SlideShare uma empresa Scribd logo

HP-UX 11iv3 Ignite-UX with NFSv4 and SSH Tunnel by Dusan Baljevic

Transferir como PPTX, PDF
Circling Cycle
Circling Cycle

HP-UX 11iv3 Ignite-UX with NFSv4 and SSH tunnel

Tecnologia
1 de 28
HP-UX 11iv3 Ignite-UX with NFSV4 and SSH Tunnel Dusan Baljevic
Overview This short technical presentation will show: – Setup of Ignite-UX server and client running HP-UX 11iv3 by using NFSv4 with SSH tunnel Assumptions: – Basic knowledge of Ignite-UX, SSH, and NFS on HP-UX platform The equipment used: – rx7420 and rx2660 running HP-UX 11iv3 Update 1203 – Ignite-UX server hostname is ignserv – Ignite-UX client hostname is hpclient – Both servers run HP-UX DCOE, OpenSSH 6.0p1 (GR8 Call 4000252191 opened for Secure Shell on HP-UX), Ignite-UX C.7.14.264, ONC/NFS B.11.31.13 – Network between the servers is plain 100 Mbs segment, the servers use single network cards (no APA) – Default kernel tuning was used
Secure Shell 5.9p1 Still a Problem Even the latest version of HP-UX 11iv3 1209 DCOE with its Secure Shell has the same bug. I tested it in early September 2012. The same “hung-session” problem occurred when using: # swlist | egrep "-OE" HPUX11i-DC-OE B.11.31.1209 HP-UX Data Center Operating Environment # ssh -V – OpenSSH_5.9p1+sftpfilecontrol-v1.3-hpn13v12, – HP-UX OpenSSL 0.9.8w 23 Apr 2012 Secure Shell-A.05.90.007, HP-UX Secure Shell version So, at this stage, open-source version of SSH is still required on the Ignite-UX client side. The Ignite-UX server side uses standard Secure Shell that comes with HP-UX distribution.
Why This Presentation? –Secure environment to run Ignite-UX when only SSH is allowed between servers; –An alternative solution to run Ignite-UX, which was not documented before; –An opportunity to use new features through NFSv4; –The flexibility of tools available on HP-UX 11iv3; –Simple and robust solution for Disaster Recovery O/S backups in secure environments.
Why NFSv4 with SSH Tunnel • With HP-UX 11i we support Kerberos encryption with all NFS-versions (NFSv2, NFSv3, and NFSv4); • This would possibly be faster than port forwarding with SSH, but the NFS ports would still need to be opened between two servers; • With NFSv4 and SSH tunnel, a new method is possible, where IgniteUX and pre-mounted file systems (NFS) can be used. In this case, we will use localhost as target for saving the O/S image: make_net_recovery –s localhost ...
Setting NFSv4 on Ignite-UX Server • Edit /etc/rc.config.d/nfsconf. The only important options are: NFS_CORE=1 LOCKMGR=1 * NFS_SERVER=1 NFS_CLIENT=0 START_MOUNTD=1 • Edit /etc/default/nfs and change the following options from the defaults: NFS_SERVER_VERSMAX=4 NFS_CLIENT_VERSMAX=4
NFSv4 Delegation * • /etc/default/nfs option (NFS_SERVER_DELEGATION=on). NFSv4 is designed to use a single source-port 2049. If there is a firewall between NFS client and NFS-server, it is sufficient to open port number 2049. With the introduction of NFSv4 delegation, the NFS-server need to be able to revoke a granted delegation. This is done via a special connection/protocol and requires an additional port to be opened. The communication is done from the NFS-server to the NFS-client, and the destination port of this connection is announced/sent by the NFS-client, when the NFSv4 file system is been mounted. The port-number that is currently used can be any port between 49152 and 65535 and is handled by the NFSv4 callback-daemon "nfs4cbd“ at the NFS-client. If the firewall blocks the callback-communication, the NFS-client and NFS-server will disable the delegation feature for this client, which may impact NFSv4 performance (does not impact NFSv4 functionality).
Setting NFSv4 on Ignite-UX Server – cont. Edit /etc/dfs/dfstab to share two file systems to a remote Ignite-UX client (hostname hpclient). It is CRUCIAL to list both the Ignite-UX server and client in the access list: share -F nfs -o anon=2,access=ignserv:hpclient /var/opt/ignite/clients share -F nfs -o anon=2,access=ignserv:hpclient /var/opt/ignite/recovery/archives/hpclient Warning: If you do not put the Ignite-UX server above, the client will report the following error in /var/adm/syslog/syslog.log: Aug 28 17:47:12 hpclient vmunix: WARNING: NFS server initial call to localhost failed: Permission denied
Setting SSH on Ignite-UX Server • Edit /usr/local/etc/sshd_config. The only important changes from the defaults are: Protocol 2,1 ClientAliveInterval 15 ClientAliveCountMax 10 ClientAliveInterval sets a timeout interval in seconds after which if no data has been received from the client, sshd(8) will send a message through the encrypted channel to request a response from the client. The default is 0, indicating that these messages will not be sent to the client. This option applies to SSH protocol version 2 only.
Setting SSH on Ignite-UX Server cont. ClientAliveCountMax Sets the number of client alive messages which may be sent without sshd receiving any messages back from the client. If this threshold is reached while client alive messages are being sent, sshd will disconnect the client, terminating the session. It is important to note that the use of client alive messages is very different from TCPKeepAlive (below). The client alive messages are sent through the encrypted channel and therefore will not be spoofable. The TCP keepalive option enabled by TCPKeepAlive is spoofable. The client alive mechanism is valuable when the client or server depend on knowing when a connection has become inactive. The default value is 3. If ClientAliveInterval is set to 15, and ClientAliveCountMax is 10, unresponsive ssh clients will be disconnected after approximately 150 seconds.
Setting NFSV4 on Ignite-UX Client • Edit /etc/rc.config.d/nfsconf. The only options required are: NFS_CORE=1 LOCKMGR=1 * NFS_CLIENT=1 • Edit /etc/default/nsf and change the following options from the defaults: NFS_SERVER_VERSMAX=4 NFS_CLIENT_VERSMAX=4
SSH Tunnel On Ignite-UX Client • Set up SSH tunnel to Ignite-UX server. We used local port 2323 (can be any free port on the local machine) : # /usr/local/bin/ssh -fN -L 2323:ignserv:2049 ignserv It means we established an SSH tunnel by using local port 2323 to tunnel requests to remote server ignserv on port 2049.
Create Directory on Ignite-UX Client # mkdir -p /var/opt/ignite/recovery/client_mnt # chown bin:bin /var/opt/ignite/recovery/client_mnt # mkdir /var/opt/ignite/recovery/arch_mnt # chown bin:bin /var/opt/ignite/recovery/arch_mnt
Change Commands on Ignite-UX Client • Once the tunnel is established to a remote Ignite-UX server, the following TEMPORARY command changes are required: # mv /sbin/mount /sbin/mount.IGN # mv /sbin/umount /sbin/umount.IGN # ln –s /usr/bin/true /sbin/mount # ln –s /usr/bin/true /sbin/umount # cp /opt/ignite/bin/save_config /opt/ignite/bin/save_config.IGN # sed -e 's/^mount -lp/mount.IGN -lp/g‘ /opt/ignite/bin/save_config > /opt/ignite/bin/save_config.new # mv /opt/ignite/bin/save_config.new /opt/ignite/bin/save_config
QXCR1001169724 Ignite-UX with premounted NFS To enable the migration of systems in secure environments this request asks for a method of telling make_net_recovery to not NFS mount file systems and write the configuration and archive to local disks. The general requirement is that make_net_recovery allow the use of no NFS file systems. That is: it will write the configuration and archive to a the local file system instead of a remote NFS file system. http://psweb1.cup.hp.com/~projects/pq/cgibin/goto_cr.cgi?number=QXCR1001169724&results_format=default&t z=PDT&submit=submit
NFSv4 Mounts on Ignite-UX Client • Once the tunnel is established to a remote Ignite-UX server, two NFSv4 file systems must be mounted on the client. We used local port 2323 (can be any free port) and remote Ignite-UX server is hostname ignserv: # /sbin/mount.IGN -o port=2323,vers=4 localhost:/var/opt/ignite/clients /var/opt/ignite/recovery/client_mnt # /sbin/mount.IGN -o port=2323,vers=4 localhost:/var/opt/ignite/recovery/archives/hpclient /var/opt/ignite/recovery/arch_mnt
Ignite-UX Backups on Client • localhost is used for make_net_recovery: # make_net_recovery -s localhost -P s -x inc_entire=vg00 –x exclude=/tmp -x exclude=/var/tmp -d "Archive_of_hpclient_via_NFSv4“
Ignite-UX Client NFS Mounts # bdf Filesystem kbytes used avail %used Mounted on /dev/vg00/lvol3 2097152 686912 1399336 33% / /dev/vg00/lvol1 2097152 253368 1829440 12% /stand /dev/vg00/lvol8 12288000 2655544 9557288 22% /var /dev/vg00/lvol10 2097152 20376 1949780 1% /var/tmp /dev/vg00/lvol9 4194304 18008 3915285 0% /var/adm/crash /dev/vg00/lvol7 12288000 3759744 8461736 31% /usr /dev/vg00/lvol6 1048576 21088 1019464 /dev/vg00/lvol5 18432000 8646536 9709152 47% /opt /dev/vg00/lvol4 524288 20848 499512 localhost:/var/opt/ignite/clients 2% /tmp 4% /home 16252928 4258160 11901208 26% /var/opt/ignite/recovery/client_mnt localhost:/var/opt/ignite/recovery/archives/hpclient 16252928 4258168 11901208 26% /var/opt/ignite/recovery/arch_mnt
Ignite-UX Backups on Client • Ignite-UX backups of around 5.8 GB image took 58 minutes across 100 Mbs network segment (idle network) when using NFSv4 and SSH tunnel. • Ignite-UX backups of around 5.8 GB image took 48 minutes across 100 Mbs network segment (idle network) when using NFSv4 without SSH tunnel. • Through limited testing, it has been shown that SSH tunnel might decrease network throughput by up to around 20%. • Through performance monitoring, it was found out that around 1.4 GB of RAM was used during Ignite-UX backups of 5.8 GB on the client. • Through kernel, NFS and VxFS tuning, even better results would be expected.
Test 1 with TCP and Kernel Tuning • The following changes were tested several times (results were close in timings): # ndd -set /dev/tcp tcp_recv_hiwater_def 1048576 (on server and client) # ndd -set /dev/tcp tcp_xmit_hiwater_def 1048576 (on server and client) # kctune -b yes nfs4_bsize=1048576 (on server and client) # kctune -b yes nfs4_max_threads=32 (on client) # kctune -b yes nfs4_nra=32 (on client) • In addition, Tune-N-Tools optimization done on both servers. • Ignite-UX backups of around 5.8 GB image took 74 minutes across 100 Mbs network segment (idle network) when using NFSv4 and SSH tunnel. The tuning did not achieve significantly positive results.
Test 2 with TCP and Kernel Tuning • The following changes were tested several times (results were close in timings): # ndd -set /dev/tcp tcp_recv_hiwater_def 1048576 (on server and client) # ndd -set /dev/tcp tcp_xmit_hiwater_def 1048576 (on server and client) # kctune -b yes nfs4_bsize=1048576 (on server and client) • In addition, Tune-N-Tools optimization done on both servers. • Ignite-UX backups of around 5.8 GB image took 75 minutes across 100 Mbs network segment (idle network) when using NFSv4 and SSH tunnel. The tuning did not achieve significantly positive results.
Test 3 with TCP and Kernel Tuning • The following changes were tested: # kctune -b yes nfs4_bsize=1048576 (on server and client) • In addition, Tune-N-Tools optimization done on both servers. • Ignite-UX backups of around 5.8 GB image took 75 minutes across 100 Mbs network segment (idle network) when using NFSv4 and SSH tunnel. The tuning did not achieve significantly positive results.
Change Commands on Ignite-UX Client • Once backups are completed on the Ignite-UX client, the following TEMPORARY command changes must be removed: # rm /sbin/mount /sbin/umount # mv /sbin/mount.IGN /sbin/mount # mv /sbin/umount.IGN /sbin/umount # mv /opt/ignite/bin/save_config.IGN /opt/ignite/bin/save_config • If a crash or a reboot happens while the Ignite-UX Backups are running, you must boot into single user mode and run the above commands before booting cleanly.
Ignite-UX Recovery • archive_cfg file will contain wrong NFS source if you decide to try to restore it. Before unmounting the NFSv4, edit the file: /var/opt/ignite/recovery/client_mnt/hpclient/recovery/latest/archive_cfg and change the following statement accordingly: nfs_source="127.0.0.1:/var/opt/ignite/recovery/archives/hpclient" Or, on Ignite-UX server, the same file is in this location: /var/opt/ignite/clients/hpclient/recovery/latest/archive_cfg
Ignite-UX Recovery cont. The image is located on the Ignite-UX server. Standard Ignite-UX recovery or deployment procedure applies.
For More Information Ignite-UX Documentation http://www.hp.com/go/ignite-ux-docs NFS Services Administration Guide HP-UX 11iv3 http://h20000.www2.hp.com/bc/docs/support/SupportManual/c0323 1925/c03231925.pdf Shell script that automates the backup process: http://www.circlingcycle.com.au/Unix-sources/HP-UX-ignite-viaNFSv4-and-SSH-tunnel.sh.txt
Shell Script (Embedded PDF)
THANK YOU!

