Symantec Veritas Cluster Server 5.0 Update 3 Installation Manual Download Page 79

Page: 79 / 176

Figure 4-2

Client communication with LDAP servers

VCS node
(authentication broker)

VCS client

1. When a user runs HA
commands, AT initiates user
authentication with the
authentication broker.

4. AT issues the credentials to the
user to proceed with the
command.

2. Authentication broker on VCS
node performs an LDAP bind
operation with the LDAP directory.

3. Upon a successful LDAP bind,
AT retrieves group information
from the LDAP direcory.

LDAP server (such as
OpenLDAP or Windows
Active Directory)

See the Symantec Product Authentication Service Administrator’s Guide.

The LDAP schema and syntax for LDAP commands (such as, ldapadd, ldapmodify,
and ldapsearch) vary based on your LDAP implementation.

Before adding the LDAP domain in Symantec Product Authentication Service,
note the following information about your LDAP environment:

■

The type of LDAP schema used (the default is RFC 2307)

■

UserObjectClass (the default is posixAccount)

■

UserObject Attribute (the default is uid)

■

User Group Attribute (the default is gidNumber)

■

Group Object Class (the default is posixGroup)

■

GroupObject Attribute (the default is cn)

■

Group GID Attribute (the default is gidNumber)

■

Group Membership Attribute (the default is memberUid)

■

URL to the LDAP Directory

Installing and configuring VCS

Installing and configuring VCS 5.0 RU3

Summary of Contents for Veritas Cluster Server 5.0 Update 3

Page 1: ...Veritas Cluster Server Installation Guide Linux for IBM Power 5 0 Release Update 3...

Page 2: ...IS ANDALLEXPRESSORIMPLIEDCONDITIONS REPRESENTATIONS AND WARRANTIES INCLUDING ANY IMPLIED WARRANTY OF MERCHANTABILITY FITNESS FOR A PARTICULAR PURPOSE OR NON INFRINGEMENT ARE DISCLAIMED EXCEPT TO THE E...

Page 3: ...Symantec Corporation 350 Ellis Street Mountain View CA 94043 http www symantec com...

Page 4: ...pid response and up to the minute information Upgrade assurance that delivers automatic software upgrade protection Global support that is available 24 hours a day 7 days a week Advanced features incl...

Page 5: ...ssues Questions regarding product licensing or serialization Product registration updates such as address or name changes General product information features language availability local dealers Lates...

Page 6: ...nd countermeasures to prevent attacks before they occur Symantec Early Warning Solutions These services remove the burden of managing and monitoring security devices and events ensuring rapid response...

Page 7: ...ut I O fencing 18 About VCS optional components 18 About Symantec Product Authentication Service AT 19 About Cluster Manager Java Console 20 About Veritas Cluster Server Management Console 20 About VC...

Page 8: ...ed pre installation check 49 Chapter 4 Installing and configuring VCS 51 About installing and configuring VCS 51 Getting your VCS installation and configuration information ready 52 Optional VCS RPMs...

Page 9: ...y 87 About I O fencing components 88 About data disks 88 About coordination points 88 About setting up disk based I O fencing 89 Preparing to configure disk based I O fencing 92 Initializing disks as...

Page 10: ...Modifying configuration files on each remaining node 136 Removing security credentials from the leaving node 136 Unloading LLT and GAB and removing VCS on the departing node 137 Chapter 8 Installing V...

Page 11: ...bout the uninstallvcs program 153 Preparing to uninstall VCS 153 Uninstalling VCS 5 0 RU3 154 Removing VCS 5 0 RU3 RPMs 154 Running uninstallvcs from the VCS 5 0 RU3 disc 155 Appendix A Advanced VCS i...

Page 12: ...Contents 12...

Page 13: ...e fails About VCS basics A single VCS cluster consists of multiple systems that are connected in various combinations to shared storage devices When a system is part of a VCS cluster it is a node VCS...

Page 14: ...e identical state information about all resources The private network also recognizes active nodes the nodes that join or leave the cluster and failed nodes The private network requires two communicat...

Page 15: ...rovides the global message order that is required to maintain a synchronized state among the nodes It monitors disk communications such as the VCS heartbeat utility The etc gabtab file is the GAB conf...

Page 16: ...GAB that determines whether or not all nodes have joined a cluster For this determination GAB requires that you declare the number of nodes in the cluster Note that only seeded nodes can run VCS GAB a...

Page 17: ...t prior to starting an installation or upgrade https vias symantec com About VCS notifications You can configure both SNMP and SMTP notifications for VCS Symantec recommends you to configure one of th...

