| | Copyright |
| | Hewlett-Packard Professional Books |
| | PREFACE |
| | | HP-UX CSE: ADVANCED ADMINISTRATION |
| | | HP-UX CSE: HIGH AVAILABILITY WITH HP-UX SERVICEGUARD |
| | | HP-UX CSE: NETWORKING AND SECURITY |
| | | Acknowledgments |
| | Part ONE. Managing HP-UX Servers |
| | | Chapter ONE. An Introduction to Your Hardware |
| | | Section 1.1. Key Server Technologies |
| | | Section 1.2. Processor Architecture |
| | | Section 1.3. Virtual Memory |
| | | Section 1.4. The IO Subsystem |
| | | Section 1.5. The Big Picture |
| | | Section 1.6. Before We Begin |
| | | REFERENCES |
| | | Chapter TWO. Partitioned Servers: Node Partitions |
| | | Section 2.1. A Basic Hardware Guide to nPars |
| | | Section 2.2. The Genesis Partition |
| | | Section 2.3. Cell Behavior During the Initial Boot of a Partition |
| | | Section 2.4. Partition Manager |
| | | Section 2.5. Other Boot-Related Tasks |
| | | Chapter Review |
| | | Test Your Knowledge |
| | | Answer to Test Your Knowledge Questions |
| | | Chapter Review Questions |
| | | Answers to Chapter Review Questions |
| | | Chapter THREE. Partitioned Servers: Virtual Partitions |
| | | Section 3.1. An Introduction to Virtual Partitions |
| | | Section 3.2. Obtaining the Virtual Partitions Software |
| | | Section 3.3. Setting Up an Ignite-UX Server to Support Virtual Partitions |
| | | Section 3.4. Planning Your Virtual Partitions |
| | | Section 3.5. Creating the vPar Database |
| | | Section 3.6. Booting a Newly Created vPar from an Ignite-UX Server |
| | | Section 3.7. Managing Hardware within a Virtual Partition |
| | | Section 3.8. Rebooting vpmon |
| | | Section 3.9. Interfacing with the Virtual Partition Monitor: vpmon |
| | | Section 3.10. Changing Partition Attributes |
| | | Section 3.11. Resetting a Virtual Partition |
| | | Section 3.12. Removing a Virtual Partition |
| | | Section 3.13. Turning Off Virtual Partition Functionality |
| | | Chapter Review |
| | | Test Your Knowledge |
| | | Answers to Test Your Knowledge |
| | | Chapter Review Questions |
| | | Answers to Chapter Review Questions |
| | | Chapter FOUR. Advanced Peripherals Configuration |
| | | Section 4.1. Reorganizing Your IO Tree |
| | | Section 4.2. Disk Device Files in a Switched Fabric, Fibre Channel SAN |
| | | Section 4.3. Online Addition and Replacement: OLA/R |
| | | Test Your Knowledge |
| | | Answers to Test Your Knowledge |
| | | Chapter Review Questions |
| | | Answers to Chapter Review Questions |
| | | Chapter FIVE. Disks and Volumes: RAID Levels and RAID Parity Data |
| | | Section 5.1. RAID Levels |
| | | Section 5.2. RAID Parity Data |
| | | Chapter Review |
| | | Test Your Knowledge |
| | | Answers to Test Your Knowledge |
| | | Chapter Review Questions |
| | | Answers to Chapter Review Questions |
| | | Chapter SIX. Disks and Volumes: LVM |
| | | Section 6.1. LVM Striping (RAID 0) |
| | | Section 6.2. LVM Mirroring (RAID 1) |
| | | Section 6.3. Alternate PV Links |
| | | Section 6.4. Exporting and Importing Volume Groups |
| | | Section 6.5. Forward Compatibility with Newer, Larger Capacity Disk Drives |
| | | Chapter Review |
| | | Test Your Knowledge |
| | | Answers to Test Your Knowledge |
| | | Chapter Review Questions |
| | | Answers to Chapter Review Questions |
| | | Chapter SEVEN. Disks and Volumes: Veritas Volume Manager |
| | | Section 7.1. Introducing Veritas Volume Manager |