Recomendados

HP-UX Swap and Dump Unleashed by Dusan Baljevic
HP-UX Swap and Dump Unleashed by Dusan BaljevicHP-UX Swap and Dump Unleashed by Dusan Baljevic
HP-UX Swap and Dump Unleashed by Dusan BaljevicCircling Cycle
 
HP-UX Dynamic Root Disk Boot Disk Cloning Benefits and Use Cases by Dusan Bal...
HP-UX Dynamic Root Disk Boot Disk Cloning Benefits and Use Cases by Dusan Bal...HP-UX Dynamic Root Disk Boot Disk Cloning Benefits and Use Cases by Dusan Bal...
HP-UX Dynamic Root Disk Boot Disk Cloning Benefits and Use Cases by Dusan Bal...Circling Cycle
 
Unix and Linux Common Boot Disk Disaster Recovery Tools by Dusan Baljevic
Unix and Linux Common Boot Disk Disaster Recovery Tools by Dusan BaljevicUnix and Linux Common Boot Disk Disaster Recovery Tools by Dusan Baljevic
Unix and Linux Common Boot Disk Disaster Recovery Tools by Dusan BaljevicCircling Cycle
 
HP-UX Dynamic Root Disk vs Solaris Live Upgrade vs AIX Multibos by Dusan Balj...
HP-UX Dynamic Root Disk vs Solaris Live Upgrade vs AIX Multibos by Dusan Balj...HP-UX Dynamic Root Disk vs Solaris Live Upgrade vs AIX Multibos by Dusan Balj...
HP-UX Dynamic Root Disk vs Solaris Live Upgrade vs AIX Multibos by Dusan Balj...Circling Cycle
 
Ignite ux-quickstart
Ignite ux-quickstartIgnite ux-quickstart
Ignite ux-quickstartMohamed Kajamoideen
 
Current and Future of Non-Volatile Memory on Linux
Current and Future of Non-Volatile Memory on LinuxCurrent and Future of Non-Volatile Memory on Linux
Current and Future of Non-Volatile Memory on Linuxmountpoint.io
 
QEMU Disk IO Which performs Better: Native or threads?
QEMU Disk IO Which performs Better: Native or threads?QEMU Disk IO Which performs Better: Native or threads?
QEMU Disk IO Which performs Better: Native or threads?Pradeep Kumar
 
XPDDS19: Core Scheduling in Xen - Jürgen Groß, SUSE
XPDDS19: Core Scheduling in Xen - Jürgen Groß, SUSEXPDDS19: Core Scheduling in Xen - Jürgen Groß, SUSE
XPDDS19: Core Scheduling in Xen - Jürgen Groß, SUSEThe Linux Foundation
 

Recomendados

HP-UX Swap and Dump Unleashed by Dusan Baljevic
HP-UX Swap and Dump Unleashed by Dusan BaljevicHP-UX Swap and Dump Unleashed by Dusan Baljevic
HP-UX Swap and Dump Unleashed by Dusan BaljevicCircling Cycle
 
HP-UX Dynamic Root Disk Boot Disk Cloning Benefits and Use Cases by Dusan Bal...
HP-UX Dynamic Root Disk Boot Disk Cloning Benefits and Use Cases by Dusan Bal...HP-UX Dynamic Root Disk Boot Disk Cloning Benefits and Use Cases by Dusan Bal...
HP-UX Dynamic Root Disk Boot Disk Cloning Benefits and Use Cases by Dusan Bal...Circling Cycle
 
Unix and Linux Common Boot Disk Disaster Recovery Tools by Dusan Baljevic
Unix and Linux Common Boot Disk Disaster Recovery Tools by Dusan BaljevicUnix and Linux Common Boot Disk Disaster Recovery Tools by Dusan Baljevic
Unix and Linux Common Boot Disk Disaster Recovery Tools by Dusan BaljevicCircling Cycle
 
HP-UX Dynamic Root Disk vs Solaris Live Upgrade vs AIX Multibos by Dusan Balj...
HP-UX Dynamic Root Disk vs Solaris Live Upgrade vs AIX Multibos by Dusan Balj...HP-UX Dynamic Root Disk vs Solaris Live Upgrade vs AIX Multibos by Dusan Balj...
HP-UX Dynamic Root Disk vs Solaris Live Upgrade vs AIX Multibos by Dusan Balj...Circling Cycle
 