Page 18: ...arbitration in the event of a network partition Note Symantec recommends that you use I O fencing to protect your cluster against split brain situations About VCS optional components You can add the f...

Page 19: ...ot broker serves as the main registration and certification authority it has a self signed certificate and can authenticate other brokers The root broker is only used during initial creation of an aut...

Page 20: ...nage multiple clusters Refer to the Veritas Cluster Server Management Console Implementation Guide for installation upgrade and configuration instructions For information on updates and patches for VC...

Page 21: ...and Solaris clusters VCS Simulator also enables creating and testing global clusters You can administer VCS Simulator from the Java Console or from the command line 21 Introducing Veritas Cluster Serv...

Page 22: ...Introducing Veritas Cluster Server About VCS optional components 22...

Page 23: ...et the hardware and software requirements For the latest information on updates patches and software issues read the following Veritas Technical Support TechNote http entsupport symantec com docs 2858...

Page 24: ...pace In addition to the built in public NIC VCS requires at least one more NIC per system Symantec recommends two additional NICs You can also configure aggregated interfaces Network Interface Cards N...

Page 25: ...2 6 16 60 0 21 default 2 6 16 60 0 21 smp SLES 10 with SP2 Note If your system runs an older version of either Red Hat Enterprise Linux or SUSE Linux Enterprise Server you must upgrade the operating s...

Page 26: ...4 el5 ppc rpm libgcc 4 1 2 44 el5 ppc64 rpm compat libgcc 296 2 96 138 ppc rpm libstdc 4 1 2 44 el5 ppc rpm libstdc 4 1 2 44 el5 ppc64 rpm compat libstdc 296 2 96 138 ppc rpm compat libstdc 33 3 2 3 6...

Page 27: ...eritas Volume Manager VxVM 5 0 and raw disks Veritas Volume Manager VxVM with Veritas File System VxFS VxVM VRTSvxvm common 5 0 33 00 RU3_SLES10 VRTSvxvm platform 5 0 33 00 RU3_SLES10 VRTSvxvm common...

Page 28: ...Planning to install VCS Supported software 28...

Page 29: ...AT for the cluster during the VCS installation or after the installation If you want to enable AT in a cluster at a later time refer to the Veritas Cluster Server User s Guide for instructions The pre...

Page 30: ...e The nodes in the cluster must allow rsh or ssh passwordless login See Setting up inter system communication on page 44 Semi automatic mode This mode requires root_hash file and the root broker infor...

Page 31: ...n system Set up passwordless communication between nodes No action required Copy root_hash file from the root broker system to the installation system Gather information to answer prompts Set up passw...

Page 32: ...brokers Password for each authentication broker AT administrator To use the semi automatic mode create the encrypted files BLOB files for each node and provide the files to the VCS administrator See...

Page 33: ...ade a Product 3 From the displayed list of products to install choose Symantec Product Authentication Service 4 To install the root broker select the mode of AT installation as root mode from the thre...

Page 34: ...uthentication broker AB account for each node in the cluster To create authentication broker accounts on root broker system 1 Determine the root broker domain name Enter the following command on the r...

Page 35: ...istrator must create the encrypted files on the root broker node The administrator must create encrypted files for each node that is going to be a part of the cluster before you configure the Authenti...

Page 36: ...password must be at least five characters broker_admin_password 3 For each node in the cluster create the input file for the encrypted file The installer presents the format of the input file for the...

Page 37: ...py these files to the installer node Preparing the installation system for the security infrastructure The VCS administrator must gather the required information and prepare the installation system to...

Page 38: ...you must perform before proceeding to install VCS Table 3 2 Preinstallation tasks Reference Task See Obtaining VCS license keys on page 39 Obtain license keys See Setting up the private network on pa...

Page 39: ...ed on the certificate However you are legally limited to the number of product licenses purchased The product installation procedure describes how to activate the key To register and receive a softwar...

Page 40: ...tor s Guide to review VCS performance considerations Figure 3 2 shows two private networks for use with VCS Figure 3 2 Private network setups two node and four node clusters Public network Public netw...

Page 41: ...et cables are supported only on two systems Ensure that you meet the following requirements The power to the switches or hubs must come from separate sources On each system you must use two independen...

Page 42: ...achieve persistent interface names Refer to the OS documentation for information on configuring persistent interfaces on SLES 10 In rare cases where RedHat does not automatically configure the network...

