Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
NAS Gateway
System Administrator’s Guide
ONStor, Inc.
254 East Hacienda Ave.
Campbell, CA 95008
(408) 963-2400
Copyright © 2005-2007 ONStor, Incorporated. All rights reserved.
ONStor, EverON, AutoGrow, ONStor Bobcat, ONStor Cheetah, ONStor Pantera, and STORE-FS are
trademarks of ONStor, Inc.
This document exists for use with the products of ONStor, Inc. and is intended for use by employees,
representatives, assigns, and clientele of ONStor, Inc. This document cannot be copied, reproduced,
transmitted, or stored electronically, in part or in whole, without first obtaining the express consent and
agreement of ONStor, Inc.
This document can contain the names of products and services of other companies. Such products and
services are the property of their owners, and ONStor, Inc. makes no implications or claims, express or
implicit, to the ownership of such products and services. ONStor, Inc. has, in good faith, made efforts to
represent trademarked and copyrighted products and services as the property of their respective owners.
Contents
Foreword ......................................................................................................... i
Audience................................................................................................................................ 1-ii
Scope .................................................................................................................................... 1-iii
Document Organization ....................................................................................................... 1-iv
Related Documentation ........................................................................................................ 1-vi
Revision Trail...................................................................................................................... 1-vii
Syntax Usage...................................................................................................................... 1-viii
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
Chapter 2: Managing Privileges................................................................2-1
Understanding Privileges....................................................................................................... 2-2
Enforcing Privileges........................................................................................................ 2-2
Understanding Exec Privileges ....................................................................................... 2-2
Creating Exec Privileges ....................................................................................................... 2-4
Managing Local User Accounts .......................................................................................... 2-10
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
Working with Management Interfaces.................................................................................. 5-4
Creating Interfaces.......................................................................................................... 5-5
Working with Logical Ports ................................................................................................ 5-12
Understanding Logical Port Operation Modes ............................................................. 5-12
Load Balancing on IP Interfaces with Logical Ports .................................................... 5-18
Cisco Systems Switch Connectivity Example ....................................................... 5-18
Extreme Networks Switch Connectivity Example................................................. 5-20
Understanding Stackable Logical Ports........................................................................ 5-22
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
CIFS and NFS Shares and Services..................................................................................... 7-35
Preconfiguration Considerations................................................................................... 7-35
Configuration Steps ...................................................................................................... 7-36
Managing NFS Shares......................................................................................................... 7-48
Modifying NFS Shares ................................................................................................. 7-49
Managing CIFS Shares........................................................................................................ 7-52
Enabling or Disabling CIFS.......................................................................................... 7-53
Deleting a CIFS Share .................................................................................................. 7-54
Managing CIFS Servers ...................................................................................................... 7-56
Managing CIFS Wide Links................................................................................................ 7-58
Examples of Wide Link Behavior................................................................................. 7-58
CIFS Behavior Considerations with Wide Links.......................................................... 7-59
Exporting and Importing Shares.......................................................................................... 7-64
Managing ID Mappings....................................................................................................... 7-68
Multiprotocol File Access Without Using NIS ................................................................... 7-73
Working With Symbolic Links ........................................................................................... 7-77
Symbolic Links and the Directory Tree........................................................................ 7-77
Deletions and Symbolic Links ...................................................................................... 7-78
Deletion of All Objects in a Path .................................................................................. 7-78
Support for Absolute and Relative Symbolic Links ..................................................... 7-79
Displaying a Symbolic Link Mapping Rule ................................................................. 7-81
Removing a Symbolic Link Mapping Rule .................................................................. 7-82
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
Chapter 10: Managing File System Quotas ..........................................10-1
Quotas Overview................................................................................................................. 10-2
File System Quotas and Volume-Level Quotas............................................................ 10-2