Ignite ux-quickstart
Ignite ux-quickstartIgnite ux-quickstart
Ignite ux-quickstartMohamed Kajamoideen
 
Current and Future of Non-Volatile Memory on Linux
Current and Future of Non-Volatile Memory on LinuxCurrent and Future of Non-Volatile Memory on Linux
Current and Future of Non-Volatile Memory on Linuxmountpoint.io
 
QEMU Disk IO Which performs Better: Native or threads?
QEMU Disk IO Which performs Better: Native or threads?QEMU Disk IO Which performs Better: Native or threads?
QEMU Disk IO Which performs Better: Native or threads?Pradeep Kumar
 
XPDDS19: Core Scheduling in Xen - Jürgen Groß, SUSE
XPDDS19: Core Scheduling in Xen - Jürgen Groß, SUSEXPDDS19: Core Scheduling in Xen - Jürgen Groß, SUSE
XPDDS19: Core Scheduling in Xen - Jürgen Groß, SUSEThe Linux Foundation
 
PVH : PV Guest in HVM container
PVH : PV Guest in HVM containerPVH : PV Guest in HVM container
PVH : PV Guest in HVM containerThe Linux Foundation
 
Sitaram_Chalasani_CV
Sitaram_Chalasani_CVSitaram_Chalasani_CV
Sitaram_Chalasani_CVSitaram Chalasani
 
S4 xen hypervisor_20080622
S4 xen hypervisor_20080622S4 xen hypervisor_20080622
S4 xen hypervisor_20080622Todd Deshane
 
Kernel Recipes 2017 - Build farm again - Willy Tarreau
Kernel Recipes 2017 - Build farm again - Willy TarreauKernel Recipes 2017 - Build farm again - Willy Tarreau
Kernel Recipes 2017 - Build farm again - Willy TarreauAnne Nicolas
 
Rmll Virtualization As Is Tool 20090707 V1.0
Rmll Virtualization As Is Tool 20090707 V1.0Rmll Virtualization As Is Tool 20090707 V1.0
Rmll Virtualization As Is Tool 20090707 V1.0guest72e8c1
 
Xen PV Performance Status and Optimization Opportunities
Xen PV Performance Status and Optimization OpportunitiesXen PV Performance Status and Optimization Opportunities
Xen PV Performance Status and Optimization OpportunitiesThe Linux Foundation
 
Deployment of WebObjects applications on CentOS Linux
Deployment of WebObjects applications on CentOS LinuxDeployment of WebObjects applications on CentOS Linux
Deployment of WebObjects applications on CentOS LinuxWO Community
 
Perfect Linux Desktop - OpenSuSE 12.2
Perfect Linux Desktop - OpenSuSE 12.2Perfect Linux Desktop - OpenSuSE 12.2
Perfect Linux Desktop - OpenSuSE 12.2Davor Guttierrez
 
Kvm performance optimization for ubuntu
Kvm performance optimization for ubuntuKvm performance optimization for ubuntu
Kvm performance optimization for ubuntuSim Janghoon
 
Improving Xen idle power efficiency
Improving Xen idle power efficiencyImproving Xen idle power efficiency
Improving Xen idle power efficiencyThe Linux Foundation
 
LOAD BALANCING OF APPLICATIONS USING XEN HYPERVISOR
LOAD BALANCING OF APPLICATIONS USING XEN HYPERVISORLOAD BALANCING OF APPLICATIONS USING XEN HYPERVISOR
LOAD BALANCING OF APPLICATIONS USING XEN HYPERVISORVanika Kapoor
 
kexec / kdump implementation in Linux Kernel and Xen hypervisor
kexec / kdump implementation in Linux Kernel and Xen hypervisorkexec / kdump implementation in Linux Kernel and Xen hypervisor
kexec / kdump implementation in Linux Kernel and Xen hypervisorThe Linux Foundation
 
Tuning DB2 in a Solaris Environment
Tuning DB2 in a Solaris EnvironmentTuning DB2 in a Solaris Environment
Tuning DB2 in a Solaris EnvironmentJignesh Shah
 
Building a KVM-based Hypervisor for a Heterogeneous System Architecture Compl...
Building a KVM-based Hypervisor for a Heterogeneous System Architecture Compl...Building a KVM-based Hypervisor for a Heterogeneous System Architecture Compl...
Building a KVM-based Hypervisor for a Heterogeneous System Architecture Compl...Hann Yu-Ju Huang
 
Building a Distributed Block Storage System on Xen
Building a Distributed Block Storage System on XenBuilding a Distributed Block Storage System on Xen
Building a Distributed Block Storage System on XenThe Linux Foundation
 
XPDS14 - RT-Xen: Real-Time Virtualization in Xen - Sisu Xi, Washington Univer...
XPDS14 - RT-Xen: Real-Time Virtualization in Xen - Sisu Xi, Washington Univer...XPDS14 - RT-Xen: Real-Time Virtualization in Xen - Sisu Xi, Washington Univer...
XPDS14 - RT-Xen: Real-Time Virtualization in Xen - Sisu Xi, Washington Univer...The Linux Foundation
 
XPDS16: The OpenXT Project in 2016 - Christopher Clark, BAE Systems
XPDS16: The OpenXT Project in 2016 - Christopher Clark, BAE SystemsXPDS16: The OpenXT Project in 2016 - Christopher Clark, BAE Systems
XPDS16: The OpenXT Project in 2016 - Christopher Clark, BAE SystemsThe Linux Foundation
 
XPDS16: libvirt and Tools: What's New and What's Next - James Fehlig, SUSE
XPDS16: libvirt and Tools: What's New and What's Next - James Fehlig, SUSEXPDS16: libvirt and Tools: What's New and What's Next - James Fehlig, SUSE
XPDS16: libvirt and Tools: What's New and What's Next - James Fehlig, SUSEThe Linux Foundation
 
XPDDS18: CPUFreq in Xen on ARM - Oleksandr Tyshchenko, EPAM Systems
XPDDS18: CPUFreq in Xen on ARM - Oleksandr Tyshchenko, EPAM SystemsXPDDS18: CPUFreq in Xen on ARM - Oleksandr Tyshchenko, EPAM Systems
XPDDS18: CPUFreq in Xen on ARM - Oleksandr Tyshchenko, EPAM SystemsThe Linux Foundation
 
Redesigning Xen Memory Sharing (Grant) Mechanism
Redesigning Xen Memory Sharing (Grant) MechanismRedesigning Xen Memory Sharing (Grant) Mechanism
Redesigning Xen Memory Sharing (Grant) MechanismThe Linux Foundation
 
How to Remove Primary Swap on HP-UX 11iv3 Online by Dusan Baljevic
How to Remove Primary Swap on HP-UX 11iv3 Online by Dusan BaljevicHow to Remove Primary Swap on HP-UX 11iv3 Online by Dusan Baljevic
How to Remove Primary Swap on HP-UX 11iv3 Online by Dusan BaljevicCircling Cycle
 
HPUX Update Seminar Session 1 Dan Taipala
HPUX Update Seminar Session 1 Dan TaipalaHPUX Update Seminar Session 1 Dan Taipala
HPUX Update Seminar Session 1 Dan Taipaladtaipala
 

Mais conteúdo relacionado

Mais procurados

S4 xen hypervisor_20080622
S4 xen hypervisor_20080622S4 xen hypervisor_20080622
S4 xen hypervisor_20080622Todd Deshane
 
Kernel Recipes 2017 - Build farm again - Willy Tarreau
Kernel Recipes 2017 - Build farm again - Willy TarreauKernel Recipes 2017 - Build farm again - Willy Tarreau
Kernel Recipes 2017 - Build farm again - Willy TarreauAnne Nicolas
 
Rmll Virtualization As Is Tool 20090707 V1.0
Rmll Virtualization As Is Tool 20090707 V1.0Rmll Virtualization As Is Tool 20090707 V1.0
Rmll Virtualization As Is Tool 20090707 V1.0guest72e8c1
 
Xen PV Performance Status and Optimization Opportunities
Xen PV Performance Status and Optimization OpportunitiesXen PV Performance Status and Optimization Opportunities
Xen PV Performance Status and Optimization OpportunitiesThe Linux Foundation
 
Deployment of WebObjects applications on CentOS Linux
Deployment of WebObjects applications on CentOS LinuxDeployment of WebObjects applications on CentOS Linux
Deployment of WebObjects applications on CentOS LinuxWO Community
 
Perfect Linux Desktop - OpenSuSE 12.2
Perfect Linux Desktop - OpenSuSE 12.2Perfect Linux Desktop - OpenSuSE 12.2
Perfect Linux Desktop - OpenSuSE 12.2Davor Guttierrez
 
