Re: NFS, Firewalls and ports
James Melin wrote: Good morning (or evening, depenging) everyone. I am hoping someone can shed some light on something for me... Trying to a read-only NFS export of a directory through the DMZ firewall to a local linux instance. From what I have read, NFSV4 uses port 2049 to make it's connections. Presumable this is for both client and server as I've seen nothing about such a distinction. Both systemsare SLES-10 SP1. When the external firewall rules are set specifically allow port 2049 between the two machines it fails with a mount server reported tcp not available, falling back to udp error and then eventually just gives up. When the firewall is set to allow all connections between these two hosts it works. So obviously port 2049 isn't really it, or it isn't all of the answer. So, what am I missing? Hi James, I've just got this setup working for SLES10 SP1 but with NFS V3. Problem is made difficult by the dynamic allocations of ports via the portmapper. You can display the ports on both the NFS Server and Client using: rpcinfo -p You need to fix the ports for rpc.mountd and the lockd, so that you have known ports to add to your firewall. for the mountd you need to edit /etc/sysconfig/nfs and add a line similar to the following: nfs:MOUNTD_PORT=745 For the lockd its a kernel module, so edit /etc/modprobe.conf and add 2 lines: options lockd nlm_tcpport=28575 options lockd nlm_udpport=28575 Ensure that you have set these ports into your /etc/sysconfig/SuSEfirewall2 file! Also note that this need to be done on both Server and Client for notification of NFS Server restarts etc. Mark -- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390
Re: channel bonding
Hi Mike, Thanks for the input. But still if in a Vswitch only one OSA is really working at time into the network then channel bonding is of no use. Either go with no Vswitch and use two real OSA's, or two Vswitches with a live OSA in each would be needed it seems to me... Paul... -Original Message- From: Linux on 390 Port [mailto:[EMAIL PROTECTED] On Behalf Of Young, Mike Sent: Tuesday, September 18, 2007 3:39 PM To: LINUX-390@vm.marist.edu Subject: Re: channel bonding I guess it depends if those virtual interfaces are going to different VLANs. If your network team is using VLAN tagging, then each of those virtuals could travel different networks (perhaps to a DR site?). Doesn't help much for *real* interface bonding, but that's one use for it. Mike. -Original Message- From: Linux on 390 Port [mailto:[EMAIL PROTECTED] On Behalf Of Ayer, Paul W Sent: Tuesday, September 18, 2007 2:34 PM To: LINUX-390@VM.MARIST.EDU Subject:channel bonding Good afternoon all, Have been having good success getting channel bonding going. We also have Vswitch as well. But it dawns on me that channel bonding and Vswitch (the way we have them) really don't go together. In Vswitch we have two OSA's one active and one backup. If in VM we setup two sets of virtual NIC that become eth0 and eth1 going into the same Vswitch we really are only Going to use one OSA... So my thinking is that what we really need it two Vswitches with one OSA in each. No backup OSA needed, but would be nice to have. Then when we channel bond the eth0 and eth1 they really use to different OSA's and we can then get double the data flow. Anyone else doing an channel bonding with Vswitches as well? Also doing via RHEL 4.4 Any input would be helpful. Thanks, Paul... -- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390
Re: channel bonding
On Tue, Sep 18, 2007 at 3:33 PM, in message [EMAIL PROTECTED], Ayer, Paul W [EMAIL PROTECTED] wrote: -snip- But it dawns on me that channel bonding and Vswitch (the way we have them) really don't go together. The most common use of NIC bonding is for reliability purposes, not bandwidth. So, in that sense, you already have that when connecting to a Vswitch that has a backup OSA. So my thinking is that what we really need it two Vswitches with one OSA in each. No backup OSA needed, but would be nice to have. Then when we channel bond the eth0 and eth1 they really use to different OSA's and we can then get double the data flow. I don't think you can define two Vswitches that use the same range of IP addresses. If what you want is Link Aggregation, upgrade to z/VM 5.3 for that. Mark Post -- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390