Quota Types.................................................................................................................. 10-2
Quota Interaction with Other NAS Gateway Features ................................................. 10-3
File System Quotas and Backup and Restore Operations ............................................ 10-3
Setting ONSTOR_SUPERSEDE_QUOTAS......................................................... 10-4
Setting ONStor Ignore User or Group Quotas ....................................................... 10-6
Setting ONStor Ignore Tree Quotas....................................................................... 10-7
File System Quotas and Mirrors ................................................................................... 10-8
File System Quotas and Snapshots ............................................................................... 10-9
Specific Tree Quotas ............................................................................................ 10-12
Specific Tree Quotas Removal............................................................................. 10-13
Specific User and Group Quotas.......................................................................... 10-13
Working With the Quota Log............................................................................................ 10-23
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
Data Mirror over IP Prerequisites .......................................................................... 13-4
Local Data Mirror ......................................................................................................... 13-4
Data Mirroring Methods ............................................................................................... 13-4
Asynchronous and Synchronous Mirroring ........................................................... 13-5
Volumes and Automatic Growth .................................................................................. 13-5
Tracking File System Quotas on Target Volumes........................................................ 13-6
Configuring Data Mirrors.................................................................................................... 13-7
Backing Up Mirror Volumes ...................................................................................... 13-15
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
Configuring the VirusScan Applet for the Symantec AntiVirus Scan Engine........... 15-19
Configuring the VirusScan Applet for the McAfee AntiVirus Engine API............... 15-21
Updating McAfee .DAT files ..................................................................................... 15-22
Configuring the CIFS Domain .......................................................................................... 15-23
Receiving Virus Notification on CIFS Clients ........................................................... 15-26
Prerequisites and System Recommendations.................................................................... 15-27
Virus-Scan Server Recommendations for the Symantec AntiVirus Scan Engine...... 15-27
Virus-Scan Server Recommendations for the McAfee VirusScan Enterprise 8.0i Software
15-27
Virus-Scan Server Recommendations for the VirusScan Applet ............................... 15-27
Configuring the Symantec AntiVirus Scan Engine........................................................... 15-29
Configuring the McAfee VirusScan Enterprise 8.0i Software.......................................... 15-30
Managing Virus Scanning From the CLI.......................................................................... 15-31
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
Preface
This preface contains the front matter for the System Administrator’s Guide for the
ONStor Bobcat™ 2200 Series NAS Gateway family of products. It contains the
following sections:
• “Audience”
• “Scope”
• “Document Organization”
• “Related Documentation”
• “Revision Trail”
• “Syntax Usage”
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
1-ii
Audience
This System Administrator’s Guide is for IT professionals that administer the ONStor
family of products and their company’s storage area network (SAN). This guide serves
IT professionals and storage administrators of varying levels of experience.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
1-iii
Scope
This System Administrator’s Guide helps you understand and configure the ONStor
NAS Gateway software. This guide accompanies a separate set of installation
instructions, the ONStor Bobcat 2200 NAS Gateway Installation Guide. Use this
System Administrator’s Guide only after you have successfully installed the NAS
Gateway and connected it to the facility’s power source.
This document is predominantly a reference manual. It contains some reference text
and some task-oriented text. Although some overview material is contained in this
manual, this manual is not intended to be an in-depth reference document about the
public domain protocols with which the NAS Gateway interfaces. For additional
material about the NAS Gateway, refer to the additional NAS Gateway product
documentation listed in “Related Documentation”.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
1-iv
Document Organization
Table 1 lists the chapters in this document and briefly describes each chapter.
Table 1 : Document Organization
Chapter... Purpose...
3 - “Working with Virtual Explains the concept of virtual servers and provides
Servers” commands for configuring and managing virtual servers.
4 - “Managing Storage and Explains the NAS Gateway’s role in discovering and
Fibre Channel” using storage and Fibre Channel (FC) compliant devices.
5 - “Working with Network Explains how network interfaces are used on the NAS
Interfaces” Gateway, and how to provision IP functionality.
6 - “Managing Volumes and Explains what volumes are and how the NAS Gateway
File Systems” manages volumes.
8 - “Managing File Auditing” Explains the support for auditing and logging file and
directory access and usage attempts.
9 - “Managing Snapshots” Explains what snapshots are, what types are available,
and how to configure them.
10 - “Managing File System Explains what quotas are, what types are available, and
Quotas” how to configure them.
11 - “Monitoring the NAS Explains what SNMP functionality the NAS Gateway
Gateway” supports.
12 - “Autosupport and Event Explains what the autosupport feature is and how it
Monitoring” works.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
1-v
Chapter... Purpose...
14 - “Managing Backup and Explains the type of backup and restore operations
Restore” supported, how to manage NDMP sessions and tape
devices, and how to configure the NAS Gateway for
NDMP sessions.
15 - “Managing Virus Explains how to install and configure the virus scanning
Scanning” applet, what types of third-party virus scanning packages
are supported, and how to manage virus scanning from
the command-line interface (CLI).