Page 43: ...mac is the hardware address of that interface does not exist then do the following Create the file If a file exists for the same network interface with the name etc sysconfig network ifcfg ethX then c...

Page 44: ...find its MAC address by running the ifconfig command ifconfig eth0 eth0 Link encap Ethernet HWaddr 00 0C 0D 08 C4 32 Where eth0 is the sample network interface name The output displays 00 0C 0D 08 C4...

Page 45: ...erify that ssh is configured correctly Use Secure Shell ssh to do the following Log on to another system over a network Execute commands on a remote system Copy files from one system to another The ss...

Page 46: ...tems in one of the following ways Run the installvcs program on any one of the systems Run the installvcs program on an independent system outside the cluster To avoid running the ssh agent on each sh...

Page 47: ...r the C Shell csh or tcsh type setenv PATH usr sbin sbin opt VRTS bin opt VRTSvcs bin PATH Setting the MANPATH variable Set the MANPATH variable to view the manual pages To set the MANPATH variable Do...

Page 48: ...ches or the hubs that are used for the LLT interconnections must match that of the interface cards Incorrect settings can cause poor network performance or even network failure Guidelines for setting...

Page 49: ...t cdrom 4 Navigate to the location of the RPMs Depending on the OS distribution type the following appropriate command cd mnt cdrom rhel5_ppc64 cluster_server RHEL 5 cd mnt cdrom sles10_ppc64 cluster_...

Page 50: ...check installvcs precheck galaxy nebula The program proceeds in a noninteractive mode to examine the systems for licenses RPMs disk space and system to system communications 3 Review the output as the...

Page 51: ...he system Accessing the VCS documentation About installing and configuring VCS You can install Veritas Cluster Server on clusters of up to 32 systems You can install VCS using one of the following Use...

Page 52: ...CS RPMs on page 54 To decide whether to install the required VCS RPMs all the VCS RPMs To configure Veritas Cluster Server you need The cluster name must begin with a letter of the alphabet The cluste...

Page 53: ...er The root broker s security domain e g root east symantecexample com The root broker s port e g 2821 The path to the local root hash e g var tmp privatedir root_hash The authentication broker s prin...

Page 54: ...console Events have four levels of severity I Information W Warning E Error and S SevereError Example E To decide the minimum severity of events for SNMP trap notification To configure global clusters...

Page 55: ...on for which installvcs program prompts you as you proceed to configure See About preparing to install VCS on page 29 The uninstallvcs program a companion to installvcs program uninstalls VCS RPMs See...

Page 56: ...uring the installation the installer prompts you to type information The installer expects your responses to be within a certain range or in a specific format The installer provides examples If you ar...

Page 57: ...correct installation order Output can be used to create scripts for command line installs or for installations over a network See the requiredpkgs option installpkgs Specifies a key file for SSH The o...

Page 58: ...an be used to create scripts for command line installs or for installations over a network See installpkgs option requiredpkgs Perform automated VCS installation using the system and the configuration...

Page 59: ...lt timeout value is set to 600 seconds timeout Specifies that tmp_path is the working directory for installvcs program This path is different from the var tmp path This destination is where initial lo...

Page 60: ...ation demonstrates how to install VCS on two systems galaxy and nebula The example installation chooses to install all VCS RPMs and configures all optional features For this example the cluster s name...

Page 61: ...ee Configuring global clusters on page 74 optional Configure the cluster and its features See Creating VCS configuration files on page 76 Create configuration files See Starting VCS on page 77 See Com...

Page 62: ...oduct 4 From the displayed list of products to install choose Veritas Cluster Server To install VCS using the installvcs program 1 Confirm that you are logged in as the superuser and mounted the produ...

Page 63: ...requests for passwords or passphrases Makes sure the systems use the proper operating system Checks whether VCS is installed Licensing VCS The installer checks whether VCS license keys are currently...

Page 64: ...rs the license key on the other nodes Enter keys for additional product features on the other nodes when the installer prompts you XXXX XXXX XXXX XXXX XXX successfully registered on nebula VCS license...

Page 65: ...all the VCS and the SF HA RPMs default option If you already installed the SF HA RPMs the installer does not list this option 3 3 View the list of RPMs that the installer would install on each node If...

Page 66: ...ges 3 Configure the cluster later See Configuring VCS using configure option on page 59 Starting the software configuration You can configure VCS using the Veritas product installer or the installvcs...

Page 67: ...m names for installation 1 Enter the names of the systems where you want to configure VCS Enter the system names separated by spaces on which to configure VCS galaxy nebula 2 Review the output as the...

