.5.11,5.11-0.133:20101027T183108Z
solaris   CPQary3                                       r 0.5.11,5.11-0.133:20101027T183108Z
solaris   FSWfontconfig-devel-docs                      o 0.5.11,5.11-0.130:20101027T183140Z
solaris   FSWxorg-client-docs                           r 0.5.11,5.11-0.130:20101027T183141Z
solaris   FSWxorg-client-programs                       r 0.5.11,5.11-0.130:20101027T183142Z
solaris   FSWxorg-clientlibs                            r 0.5.11,5.11-0.130:20101027T183142Z
solaris   FSWxorg-data                                  r 0.5.11,5.11-0.130:20101027T183143Z 


Checking the local repository packages status and updated dates
root@unixrock:~# pkgrepo info -s /unixrepo/repo/repo
PUBLISHER PACKAGES STATUS           UPDATED
solaris   4299     online           2014-08-14T17:34:29.002068Z
root@unixrock:~#
Checking the oracle repo packages status and updated dates.
root@unixrock:~# pkgrepo info -s http://pkg.oracle.com/solaris/release/
PUBLISHER PACKAGES STATUS           UPDATED
solaris   4870     online           2014-08-04T15:04:42.642929Z
root@unixrock:~#

Refreshing the local repository whenever its required
root@unixrock:~# pkgrepo refresh -s /unixrepo/repo/repo
Initiating repository refresh. 

Display All Repository Properties
root@unixrock:~# pkgrepo get -s /unixrepo/repo/repo
SECTION    PROPERTY    VALUE
publisher  prefix      solaris
repository description This\ repository\ serves\ a\ copy\ of\ the\ Oracle\ Solaris\ 11\ Build\ 175b\ Package\ Repository.
repository name        Oracle\ Solaris\ 11\ Build\ 175b\ Package\ Repository
repository version     4
root@unixrock:~#

Updating the local repository from Oracle Portal
root@unixrock:~# pkgrecv -s http://pkg.oracle.com/solaris/release -d /unixrepo/repo/repo solaris
Processing packages for publisher solaris ...
Retrieving and evaluating 4870 package(s)...
PROCESS                                         ITEMS    GET (MB)   SEND (MB)
SUNWamt                                        0/2016      0/7768     0/25461

Receiving single package on the local repository from Oracle Portal
root@unixrock:~# pkgrecv -s http://pkg.oracle.com/solaris/release/ -d /unixrepo/repo/repo pkg://solaris/diagnostic/tcpdump@4.1.1,5.11-0.175.1.0.0.24.0:20120904T171758Z
Processing packages for publisher solaris ...
Retrieving and evaluating 1 package(s)...
PROCESS                                         ITEMS    GET (MB)   SEND (MB)
Completed                                         1/1     0.8/0.8     2.2/2.2
root@unixrock:~#

Updating local respository with using latest SRU ( Solaris Repository Update images)
root@unixrock:/# lofiadm -a /var/tmp/sol-11_1_s11_sru11.4b.-x86.iso
/dev/lofi/1
root@unixrock:/# mount -F hsfs /dev/lofi/1 /mnt/repo
root@unixrock:/#
root@unixrock:/# df -h /mnt/repo
Filesystem             Size   Used  Available Capacity  Mounted on
/dev/lofi/1            357M   357M         0K   100%    /mnt/repo
root@unixrock:/#
root@unixrock:/# pkg publisher
PUBLISHER                   TYPE     STATUS P LOCATION
solaris                     origin   online F file:///unixrepo/repo/repo/
root@unixrock:/#
root@unixrock:/# pkgrecv -s /mnt/repo/repo -d /unixrepo/repo/repo/ "*"
Processing packages for publisher solaris ...
Retrieving and evaluating 4292 package(s)...
PROCESS                                         ITEMS    GET (MB)   SEND (MB)
Completed                                         1/1     0.0/0.0     0.0/0.0
root@unixrock:/#
root@unixrock:/# pkgrepo rebuild -s /unixrepo/repo/repo/
Initiating repository rebuild.
root@unixrock:/#
root@unixrock:/# svcprop -p pkg/inst_root svc:/application/pkg/server:default
/unixrepo/repo/repo
root@unixrock:/# svcadm restart svc:/application/pkg/server
root@unixrock:/#