| | | Section 7.2. VxVM Striping (RAID 0) |
| | | Section 7.3. VxVM Mirroring (RAID 1) |
| | | Section 7.4. VxVM Striping and Mirroring (RAID 0/1 and 1/0) |
| | | Section 7.5. Faster Mirror Resynchronization after a System Crash |
| | | Section 7.6. VxVM RAID 5 |
| | | Section 7.7. Recovering from a Failed Disk |
| | | Section 7.8. Using Spare Disks |
| | | Section 7.9. VxVM Snapshots |
| | | Section 7.10. VxVM Rootability |
| | | Section 7.11. Other VxVM Tasks |
| | | Chapter Review |
| | | Test Your Knowledge |
| | | Answers to Test Your Knowledge |
| | | Chapter Review Questions |
| | | Answers to Chapter Review Questions |
| | | Chapter EIGHT. Filesystems: HFS, VxFS, and the VFS Layer |
| | | Section 8.1. Basic Filesystem Characteristics |
| | | Section 8.2. HFS Internal Structure |
| | | Section 8.3. Tuning an HFS Filesystem |
| | | Section 8.4. HFS Access Control Lists |
| | | Section 8.5. VxFS Internal Structures |
| | | Section 8.6. Online JFS Features |
| | | Section 8.7. Tuning a VxFS Filesystem |
| | | Section 8.8. VxFS Snapshots |
| | | Section 8.9. Navigating through Filesystems via the VFS Layer |
| | | Chapter Review |
| | | Test Your Knowledge |
| | | Answers to Test Your Knowledge |
| | | Chapter Review Questions |
| | | Answers to Chapter Review Questions |
| | | REFERENCES |
| | | Chapter NINE. Swap and Dump Space |
| | | Section 9.1. Swap Space, Paging, and Virtual Memory Management |
| | | Section 9.2. How Much Swap Space Do I Need? |
| | | Section 9.3. Configuring Additional Swap Devices |
| | | Chapter Review on Swap Space |
| | | Section 9.4. When Dump Space Is Used |
| | | Section 9.5. Including Page Classes in the Crashdump Configuration |
| | | Section 9.6. Configuring Additional Dump Space |
| | | Section 9.7. The savecrash Process |
| | | Section 9.8. Dump and Swap Space in the Same Volume |
| | | Chapter Review on Dump Space |
| | | Test Your Knowledge |
| | | Answers to Test Your Knowledge |
| | | Chapter Review Questions |
| | | Answers to Chapter Review Questions |
| | | REFERENCES |
| | | Chapter TEN. Monitoring System Resources |
| | | Section 10.1. Dynamic Kernel Configuration and Monitoring |
| | | Section 10.2. Monitoring General System Activity and Events |
| | | Section 10.3. Was It a PANIC, a TOC, or an HPMC? |
| | | Chapter Review |
| | | Test Your Knowledge |
| | | Answers to Test Your Knowledge |
| | | Chapter Review Questions |
| | | Answers to Chapter Review Questions |
| | | Chapter ELEVEN. Processes, Threads, and Bottlenecks |
| | | Section 11.1. Defining Processes and Threads |
| | | Section 11.2. Process Life Cycle |
| | | Section 11.3. Context Switches and Timeslices |
| | | Section 11.4. Process/Thread Priorities and Run Queues |
| | | Section 11.5. Multiprocessor Environments and Processor Affinity |
| | | Section 11.6. Memory Requirements for Processes/Threads |
| | | Section 11.7. Memory Limitations for 32-bit Operating Systems, magic Numbers, and Memory Windows |
| | | Section 11.8. Performance Optimized Page Sizes (POPS) |
| | | Chapter Review on a Process Life Cycle |
| | | Section 11.9. Common Bottlenecks for Processes and Threads |
| | | Chapter Review on Common Bottlenecks |
| | | Section 11.10. Prioritizing Workloads with PRM and WLM |
| | | Chapter Review on PRM |
| | | Chapter Review on WLM |
| | | Test Your Knowledge |