Kvm performance optimization for ubuntu
Kvm performance optimization for ubuntuKvm performance optimization for ubuntu
Kvm performance optimization for ubuntuSim Janghoon
 
Improving Xen idle power efficiency
Improving Xen idle power efficiencyImproving Xen idle power efficiency
Improving Xen idle power efficiencyThe Linux Foundation
 
LOAD BALANCING OF APPLICATIONS USING XEN HYPERVISOR
LOAD BALANCING OF APPLICATIONS USING XEN HYPERVISORLOAD BALANCING OF APPLICATIONS USING XEN HYPERVISOR
LOAD BALANCING OF APPLICATIONS USING XEN HYPERVISORVanika Kapoor
 
kexec / kdump implementation in Linux Kernel and Xen hypervisor
kexec / kdump implementation in Linux Kernel and Xen hypervisorkexec / kdump implementation in Linux Kernel and Xen hypervisor
kexec / kdump implementation in Linux Kernel and Xen hypervisorThe Linux Foundation
 
Tuning DB2 in a Solaris Environment
Tuning DB2 in a Solaris EnvironmentTuning DB2 in a Solaris Environment
Tuning DB2 in a Solaris EnvironmentJignesh Shah
 
Building a KVM-based Hypervisor for a Heterogeneous System Architecture Compl...
Building a KVM-based Hypervisor for a Heterogeneous System Architecture Compl...Building a KVM-based Hypervisor for a Heterogeneous System Architecture Compl...
Building a KVM-based Hypervisor for a Heterogeneous System Architecture Compl...Hann Yu-Ju Huang
 
Building a Distributed Block Storage System on Xen
Building a Distributed Block Storage System on XenBuilding a Distributed Block Storage System on Xen
Building a Distributed Block Storage System on XenThe Linux Foundation
 
XPDS14 - RT-Xen: Real-Time Virtualization in Xen - Sisu Xi, Washington Univer...
XPDS14 - RT-Xen: Real-Time Virtualization in Xen - Sisu Xi, Washington Univer...XPDS14 - RT-Xen: Real-Time Virtualization in Xen - Sisu Xi, Washington Univer...
XPDS14 - RT-Xen: Real-Time Virtualization in Xen - Sisu Xi, Washington Univer...The Linux Foundation
 
XPDS16: The OpenXT Project in 2016 - Christopher Clark, BAE Systems
XPDS16: The OpenXT Project in 2016 - Christopher Clark, BAE SystemsXPDS16: The OpenXT Project in 2016 - Christopher Clark, BAE Systems
XPDS16: The OpenXT Project in 2016 - Christopher Clark, BAE SystemsThe Linux Foundation
 
XPDS16: libvirt and Tools: What's New and What's Next - James Fehlig, SUSE
XPDS16: libvirt and Tools: What's New and What's Next - James Fehlig, SUSEXPDS16: libvirt and Tools: What's New and What's Next - James Fehlig, SUSE
XPDS16: libvirt and Tools: What's New and What's Next - James Fehlig, SUSEThe Linux Foundation
 
XPDDS18: CPUFreq in Xen on ARM - Oleksandr Tyshchenko, EPAM Systems
XPDDS18: CPUFreq in Xen on ARM - Oleksandr Tyshchenko, EPAM SystemsXPDDS18: CPUFreq in Xen on ARM - Oleksandr Tyshchenko, EPAM Systems
XPDDS18: CPUFreq in Xen on ARM - Oleksandr Tyshchenko, EPAM SystemsThe Linux Foundation
 
Redesigning Xen Memory Sharing (Grant) Mechanism
Redesigning Xen Memory Sharing (Grant) MechanismRedesigning Xen Memory Sharing (Grant) Mechanism
Redesigning Xen Memory Sharing (Grant) MechanismThe Linux Foundation
 

Mais procurados (20)

PVH : PV Guest in HVM container
PVH : PV Guest in HVM containerPVH : PV Guest in HVM container
PVH : PV Guest in HVM container
 
Sitaram_Chalasani_CV
Sitaram_Chalasani_CVSitaram_Chalasani_CV
Sitaram_Chalasani_CV
 
S4 xen hypervisor_20080622
S4 xen hypervisor_20080622S4 xen hypervisor_20080622
S4 xen hypervisor_20080622
 
Kernel Recipes 2017 - Build farm again - Willy Tarreau
Kernel Recipes 2017 - Build farm again - Willy TarreauKernel Recipes 2017 - Build farm again - Willy Tarreau
Kernel Recipes 2017 - Build farm again - Willy Tarreau
 
Rmll Virtualization As Is Tool 20090707 V1.0
Rmll Virtualization As Is Tool 20090707 V1.0Rmll Virtualization As Is Tool 20090707 V1.0
Rmll Virtualization As Is Tool 20090707 V1.0
 
Xen PV Performance Status and Optimization Opportunities
Xen PV Performance Status and Optimization OpportunitiesXen PV Performance Status and Optimization Opportunities
Xen PV Performance Status and Optimization Opportunities
 
Deployment of WebObjects applications on CentOS Linux
Deployment of WebObjects applications on CentOS LinuxDeployment of WebObjects applications on CentOS Linux
Deployment of WebObjects applications on CentOS Linux
 
Perfect Linux Desktop - OpenSuSE 12.2
Perfect Linux Desktop - OpenSuSE 12.2Perfect Linux Desktop - OpenSuSE 12.2
Perfect Linux Desktop - OpenSuSE 12.2
 
Kvm performance optimization for ubuntu
Kvm performance optimization for ubuntuKvm performance optimization for ubuntu
Kvm performance optimization for ubuntu
 
Improving Xen idle power efficiency
Improving Xen idle power efficiencyImproving Xen idle power efficiency
Improving Xen idle power efficiency
 
LOAD BALANCING OF APPLICATIONS USING XEN HYPERVISOR
LOAD BALANCING OF APPLICATIONS USING XEN HYPERVISORLOAD BALANCING OF APPLICATIONS USING XEN HYPERVISOR
LOAD BALANCING OF APPLICATIONS USING XEN HYPERVISOR
 
kexec / kdump implementation in Linux Kernel and Xen hypervisor
kexec / kdump implementation in Linux Kernel and Xen hypervisorkexec / kdump implementation in Linux Kernel and Xen hypervisor
kexec / kdump implementation in Linux Kernel and Xen hypervisor
 
Tuning DB2 in a Solaris Environment
Tuning DB2 in a Solaris EnvironmentTuning DB2 in a Solaris Environment
Tuning DB2 in a Solaris Environment
 
Building a KVM-based Hypervisor for a Heterogeneous System Architecture Compl...
Building a KVM-based Hypervisor for a Heterogeneous System Architecture Compl...Building a KVM-based Hypervisor for a Heterogeneous System Architecture Compl...
Building a KVM-based Hypervisor for a Heterogeneous System Architecture Compl...
 
Building a Distributed Block Storage System on Xen
Building a Distributed Block Storage System on XenBuilding a Distributed Block Storage System on Xen
Building a Distributed Block Storage System on Xen
 
XPDS14 - RT-Xen: Real-Time Virtualization in Xen - Sisu Xi, Washington Univer...
XPDS14 - RT-Xen: Real-Time Virtualization in Xen - Sisu Xi, Washington Univer...XPDS14 - RT-Xen: Real-Time Virtualization in Xen - Sisu Xi, Washington Univer...
XPDS14 - RT-Xen: Real-Time Virtualization in Xen - Sisu Xi, Washington Univer...
 
XPDS16: The OpenXT Project in 2016 - Christopher Clark, BAE Systems
XPDS16: The OpenXT Project in 2016 - Christopher Clark, BAE SystemsXPDS16: The OpenXT Project in 2016 - Christopher Clark, BAE Systems
XPDS16: The OpenXT Project in 2016 - Christopher Clark, BAE Systems
 
XPDS16: libvirt and Tools: What's New and What's Next - James Fehlig, SUSE
XPDS16: libvirt and Tools: What's New and What's Next - James Fehlig, SUSEXPDS16: libvirt and Tools: What's New and What's Next - James Fehlig, SUSE
XPDS16: libvirt and Tools: What's New and What's Next - James Fehlig, SUSE
 
XPDDS18: CPUFreq in Xen on ARM - Oleksandr Tyshchenko, EPAM Systems
XPDDS18: CPUFreq in Xen on ARM - Oleksandr Tyshchenko, EPAM SystemsXPDDS18: CPUFreq in Xen on ARM - Oleksandr Tyshchenko, EPAM Systems
XPDDS18: CPUFreq in Xen on ARM - Oleksandr Tyshchenko, EPAM Systems
 
Redesigning Xen Memory Sharing (Grant) Mechanism
Redesigning Xen Memory Sharing (Grant) MechanismRedesigning Xen Memory Sharing (Grant) Mechanism
Redesigning Xen Memory Sharing (Grant) Mechanism
 

Destaque

How to Remove Primary Swap on HP-UX 11iv3 Online by Dusan Baljevic
How to Remove Primary Swap on HP-UX 11iv3 Online by Dusan BaljevicHow to Remove Primary Swap on HP-UX 11iv3 Online by Dusan Baljevic
How to Remove Primary Swap on HP-UX 11iv3 Online by Dusan BaljevicCircling Cycle
 
HPUX Update Seminar Session 1 Dan Taipala
HPUX Update Seminar Session 1 Dan TaipalaHPUX Update Seminar Session 1 Dan Taipala
HPUX Update Seminar Session 1 Dan Taipaladtaipala
 
HP-UX - Patch Installation
HP-UX - Patch InstallationHP-UX - Patch Installation
HP-UX - Patch InstallationHemnath R.
 