Removing the package from local repository
root@unixrock:~# pkgrepo remove -p solaris -s /unixrepo/repo/repo/ pkg://solaris/diagnostic/tcpdump@4.1.1,5.11-0.175.1.0.0.24.0:20120904T171758Z
Removing packages for publisher solaris ...
PHASE                                          ITEMS
Deleting search index                           Done
Updating catalog                                Done
Analyzing removed packages                       1/1
Analyzing repository packages              4619/4619
Removing package manifests                       1/1
root@unixrock:~#

Verifying the package and found ERROR status
root@unixrock:~# pkg verify -v gzip
PACKAGE                                                                 STATUS
pkg://solaris/compress/gzip                                              ERROR
        file: usr/bin/gzip
                Mode: 01600 should be 0555
                Unexpected Exception: Request error: class file/memory mismatch
root@unixrock:~#
root@unixrock:~#

Fixing the package issue.
root@unixrock:~# pkg fix gzip
Verifying: pkg://solaris/compress/gzip                          ERROR
        file: usr/bin/gzip
                Mode: 01600 should be 0555
                Unexpected Exception: Request error: class file/memory mismatch
Created ZFS snapshot: 2014-08-15-17:56:18
Repairing: pkg://solaris/compress/gzip
Creating Plan (Evaluating mediators): -

DOWNLOAD                                PKGS         FILES    XFER (MB)   SPEED
Completed                                1/1           1/1      0.1/0.1    0B/s

PHASE                                          ITEMS
Updating modified actions                        1/1
Updating image state                            Done
Creating fast lookup database                   Done
root@unixrock:~#
root@unixrock:~# pkg verify -v gzip
PACKAGE                                                                 STATUS
pkg://solaris/compress/gzip                                                 OK
root@unixrock:~#

Cool !!!! Thanks for reading this post. Please leave your valuable comments and queries, I will get back to you as much I can. 

Solaris 11 - Network Administration / Link Aggregation / IPMP


Last post we have gone through some basic of Network administration, In this post we will be targeting some Advance features of Network administrations as like Link Aggregation, IPMP (IP Multipathing) features. Before going in deep we can see some basic concept of networking.

Basic Concepts :
  • Bandwidth : Bandwidth is bit rate for sending and receiving data over the network.
  • Failover     : Capability to have a backup component for the one becomes unavailable.
  • Load balancing : Distribution of workload to achieve best utilization.   
Link Aggregation:
Link Aggregation is combination of two or three physical interface on the system which are consider as a single logical unit (aggr) that provides best bandwidth, automatic fail over features, load balancing and redundancy benefits. Link Aggregation's Link should be in same Speed and same mode. We can administrate the link aggregation with using dladm command by adding, modifying, deleting links.


Before starting the aggregation, we have to make it sure physical interface should be have same mode as full-duplex  and same speed. By executing dladm show-link 

Creating aggregartion link with using two interface net1 and net2
root@unixrock:~# dladm create-aggr -l net1 -l net2 aggr0
root@unixrock:~#
root@unixrock:~# dladm show-link
LINK                CLASS     MTU    STATE    OVER
net0                phys      1500   up       --
net1                phys      1500   up       --
net3                phys      1500   up       --
net2                phys      1500   up       --
aggr0               aggr      1500   up       net1 net2
root@unixrock:~#
root@unixrock:~# dladm show-aggr
LINK              MODE  POLICY   ADDRPOLICY           LACPACTIVITY LACPTIMER
aggr0             trunk L4       auto                 off          short
root@unixrock:~#
To Add a another Link (net3) to an Aggregation (aggr0)
root@unixrock:~# dladm add-aggr -l net3 aggr0
root@unixrock:~# dladm show-link
LINK                CLASS     MTU    STATE    OVER
net0                phys      1500   up       --
net1                phys      1500   up       --
net3                phys      1500   up       --
net2                phys      1500   up       --
aggr0               aggr      1500   up       net1 net2 net3
root@unixrock:~#
To assigning IP to the aggregation link
root@unixrock:~# ipadm create-addr -T static -a 192.168.113.142 aggr0
ipadm: cannot create address: No such interface
root@unixrock:~#