| | | Answers to Test Your Knowledge |
| | | Chapter Review Questions |
| | | Answers to Chapter Review Questions |
| | | REFERENCES |
| | Part TWO. Install, Update, and Recovery |
| | | Chapter TWELVE. HP-UX Patches |
| | | Section 12.1. What Is a Patch? |
| | | Section 12.2. When Should I Patch My Server(s)? |
| | | Section 12.3. Understanding the Risks Involved When Applying Patches |
| | | Section 12.4. Obtaining Patches |
| | | Section 12.5. Patch Naming Convention |
| | | Section 12.6. Patch Ratings |
| | | Section 12.7. The Patch shar File |
| | | Section 12.8. Patch Attributes |
| | | Section 12.9. Setting Up a Patch Depot |
| | | Section 12.10. Installing Patches |
| | | Section 12.11. Removing Patches and Committing Patches |
| | | Section 12.12. Managing a Patch Depot |
| | | Chapter Review |
| | | Test Your Knowledge |
| | | Answers to Test Your Knowledge |
| | | Chapter Review Questions |
| | | Answers to Chapter Review Questions |
| | | Chapter THIRTEEN. Installing Software with Software Distributor and Ignite-UX |
| | | Section 13.1. Using swinstall to Push Software across the Network |
| | | Section 13.2. Installing a Complete Operating System Using Ignite-UX |
| | | Section 13.3. Setting Up a Golden Image |
| | | Section 13.4. Making a Recovery Archive |
| | | Chapter Review |
| | | Test Your Knowledge |
| | | Answers to Test Your Knowledge |
| | | Chapter Review Questions |
| | | Answers to Chapter Review Questions |
| | | Chapter FOURTEEN. Emergency Recovery Using the HP-UX Installation Media |
| | | Section 14.1. Recovering a Corrupt Boot Header Including a Missing ISL |
| | | Section 14.2. Recovering from Having No Bootable Kernel |
| | | Section 14.3. Recovering from a Missing Critical Boot File: /stand/rootconf |
| | | Chapter Review |
| | | Test Your Knowledge |
| | | Answers to Test Your Knowledge |
| | | Chapter Review Questions |
| | | Answers to Chapter Review Questions |
| | Part THREE. Networking |
| | | Chapter FIFTEEN. Basic IP Configuration |
| | | Section 15.1. Basic Networking Kernel Parameters |
| | | Section 15.2. Data-Link Level Testing |
| | | Section 15.3. Changing Your MAC Address |
| | | Section 15.4. Link Speed and Auto-Negotiation |
| | | Section 15.5. What's in an IP Address? |
| | | Section 15.6. Subnetting |
| | | Section 15.7. Static Routes |
| | | Section 15.8. The netconf File |
| | | Section 15.9. Dynamic IP Allocation: RARP and DHCP |
| | | Section 15.10. Performing a Basic Network Trace |
| | | Section 15.11. Modifying Network Parameters with ndd |
| | | Section 15.12. IP Multiplexing |
| | | Section 15.13. The 128-Bit IP Address: IPv6 |
| | | Section 15.14. Automatic Port Aggregation (APA) |
| | | Chapter Review |
| | | Test Your Knowledge |
| | | Answers to Test Your Knowledge |
| | | Chapter Review Questions |
| | | Answers to Chapter Review Questions |
| | | REFERENCES |
| | | Chapter SIXTEEN. Dynamic Routing |
| | | Section 16.1. The gated.conf Configuration File |
| | | Section 16.2. Router Discovery Protocol (RDP) |
| | | Section 16.3. Routing Information Protocol (RIP) |
| | | Section 16.4. Open Shortest Path First (OSPF) |
| | | Chapter Review |
| | | Test Your Knowledge |
| | | Answers to Test Your Knowledge |
| | | Chapter Review Questions |
| | | Answers to Chapter Review Questions |
| | | REFERENCES |
| | | Chapter SEVENTEEN. Domain Name System (DNS) |
