Due to a bug in Solaris 11, kernel zone pool size specified in zonecfg is not working
|
1 |
zoneadm -z oscntrl2 install -x 300g |
Configuring Solaris 11 Kernel Zone ZFS Pool Size
(No Ratings Yet)
Loading...Tag: solaris11.2
(No Ratings Yet)Loading...Solaris 11 Kerberos Master/Slave Configuration
(No Ratings Yet)Loading...How to configure in Solaris 11 Kerberos Master/Slave Kerberos Server config
|
1 2 3 4 5 6 7 8 9 10 |
pkg install system/security/kerberos-5 Note1: Make sure host name is in dns Note2: Make sure ntp is up on master and slave kdcmgr -a kws/admin -r domain.com create master Note: kws is the admin user kdcmgr status Now configure the slave Note: krb-srv-a is the master host name kdcmgr -a kws/admin -r domain.com create -m krb-srv-a slave kdcmgr status |
Client config
|
1 2 3 4 5 6 7 8 9 10 11 |
cat kcprofile REALM domain.com KDC krb-srv-a.domain.com ADMIN clntconfig FILEPATH /var/tmp/krb5.conf NFS 1 DNSLOOKUP none # /usr/sbin/kclient -p kcprofile /usr/sbin/kclient -p kcprofile \ -d dns_fallback -k krb-srv-b.domain.com # or run kclient for full interactive |
https://docs.oracle.com/cd/E53394_01/html/E54787/ksetup-148.html#scrolltoc
(RAD) Remote Administration Daemon on Oracle Solaris 11
(No Ratings Yet)Loading...Below are helpful links on how to use RAD in Solaris 11 https://community.oracle.com/docs/DOC-917361 http://blog.zach.st/2015/08/19/remote-ZFS-management-Puppet-RAD.html
Solaris 11.2 and ilb (load balancer)
(No Ratings Yet)Loading...How to configure iLB(load balancer) on Solaris 11.2 Configuring Load Balancing Load Balancing SSH Sessions
|
1 2 |
ilbadm create-sg -s server=10.10.12.11:22,10.10.12.12:22 ssh<br /> ilbadm create-rule -e -i vip=10.10.10.50,port=2222 -m lbalg=rr,type=NAT,proxy-src=10.10.10.50 -o servergroup=ssh ssh |
Load Balancing LDAP Sessions LDAP Servers
|
1 |
ilbadm create-sg -s server=10.10.12.51:1389,10.10.12.52:1389 ldapgroup1 |
Configuring Health Checks
|
1 |
ilbadm create-healthcheck -h hc-timeout=3,hc-count=2,hc-interval=5,hc-test=tcp hc-ldap1 |
Custom Health Checks
|
1 2 3 |
ilbadm create-healthcheck -h hc-test=/var/tmp/hc-ldap-test,hc-timeout=2,hc-count=1,hc-interval=10 hc-ldap1 ilbadm create-rule -ep -i vip=10.10.10.50,port=1389,protocol=tcp -m lbalg=rr,type=NAT,proxy-src=10.10.10.50 -h hc-name=hc-ldap1 -o servergroup=ldapgroup1 ldaprule1 |
Other options
|
1 2 |
ilbadm create-rule -ep -i vip=10.10.10.50,port=1389,protocol=tcp -m lbalg=rr,type=HALF-NAT -o servergroup=ldapgroup1 ldaprule1 ilbadm create-rule -ep -i vip=10.10.10.50,port=1389,protocol=tcp -m lbalg=rr,type=DSR -o servergroup=ldapgroup1 ldaprule1 |
Note: If using VRRP in combination with Solaris iLB, you should note that SSL Secure termination is not supported as of […]
Solaris 11.2 VRRP and vlan tags
(No Ratings Yet)Loading...How to Create a VRRP group in Solaris 11.2 The vLan tag used in the example below is 20 On Host 1
|
1 2 3 4 5 6 7 8 9 10 11 12 |
dladm create-aggr -m dlmp -l net10 -l net11 aggr1<br /> dladm create-vlan -v 20 -l aggr1 global1<br /> dladm create-vnic -m vrrp -V 12 -A inet -v 20 -l aggr1 ldaplb1<br /> vrrpadm create-router -V 12 -A inet -I global1 vrrp1<br /> # If in a zone or IB, layer 3 option is required to work<br /> vrrpadm create-router -V 12 -A inet -T l3 -I global1 vrrp1<br /> ipadm create-ip ldaplb1<br /> ipadm create-addr -T vrrp -a 10.10.10.50/23 ldaplb1/router1<br /> ipadm create-ip global1<br /> ipadm create-addr -T static -a 10.10.10.11/23 global1/router1<br /> |
On Host 2
|
1 2 3 4 5 6 7 8 9 10 11 |
dladm create-aggr -m dlmp -l net10 -l net11 aggr1<br /> dladm create-vlan -v 20 -l aggr1 global2<br /> #<br /> dladm create-vnic -m vrrp -V 12 -A inet -v 20 -l aggr1 ldaplb1<br /> # If in a zone or IB, layer 3 option is required to work<br /> vrrpadm create-router -V 12 -A inet -T l3 -I global2 -p 100 vrrp1<br /> ipadm create-ip ldaplb1<br /> ipadm create-addr -T vrrp -a 10.10.10.50/23 ldaplb1/router1<br /> ipadm create-ip global2<br /> ipadm create-addr -T static -a 10.10.10.12/23 global2/router1 |
Note: If using VRRP in combination with Solaris iLB, you should note that SSL Secure termination is not supported as of this writing. an option would be to […]
firefox plugin location in solaris 11 and solaris 12
(No Ratings Yet)Loading...How to add plugins in firefox in solaris 11 or solaris 12 For example to add / use the java plugin, follow the below. then restart firefox.
|
1 2 |
mkdir /usr/lib/firefox/browser/plugins ln -s /usr/jdk/instances/jdk1.7.0/jre/lib/i386/libnpjp2.so |
How to Create a Custom Solaris Live CD + latest SRU
(No Ratings Yet)Loading...Creating a custom Solaris Live CD Tip: You will need the full Solaris repository for this process to work (4 ISO from Oracle’s web site 4+Gb). Create the local repo directory.
|
1 |
mkdir /export/support-repo/ &&b cd /export/support-repo/ |
|
1 |
./install-repo.ksh -d /export/support-repo/ |
Create cd, usb, rep, etc
|
1 |
cd /tmp |
|
1 |
cp /usr/share/distro_const/dc_livecd.xml dc_livecd.xml |
vi dc_livecd.xml and change the repo to http://, or file:// Also Modify the entire line […]
Oracle Solaris support live cd downloads
(No Ratings Yet)Loading...List all livecd and repos and usb, etc 1277964.1 Oracle Solaris 11.2 Support Repository Updates (SRU) Index (Doc ID 1672221.1)
SSH connection to Solaris 11 is sometimes slow…
(No Ratings Yet)Loading...We migrated the first box to Solaris 11 and we experienced the first bug, as soon as we login onto the server, it would wait and wait and continue to wait…. As these delays are quite common when SSH’d is configured with the default settings, we quickly modified the lines below to help with the […]
Oracle Solaris ZFS health / scrubbing check script
(No Ratings Yet)Loading...The ZFS script will check ZFS pool health and do scheduled scrubbing. Get ZFS script Modify the below values in the script to your mail admin and mail address.
|
1 2 3 4 |
my $mydomain = $hostname; my $mailfrom = "sysadmin\@$hostname.domain.com"; my $mailto = "admin\@domain.com"; my $mailhost = "10.10.10.10"; # switch to ip or real mail host |