Opps......getting error says that No such interface, that means we have to probe the interface first
root@unixrock:~# ipadm create-ip aggr0
root@unixrock:~# ipadm create-addr -T static -a 192.168.113.142 aggr0
aggr0/v4
root@unixrock:~#
Yes...we have done the aggr0 aggregation link with using net1 net2 net3 physical link and assigned Ip address too.
root@unixrock:~# dladm show-link
LINK                CLASS     MTU    STATE    OVER
net0                phys      1500   up       --
net1                phys      1500   up       --
net3                phys      1500   up       --
net2                phys      1500   up       --
aggr0               aggr      1500   up       net1 net2 net3
root@unixrock:~#
root@unixrock:~# ipadm show-addr
ADDROBJ           TYPE     STATE        ADDR
lo0/v4            static   ok           127.0.0.1/8
net0/v4test       static   ok           192.168.113.139/24
aggr0/v4          static   ok           192.168.113.142/24
lo0/v6            static   ok           ::1/128
root@unixrock:~#
To delete/remove the link from an Aggregation link
root@unixrock:~# dladm show-link
LINK                CLASS     MTU    STATE    OVER
net0                phys      1500   up       --
net1                phys      1500   up       --
net3                phys      1500   up       --
net2                phys      1500   up       --
aggr0               aggr      1500   up       net1 net2 net3
root@unixrock:~# dladm remove-aggr -l net3 aggr0
root@unixrock:~#
root@unixrock:~# dladm show-link
LINK                CLASS     MTU    STATE    OVER
net0                phys      1500   up       --
net1                phys      1500   up       --
net3                phys      1500   unknown  --
net2                phys      1500   up       --
aggr0               aggr      1500   up       net1 net2
root@unixrock:~#
IP Multipathing (IPMP)
IP Multipathing (IPMP) provides physical interface failure detection, Load balancing of packets, and transparent redundancy  features. IPMP which makes possible to assign the IP address to a group of network interface. if any one of the interface fails, the group can bind the IP address to another interface from the same IPMP group as transparent redundancy. IPMP can be configured for both IPv4 and IPv6. IPMP group will come up with ACTIVE - ACTIVE and ACTIVE- STANDBY
Advantage of IPMP
  • Fault tolerance
  • Spreading the load
  • Increased bandwidth
  • Transparent redundancy
  • Works even if its different switches
Components of IPMP
  • IPMP daemon : in.mapthd
  • IPMP service : svc:/network/ipmp:default
  • IPMP conf file : /etc/default/mpathd
  • IPMP Commands : ipadm, ipmpstat
Let we start Creating an IPMP group and Adding IP address to an IPMP group and Deleting and disable the IPMP group.
Creating ipmp0 group with using "ipadm create-ipmp" command
root@unixrock:/# 
root@unixrock:/# ipadm create-ip net1
root@unixrock:/# ipadm create-ip net2
root@unixrock:/# ipadm create-ip net3
root@unixrock:/# ipadm create-ipmp ipmp0
root@unixrock:/# ipadm add-ipmp -i net1 -i net3 ipmp0
root@unixrock:/# ipmpstat -g
GROUP       GROUPNAME   STATE     FDT       INTERFACES
ipmp0       ipmp0       ok        --        net3 net1
root@unixrock:/#
Assigning IP to that ipmp0 group
root@unixrock:~# ipadm create-addr -T static -a 192.168.113.145 ipmp0/v4addr1
root@unixrock:~# ipadm create-addr -T static -a 192.168.113.146 ipmp0/v4addr2
root@unixrock:~# ipadm show-addr
ADDROBJ           TYPE     STATE        ADDR
lo0/v4            static   ok           127.0.0.1/8
net0/v4test       static   ok           192.168.113.139/24
ipmp0/v4addr1     static   ok           192.168.113.145/24