| | | Section 17.1. Configuring a Master Name Server |
| | | Section 17.2. Configuring Additional Backup Slave and Caching-Only Name Servers |
| | | Section 17.3. Delegating Authority to a Subdomain Including DNS Forwarders |
| | | Section 17.4. Configuring DNS to Accept Automatic Updates from a DHCP Server |
| | | Section 17.5. Dynamic DNS Server Updates and TSIG Authentication |
| | | Chapter Review |
| | | Test Your Knowledge |
| | | Answers to Test Your Knowledge |
| | | Chapter Review Questions |
| | | Answers to Chapter Review Questions |
| | | REFERENCES |
| | | Chapter EIGHTEEN. Network Time Protocol |
| | | Section 18.1. What Time Is It? |
| | | Section 18.2. Choosing a Time Source |
| | | Section 18.3. Stratum Levels and Timeservers |
| | | Section 18.4. The Role of the NTP Software |
| | | Section 18.5. Analyzing Different Time Sources |
| | | Section 18.6. Setting Up the NTP Daemons |
| | | Section 18.7. NTP Server Relationships |
| | | Section 18.8. An Unlikely Server: A Local Clock Impersonator |
| | | Section 18.9. An NTP Polling Client |
| | | Section 18.10. An NTP Broadcast Client |
| | | Section 18.11. Other Points Relating to NTP |
| | | Chapter Review |
| | | Test Your Knowledge |
| | | Answers to Test Your Knowledge |
| | | Chapter Review Questions |
| | | Answers to Chapter Review Questions |
| | | Chapter NINETEEN. An Introduction to sendmail |
| | | Section 19.1. Basic Checks to Ensure That sendmail Is Installed and Working |
| | | Section 19.2. Using sendmail without Using DNS |
| | | Section 19.3. Mail Aliases |
| | | Section 19.4. Masquerading or Site Hiding and Possible DNS Implications |
| | | Section 19.5. A Simple Mail Cluster Configuration |
| | | Section 19.6. Building Your Own sendmail.cf File |
| | | Section 19.7. Monitoring the Mail Queue |
| | | Chapter Review |
| | | Test Your Knowledge |
| | | Answers to Test Your Knowledge |
| | | Chapter Review Questions |
| | | Answers to Chapter Review Questions |
| | | REFERENCES |
| | | Chapter TWENTY. Common Internet Filesystem (CIFS/9000) |
| | | Section 20.1. CIFS, SMB, and SAMBA |
| | | Section 20.2. CIFS Client or Server: You Need the Software |
| | | Section 20.3. CIFS Server Configuration |
| | | Section 20.4. CIFS Client Configuration |
| | | Section 20.5. NTLM: Using a Windows Server to Perform Authentication and Pluggable Authentication Modules (PAM) |
| | | Chapter Review |
| | | Test Your Knowledge |
| | | Answers to Test Your Knowledge |
| | | Chapter Review Questions |
| | | Answers to Chapter Review Questions |
| | | Chapter TWENTY ONE. An Introduction to LDAP |
| | | Section 21.1. Introducing the Lightweight Directory Access Protocol (LDAP) |
| | | Section 21.2. LDAP-UX Integration Products |
| | | Section 21.3. Step-by-Step Guide to LDAP-UX Client Services |
| | | Section 21.4. Next Steps |
| | | Chapter Review |
| | | Test Your Knowledge |
| | | Answers to Test Your Knowledge |
| | | Chapter Review Questions |
| | | Answers to Chapter Review Questions |
| | | Chapter TWENTY TWO. Web Servers to Manage HP-UX |
| | | Section 22.1. HP ObAM-Apache Web Server |
| | | Section 22.2. The Apache Web Server |
| | | Chapter Review |
| | | Test Your Knowledge |
| | | Answers to Test Your Knowledge |
| | | Chapter Review Questions |
| | | Answers to Chapter Review Questions |
| | | Chapter TWENTY THREE. Other Network Technologies |