HP Unix administration
HP Unix administrationHP Unix administration
HP Unix administrationHemnath R.
 
HP Superdome 2 Partitioning Administrator Guide HP-UX 11iv3(August 2010).PDF
HP Superdome 2 Partitioning Administrator Guide HP-UX 11iv3(August 2010).PDFHP Superdome 2 Partitioning Administrator Guide HP-UX 11iv3(August 2010).PDF
HP Superdome 2 Partitioning Administrator Guide HP-UX 11iv3(August 2010).PDFE. Balauca
 
Basic config in Cisco router
Basic config in Cisco routerBasic config in Cisco router
Basic config in Cisco routerHemnath R.
 
HP-UX 11iv3 Private Kernel Parameter nfile by Dusan Baljevic
HP-UX 11iv3 Private Kernel Parameter nfile by Dusan BaljevicHP-UX 11iv3 Private Kernel Parameter nfile by Dusan Baljevic
HP-UX 11iv3 Private Kernel Parameter nfile by Dusan BaljevicCircling Cycle
 
Networking concepts and terms
Networking concepts and termsNetworking concepts and terms
Networking concepts and termsHemnath R.
 
HP-UX RBAC Audsys Setup by Dusan Baljevic
HP-UX RBAC Audsys Setup by Dusan BaljevicHP-UX RBAC Audsys Setup by Dusan Baljevic
HP-UX RBAC Audsys Setup by Dusan BaljevicCircling Cycle
 
Better Settings for /tmp Filesystem on HP-UX by Dusan Baljevic
Better Settings for /tmp Filesystem on HP-UX by Dusan BaljevicBetter Settings for /tmp Filesystem on HP-UX by Dusan Baljevic
Better Settings for /tmp Filesystem on HP-UX by Dusan BaljevicCircling Cycle
 
HP-UX 11iv3 How to Change Root Volume Group Name vg00 by Dusan Baljevic
HP-UX 11iv3 How to Change Root Volume Group Name vg00 by Dusan BaljevicHP-UX 11iv3 How to Change Root Volume Group Name vg00 by Dusan Baljevic
HP-UX 11iv3 How to Change Root Volume Group Name vg00 by Dusan BaljevicCircling Cycle
 
Hp ux-11iv3-multiple-clones-with-dynamic-root-disks-dusan-baljevic-mar2014
Hp ux-11iv3-multiple-clones-with-dynamic-root-disks-dusan-baljevic-mar2014Hp ux-11iv3-multiple-clones-with-dynamic-root-disks-dusan-baljevic-mar2014
Hp ux-11iv3-multiple-clones-with-dynamic-root-disks-dusan-baljevic-mar2014Circling Cycle
 
Three CLI Methods to Find Console IP details on HP-UX by Dusan Baljevic
Three CLI Methods to Find Console IP details on HP-UX by Dusan BaljevicThree CLI Methods to Find Console IP details on HP-UX by Dusan Baljevic
Three CLI Methods to Find Console IP details on HP-UX by Dusan BaljevicCircling Cycle
 
HP-UX 11i Log File Management with Logrotate by Dusan Baljevic
HP-UX 11i Log File Management with Logrotate by Dusan BaljevicHP-UX 11i Log File Management with Logrotate by Dusan Baljevic
HP-UX 11i Log File Management with Logrotate by Dusan BaljevicCircling Cycle
 
HP-UX 11i LVM Mirroring Features and Multi-threads by Dusan Baljevic
HP-UX 11i LVM Mirroring Features and Multi-threads by Dusan BaljevicHP-UX 11i LVM Mirroring Features and Multi-threads by Dusan Baljevic
HP-UX 11i LVM Mirroring Features and Multi-threads by Dusan BaljevicCircling Cycle
 
Big Data Analytics Course Guide TOC
Big Data Analytics Course Guide TOCBig Data Analytics Course Guide TOC
Big Data Analytics Course Guide TOCManish Chopra
 

Destaque (20)

How to Remove Primary Swap on HP-UX 11iv3 Online by Dusan Baljevic
How to Remove Primary Swap on HP-UX 11iv3 Online by Dusan BaljevicHow to Remove Primary Swap on HP-UX 11iv3 Online by Dusan Baljevic
How to Remove Primary Swap on HP-UX 11iv3 Online by Dusan Baljevic
 
HPUX Update Seminar Session 1 Dan Taipala
HPUX Update Seminar Session 1 Dan TaipalaHPUX Update Seminar Session 1 Dan Taipala
HPUX Update Seminar Session 1 Dan Taipala
 
UX at HP Enterprise
UX at HP Enterprise UX at HP Enterprise
UX at HP Enterprise
 
HP-UX - Patch Installation
HP-UX - Patch InstallationHP-UX - Patch Installation
HP-UX - Patch Installation
 
HP Unix administration
HP Unix administrationHP Unix administration
HP Unix administration
 
HP Superdome 2 Partitioning Administrator Guide HP-UX 11iv3(August 2010).PDF
HP Superdome 2 Partitioning Administrator Guide HP-UX 11iv3(August 2010).PDFHP Superdome 2 Partitioning Administrator Guide HP-UX 11iv3(August 2010).PDF
HP Superdome 2 Partitioning Administrator Guide HP-UX 11iv3(August 2010).PDF
 
Basic config in Cisco router
Basic config in Cisco routerBasic config in Cisco router
Basic config in Cisco router
 
HP-UX 11iv3 Private Kernel Parameter nfile by Dusan Baljevic
HP-UX 11iv3 Private Kernel Parameter nfile by Dusan BaljevicHP-UX 11iv3 Private Kernel Parameter nfile by Dusan Baljevic
HP-UX 11iv3 Private Kernel Parameter nfile by Dusan Baljevic
 
Hp ux x_server
Hp ux x_serverHp ux x_server
Hp ux x_server
 
Networking concepts and terms
Networking concepts and termsNetworking concepts and terms
Networking concepts and terms
 
HP-UX RBAC Audsys Setup by Dusan Baljevic
HP-UX RBAC Audsys Setup by Dusan BaljevicHP-UX RBAC Audsys Setup by Dusan Baljevic
HP-UX RBAC Audsys Setup by Dusan Baljevic
 
Superdome
SuperdomeSuperdome
Superdome
 
Better Settings for /tmp Filesystem on HP-UX by Dusan Baljevic
Better Settings for /tmp Filesystem on HP-UX by Dusan BaljevicBetter Settings for /tmp Filesystem on HP-UX by Dusan Baljevic
Better Settings for /tmp Filesystem on HP-UX by Dusan Baljevic
 
Hp Integrity Servers
Hp Integrity ServersHp Integrity Servers
Hp Integrity Servers
 
HP-UX 11iv3 How to Change Root Volume Group Name vg00 by Dusan Baljevic
HP-UX 11iv3 How to Change Root Volume Group Name vg00 by Dusan BaljevicHP-UX 11iv3 How to Change Root Volume Group Name vg00 by Dusan Baljevic
HP-UX 11iv3 How to Change Root Volume Group Name vg00 by Dusan Baljevic
 
Hp ux-11iv3-multiple-clones-with-dynamic-root-disks-dusan-baljevic-mar2014
Hp ux-11iv3-multiple-clones-with-dynamic-root-disks-dusan-baljevic-mar2014Hp ux-11iv3-multiple-clones-with-dynamic-root-disks-dusan-baljevic-mar2014
Hp ux-11iv3-multiple-clones-with-dynamic-root-disks-dusan-baljevic-mar2014
 
Three CLI Methods to Find Console IP details on HP-UX by Dusan Baljevic
Three CLI Methods to Find Console IP details on HP-UX by Dusan BaljevicThree CLI Methods to Find Console IP details on HP-UX by Dusan Baljevic
Three CLI Methods to Find Console IP details on HP-UX by Dusan Baljevic
 
HP-UX 11i Log File Management with Logrotate by Dusan Baljevic
HP-UX 11i Log File Management with Logrotate by Dusan BaljevicHP-UX 11i Log File Management with Logrotate by Dusan Baljevic
HP-UX 11i Log File Management with Logrotate by Dusan Baljevic
 