16 - “Managing NAS Gateway Explains the system-wide features that control the NAS
System Settings” Gateway’s operation, and how to configure them.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
1-vi
Related Documentation
This document is part of a set of product documentation for the NAS Gateway. Table 2
lists the related documentation.
Table 2 : ONStor Product Documentation
If you are managing the NAS Gateway through the ONStor NAS Cluster Manager,
you can also use the NAS Cluster Manager context-sensitive online help.
Release notes are available with every release of software. The release notes contain
additional information about bugs and fixes in the product, documentation errata or
omissions, and new features or enhancements.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
1-vii
Revision Trail
This document is regularly reviewed and revised. Table 3 lists the revision history of
this document. We recommend that you obtain the latest information whenever
possible.
Table 3 : Product Documentation Revision History
Revision Revision
Document Name Part Number
Level Date
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
1-viii
Syntax Usage
The NAS Gateway command-line interpreter uses different syntax markers to indicate
specific conditions of usage in the command line. Table 4 lists the different syntax
markers used in the command-line interpreter and explains what each marker means.
Table 4 : Syntax Markers
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
Chapter 1: NAS Gateway Overview
and Access
This chapter provides an overview of the main software and hardware elements that
enable the ONStor™ NAS Gateway to provide file system services to a storage
environment.
This chapter contains the following sections:
• “Introducing the ONStor NAS Gateway” on page 1-2
• “Hardware Overview” on page 1-4
• “Example Topology” on page 1-11
• “Software Overview” on page 1-12
• “Understanding the Active Configuration” on page 1-15
• “Accessing the NAS Gateway CLI” on page 1-16
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
1-2
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
1-3
The NAS Gateway carries out the following functions in a NAS or SAN storage
environment:
• Support large numbers of users, files, and file systems.
• Support a high number of file system operations per second.
• Provide virtualized storage, which makes a SAN appear as a unified storage pool
over the local area network (LAN). Because IT administrators are more familiar
with an IP LAN, the NAS Gateway facilitates SAN administration, which reduces
costs and required personnel time.
• Provide high scalability and high reliability. The NAS Gateway offers efficient,
high-performance service to the data center and enables the data center to grow.
• Provide graphical policy-based management. Policies can be set for file system
volumes for such features as snapshot frequency, mirror frequency, and automatic
growth of logical unit number (LUN) space for volumes.
• Automate storage tasks. The NAS Gateway facilitates management of storage.
Advanced storage capacity management through the NAS Gateway’s automated
storage growth policies facilitates controlling storage regardless of the number of
users, growth rates, or the amount of storage you need to manage.
• Automatically discover SAN storage devices when the NAS Gateway is connected
to a SAN. The NAS Gateway enables configuration of devices into a single
managed storage pool.
• Reducing element-level management tasks through automating processes enabling
you to focus on more productive activities.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
1-4
Hardware Overview
The NAS Gateway is a one-rack unit. Hardware elements inside the chassis are
responsible for communicating user data and file meta data, distributing power, and
transporting control packets. The NAS Gateway contains the following hardware
elements:
• System switch and controller (SSC)
• Gigabit Ethernet (GE) file processor (FP)
• Fibre Channel (FC) storage processor (SP)
File Processor
The FP contains processing for IP connectivity. The FP supports IP protocol
processing, network file protocols, volume management, and GE interfaces into the IP
network. The FP supports connections to the IP network through four optical GE
(1000BaseSX) ports that support the IP interface connecting the NAS Gateway to the
IP network. Each port supports an optical link at a throughput rate of 1 Gbps. You can
also use SFP (small form pluggable) copper transceivers.
Note - Optical and copper transceivers cannot be mixed on the same FP.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
1-5
Storage Processor
The SP contains processing for storage functions. The SP supports FC and serial small
computer system interface (SCSI) protocols that run on top of FC. The SP provides
connection to the storage network through two physical FC ports that connect the NAS
Gateway to the SAN. The SP supports fiber optic cabling on each of the two FC ports.
Each FC port supports full duplex traffic at 1 or 2 Gbps in each direction. The link
speed is autonegotiated.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
1-6
Fans
The NAS Gateway provides a chassis cooling system that draws air in from the front,
across the elements in the chassis to cool them, then exhausts the heated air out of the
chassis to the rear into the surrounding data closet. The NAS Gateway chassis contains
five individual fans.