ipmp0/v4addr2     static   ok           192.168.113.146/24
lo0/v6            static   ok           ::1/128
root@unixrock:~#
Remove the interface from IPMP group
root@unixrock:~# ipmpstat -g
GROUP       GROUPNAME   STATE     FDT       INTERFACES
ipmp0       ipmp0       ok        --        net1 net3
root@unixrock:~#
root@unixrock:~# ipadm remove-ipmp -i net1 ipmp0
root@unixrock:~# ipmpstat -g
GROUP       GROUPNAME   STATE     FDT       INTERFACES
ipmp0       ipmp0       ok        --        net3 
root@unixrock:~#
Adding one Interface to the IPMP group
root@unixrock:~# ipmpstat -g
GROUP       GROUPNAME   STATE     FDT       INTERFACES
ipmp0       ipmp0       ok        --        net3
root@unixrock:~# ipadm add-ipmp -i net2 ipmp0
root@unixrock:~# ipmpstat -g
GROUP       GROUPNAME   STATE     FDT       INTERFACES
ipmp0       ipmp0       ok        --        net2 net3
root@unixrock:~#
To disable an IPMP group
root@unixrock:~# ipadm disable-if -t ipmp0
root@unixrock:~# ipmpstat -g
root@unixrock:~# ipadm show-addr
ADDROBJ           TYPE     STATE        ADDR
lo0/v4            static   ok           127.0.0.1/8
net0/v4test       static   ok           192.168.113.139/24
lo0/v6            static   ok           ::1/128
ipmp0/v4addr1     static   disabled     192.168.113.145
ipmp0/v4addr2     static   disabled     192.168.113.146
root@unixrock:~#
To delete the IPMP group
root@unixrock:~# ipadm delete-ipmp ipmp0
root@unixrock:~# ipadm show-addr
ADDROBJ           TYPE     STATE        ADDR
lo0/v4            static   ok           127.0.0.1/8
net0/v4test       static   ok           192.168.113.139/24
lo0/v6            static   ok           ::1/128
root@unixrock:~#
Encountered some issues and fixes
ERROR : ipadm: cannot delete IPMP interface ipmp0: IPMP group is not empty
root@unixrock:~# ipadm delete-ipmp ipmp0
ipadm: cannot delete IPMP interface ipmp0: IPMP group is not empty
root@unixrock:~#
root@unixrock:~# ipmpstat -g
GROUP       GROUPNAME   STATE     FDT       INTERFACES
ipmp0       ipmp0       ok        --        net1
root@unixrock:~# ipmpstat -i
INTERFACE   ACTIVE  GROUP       FLAGS     LINK      PROBE     STATE
net1        yes     ipmp0       --mbM--   up        disabled  ok
root@unixrock:~# ipadm delete-ip net1
root@unixrock:~# ipadm delete-ipmp ipmp0
root@unixrock:~# ipadm show-if
IFNAME     CLASS    STATE    ACTIVE OVER
lo0        loopback ok       yes    --
net0       ip       ok       yes    --
net3       ip       disabled no     --
net2       ip       disabled no     --
root@unixrock:~#
ERROR: ipadm: cannot create interface net2: Operation not supported on disabled object 
ERROR: ipadm: persistent operation not supported for enable-if
root@unixrock:~# ipadm create-ip net2
ipadm: cannot create interface net2: Operation not supported on disabled object
root@unixrock:~#
root@unixrock:~# ipadm show-if
IFNAME     CLASS    STATE    ACTIVE OVER
lo0        loopback ok       yes    --
net0       ip       ok       yes    --
net3       ip       disabled no     --
net2       ip       disabled no     --
root@unixrock:~# 
root@unixrock:~# ipadm enable-if net3
ipadm: persistent operation not supported for enable-if
root@unixrock:~# 
root@unixrock:~# ipadm enable-if -t net3
root@unixrock:~# ipadm enable-if -t net2
root@unixrock:~#
root@unixrock:~# ipadm show-if
IFNAME     CLASS    STATE    ACTIVE OVER
lo0        loopback ok       yes    --
net0       ip       ok       yes    --
net2       ip       down     no     --
net3       ip       down     no     --
root@unixrock:~#
Thanks for reading this post. Please leave your valuable comments and queries, I will get back to you at earliest possible. 