Re: channel bonding
On Wednesday, 09/19/2007 at 09:16 EDT, Ayer, Paul W [EMAIL PROTECTED] wrote: Thanks for the input. But still if in a Vswitch only one OSA is really working at time into the network then channel bonding is of no use. Either go with no Vswitch and use two real OSA's, or two Vswitches with a live OSA in each would be needed it seems to me... If you have a z9, the VSWITCH can perform channel bonding (IEEE 802.3ad Link Aggregation) itself. Standard channel bonding requires that both sides cooperate in the effort. Alan Altmark z/VM Development IBM Endicott -- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390
Re: channel bonding
Hi Alan, Just to be sure I understand. At this time in Vswitch only one OSA is really active and passing data. With (IEEE 802.3ad Link Aggregation) both OSA's would be moving data? Paul... -Original Message- From: Linux on 390 Port [mailto:[EMAIL PROTECTED] On Behalf Of Alan Altmark Sent: Wednesday, September 19, 2007 10:25 AM To: LINUX-390@vm.marist.edu Subject: Re: channel bonding On Wednesday, 09/19/2007 at 09:16 EDT, Ayer, Paul W [EMAIL PROTECTED] wrote: Thanks for the input. But still if in a Vswitch only one OSA is really working at time into the network then channel bonding is of no use. Either go with no Vswitch and use two real OSA's, or two Vswitches with a live OSA in each would be needed it seems to me... If you have a z9, the VSWITCH can perform channel bonding (IEEE 802.3ad Link Aggregation) itself. Standard channel bonding requires that both sides cooperate in the effort. Alan Altmark z/VM Development IBM Endicott -- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390
IBM Releases Office Desktop Software at No Charge to Foster Collaboration and Innovation
IBM Releases Office Desktop Software at No Charge to Foster Collaboration and Innovation http://www-03.ibm.com/press/us/en/pressrelease/22326.wss Cross-posted - Thought it worthy of our attention! Plus the price is right. Bob Richards VP, Enterprise Technologist - - Enterprise Technology Infrastructure- - Mainframe Services Capacity Performance Mgmt - - Office: 404-575-2798Mobile: 610-246-2943 - - email: [EMAIL PROTECTED] - LEGAL DISCLAIMER The information transmitted is intended solely for the individual or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of or taking action in reliance upon this information by persons or entities other than the intended recipient is prohibited. If you have received this email in error please contact the sender and delete the material from any computer. SunTrust and Seeing beyond money are federally registered service marks of SunTrust Banks, Inc. [ST:XCL] -- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390
Re: IBM Releases Office Desktop Software at No Charge to Foster Collaboration and Innovation
On 9/19/2007 10:13 AM, Richards.Bob wrote: IBM Releases Office Desktop Software at No Charge to Foster Collaboration and Innovation http://www-03.ibm.com/press/us/en/pressrelease/22326.wss Cross-posted - Thought it worthy of our attention! Plus the price is right. Note that the actual download page: https://www14.software.ibm.com/iwm/web/swerplotus/LotusSymphonyPick.html shows this as beta software. Eric -- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390
Re: channel bonding
On Wednesday, 09/19/2007 at 10:47 EDT, Ayer, Paul W [EMAIL PROTECTED] wrote: At this time in Vswitch only one OSA is really active and passing data. With (IEEE 802.3ad Link Aggregation) both OSA's would be moving data? With a z9 and z/VM 5.3, yes, you can have up to 8 OSAs moving data simultaneously for a single VSWITCH. (That's a theoretical maximum of 80Gb/s.) The physical switch is configured to bind the ports together into a single port group. Alan Altmark z/VM Development IBM Endicott -- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390
Re: channel bonding