The fan system contains a grill work that allows ambient air from the surrounding
room to enter the chassis and cool the chassis. Then, the NAS Gateway’s exhaust fans
push the heated air out of the back of the chassis where the air can diffuse into the
surrounding room and cool again. The fans are located toward the back of the chassis.
AC Power Supplies
The NAS Gateway chassis contains two AC power supply units (PSUs). The power
supplies plug into the facility’s AC power outlets, digest the input AC power, and
distribute the power across the NAS Gateway’s chassis elements.
One power supply provides enough power to support the NAS Gateway. However,
two power supplies are provided for power supply redundancy. When the NAS
Gateway is operating, the two power supplies loadshare to decrease the load on each
PSU. If a power supply fails, the active power supply assumes the full load.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
1-7
Compact Flash
GE
Ejector
Ports
FC Ports
Power Supply
and Fan Status LED
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
1-8
Power supply and fan status LEDs Indicator of the status of the fans (the FAN LED)
and the power supplies (the PS LED):
• A green FAN LED means the NAS
Gateway’s fans and chassis cooling system
are operating properly.
• A red FAN LED means the NAS Gateway’s
fans and cooling system have encountered
a failure.
• A green PS LED means the NAS
Gateway’s power supplies are operating
properly.
• A red PS LED means the NAS Gateway’s
power supplies have encountered a failure.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
1-9
CompactFlash memory card slots, 2 Two slots that accept one CompactFlash
memory card each. One CompactFlash
memory card is considered the active card
because it contains the runtime images, and
one CompactFlash memory card is considered
the standby card because it is not in runtime
mode. The active card is indicated by an amber
LED, the standby card is indicated by a green
LED.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
1-10
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
1-11
Example Topology
The NAS Gateway sits between the IP network and the SAN. The NAS Gateway
provides a front end for file processing transactions between the clients in the IP
network and the stored data resources in the SAN. Figure 1-2 shows an example
configuration containing the NAS Gateway.
GE FC
W orkstation
NFS
Client
IP SAN
IBM Compatible
Domain Controller
NFS
Client
IBM Compatible
Windows
W orkstation Workstation Workstation
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
1-12
Software Overview
The NAS Gateway contains several software components that control the file services
and storage network operations it performs.
System Control
The system control software governs the NAS Gateway. The system control software
runs across multiple processors and resides on the SSC element. The system control
software performs such tasks as monitoring and maintaining the NAS Gateway during
runtime and boot time. The system control software also enables you to halt, restart, or
upgrade the NAS Gateway, set time and date information, and track uptime.
For more information about the NAS Gateway System Control software, see
“Managing NAS Gateway System Settings” on page 16-1.
File Processing
File processing enables clients in the IP network to successfully read and write files
and other data to disks and tapes. File processing resides on the GE FP element. File
processing features include:
• Network connectivity
• The ONStor STOR-FS™ file system
The NAS Gateway supports file services, such as:
• Scheduled and on-demand snapshots
• Mirrors
• Clustering
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
1-13
For more information about the StorFS file system, see “Managing Shares” on page 7-
1.
Network Connectivity
The NAS Gateway’s network connectivity is used to transmit and receive NFS packets
through User Datagram Protocol (UDP) or Transmission Control Protocol (TCP). The
NAS Gateway supports both UDP and TCP. The determination of whether to use TCP
or UDP depends on which protocol is in use on the client machine.
Storage Processing
The NAS Gateway’s storage processing software enables the NAS Gateway to support
SCSI and FC services over multiple physical media, and it resides on the SP element.
The storage processing software enables the following features:
• Automatic SAN discovery
• Rapid convergence on SAN topology changes
• High throughput of file system input and output processes between the NAS
Gateway and the storage resources
SP software also governs volumes through the NAS Gateway’s volume manager
(VM). For more information about the SP software, see the “Managing Storage and
Fibre Channel” on page 4-1.
Volume Manager
The Volume Manager (VM) summarizes and manages LUN-level information for the
SAN. The VM gathers information about physical storage, virtualizes that
information, and presents it to the file system so that file systems can be created on top
of the virtualized disk blocks. The VM is also responsible for dynamically adding
LUNs to a volume’s free space based on a configured ONStor AutoGrow™ policy. For
more information about the VM, see the “Managing Volumes and File Systems” on
page 6-1.
You can access and configure the NAS Gateway through one of the following
methods:
• Command-line interface (CLI) through secure shell (SSH) access
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
1-14
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
1-15
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
1-16
The default command prompt displays that the management session is logged in to the
system switch and controller (SSC) element.