Page 68: ...f an aggregated interface 4 Enter the network interface card details for the private heartbeat links You can choose the network interface cards or the aggregated interfaces that the installer discover...

Page 69: ...igure a secure cluster Make sure that you completed the pre configuration tasks for the configuration mode that you want to choose See Preparing to configure the clusters in secure mode on page 29 To...

Page 70: ...nter path to the locally accessible root hash b var tmp installvcs 1Lcljr root_hash root root_hash Enter the following Authentication Broker information as the installer prompts you for each node Ente...

Page 71: ...t to add another user to the cluster y n q y 4 Enter the user s name password and level of privileges Enter the user name smith Enter New Password Enter Again Enter the privilege for user smith A Admi...

Page 72: ...Enter the email address of each recipient Enter the full email address of the SMTP recipient example user yourcompany com b ozzie example com Enter the minimum security level of messages to be sent to...

Page 73: ...erver User s Guide for more information To configure the SNMP trap notification 1 Review the required information to configure the SNMP notification feature of VCS 2 Specify whether you want to config...

Page 74: ...add another SNMP console y n q b n 5 Verify and confirm the SNMP notification information SNMP Port 162 Console saturn receives SNMP traps for Error or higher events Console jupiter receives SNMP trap...

Page 75: ...ter as global cluster The installer prompts you for a NIC a virtual IP address and value for the netmask You can also enter an IPv6 address as a virtual IP address 4 Verify and confirm the configurati...

Page 76: ...u chose to set up Authentication Service the installer does one of the following Creates the security principal Executes the encrypted file to create security principal on each node in the cluster The...

Page 77: ...nd its components on each system If you chose to configure the cluster in secure mode the installer also starts the Authentication Service processes on each node in the cluster To start VCS Confirm to...

Page 78: ...uch as Sun Directory Server Netscape OpenLDAP and Windows Active Directory For a cluster that runs in secure mode you must enable the LDAP authentication plug in if the VCS users belong to an LDAP dom...

Page 79: ...nistrator s Guide The LDAP schema and syntax for LDAP commands such as ldapadd ldapmodify and ldapsearch vary based on your LDAP implementation Before adding the LDAP domain in Symantec Product Authen...

Page 80: ...system in the cluster to be administered remotely Review the information about using the Cluster Manager and the Configuration Editor components of the Java Console For more information refer to the...

Page 81: ...re disc into a drive on the system The software automatically mounts the disc on mnt cdrom 2 If the disc does not get automatically mounted then enter mount o ro dev cdrom mnt cdrom 3 Navigate to the...

Page 82: ...11 Windows XP Windows 2003 Note Make sure that you are using an operating system version that supports JRE 1 5 Installing VCS Simulator on UNIX systems This section describes the procedure to install...

Page 83: ...tes the following directories Content Directory Information about attributes associated with VCS objects attrpool VCS Simulator binaries bin Files for the default cluster configuration default_clus A...

Page 84: ...on on the system You can use the vxlicrep program to display information about the licenses on a system To check licensing information 1 Navigate to the folder containing the vxlicrep program and ente...

Page 85: ...XXXX XXXX XXXX XXX Replacing a VCS demo license with a permanent license When a VCS demonstration key license expires you can replace it with a permanent license using the vxlicinst 1 program To repl...

Page 86: ...in Portable Document Format PDF in the cluster_server docs directory After you install VCS Symantec recommends that you copy the PDF version of the documents to the opt VRTS docs directory on each no...

Page 87: ...s were identical to those of a failed node then such corrective action would cause a split brain situation Some example scenarios that can cause such split brain situations are as follows Broken set o...

Page 88: ...rage for VCS must support SCSI 3 persistent reservations to enable I O fencing VCS involves two types of shared storage Data disks Store shared data See About data disks on page 88 Coordination points...

Page 89: ...advantage of the path failover and the dynamic adding and removal capabilities of DMP So you can configure I O fencing to use either DMP devices or the underlying raw character devices I O fencing us...

Page 90: ...page 92 See Setting up disk based I O fencing manually on page 99 I O fencing requires the coordinator disks be configured in a disk group The coordinator disks must be accessible to each node in the...

Page 91: ...disk groups that store user data Coordinator disks cannot be the special devices that array vendors use For example you cannot use EMC gatekeeper devices as coordinator disks The I O fencing configura...

Page 92: ...disk dev vx rdmp sdx dev vx rdmp sdy dev vx rdmp sdz etc vxfentab In some cases you must remove disks from or add disks to an existing coordinator disk group Warning If you remove disks from an exist...