LDOM Interview Questions and Answers


Please Refer LDOM Quick Reference Guide 
 
 
1. How to check the Version of Logical Domain Manager and Hypervisor ?
# ldm -V     Display version information of LDM and Hypervisor
 
2. Brief about Primary/Control Domain ?
 
It Controls the Oracle VM and also called as Primary domain.
  • Used to configure server resources and guest domains and Provides virtual console services.
  • Logical domain Manager installed only on Control domain.
  • Control domain normally act as Service domain.
  • For more reference "How to Configure Primary or Control Domain." 


  • 3. Brief about Service Domain?
    Service domain Provides virtual device services to Guest Domain.
  • It provides Virtual Disk Services.
  • It provides Virtual Console Services.
  • It provides Virtual network Switches.
  • For more reference "How to Configure Service Domain"

  • 4. Brief about Guest/Logical Domain?
     Guest domain uses only virtual services.
    • Guest domain where our OS is installed.
    • Get the services from service domain in order to run application and user services.
    • Guest domain can be a I/O Domain.
    • For more reference "How to Configure Logical/Guest Domain"

    5. Brief about I/O domain ?
    • I/O Domain where we are getting phyiscal I/O device access directly.
    • I/O device which connects PCI bus, such as local network interface, disk drives and PCI adapters.
    • For more reference "How to Configure I/O Domain"
    6. How to check the list of services ?

    List the Virtual services currently configure in the Control Domain
    Syntax : # ldm list-services  [-e] [-p] [...]
    # ldm list-services primary

    7. How to backup the LDOM configuration and how to restore?

    Syntax : # ldm list-constraints ([-x] | [-e] [-p]) [...]
    # ldm list-constraints -p
    VERSION 1.5
    DOMAIN|name=primary
    UUID|uuid=f44b4e9e-330c-4a20-c22e-a18c1c6f61b1
    MAC|mac-addr=00:14:4f:82:5c:ee
    CONTROL|failure-policy=ignore
    CORE|count=2
    VCPU|count=8
    MAU|count=1
    MEMORY|size=2147483648
    VARIABLES
    |keyboard-layout=US-English
    IO
    |dev=pci@780|alias=
    |dev=pci@7c0|alias=
    VCC|name=primary-vcc0|port-range=5000-5100
    VSW|name=primary-vsw0|mac-addr=|net-dev=e1000g0|dev=switch@0|default-vlan-id=1|pvid=1|vid=|mode=|mtu=|linkprop=|id=0
    VDS|name=primary-vds0
    [root@unixrock /]#
    [root@unixrock /]# ldm list-constraints -x primary > /unixrock.xml
    [root@unixrock /]# file /unixrock.xml
    primary.xml:    XML document
    [root@unixrock /]# ls -l /unixrock.xml
    -rw-r--r--   1 root     root        3988 Feb 17 14:26 unixrock.xml
    [root@unixrock /]#

    To restore the configuration NOTE: System configuration should be Factory-default setting

    [root@unixrock /]# ldm list-spconfig
    factory-default (current)
    [root@unixrock /]# ldm init-system -i /unixrock.xml
    [root@unixrock /]# ldm add-spconfig unixrock_config
    [root@unixrock /]# ldm list-spconfig
    factory-default
    unixrock_config (current)
    [root@unixrock /]#

    8. How to check the list of available devices ?

    Syntax : # ldm list-devices [-a] [-p] [core] [cpu] [crypto|mau] [memory] [io] 
    Example : # ldm list-devices -a               To list all the host server resources details
    Example : # ldm list-devices -a cpu         To list all the host server CPU resources 
    Example : # ldm list-devices -a memory To list all the host server MEMORY resources 
    Example : # ldm list-devices -a io            To list all the host server I/O resources
    9. How to add and remove the LDOM ?

    Syntax :  # ldm  list-domain [-e] [-l] [-o ] [-p] [...]
    Syntax :  # ldm add-domain (-i |[mac-addr=] [hostid=][failure-policy=][master=] ...)
    Syntax :  # ldm remove-domain (-a | ...)

    [root@unixrock /]# ldm list-domain
    NAME             STATE      FLAGS   CONS    VCPU  MEMORY   UTIL  UPTIME
    primary          active     -n-cv-  SP      8     8G       0.4%  4h 7m
    [root@unixrock /]#
    [root@unixrock /]# ldm add-domain rockldom1
    [root@unixrock /]# ldm list-domain
    [root@unixrock /]#
    NAME             STATE      FLAGS   CONS    VCPU  MEMORY   UTIL  UPTIME
    primary          active     -n-cv-  SP      8     8G       0.4%  4h 7m
    rockldom1       inactive    ------ 
    [root@unixrock /]#
    [root@unixrock /]# ldm remove-domain rockldom1
    [root@unixrock /]#


    10. How to start and stop the LDOM ?

    Syntax :- ldm start-domain (-a | -i | ...) 
    Syntax :- ldm stop-domain [-f] (-a | ...)
    [root@unixrock /]# ldm start-domain rockldom1
    LDom rockldom1 started
    [root@unixrock /]# ldm stop-domain rockldom1
    LDom rockldom1 stopped
    [root@unixrock /]# 