HP-UX 11i LVM Mirroring Features and Multi-threads by Dusan Baljevic
HP-UX 11i LVM Mirroring Features and Multi-threads by Dusan BaljevicHP-UX 11i LVM Mirroring Features and Multi-threads by Dusan Baljevic
HP-UX 11i LVM Mirroring Features and Multi-threads by Dusan Baljevic
 
Big Data Analytics Course Guide TOC
Big Data Analytics Course Guide TOCBig Data Analytics Course Guide TOC
Big Data Analytics Course Guide TOC
 

Semelhante a HP-UX 11iv3 Ignite-UX with NFSv4 and SSH Tunnel by Dusan Baljevic

Network File System (NFS)
Network File System (NFS)Network File System (NFS)
Network File System (NFS)abdullah roomi
 
Free radius billing server with practical vpn exmaple
Free radius billing server with practical vpn exmapleFree radius billing server with practical vpn exmaple
Free radius billing server with practical vpn exmapleChanaka Lasantha
 
Linux network file system (nfs)
Linux network file system (nfs)Linux network file system (nfs)
Linux network file system (nfs)Raghu nath
 
3 manual installation of open vpn
3 manual installation of open vpn3 manual installation of open vpn
3 manual installation of open vpnAshwajit Maske
 
Quick-and-Easy Deployment of a Ceph Storage Cluster with SLES
Quick-and-Easy Deployment of a Ceph Storage Cluster with SLESQuick-and-Easy Deployment of a Ceph Storage Cluster with SLES
Quick-and-Easy Deployment of a Ceph Storage Cluster with SLESJan Kalcic
 
OpenNebula 5.4 Hands-on Tutorial
OpenNebula 5.4 Hands-on TutorialOpenNebula 5.4 Hands-on Tutorial
OpenNebula 5.4 Hands-on TutorialOpenNebula Project
 
Hands_on_multipath_p1.pdf
Hands_on_multipath_p1.pdfHands_on_multipath_p1.pdf
Hands_on_multipath_p1.pdfHossein Mehrara
 
Varnish Configuration Step by Step
Varnish Configuration Step by StepVarnish Configuration Step by Step
Varnish Configuration Step by StepKim Stefan Lindholm
 
Vagrant, Ansible, and OpenStack on your laptop
Vagrant, Ansible, and OpenStack on your laptopVagrant, Ansible, and OpenStack on your laptop
Vagrant, Ansible, and OpenStack on your laptopLorin Hochstein
 
Server configuration
Server configurationServer configuration
Server configurationAisha Talat
 
Linux or unix interview questions
Linux or unix interview questionsLinux or unix interview questions
Linux or unix interview questionsTeja Bheemanapally
 
FreeBSD, ipfw and OpenVPN 2.1 server
FreeBSD, ipfw and OpenVPN 2.1 serverFreeBSD, ipfw and OpenVPN 2.1 server
FreeBSD, ipfw and OpenVPN 2.1 serverTomaz Muraus
 
Linux Containers From Scratch
Linux Containers From ScratchLinux Containers From Scratch
Linux Containers From Scratchjoshuasoundcloud
 

Semelhante a HP-UX 11iv3 Ignite-UX with NFSv4 and SSH Tunnel by Dusan Baljevic (20)

Network File System (NFS)
Network File System (NFS)Network File System (NFS)
Network File System (NFS)
 
Free radius billing server with practical vpn exmaple
Free radius billing server with practical vpn exmapleFree radius billing server with practical vpn exmaple
Free radius billing server with practical vpn exmaple
 
Linux network file system (nfs)
Linux network file system (nfs)Linux network file system (nfs)
Linux network file system (nfs)
 
Openvpn
OpenvpnOpenvpn
Openvpn
 
3 manual installation of open vpn
3 manual installation of open vpn3 manual installation of open vpn
3 manual installation of open vpn
 
Nfs
NfsNfs
Nfs
 
Quick-and-Easy Deployment of a Ceph Storage Cluster with SLES
Quick-and-Easy Deployment of a Ceph Storage Cluster with SLESQuick-and-Easy Deployment of a Ceph Storage Cluster with SLES
Quick-and-Easy Deployment of a Ceph Storage Cluster with SLES
 
OpenNebula 5.4 Hands-on Tutorial
OpenNebula 5.4 Hands-on TutorialOpenNebula 5.4 Hands-on Tutorial
OpenNebula 5.4 Hands-on Tutorial
 
Hands_on_multipath_p1.pdf
Hands_on_multipath_p1.pdfHands_on_multipath_p1.pdf
Hands_on_multipath_p1.pdf
 
linux
linuxlinux
linux
 
Varnish Configuration Step by Step
Varnish Configuration Step by StepVarnish Configuration Step by Step
Varnish Configuration Step by Step
 
Vagrant, Ansible, and OpenStack on your laptop
Vagrant, Ansible, and OpenStack on your laptopVagrant, Ansible, and OpenStack on your laptop
Vagrant, Ansible, and OpenStack on your laptop
 
Server configuration
Server configurationServer configuration
Server configuration
 
Howto Pxeboot
Howto PxebootHowto Pxeboot
Howto Pxeboot
 
DHCP concept
DHCP conceptDHCP concept
DHCP concept
 
Linux or unix interview questions
Linux or unix interview questionsLinux or unix interview questions
Linux or unix interview questions
 
testing-nfs
testing-nfstesting-nfs
testing-nfs
 
Kickstart
KickstartKickstart
Kickstart
 
FreeBSD, ipfw and OpenVPN 2.1 server
FreeBSD, ipfw and OpenVPN 2.1 serverFreeBSD, ipfw and OpenVPN 2.1 server
FreeBSD, ipfw and OpenVPN 2.1 server
 
Linux Containers From Scratch
Linux Containers From ScratchLinux Containers From Scratch
Linux Containers From Scratch
 

Último

Scale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL RouterScale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL RouterMydbops
 
Genislab builds better products and faster go-to-market with Lean project man...
Genislab builds better products and faster go-to-market with Lean project man...Genislab builds better products and faster go-to-market with Lean project man...
Genislab builds better products and faster go-to-market with Lean project man...Farhan Tariq
 
Moving Beyond Passwords: FIDO Paris Seminar.pdf
Moving Beyond Passwords: FIDO Paris Seminar.pdfMoving Beyond Passwords: FIDO Paris Seminar.pdf
Moving Beyond Passwords: FIDO Paris Seminar.pdfLoriGlavin3
 
The Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and ConsThe Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and ConsPixlogix Infotech
 
Decarbonising Buildings: Making a net-zero built environment a reality
Decarbonising Buildings: Making a net-zero built environment a realityDecarbonising Buildings: Making a net-zero built environment a reality
Decarbonising Buildings: Making a net-zero built environment a realityIES VE
 
From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .Alan Dix
 
Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...
Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...
Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...Scott Andery
 
Generative Artificial Intelligence: How generative AI works.pdf
Generative Artificial Intelligence: How generative AI works.pdfGenerative Artificial Intelligence: How generative AI works.pdf
Generative Artificial Intelligence: How generative AI works.pdfIngrid Airi González
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsSergiu Bodiu
 
Rise of the Machines: Known As Drones...
Rise of the Machines: Known As Drones...Rise of the Machines: Known As Drones...
Rise of the Machines: Known As Drones...Rick Flair
 
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxMerck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxLoriGlavin3
 
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyesHow to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyesThousandEyes
 
Digital Identity is Under Attack: FIDO Paris Seminar.pptx
Digital Identity is Under Attack: FIDO Paris Seminar.pptxDigital Identity is Under Attack: FIDO Paris Seminar.pptx
Digital Identity is Under Attack: FIDO Paris Seminar.pptxLoriGlavin3
 
How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.Curtis Poe
 
Time Series Foundation Models - current state and future directions
Time Series Foundation Models - current state and future directionsTime Series Foundation Models - current state and future directions
Time Series Foundation Models - current state and future directionsNathaniel Shimoni
 
Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...
Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...
Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...Alkin Tezuysal
 
New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024BookNet Canada
 
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc
 
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptxThe Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptxLoriGlavin3
 
Testing tools and AI - ideas what to try with some tool examples
Testing tools and AI - ideas what to try with some tool examplesTesting tools and AI - ideas what to try with some tool examples
Testing tools and AI - ideas what to try with some tool examplesKari Kakkonen
 

Último (20)

Scale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL RouterScale your database traffic with Read & Write split using MySQL Router
Scale your database traffic with Read & Write split using MySQL Router
 
Genislab builds better products and faster go-to-market with Lean project man...
Genislab builds better products and faster go-to-market with Lean project man...Genislab builds better products and faster go-to-market with Lean project man...
Genislab builds better products and faster go-to-market with Lean project man...
 