Page 93: ...ks for I O fencing are as follows Verify that the nodes have access to the same disk Test the disks using the vxfentsthdw utility Initializing disks as VxVM disks Perform the following procedure to in...

Page 94: ...TACHI DF600 DF600 V DF600F DF600F V libvxhdsusp so HITACHI All libvxhitachi so HITACHI DF350 DF400 DF400F DF500 DF500F libvxhpalua so HP COMPAQ HSV101 HSV111 C COMPAQ HSV111 HS HSV210 libvxhpmsa so HP...

Page 95: ...nitialize disks identify disks to use as coordinator disks To identify the coordinator disks 1 List the disks on each node For example execute the following commands to list the disks vxdisk list 2 Pi...

Page 96: ...fying that the nodes have access to the same disk Before you test the disks that you plan to use as shared data storage or as coordinator disks using the vxfentsthdw utility you must verify that the s...

Page 97: ...failure is due to a bad disk remove and replace it The vxfentsthdw utility indicates a disk can be used for I O fencing with a message resembling The disk dev sdx is ready to be configured for I O Fe...

Page 98: ...the disk name to be checked for SCSI 3 PGR on node galaxy in the format dev sdx dev sdr Enter the disk name to be checked for SCSI 3 PGR on node nebula in the format dev sdx Make sure it s the same di...

Page 99: ...t contain three disks or LUNs If you use VxVM 5 0 or later you must also set the coordinator attribute for the coordinator disk group VxVM uses this attribute to prevent the reassignment of coordinato...

Page 100: ...Create the I O fencing configuration file etc vxfendg Update the I O fencing configuration file etc vxfenmode To update the I O fencing files and start I O fencing 1 On each nodes type echo vxfencoord...

Page 101: ...to be disabled separately To modify VCS configuration to enable I O fencing 1 Save the existing configuration haconf dump makero 2 Stop VCS on all nodes hastop all 3 If the I O fencing driver vxfen i...

Page 102: ...rt the I O fencing driver and VCS Perform the following steps on each node Start the I O fencing driver The vxfen startup script also invokes the vxfenconfig command which configures the vxfen driver...

Page 103: ...g permissions for communication Make sure you completed the installation of VCS and the verification of disk support for I O fencing If you used rsh remove the temporary rsh access permissions that yo...

Page 104: ...Configuring VCS clusters for data integrity Setting up disk based I O fencing manually 104...

Page 105: ...of the key VCS configuration files that you have installed and modified during the process These files reflect the configuration that is based on the information you supplied You can also run VCS comm...

Page 106: ...cluster 2 link eth1 eth 00 04 23 AC 12 C4 ether link eth2 eth 00 04 23 AC 12 C5 ether The first line identifies the system The second line identifies the cluster that is the cluster ID you entered dur...

Page 107: ...an attribute UserNames The installvcs program creates a user admin whose password is encrypted the word password is the default password If you set up the optional I O fencing feature for VCS then th...

Page 108: ...types cf cluster vcs_cluster2 UserNames admin cDRpdxPmHpzS smith dKLhKJkHLh ClusterAddress 192 168 1 16 Administrators admin smith CounterInterval 5 SecureClus 1 system galaxy system nebula group Clu...

Page 109: ...arning harriet example com Error VRTSWebApp VCSweb Critical 0 InstallDir opt VRTSweb VERITAS TimeForOnline 5 RestartLimit 3 VCSweb requires webip ntfr requires csgnic webip requires csgnic resource de...

Page 110: ...al Cluster option note that the ClusterService group also contains the Application resource wac The wac resource is required to control the cluster in a global cluster environment UserStrGlobal LocalC...

Page 111: ...sterService SystemList sysA 0 sysB 1 sysC 2 AutoStartList sysA sysB sysC OnlineRetryLimit 3 OnlineRetryInterval 120 Application wac StartProgram opt VRTSvcs bin wacstart StopProgram opt VRTSvcs bin wa...

Page 112: ...ac requires gcoip resource dependency tree group ClusterService NotifierMngr ntfr NIC csgnic Application wac IP gcoip NIC csgnic group VxSS SystemList sysA 0 sysB 1 sysC 2 Parallel 1 AutoStartList sys...

Page 113: ...ab GAB etc gabtab VCS etc VRTSvcs conf config main cf 2 Verify the content of the configuration files See About the LLT and GAB configuration files on page 105 See About the VCS configuration file mai...

