Hello Asif,
Saturday, August 9, 2008, 5:32:26 AM, you wrote:
AI So I can take a ufsdump of the whole system and then give that to zoneadm as
AI a image of the solaris 8 container? Cool I will give that a try next
There is yet another option, quite useful sometimes.
Export your file systems via
I believe the original concern about making system/filesystem/local part
of single-user was that it changes the definition of single-user. The
zones team was involved in that discussion, and I've just tried to
re-involve them in the resolution discussions. (And have cc'ed them
here.
Enda O'Connor ( Sun Micro Systems Ireland) writes:
alternate BE ), I have seen issues with compilers failing due to SUNWcsr and
SUNWtoo
getting out of sync, because user updated the live system.
I think I understand that problem, and I don't think it has anything
to do with a live update.
Liane Praza wrote:
It leaves a bad taste
in my mouth, but then again so does the fact that we've got two
different patching systems which require the system to be in different
states when they run.
Three :-)
Well, sort of.
All of them agree that the system should be in single user mode.
On Tue, 2008-08-19 at 11:36 -0700, Steve Lawrence wrote:
Add a new service do-single-user-patch, make it depend on filesystem-local.
This service is typically disabled. This service will add the patch(es)
and reboot.
The same could be done with a custom milestone which might be less
Bob Netherton wrote:
And further
refinement would only impact patching rather than the booting process
as a whole.
Hmm. I don't know how to have a service that runs when a particular
milestone is selected, that *doesn't* run when all is selected.
(Other than by dynamically enabling and
So you want to be able to interrupt any boot to any milestone, and instead do
the patch processing if a patch is pending. You basically want to interrupt
the current milestone, and instead just boot to filesystem-local and do the
patching.
The question is, can the smf milestone be changed
2. Create patch-install-milestone, which depends on patch-install-service
below.
The patch-install-milestone could also depend on single-user and
filesystem-local so that it is generally useful for admins manually
installing patches as well, even if they don't have
I have a glassfish webserver running in my Solaris 10 zone.
It will not respond to remote jmxrmi requests on port 8686.
If I connect locally with (for instance) jconsole it works fine.
I believe it is somehow related to being in a zone. Because
snoop -p 8686 from my zone...
tells me, no
also:
[EMAIL PROTECTED]: netstat -a | grep 8686
*.8686 *.*0 0 49152 0 LISTEN
Russ Petruzzelli wrote:
I have a glassfish webserver running in my Solaris 10 zone.
It will not respond to remote jmxrmi requests on port 8686.
If I connect locally with
By default, a zone does not have privilege to snoop:
http://blogs.sun.com/JeffV/entry/snoop_zoney_zone
Could just be a network config/routing issue. Can you ping 10.5.185.103?
Can you access other network services, like ssh?
-Steve L.
On Tue, Aug 19, 2008 at 03:01:37PM -0700, Russ
I snooped from the global zone and could see a request and response.
I can ping. I can ssh into the zone.
Just a sec ... I found the problem. It is not a zones issue...
In my domain.xml for the webserver, I had security-enabled set to
true.
It works with false
jmx-connector
Steve Lawrence wrote:
I can't see any straightforward way to interrupt boot without changing the
milestone. You could make lots of services dependent on a patching
service, but that will have a maintenance burden. It also may not play well
with 3rd party services.
Yep.
Hmm. I just
The only way that you can get *that* guarantee is by using the
milestone mechanism to limit the system to a particular milestone, as
you suggest.
In fact, argh. This problem affects even your proposed scheme. By the
time that your patch-test-service is running, there could (in
14 matches
Mail list logo