Moving Beyond Passwords: FIDO Paris Seminar.pdf
Moving Beyond Passwords: FIDO Paris Seminar.pdfMoving Beyond Passwords: FIDO Paris Seminar.pdf
Moving Beyond Passwords: FIDO Paris Seminar.pdf
 
The Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and ConsThe Ultimate Guide to Choosing WordPress Pros and Cons
The Ultimate Guide to Choosing WordPress Pros and Cons
 
Decarbonising Buildings: Making a net-zero built environment a reality
Decarbonising Buildings: Making a net-zero built environment a realityDecarbonising Buildings: Making a net-zero built environment a reality
Decarbonising Buildings: Making a net-zero built environment a reality
 
From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .From Family Reminiscence to Scholarly Archive .
From Family Reminiscence to Scholarly Archive .
 
Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...
Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...
Enhancing User Experience - Exploring the Latest Features of Tallyman Axis Lo...
 
Generative Artificial Intelligence: How generative AI works.pdf
Generative Artificial Intelligence: How generative AI works.pdfGenerative Artificial Intelligence: How generative AI works.pdf
Generative Artificial Intelligence: How generative AI works.pdf
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platforms
 
Rise of the Machines: Known As Drones...
Rise of the Machines: Known As Drones...Rise of the Machines: Known As Drones...
Rise of the Machines: Known As Drones...
 
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptxMerck Moving Beyond Passwords: FIDO Paris Seminar.pptx
Merck Moving Beyond Passwords: FIDO Paris Seminar.pptx
 
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyesHow to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
How to Effectively Monitor SD-WAN and SASE Environments with ThousandEyes
 
Digital Identity is Under Attack: FIDO Paris Seminar.pptx
Digital Identity is Under Attack: FIDO Paris Seminar.pptxDigital Identity is Under Attack: FIDO Paris Seminar.pptx
Digital Identity is Under Attack: FIDO Paris Seminar.pptx
 
How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.How AI, OpenAI, and ChatGPT impact business and software.
How AI, OpenAI, and ChatGPT impact business and software.
 
Time Series Foundation Models - current state and future directions
Time Series Foundation Models - current state and future directionsTime Series Foundation Models - current state and future directions
Time Series Foundation Models - current state and future directions
 
Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...
Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...
Unleashing Real-time Insights with ClickHouse_ Navigating the Landscape in 20...
 
New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
New from BookNet Canada for 2024: Loan Stars - Tech Forum 2024
 
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data PrivacyTrustArc Webinar - How to Build Consumer Trust Through Data Privacy
TrustArc Webinar - How to Build Consumer Trust Through Data Privacy
 
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptxThe Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
The Role of FIDO in a Cyber Secure Netherlands: FIDO Paris Seminar.pptx
 
Testing tools and AI - ideas what to try with some tool examples
Testing tools and AI - ideas what to try with some tool examplesTesting tools and AI - ideas what to try with some tool examples
Testing tools and AI - ideas what to try with some tool examples
 