Page 114: ...or more information To verify LLT 1 Log in as superuser on the node galaxy 2 Run the lltstat command on the node galaxy to view the status of LLT lltstat n The output on galaxy resembles LLT node info...

Page 115: ...EN eth1 UP 08 00 20 8F D1 F2 eth2 DOWN 2 CONNWAIT eth1 DOWN eth2 DOWN 3 CONNWAIT eth1 DOWN eth2 DOWN 31 CONNWAIT eth1 DOWN eth2 DOWN Note that the output lists 32 nodes The command reports the status...

Page 116: ...3 4 5 6 7 8 9 10 11 28 29 30 31 connects 0 1 31 gab 0x1F opens 0 2 3 4 5 6 7 8 9 10 11 28 29 30 31 connects 0 1 Verifying GAB Verify the GAB operation using the gabconfig a command This command return...

Page 117: ...ly one network is connected the command returns the following GAB port membership information GAB Port Memberships Port a gen a36e0003 membership 01 Port a gen a36e0003 jeopardy 1 Port h gen fd570002...

Page 118: ...ter is successfully started The ClusterService group state In the sample output the group state lists the ClusterService group which is ONLINE on galaxy and OFFLINE on nebula Verifying the cluster nod...

Page 119: ...imeLimit 0 CPUUsageMonitoring galaxy 100 Capacity galaxy 142 ConfigBlockCount galaxy 4085 ConfigCheckSum galaxy CURRENT ConfigDiskState galaxy etc VRTSvcs conf config ConfigFile galaxy 0 ConfigInfoCnt...

Page 120: ...wnTimeout galaxy main cf SourceFile galaxy Linux galaxy 1 SMP Mon Dec 12 18 32 25 UTC 2005 2 6 5 7 244 pseries64 ppc64 SysInfo galaxy galaxy SysName galaxy RUNNING SysState galaxy SystemLocation galax...

Page 121: ...the cluster You can create a cluster of up to 32 nodes Adding a node to a cluster The system you add to the cluster must meet the hardware and software requirements Table 7 1 specifies the tasks that...

Page 122: ...e 126 For a cluster that is running in secure mode verify the existing security setup on the node See Configuring LLT and GAB on page 128 Configure LLT and GAB See Adding the node to the existing clus...

Page 123: ...luster so you might have to swap out the cable for a switch or hub If you already use independent hubs connect the two Ethernet controllers on the new node to the independent hubs Figure 7 1 illustrat...

Page 124: ...ting up disk based I O fencing on page 89 Use this procedure if you install VCS for the first time Make sure the system does not have any of the VCS RPMs already installed If VCS is already installed...

Page 125: ...5 0 33 00 RU3_GENERIC noarch rpm rpm i VRTSatClient 4 3 28 0 0 ppc rpm rpm i VRTSatServer 4 3 28 0 0 ppc rpm Adding a license key After you have installed all RPMs on each cluster node use the vxlici...

Page 126: ...turn is configured as an authentication broker AB belonging to a root broker perform the following steps Else proceed to configuring the authentication broker on node saturn See Configuring the authen...

Page 127: ...1 Create a principal for node saturn on root broker RB1 Execute the following command on root broker RB1 vssat addprpl pdrtype root domain domainname prplname prplname password password prpltype serv...

Page 128: ...at bin vxatd process 2 Create HA_SERVICES domain for VCS vssat createpd pdrtype ab domain HA_SERVICES 3 Add VCS and webserver principal to AB on node saturn vssat addprpl pdrtype ab domain HA_SERVICES...

Page 129: ...her link eth2 eth2 ether 3 On the new system run the command sbin lltconfig c To configure GAB 1 Create the file etc gabtab on the new system If the etc gabtab file on the existing nodes resembles sbi...

Page 130: ...bership 012 See Verifying GAB on page 116 2 Run the same command on the other nodes galaxy and nebula to verify that the port a membership includes the new node sbin gabconfig a GAB Port Memberships P...

Page 131: ...verify the cluster 1 From the new system start VCS with the new system added to the cluster hastart 2 Run the GAB configuration command on each node to verify that port a and port h include the new n...

Page 132: ...files to reflect the change See Removing security credentials from the leaving node on page 136 For a cluster that is running in a secure mode remove the security credentials from the leaving node Se...

Page 133: ...p4 saturn Y N ONLINE The example output from the hastatus command shows that nodes galaxy nebula and saturn are the nodes in the cluster Also service group grp3 is configured to run on node nebula and...