    11. How to migrate the LDOM to another Host?

    NOTE: Source and Target service configuration should be same.
    Syntax :- # ldm migrate-domain [-f] [-n] [-p ] [@][:]
    [root@unixrock /]# ldm migrate-domain ldom1 root@192.168.10.25 
    Target Password:

    12. How to add/set the Memory resources to the LDOM ?

    To add the memory to the guest domain
    Syntax : # ldm add-memory [--auto-adj] [GMK]
               Example : # ldm add-memory 2G ldom1 
    To reconfigure the memory to the guest or primary domain
    Syntax : # ldm set-memory [--auto-adj] [GMK]
               Example : # ldm set-memory 5G primary 
               Example : # ldm set-memory 2G ldom1 
    To decrease the amount of memory in a domain
    Syntax : # ldm remove-memory [--auto-adj] [GMK]
                Example : # ldm remove-memory 1G primary 
                Example : # ldm remove-memory 1024M ldom1

    13. How to dump the configuration to the SP ?
    Syntax : # ldm list-spconfig [-r []]

                 Example : # ldm list-spconfig 
    Syntax : # ldm add-spconfig [-r ]
                 Example : # ldm add-spconfig config_initial 
    Syntax : # ldm remove-spconfig [-r]
                 Example : # ldm remove-spconfig config_initial 

    [root@unixrock /]# ldm list-spconfig
    factory-default
    tempprofile [current]
    [root@unixrock /]# ldm remove-spconfig tempprofile
    [root@unixrock /]# ldm list-spconfig
    factory-default [next poweron]
    [root@unixrock /]# ldm add-spconfig config_intial
    [root@unixrock /]# ldm list-spconfig
    factory-default
    config_intial [current]
    [root@unixrock /]#
    [root@unixrock /]# 


    14. How to set the LDOM variables ?

    To list the Variable settings of guest domain
    Syntax : # ldm list-variable [...]
           Example : # ldm list-variable auto-boot\? Ldom1
           Example : # ldm list-variable boot-device Ldom1
    To add the new variable setting to the guest domain
    Syntax : # ldm add-variable =...
           Example : # ldm add-variable boot-device Ldom1
    To set the "auto-boot" variable as false, this will leave the server at in OK prompt 
    Syntax : # ldm  set-variable =...
           Example : # ldm set-variable auto-boot\?=false Ldom1

    15. How to add the VCC on primary domain ?

    To add the Virtual console concentrator service to the control domain
    Syntax : # ldm add-vconscon port-range=-
          Example : # ldm add-vconscon port-range=5000-5100 primary-vcc0 primary
    To set or modify the Virtual console concentrator service to the control domain
    Syntax : # ldm set-vconscon port-range=-
          Example : # ldm set-vconscon port-range=5000-5100 primary-vcc0
    To remove the Virtual console service from domain
    Syntax : # ldm remove-vconscon [-f]
          Example : # ldm remove-vconscon primary-vcc0


    16. How to add/set/remove the virtual CPU to the domain?

    To add CPU to the guest domain
    Syntax : # ldm add-vcpu [-c|--core]
         Example : # ldm add-vpcu 8 ldom1
    To reconfigure the virtual CPU for any domain 
    Syntax : # ldm set-vcpu [-c|--core]
         Example : # ldm set-vpcu 10 primary
    To decrease the number of virtual CPU for any domain 
    Syntax : # ldm remove-vcpu [-f|--force] [-c|--core]
         Example : # ldm remove-vpcu 2 ldom1

    17. How to add/remove the Virtual disk to the domain?


    To assign the Virual disk to the guest domain
    Syntax :# ldm add-vdisk [timeout=] [id=]    @
          Example : # ldm add-vdisk vdisk0 vol0@primary-vds0 ldom1
          Example : # ldm add-vdisk iso01 iso01@primary-vds0 ldom1
    To remove the  Virual disk  on the guest domain
    Syntax :# ldm remove-vdisk [-f]
          Example : # ldm remove-vdisk vdisk0 ldom1

    18. How to add/remove the ISO image to the domain?
    To add or associating the iso resources to the Control domain's virtual disk services 
     