Hi Alan, Thank you .. just what we needed. Have a great day ! -Original Message- From: Linux on 390 Port [mailto:[EMAIL PROTECTED] On Behalf Of Alan Altmark Sent: Wednesday, September 19, 2007 10:59 AM To: LINUX-390@vm.marist.edu Subject: Re: channel bonding On Wednesday, 09/19/2007 at 10:47 EDT, Ayer, Paul W [EMAIL PROTECTED] wrote: At this time in Vswitch only one OSA is really active and passing data. With (IEEE 802.3ad Link Aggregation) both OSA's would be moving data? With a z9 and z/VM 5.3, yes, you can have up to 8 OSAs moving data simultaneously for a single VSWITCH. (That's a theoretical maximum of 80Gb/s.) The physical switch is configured to bind the ports together into a single port group. Alan Altmark z/VM Development IBM Endicott -- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390
Re: IBM Releases Office Desktop Software at No Charge
IBM Releases Office Desktop Software at No Charge to Foster Collaboration and Innovation http://www-03.ibm.com/press/us/en/pressrelease/22326.wss Cross-posted - Thought it worthy of our attention! Plus the price is right. Bob: These are editors that are in Notes 8, separated out as a stand-alone package. Note that these are ODF compliant tools which are based on OpenOffice.org version 1 with enhancements. If you are looking for the latest and greatest in ODF compliance go with OpenOffice.org version 2. The one thing Symphony and Notes 8 has that OO v2 does not is import/export for Lotus SmartSuite formats. However, given the recent announcement of IBM's joining OpenOffice.org I would hope to see convergence of these two products. Jim -- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390
Re: IBM Releases Office Desktop Software at No Charge to Foster Collaboration and Innovation
Sounds like too little, too late to me. K -Original Message- From: Linux on 390 Port [mailto:[EMAIL PROTECTED] On Behalf Of Richards.Bob Sent: Wednesday, September 19, 2007 11:13 AM To: LINUX-390@VM.MARIST.EDU Subject: IBM Releases Office Desktop Software at No Charge to Foster Collaboration and Innovation IBM Releases Office Desktop Software at No Charge to Foster Collaboration and Innovation http://www-03.ibm.com/press/us/en/pressrelease/22326.wss Cross-posted - Thought it worthy of our attention! Plus the price is right. Bob Richards VP, Enterprise Technologist - - Enterprise Technology Infrastructure- - Mainframe Services Capacity Performance Mgmt - - Office: 404-575-2798Mobile: 610-246-2943 - - email: [EMAIL PROTECTED] - LEGAL DISCLAIMER The information transmitted is intended solely for the individual or entity to which it is addressed and may contain confidential and/or privileged material. Any review, retransmission, dissemination or other use of or taking action in reliance upon this information by persons or entities other than the intended recipient is prohibited. If you have received this email in error please contact the sender and delete the material from any computer. SunTrust and Seeing beyond money are federally registered service marks of SunTrust Banks, Inc. [ST:XCL] -- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390 -- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390
Re: IBM Releases Office Desktop Software at No Charge to Foster Collaboration and Innovation
Kevin R writes: Sounds like too little, too late to me. The release of Symphony may be much less significant that IBM's involvement in OpenOffice.org I often use Star / Open Office and its an excellent set of productivity tools. In my experience its main downside is that sometimes it has trouble with a Microsoft Office generated doc. The more collaboration there is on this software, the better it will be. And this is what's promised by IBM's involvement. -- --henry schaffer -- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390
Re: channel bonding
I don't think you can define two Vswitches that use the same range of IP addresses. You can. I've done that. And I even recently discovered they can be of different type (layer 2 and layer 3) (but that might depend on being on a z9 ). Marcy Cortes This message may contain confidential and/or privileged information. If you are not the addressee or authorized to receive this for the addressee, you must not use, copy, disclose, or take any action based on this message or any information herein. If you have received this message in error, please advise the sender immediately by reply e-mail and delete this message. Thank you for your cooperation. -- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390