HP-UX 11iv3 Ignite-UX with NFSv4 and SSH Tunnel by Dusan Baljevic

  • 1. HP-UX 11iv3 Ignite-UX with NFSV4 and SSH Tunnel Dusan Baljevic
  • 2. Overview This short technical presentation will show: – Setup of Ignite-UX server and client running HP-UX 11iv3 by using NFSv4 with SSH tunnel Assumptions: – Basic knowledge of Ignite-UX, SSH, and NFS on HP-UX platform The equipment used: – rx7420 and rx2660 running HP-UX 11iv3 Update 1203 – Ignite-UX server hostname is ignserv – Ignite-UX client hostname is hpclient – Both servers run HP-UX DCOE, OpenSSH 6.0p1 (GR8 Call 4000252191 opened for Secure Shell on HP-UX), Ignite-UX C.7.14.264, ONC/NFS B.11.31.13 – Network between the servers is plain 100 Mbs segment, the servers use single network cards (no APA) – Default kernel tuning was used
  • 3. Secure Shell 5.9p1 Still a Problem Even the latest version of HP-UX 11iv3 1209 DCOE with its Secure Shell has the same bug. I tested it in early September 2012. The same “hung-session” problem occurred when using: # swlist | egrep "-OE" HPUX11i-DC-OE B.11.31.1209 HP-UX Data Center Operating Environment # ssh -V – OpenSSH_5.9p1+sftpfilecontrol-v1.3-hpn13v12, – HP-UX OpenSSL 0.9.8w 23 Apr 2012 Secure Shell-A.05.90.007, HP-UX Secure Shell version So, at this stage, open-source version of SSH is still required on the Ignite-UX client side. The Ignite-UX server side uses standard Secure Shell that comes with HP-UX distribution.
  • 4. Why This Presentation? –Secure environment to run Ignite-UX when only SSH is allowed between servers; –An alternative solution to run Ignite-UX, which was not documented before; –An opportunity to use new features through NFSv4; –The flexibility of tools available on HP-UX 11iv3; –Simple and robust solution for Disaster Recovery O/S backups in secure environments.
  • 5. Why NFSv4 with SSH Tunnel • With HP-UX 11i we support Kerberos encryption with all NFS-versions (NFSv2, NFSv3, and NFSv4); • This would possibly be faster than port forwarding with SSH, but the NFS ports would still need to be opened between two servers; • With NFSv4 and SSH tunnel, a new method is possible, where IgniteUX and pre-mounted file systems (NFS) can be used. In this case, we will use localhost as target for saving the O/S image: make_net_recovery –s localhost ...
  • 6. Setting NFSv4 on Ignite-UX Server • Edit /etc/rc.config.d/nfsconf. The only important options are: NFS_CORE=1 LOCKMGR=1 * NFS_SERVER=1 NFS_CLIENT=0 START_MOUNTD=1 • Edit /etc/default/nfs and change the following options from the defaults: NFS_SERVER_VERSMAX=4 NFS_CLIENT_VERSMAX=4
  • 7. NFSv4 Delegation * • /etc/default/nfs option (NFS_SERVER_DELEGATION=on). NFSv4 is designed to use a single source-port 2049. If there is a firewall between NFS client and NFS-server, it is sufficient to open port number 2049. With the introduction of NFSv4 delegation, the NFS-server need to be able to revoke a granted delegation. This is done via a special connection/protocol and requires an additional port to be opened. The communication is done from the NFS-server to the NFS-client, and the destination port of this connection is announced/sent by the NFS-client, when the NFSv4 file system is been mounted. The port-number that is currently used can be any port between 49152 and 65535 and is handled by the NFSv4 callback-daemon "nfs4cbd“ at the NFS-client. If the firewall blocks the callback-communication, the NFS-client and NFS-server will disable the delegation feature for this client, which may impact NFSv4 performance (does not impact NFSv4 functionality).
  • 8. Setting NFSv4 on Ignite-UX Server – cont. Edit /etc/dfs/dfstab to share two file systems to a remote Ignite-UX client (hostname hpclient). It is CRUCIAL to list both the Ignite-UX server and client in the access list: share -F nfs -o anon=2,access=ignserv:hpclient /var/opt/ignite/clients share -F nfs -o anon=2,access=ignserv:hpclient /var/opt/ignite/recovery/archives/hpclient Warning: If you do not put the Ignite-UX server above, the client will report the following error in /var/adm/syslog/syslog.log: Aug 28 17:47:12 hpclient vmunix: WARNING: NFS server initial call to localhost failed: Permission denied
  • 9. Setting SSH on Ignite-UX Server • Edit /usr/local/etc/sshd_config. The only important changes from the defaults are: Protocol 2,1 ClientAliveInterval 15 ClientAliveCountMax 10 ClientAliveInterval sets a timeout interval in seconds after which if no data has been received from the client, sshd(8) will send a message through the encrypted channel to request a response from the client. The default is 0, indicating that these messages will not be sent to the client. This option applies to SSH protocol version 2 only.
  • 10. Setting SSH on Ignite-UX Server cont. ClientAliveCountMax Sets the number of client alive messages which may be sent without sshd receiving any messages back from the client. If this threshold is reached while client alive messages are being sent, sshd will disconnect the client, terminating the session. It is important to note that the use of client alive messages is very different from TCPKeepAlive (below). The client alive messages are sent through the encrypted channel and therefore will not be spoofable. The TCP keepalive option enabled by TCPKeepAlive is spoofable. The client alive mechanism is valuable when the client or server depend on knowing when a connection has become inactive. The default value is 3. If ClientAliveInterval is set to 15, and ClientAliveCountMax is 10, unresponsive ssh clients will be disconnected after approximately 150 seconds.
  • 11. Setting NFSV4 on Ignite-UX Client • Edit /etc/rc.config.d/nfsconf. The only options required are: NFS_CORE=1 LOCKMGR=1 * NFS_CLIENT=1 • Edit /etc/default/nsf and change the following options from the defaults: NFS_SERVER_VERSMAX=4 NFS_CLIENT_VERSMAX=4
  • 12. SSH Tunnel On Ignite-UX Client • Set up SSH tunnel to Ignite-UX server. We used local port 2323 (can be any free port on the local machine) : # /usr/local/bin/ssh -fN -L 2323:ignserv:2049 ignserv It means we established an SSH tunnel by using local port 2323 to tunnel requests to remote server ignserv on port 2049.
  • 13. Create Directory on Ignite-UX Client # mkdir -p /var/opt/ignite/recovery/client_mnt # chown bin:bin /var/opt/ignite/recovery/client_mnt # mkdir /var/opt/ignite/recovery/arch_mnt # chown bin:bin /var/opt/ignite/recovery/arch_mnt
  • 14. Change Commands on Ignite-UX Client • Once the tunnel is established to a remote Ignite-UX server, the following TEMPORARY command changes are required: # mv /sbin/mount /sbin/mount.IGN # mv /sbin/umount /sbin/umount.IGN # ln –s /usr/bin/true /sbin/mount # ln –s /usr/bin/true /sbin/umount # cp /opt/ignite/bin/save_config /opt/ignite/bin/save_config.IGN # sed -e 's/^mount -lp/mount.IGN -lp/g‘ /opt/ignite/bin/save_config > /opt/ignite/bin/save_config.new # mv /opt/ignite/bin/save_config.new /opt/ignite/bin/save_config
  • 15. QXCR1001169724 Ignite-UX with premounted NFS To enable the migration of systems in secure environments this request asks for a method of telling make_net_recovery to not NFS mount file systems and write the configuration and archive to local disks. The general requirement is that make_net_recovery allow the use of no NFS file systems. That is: it will write the configuration and archive to a the local file system instead of a remote NFS file system. http://psweb1.cup.hp.com/~projects/pq/cgibin/goto_cr.cgi?number=QXCR1001169724&results_format=default&t z=PDT&submit=submit
  • 16. NFSv4 Mounts on Ignite-UX Client • Once the tunnel is established to a remote Ignite-UX server, two NFSv4 file systems must be mounted on the client. We used local port 2323 (can be any free port) and remote Ignite-UX server is hostname ignserv: # /sbin/mount.IGN -o port=2323,vers=4 localhost:/var/opt/ignite/clients /var/opt/ignite/recovery/client_mnt # /sbin/mount.IGN -o port=2323,vers=4 localhost:/var/opt/ignite/recovery/archives/hpclient /var/opt/ignite/recovery/arch_mnt
  • 17. Ignite-UX Backups on Client • localhost is used for make_net_recovery: # make_net_recovery -s localhost -P s -x inc_entire=vg00 –x exclude=/tmp -x exclude=/var/tmp -d "Archive_of_hpclient_via_NFSv4“
  • 18. Ignite-UX Client NFS Mounts # bdf Filesystem kbytes used avail %used Mounted on /dev/vg00/lvol3 2097152 686912 1399336 33% / /dev/vg00/lvol1 2097152 253368 1829440 12% /stand /dev/vg00/lvol8 12288000 2655544 9557288 22% /var /dev/vg00/lvol10 2097152 20376 1949780 1% /var/tmp /dev/vg00/lvol9 4194304 18008 3915285 0% /var/adm/crash /dev/vg00/lvol7 12288000 3759744 8461736 31% /usr /dev/vg00/lvol6 1048576 21088 1019464 /dev/vg00/lvol5 18432000 8646536 9709152 47% /opt /dev/vg00/lvol4 524288 20848 499512 localhost:/var/opt/ignite/clients 2% /tmp 4% /home 16252928 4258160 11901208 26% /var/opt/ignite/recovery/client_mnt localhost:/var/opt/ignite/recovery/archives/hpclient 16252928 4258168 11901208 26% /var/opt/ignite/recovery/arch_mnt
  • 19. Ignite-UX Backups on Client • Ignite-UX backups of around 5.8 GB image took 58 minutes across 100 Mbs network segment (idle network) when using NFSv4 and SSH tunnel. • Ignite-UX backups of around 5.8 GB image took 48 minutes across 100 Mbs network segment (idle network) when using NFSv4 without SSH tunnel. • Through limited testing, it has been shown that SSH tunnel might decrease network throughput by up to around 20%. • Through performance monitoring, it was found out that around 1.4 GB of RAM was used during Ignite-UX backups of 5.8 GB on the client. • Through kernel, NFS and VxFS tuning, even better results would be expected.
  • 20. Test 1 with TCP and Kernel Tuning • The following changes were tested several times (results were close in timings): # ndd -set /dev/tcp tcp_recv_hiwater_def 1048576 (on server and client) # ndd -set /dev/tcp tcp_xmit_hiwater_def 1048576 (on server and client) # kctune -b yes nfs4_bsize=1048576 (on server and client) # kctune -b yes nfs4_max_threads=32 (on client) # kctune -b yes nfs4_nra=32 (on client) • In addition, Tune-N-Tools optimization done on both servers. • Ignite-UX backups of around 5.8 GB image took 74 minutes across 100 Mbs network segment (idle network) when using NFSv4 and SSH tunnel. The tuning did not achieve significantly positive results.
  • 21. Test 2 with TCP and Kernel Tuning • The following changes were tested several times (results were close in timings): # ndd -set /dev/tcp tcp_recv_hiwater_def 1048576 (on server and client) # ndd -set /dev/tcp tcp_xmit_hiwater_def 1048576 (on server and client) # kctune -b yes nfs4_bsize=1048576 (on server and client) • In addition, Tune-N-Tools optimization done on both servers. • Ignite-UX backups of around 5.8 GB image took 75 minutes across 100 Mbs network segment (idle network) when using NFSv4 and SSH tunnel. The tuning did not achieve significantly positive results.
  • 22. Test 3 with TCP and Kernel Tuning • The following changes were tested: # kctune -b yes nfs4_bsize=1048576 (on server and client) • In addition, Tune-N-Tools optimization done on both servers. • Ignite-UX backups of around 5.8 GB image took 75 minutes across 100 Mbs network segment (idle network) when using NFSv4 and SSH tunnel. The tuning did not achieve significantly positive results.
  • 23. Change Commands on Ignite-UX Client • Once backups are completed on the Ignite-UX client, the following TEMPORARY command changes must be removed: # rm /sbin/mount /sbin/umount # mv /sbin/mount.IGN /sbin/mount # mv /sbin/umount.IGN /sbin/umount # mv /opt/ignite/bin/save_config.IGN /opt/ignite/bin/save_config • If a crash or a reboot happens while the Ignite-UX Backups are running, you must boot into single user mode and run the above commands before booting cleanly.
  • 24. Ignite-UX Recovery • archive_cfg file will contain wrong NFS source if you decide to try to restore it. Before unmounting the NFSv4, edit the file: /var/opt/ignite/recovery/client_mnt/hpclient/recovery/latest/archive_cfg and change the following statement accordingly: nfs_source="127.0.0.1:/var/opt/ignite/recovery/archives/hpclient" Or, on Ignite-UX server, the same file is in this location: /var/opt/ignite/clients/hpclient/recovery/latest/archive_cfg
  • 25. Ignite-UX Recovery cont. The image is located on the Ignite-UX server. Standard Ignite-UX recovery or deployment procedure applies.
  • 26. For More Information Ignite-UX Documentation http://www.hp.com/go/ignite-ux-docs NFS Services Administration Guide HP-UX 11iv3 http://h20000.www2.hp.com/bc/docs/support/SupportManual/c0323 1925/c03231925.pdf Shell script that automates the backup process: http://www.circlingcycle.com.au/Unix-sources/HP-UX-ignite-viaNFSv4-and-SSH-tunnel.sh.txt

Notas do Editor

  1. * Without LOCKMGR being enabled, the following error is displayed on the client when NFS mount is attempted:#mount -o port=2323,vers=4 localhost:/var/opt/ignite/clients /var/opt/ignite/recovery/client_mntchannel 2: open failed: administratively prohibited: open failednfs mount: localhost NFS service not available RPC: Successnfs mount: retrying: /var/opt/ignite/recovery/client_mntchannel 2: open failed: administratively prohibited: open failednfs mount: giving up on: /var/opt/ignite/recovery/client_mnt
  2. * SAW document http://sawpro.atlanta.hp.com/km/saw/view.do?docId=ttr_na-SSB_1001209969&hsid=42564915&sz=1823There is no command/tool that can be used todetermine if the delegation feature is enabled or disabled.
  3. * Without LOCKMGR being enabled, the following error is displayed on the client when NFS mount is attempted:#mount -o port=2323,vers=4 localhost:/var/opt/ignite/clients /var/opt/ignite/recovery/client_mntchannel 2: open failed: administratively prohibited: open failednfs mount: localhost NFS service not available RPC: Successnfs mount: retrying: /var/opt/ignite/recovery/client_mntchannel 2: open failed: administratively prohibited: open failednfs mount: giving up on: /var/opt/ignite/recovery/client_mnt