Page 134: ...agrp unlink grp4 grp1 These commands enable you to edit the configuration and to remove the requirement grp4 has for grp1 4 Stop VCS on the departing node hastop sys saturn 5 Check the status again Th...

Page 135: ...te processy_grp4 8 Delete the service group that is configured to run on the departing node hagrp delete grp4 9 Check the status hastatus summary SYSTEM STATE System State Frozen A galaxy RUNNING 0 A...

Page 136: ...n N is greater than the number of nodes GAB does not automatically seed Note Symantec does not recommend the use of the c x option for sbin gabconfig 2 Modify etc llthosts file on each remaining nodes...

Page 137: ...p 2 Stop GAB and LLT etc init d gab stop etc init d llt stop 3 To determine the RPMs to remove enter rpm qa grep VRTS 4 To permanently remove the VCS RPMs from the system use the rpm e command Start b...

Page 138: ...rl rpm e VRTSpbx rpm e VRTSicsco rpm e VRTSatServer rpm e VRTSatClient 5 Remove the LLT and GAB configuration files rm etc llttab rm etc gabtab rm etc llthosts Adding and removing cluster nodes Removi...

Page 139: ...gle node cluster to form a multinode cluster You can also prepare a single node cluster for addition into a multi node cluster Single node clusters can be used for testing as well You can install VCS...

Page 140: ...t LLT and GAB See About LLT and GAB on page 15 Starting the installer for the single node cluster When you install VCS on a single system follow the instructions in this guide for installing VCS using...

Page 141: ...artup files on page 142 Remove any LLT or GAB configuration files and rename LLT and GAB startup files A single node cluster does not require the node to node communication service LLT or the membersh...

Page 142: ...ld Modifying the startup files Modify the VCS startup file etc sysconfig vcs to include the onenode option as follows Change the line ONENODE no To ONENODE yes Verifying single node operation After su...

Page 143: ...the Ethernet cable connections between the two nodes See Configuring the shared storage on page 145 Connect both nodes to shared storage See Bringing up the existing node on page 145 Bring up VCS on...

Page 144: ...m See Renaming the LLT and GAB startup files on page 142 2 If necessary install VxVM and VxFS See Installing VxVM or VxFS if necessary on page 144 Installing VxVM or VxFS if necessary If you have eith...

Page 145: ...nfigure the Ethernet card on both nodes 6 Make the two Ethernet cable connections from Node A to Node B for the private networks 7 Restart the nodes Configuring the shared storage Make the connection...

Page 146: ...init d llt old etc init d llt Installing the VCS software manually when adding a node to a single node cluster Install the VCS 5 0 RU3 RPMs manually and install the license key Refer to the following...

Page 147: ...ab file in opt VRTSllt See LLT directives on page 147 Use vi or another editor to create the file etc llttab that contains the entries that resemble set node north set cluster 2 link eth1 eth1 ether l...

Page 148: ...thernet SAP of 0xCAFE If the SAP is unacceptable refer to the llttab 4 manual page for information on how to customize SAP Note that IP addresses do not need to be assigned to the network device LLT d...

Page 149: ...he driver for use The nN specifies that the cluster is not formed until at least N systems are ready to form the cluster By default N is the number of systems in the cluster Note Symantec does not rec...

Page 150: ...embership of the cluster gabconfig a 5 Start VCS on Node A hastart 6 Make the VCS configuration writable haconf makerw 7 Add Node B to the cluster hasys add sysB 8 Add Node B to the system list of eac...

Page 151: ...on Node B hastart 3 Verify that VCS is up on both nodes hastatus 4 List the service groups hagrp list 5 Unfreeze the service groups hagrp unfreeze group persistent 6 Implement the new two node config...

Page 152: ...Installing VCS on a single node Adding a node to a single node cluster 152...

Page 153: ...installvcs program does not remove an enterprise agent see the documentation for the specific enterprise agent for instructions on how to remove it Preparing to uninstall VCS Review the following prer...

Page 154: ...e demonstrates how to uninstall VCS using the uninstallvcs program The uninstallvcs program uninstalls VCS on two nodes galaxy nebula The example procedure uninstalls VCS from all nodes in the cluster...

Page 155: ...conditions You enter n The program finds no VCS configuration files on the local node 7 If RPMs such as enterprise agents are found to be dependent on a VCS RPM the uninstaller prompt you on whether y...

Page 156: ...The uninstallvcs program is not available in opt VRTS install Uninstalling VCS Uninstalling VCS 5 0 RU3 156...