    [root@unixrock /]# ldm add-vdsdev options=ro /export/home/solaris.iso iso01@primary-vds0
    [root@unixrock /]#
    To remove Virtual disk server devices
    [root@unixrock /]# ldm remove-vdsdev iso01@primary-vds0
    [root@unixrock /]#

    19. How to add the vds services to the domain?

    To add the Virtual disk Server services
    Syntax : # ldm add-vdiskserver
           Example : # ldm add-vdiskserver primary-vds0 primary
           Example : # ldm add-vds primary-vds0 primary
    To remove the Virtual disk Server services
    Syntax : # ldm remove-vdiskserver [-f]
           Example : # ldm remove-vds primary-vds0

    20. How to add/remove Virtual Network services LDOM ?

    To add virtual network device which is associated with the virtual switch  to the guest domain
    Syntax : # ldm add-vnet [mac-addr=] [mode=hybrid] [pvid=] [vid=] [mtu=] [linkprop=phys-state][id=]
           Example : # ldm  add-vnet vnet0 primary-vsw0 ldom1
    To remove the Virtual network device
    Syntax : # ldm remove-vnet [-f]
           Example : # ldm  remove-vnet vnet0  ldom1
     
    21. How to add/remove Virtual Switch on the domain ?

    To add the virtual switch services 
    Syntax : # ldm  add-vswitch [default-vlan-id=] [pvid=] [vid=][mac-addr=] [net-dev=] [linkprop=phys-state][mode=] [mtu=] [id=]
           Example : # ldm add-vswitch net-dev=e1000g0 primary-vsw0 primary
    To remove the virtual switch services
    Syntax : # ldm remove-vswitch [-f]
           Example : # ldm remove-vswitch primary-vsw0 

    22. How to add/remove Virtual disk server device (vdsdev) ?

    To add or associating the resources to the Control domain's virtual disk services
    Syntax : # ldm add-vdiskserverdevice [-f] [options={ro,slice,excl}] [mpgroup=] @
          Example : # ldm add-vdsdev /dev/dsk/c0t1d0s2 vol01@primary-vds0
          Example : # ldm add-vdsdev options=ro /export/home/solaris.iso iso01@primary-vds0
    To remove Virtual disk server devices
    Syntax : # ldm  remove-vdiskserverdevice [-f] @
          Example : # ldm remove-vdsdev vol01@primary-vds0
          Example : # ldm remove-vdsdev iso01@primary-vds0

    Thanks for reading this post.....Please leave your valuable comments or queries, will get back to you at earliest 
     
     

    Solaris 11 - Basic of Network Administration

    Especially network changes is one of the main concern in Solaris 11. Significant development in network side when we comparing with Solaris 10. Solaris 11 comes with profile-based network configurations which contains manual (Fixed Network configuration profile - NCP) and Automatic (reactive-Network Configuration profile - NCP) modes. Also introduced Network Auto-Magic (NWAM) features.

    :~# netadm list
    TYPE        PROFILE        STATE
    ncp         Automatic      online
    ncu:phys    net0           online
    ncu:phys    net1           online
    ncu:phys    net3           online
    ncu:phys    net2           online
    ncu:ip      net0           online
    ncu:ip      net1           online
    ncu:ip      net3           online
    ncu:ip      net2           online
    ncp         DefaultFixed   disabled
    loc         DefaultFixed   offline
    loc         Automatic      online
    loc         NoNet          offline

    Showing the phyiscal interface
    root@unixrock:~# dladm show-phys
    LINK              MEDIA                STATE      SPEED  DUPLEX    DEVICE
    net0              Ethernet             up         1000   full      e1000g0
    net1              Ethernet             up         1000   full      e1000g1
    net3              Ethernet             up         1000   full      e1000g3
    net2              Ethernet             up         1000   full      e1000g2
    root@unixrock:~# 