| | | Section 23.1. WAN Solutions: Frame Relay and ATM |
| | | Section 23.2. An Introduction to Fibre Channel, DWDM, and Extended Fabrics |
| | | Section 23.3. Virtual LAN (VLAN) |
| | | Section 23.4. Virtual Private Network (VPN) |
| | | Chapter Review |
| | | Test Your Knowledge |
| | | Answers to Test Your Knowledge |
| | | Chapter Review Questions |
| | | Answers to Chapter Review Questions |
| | | REFERENCES |
| | Part FOUR. High-Availability Clustering |
| | | Chapter TWENTY FOUR. Understanding "High Availability" |
| | | Section 24.1. Why We Are Interested in High Availability? |
| | | Section 24.2. How Much Availability? The Elusive "Five 9s" |
| | | Section 24.3. A High Availability Cluster |
| | | Section 24.4. Serviceguard and High Availability Clusters |
| | | Chapter Review |
| | | Test Your Knowledge |
| | | Answers to Test Your Knowledge |
| | | Chapter Review Questions |
| | | Answers to Chapter Review Questions |
| | | REFERENCES |
| | | Chapter TWENTY FIVE. Setting Up a Serviceguard Cluster |
| | | Section 25.1. The Cookbook for Setting Up a Serviceguard Package-less Cluster |
| | | Section 25.2. The Basics of a Failure |
| | | Section 25.3. The Basics of a Cluster |
| | | Section 25.4. The "Split-Brain" Syndrome |
| | | Section 25.5. Hardware and Software Considerations for Setting Up a Cluster |
| | | Section 25.6. Testing Critical Hardware before Setting Up a Cluster |
| | | Section 25.7. Setting Up a Serviceguard Package-less Cluster |
| | | Section 25.8. Constant Monitoring |
| | | Chapter Review |
| | | Test Your Knowledge |
| | | Answers to Test Your Knowledge |
| | | Chapter Review Questions |
| | | Answers to Chapter Review Questions |
| | | Chapter TWENTY SIX. Configuring Packages in a Serviceguard Cluster |
| | | Section 26.1. The Cookbook for Setting Up Packages in a Serviceguard Cluster |
| | | Section 26.2. Setting Up and Testing a Serviceguard Package-less Cluster |
| | | Section 26.3. Understanding How a Serviceguard Package Works |
| | | Section 26.4. Establishing Whether You Can Utilize a Serviceguard Toolkit |
| | | Section 26.5. Understanding the Workings of Any In-house Applications |
| | | Section 26.6. Creating Package Monitoring Scripts, If Necessary |
| | | Section 26.7. Distributing the Application Monitoring Scripts to All Relevant Nodes in the Cluster |
| | | Section 26.8. Creating and Updating an ASCII Application Configuration File (cmmakepkg “p) |
| | | Section 26.9. Creating and Updating an ASCII Package Control Script (cmmakepkg “s) |
| | | Section 26.10. Manually Distributing to All Relevant Nodes the ASCII Package Control Script |
| | | Section 26.11. Checking the ASCII Package Control File (cmcheckconf) |
| | | Section 26.12. Distributing the Updated Binary Cluster Configuration File (cmapplyconf) |
| | | Section 26.13. Ensuring That Any Data Files and Programs That Are to Be Shared Are Loaded onto Shared Disk Drives |
| | | Section 26.14. Starting the Package |
| | | Section 26.15. Ensuring That Package Switching Is Enabled |
| | | Section 26.16. Testing Package Failover Functionality |
| | | Chapter Review |
| | | Test Your Knowledge |
| | | Answers to Test Your Knowledge |
| | | Chapter Review Questions |
| | | Answers to Chapter Review Questions |
| | | Chapter TWENTY SEVEN. Managing a Serviceguard Cluster |
| | | Section 27.1. Typical Cluster Management Tasks |