Note - The NAS Gateway’s command line is case sensitive. Ensure that you
run all commands in lower case. Capitalization of letters can be used when
entering the names of objects, for example, a volume or virtual server.
If you access the user interface through a secure shell or telnet session, you can enter
the NAS Gateway through either of the following methods:
• A management interface, one of the two 10/100 SSC interfaces on the SSC
• A Gigabit Ethernet interface, a configured IP interface on the GE file processor
If you access the user interface through a direct console connection, you can enter the
NAS Gateway through the Console port on the front of the chassis.
Note - If you are accessing the NAS Gateway for the first time, direct console
connection is the only connection method supported until IP addresses are
configured. After IP addresses have been configured, secure shell access is
available.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
Chapter 2: Managing Privileges
This chapter contains the following sections:
• “Understanding Privileges” on page 2-2
• “Creating Exec Privileges” on page 2-4
• “Managing Local User Accounts” on page 2-10
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
2-2
Understanding Privileges
Privileges provide a secure mechanism to assign task responsibility on a system-wide
basis. Each privilege has a well-defined role assigned by the system administrator to a
user or group.
The NAS Gateway supports file system execution (exec) privileges that apply to end
users on Windows, Network Information Service (NIS), or Lightweight Directory
Access Protocol (LDAP) clients. For more information, see “Understanding Exec
Privileges” on page 2-2.
A privilege consists of the admin, user, or group name, a privilege, and a scope:
• Privileges are the rights that you have to perform an action on the NAS Gateway.
• Scope defines to which objects the privilege applies. Two types of scope exist:
cluster and virtual server.
When you create a privilege, you specify an allow or deny action as a privilege rule
that determines the privilege and scope of the privilege. The allow or deny logic is
similar to the Windows Access Control List (ACL) logic.
Enforcing Privileges
Privileges are checked against the scope and the deny rule. The software checks for
privileges at the virtual server scope first, then at the cluster scope. The software also
checks for deny rules first and stops at the first match of an admin, user, or group name
with a deny privilege.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
2-3
Table 2-2 lists the exec privileges that the NAS Gateway supports and displays the
amount of control that they have.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
2-4
Note - Exec privileges can override file-level privileges. For example, if user
exec1 does not have read permissions on a file, but is configured with
“backup” exec privileges, user exec1 can read the file for the purposes of
backing up the file.
You can specify only one level of scope for each admin user, but specifying
higher-scope levels includes the lower-scope levels. Enter the scope in
lowercase.
Options and
Description
Arguments
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
2-5
IDENTITY Specifies the name of the user or group for which you are adding
a privilege definition. The maximum identity string size must be
congruent with the string size supported through the domain,
such as 15 characters for a NetBIOS name, 64 for a Windows
domain. If an identity has blank spaces, enclose it in double
quotation marks.
This argument works in combination with the user|group
argument to specify the name of a user or group. Enter the
identity as one of the following:
• WindowsDomainName\UserName, for a Windows user or
group
• UserOrGroupName@DomainName for a NIS or LDAP user
or group from an NIS or LDAP domain
• A local user account
PRIVILEGES Specifies the privilege that you are configuring for the NAS
Gateway admin in IDENTITY. This argument accepts any of the
privileges listed in Table 2-2 on page 2-3 for exec privileges.
Enter the privilege in uppercase.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
2-6
Options and
Description
Arguments
IDENTITY Specifies the name of the user or group for which you are adding
a privilege definition. Use an alphanumeric character string. The
maximum identity string size must be congruent with the string
size supported through the domain, such as 15 characters for a
NetBIOS name, 64 for a Windows domain. If an identity has
blank spaces, enclose it in double quotation marks.
This argument works in combination with the user|group
argument to specify the name of a user or group. Enter the
identity as one of the following:
• WindowsDomainName\UserName, for a Windows user or
group
• UserOrGroupName@DomainName for a NIS or LDAP user
or group from an NIS or LDAP domain
• A local user account
PRIVILEGES Specifies the privilege that you are configuring for the NAS
Gateway admin in IDENTITY. This argument accepts any of the
admin privileges listed in Table 2-2 on page 2-3 for exec
privileges. Enter the privilege in uppercase.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
2-7
Options and
Description
Arguments
VIRTUALSERVER Specifies the virtual server that you want to show privileges for.