Page 157: ...ing wide area networks and routers UDP makes LLT packets routable and thus able to span longer distances more economically Note LLT over UDP is not supported on IPv6 When to use LLT over UDP Use LLT o...

Page 158: ...st features and specify the IP address of each link manually in the etc llttab file See Sample configuration links crossing IP routers on page 163 Broadcast address in the etc llttab file The broadcas...

Page 159: ...odes are to be configured for this link node range Type of link must be udp for LLT over UDP link type Unique UDP port in the range of 49152 65535 for the link See Selecting UDP ports on page 160 udp...

Page 160: ...a node examine the file etc services You should also use the netstat command to list the UDP ports currently in use For example netstat au more Active Internet connections servers and established Prot...

Page 161: ...address in etc llttab depending on the subnet that the links are on An example of a typical etc llttab file when nodes are on different subnets Note the explicitly set broadcast address for each link...

Page 162: ...So the addresses of peer nodes do not need to be specified in the etc llttab file using the set addr command For direct attached links you do need to set the broadcast address of the links in the etc...

Page 163: ...link1 Routers Node0 at Site A Node1 at Site B The configuration that the following etc llttab file represents for Node 1 has links crossing IP routers Notice that IP addresses are shown for each link...

Page 164: ...CS installations Using installvcs program with the responsefile option is useful not only for installing and configuring VCS within a secure environment This option is also useful for conducting unatt...

Page 165: ...e CFG Scalar_variable 123 or in the case of a list CFG List_variable value value value Example response file The example response file resembles the file that installvcs creates after the example VCS...

Page 166: ...CS_LLTLINK1 east eth1 CPI CFG VCS_LLTLINK1 west eth1 CPI CFG VCS_LLTLINK2 east eth2 CPI CFG VCS_LLTLINK2 west eth2 CPI CFG VCS_SMTPRECP qw earnie symantecexample com CPI CFG VCS_SMTPRSEV qw SevereErro...

Page 167: ...configured List or scalar scalar Optional or required required CPI CFG UPI Defines the location of an ssh keyfile that is used to communicate with all remote systems List or scalar scalar Optional or...

Page 168: ...used instead of ssh as the communication method between systems List or scalar scalar Optional or required optional CPI CFG OPT RSH Instructs the installation to not install the optional RPMs in the...

Page 169: ...quired per system LLTLINK1 and LLTLINK2 Up to four LLT links can be configured List or scalar scalar Optional or required required CPI CFG VCS_LLTLINK SYSTEM Defines a low priority heartbeat link Typi...

Page 170: ...ar list Optional or required optional CPI CFG VCS_SNMPCONS Defines the minimum severity level of messages Information Warning Error SevereError that listed SNMP consoles are to receive Note that the o...

Page 171: ...u can use the installation program with the responsefile option to install and configure VCS identically on each system without being prompted To use installvcs in a secure environment 1 On one node i...

Page 172: ...you want to install VCS 8 Edit the response file For the variables in the example change the name of the system to reflect the current local system CFG SYSTEMS east CFG KEYS east XXXX XXXX XXXX XXXX X...

Page 173: ...disks 93 vxlicinst 85 125 vxlicrep 84 125 communication channels 15 communication disk 15 configuring GAB 149 hardware 23 configuring continued LLT manual 146 private network 40 ssh 45 switches 40 co...

Page 174: ...g VCS overview 60 installing VCS choosing RPMs 64 licensing 63 overview 60 required information 52 starting 61 utilities 51 installvcs options 55 installvcs prompts b 56 n 56 y 56 J Java Console insta...

Page 175: ...lation 123 prerequisites uninstalling 153 private network configuring 40 R RAM installation requirement 23 removing a system from a cluster 131 remsh 62 67 requirements Ethernet controllers 23 fibre c...

Page 176: ...ng prerequisites 153 VCS 153 uninstallvcs 153 V variables MANPATH 47 PATH 47 VCS basics 13 command directory path variable 113 configuration files main cf 107 coordinator disks 99 documentation 86 rep...

Search results

Summary of Contents for Veritas Cluster Server 5.0 Update 3

Reviews:

Related manuals for Veritas Cluster Server 5.0 Update 3

Brands by name

Popular brands

Symantec Veritas Cluster Server 5.0 Update 3, Installation Manual

Search results

Summary of Contents for Veritas Cluster Server 5.0 Update 3

Reviews:

Related manuals for Veritas Cluster Server 5.0 Update 3

Brands by name

Popular brands