| | | Section 27.2. Adding a Node to the Cluster |
| | | Section 27.3. Adding a Node to a Package |
| | | Section 27.4. Adding a New Package to the Cluster Utilizing a Serviceguard Toolkit |
| | | Section 27.5. Modifying an Existing Package to Use EMS Resources |
| | | Section 27.6. Deleting a Package from the Cluster |
| | | Section 27.7. Deleting a Node from the Cluster |
| | | Section 27.8. Discussing the Process of Rolling Upgrades within a Cluster |
| | | Section 27.9. If It Breaks, Fix It! |
| | | Section 27.10. Installing and Using the Serviceguard Manager GUI |
| | | Chapter Review |
| | | Test Your Knowledge |
| | | Answers to Test Your Knowledge |
| | | Chapter Review Questions |
| | | Answers to Chapter Review Questions |
| | | Chapter TWENTY EIGHT. Additional Cluster Solutions |
| | | Section 28.1. Extended Serviceguard Cluster |
| | | Section 28.2. Metrocluster |
| | | Section 28.3. Continentalclusters |
| | | Section 28.4. Additional Cluster Solutions |
| | | Section 28.5. Other Cluster Considerations |
| | | Chapter Review |
| | | Test Your Knowledge |
| | | Answers to Test Your Knowledge |
| | | Chapter Review Questions |
| | | Answers to Chapter Review Questions |
| | Part FIVE. HP-UX Security Administration |
| | | Chapter TWENTY NINE. Dealing with Immediate Security Threats |
| | | Section 29.1. A Review of User-Level Security Settings |
| | | Section 29.2. HP-UX Trusted Systems |
| | | Section 29.3. The /etc/default/security Configuration File |
| | | Section 29.4. Common Security Administration Tasks |
| | | Test Your Knowledge |
| | | Answers to Test Your Knowledge |
| | | Chapter Review Questions |
| | | Answers to Chapter Review Questions |
| | | Answers to "File and Directory Permissions" Questions |
| | | REFERENCES |
| | | Chapter THIRTY. A New Breed of Security Tools |
| | | Section 30.1. The Basics of Cryptography, Including Symmetric and Asymmetric Key Cryptography |
| | | Section 30.2. Secure Shell (SSH) |
| | | Section 30.3. Host Intrusion Detection System (HIDS) |
| | | Section 30.4. IPSec, Diffie-Hellman, and Modular Arithmetic |
| | | Section 30.5. IPFilter and Bastille |
| | | Section 30.6. Other Security-Related Terms |
| | | Test Your Knowledge |
| | | Answers to Test Your Knowledge |
| | | Chapter Review Questions |
| | | Answers to Chapter Review Questions |
| | | REFERENCES |
| | | Appendix A. Getting to Know Your Hardware: A Bit of Background |
| | | Section A.1. Processor Architecture |
| | | Section A.2. Common processor families |
| | | Section A.3. Memory Hierarchy |
| | | Section A.4. Main Memory |
| | | Section A.5. A Quick Word on Virtual Memory |
| | | Section A.6. Concurrency: Getting Someone Else to Help You |
| | | Section A.7. IO Bus Architecture and IO Devices |
| | | Section A.8. Disk Drives: Storage or Speed |
| | | Section A.9. Getting to Know Your Hardware |
| | | Section A.10. Conclusions |
| | | PROBLEMS |
| | | ANSWERS |
| | | REFERENCES |
| | | Appendix B. Source Code |
| | | Section B.1. infocache32 |
| | | Section B.2. infocache64.c |
| | | Section B.3. dump_ioconfig.c |
| | | Section B.4. numCPU.c |
| | | Section B.5. setCPU.c |
| | | Section B.6. clockwatch .c |
| | | Appendix C. Patching Usage Models White Paper |
| | | Appendix D. Auto-Negotiation White Paper |
| | | Appendix E. Building a Bastion Host White Paper |
| | Index |