    Showing the Link status of the physical interface
    root@unixrock:~# dladm show-link
    LINK                CLASS     MTU    STATE    OVER
    net0                phys      1500   up       --
    net1                phys      1500   up       --
    net3                phys      1500   up       --
    net2                phys      1500   up       --
    root@unixrock:~#

    checking existing interface on the system
    root@unixrock:~# ipadm show-if
    IFNAME     CLASS    STATE    ACTIVE OVER
    lo0        loopback ok       yes    --
    net0       ip       ok       yes    --
    net1       ip       ok       yes    --
    net2       ip       ok       yes    --
    net3       ip       ok       yes    --
    root@unixrock:~#

    checking MAC address and IP address
    root@unixrock:~# ipadm show-addr
    ADDROBJ           TYPE     STATE        ADDR
    lo0/v4            static   ok           127.0.0.1/8
    net0/v4           dhcp     ok           192.168.113.139/24
    net1/v4           dhcp     ok           192.168.113.141/24
    net2/v4           dhcp     ok           192.168.113.143/24
    net3/v4           dhcp     ok           192.168.113.142/24
    lo0/v6            static   ok           ::1/128
    net0/v6           addrconf ok           fe80::20c:29ff:febf:ac5b/10
    net1/v6           addrconf ok           fe80::20c:29ff:febf:ac65/10
    net2/v6           addrconf ok           fe80::20c:29ff:febf:ac6f/10
    net3/v6           addrconf ok           fe80::20c:29ff:febf:ac79/10
    root@unixrock:~#

    root@unixrock:~# dladm show-phys
    LINK              MEDIA           STATE      SPEED  DUPLEX  DEVICE
    net0              Ethernet       UNKNOWN      1000   full   e1000g0
    net1              Ethernet       UNKNOWN      1000   full   e1000g1
    net3              Ethernet       UNKNOWN      1000   full   e1000g3
    net2              Ethernet       UNKNOWN      1000   full   e1000g2
    root@unixrock:~#
    root@unixrock:~# dladm show-link
    LINK                CLASS     MTU    STATE    OVER
    net0                phys      1500   UNKNOWN       --
    net1                phys      1500   UNKNOWN       --
    net3                phys      1500   UNKNOWN       --
    net2                phys      1500   UNKNOWN       --
    root@unixrock:~#
    root@unixrock:~# ipadm show-if
    IFNAME     CLASS    STATE    ACTIVE OVER
    lo0        loopback ok       yes    --
    root@unixrock:~#
    root@unixrock:~# ipadm show-addr

    Asssing IP Address to the net0 interface
    root@unixrock:~# ipadm create-addr -T static -a 192.168.113.139/24 net0/v4test
    root@unixrock:~#
    root@unixrock:~# ipadm show-if
    IFNAME     CLASS    STATE    ACTIVE OVER
    lo0        loopback ok       yes    --
    net0       ip       ok       yes    --
    root@unixrock:~# ipadm show-addr
    ADDROBJ           TYPE     STATE        ADDR
    lo0/v4            static   ok           127.0.0.1/8)
    net0/v4test       static   ok           192.168.113.139/24
    lo0/v6            static   ok           ::1/128
    root@unixrock:~#

    NOTE : "T" - option can be used for three specify interface mode static, DHCP and addrconf (auto configured IPV6 address) Trying DHCP for another interface net1
    root@unixrock:~#
    root@unixrock:~# ipadm create-ip net1
    root@unixrock:~# ipadm create-addr -T dhcp net1/v4test2
    root@unixrock:~# ipadm show-if
    IFNAME     CLASS    STATE    ACTIVE OVER
    lo0        loopback ok       yes    --
    net0       ip       ok       yes    --
    net1       ip       ok       yes    --
    root@unixrock:~# ipadm show-addr
    ADDROBJ           TYPE     STATE        ADDR
    lo0/v4            static   ok           127.0.0.1/8
    net0/v4test       static   ok           192.168.113.139/24
    net1/v4test2      dhcp     ok           192.168.113.141/24
    lo0/v6            static   ok           ::1/128
    root@unixrock:~#

    If you want to change the IP, then we need to delete and recreate the interface with new IP. Let we change the IP address
    root@unixrock:~# ipadm delete-ip net2
    root@unixrock:~# ipadm create-ip net2
    root@unixrock:~# ipadm create-addr -T static -a 192.168.113.140 net2/v4test1
    root@unixrock:~# ipadm show-addr
    ADDROBJ           TYPE     STATE        ADDR
    lo0/v4            static   ok           127.0.0.1/8
    net0/v4test       static   ok           192.168.113.139/24
    net1/v4test2      dhcp     ok           192.168.113.141/24
    net2/v4test1      static   ok           192.168.113.140/24
    lo0/v6            static   ok           ::1/128
    root@unixrock:~#