Options and
Description
Arguments
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
2-8
PRIVILEGES Specifies the privilege for which you are deleting the allow rule in
IDENTITY. This argument accepts any of the privileges listed in
Table 2-2 on page 2-3 for exec privileges. Enter the privilege in
uppercase.
cluster Specifying cluster deletes an allow rule on all virtual servers within
that cluster.
vsvr Specifying vsvr deletes an allow rule on the current virtual server.
[VIRTUALSERVER] Specifying vsvr [VIRTUALSERVER] deletes an allow rule on a
specified virtual server.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
2-9
Options and
Description
Arguments
IDENTITY Specifies the name of the user or group for which you are
deleting a deny rule. Use an alphanumeric character string.
This argument works in combination with the user|group
argument to specify the name of a user or group. Enter the
identity as one of the following:
• WindowsDomainName\UserName, for a Windows user or
group
• UserOrGroupName@DomainName for a NIS or LDAP user
or group from an NIS or LDAP domain
• A local user account
PRIVILEGES Specifies the privilege for which you are deleting the deny rule
in IDENTITY. This argument accepts any of the privileges listed
in Table 2-2 on page 2-3 for exec privileges. Enter the privilege
in uppercase.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
2-10
Note - If you want to launch the ONStor VirusScan applet from any user
account, you need to configure that user account with BACKUP and
RESTORE privileges because the VirusScan applet needs to access files in
read/write mode in the virtual server. The scope of the privilege can be either
VIRTUAL SERVER or CLUSTER.
You need to configure a local user account with LOGIN privilege to allow the
owner of the local user account to login to the NAS Gateway. With LOGIN
privilege, the owner of the local user account can also run any of the show
commands - for example, arp show - but cannot configure or change any
parameters.
You can configure a local user account to support SSH keys for access to the NAS
Gateway without a password.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
2-11
configuring. When you enter the user name, the NAS Gateway prompts you for the
user account's password. Enter the password for the account. For security purposes,
the password is not displayed when you configure it with this command.
To Add a Local User Account
Step 1: Run the following command:
useraccount add USERNAME [-k PUBKEY]
Options and
Description
Arguments
-k PUBKEY Specifies the SSH key for a local user account. This argument
must be the SSH key that the client generated. If the key is not
supplied or is not an exact match with the client’s SSH key, the
user account cannot automatically log in. Therefore, you need
to enter a password every time the user account accesses the
NAS Gateway.
The first time you create a local user account, you need to
specify the password, even if you use the -k PUBKEY
argument.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
2-12
When you run the useraccount modify command, the NAS Gateway either prompts
you to enter the new password for a specified user account or a new SSH key.
• When you enter the new password, it becomes active immediately.
• When you enter a new SSH key, it overwrites any existing SSH key for the local
user account, and becomes active immediately.
To Change the Password or SSH Key Associated With a Local User
Account
Step 1: Run the following command:
useraccount modify USERNAME [-k PUBKEY]
Options and
Description
Arguments
-k PUBKEY Specifies the SSH key for a local user account. This argument
must be the SSH key that the client generated. If the key is not
supplied or is not an exact match with the client’s SSH key, the
user account cannot automatically log in. Therefore, you need
to enter a password every time the user account accesses the
NAS Gateway.
The first time you create a local user account, you need to
specify the password, even if you use the -k PUBKEY
argument.
Step 2: When prompted, enter the password for the user account you just
created.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
2-13
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
2-14
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
Chapter 3: Working with Virtual
Servers
This chapter contains the following sections:
• “Understanding Virtual Servers” on page 3-2
• “Understanding the Management Virtual Server” on page 3-4
• “Creating a Virtual Server and Performing Basic Setup” on page 3-7
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
3-2
Note - When a node is added to a cluster, you need to ensure that all virtual
servers reside on the Primary cluster.
Supported Features
Virtual servers support the following two features:
• Failover - When a virtual server is set to protected mode, it supports failover.
When it is set to unprotected mode, it does not support failover.
• Manual load balancing - You can manually assign a virtual server to different NAS
Gateways to facilitate load Balancing.
You need to create at least one virtual server to enable client input/output (I/O) on the
NAS Gateway. When you create a virtual server, you configure it with all the pertinent
components for supporting failover and load balancing. The following components are
required for creating and configuring a virtual server:
• A unique name so that each virtual server can be addressed individually
• At least one IP interface for connectivity to the client’s IP network
For the virtual server to provide file services, you need to configure the following
components:
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
3-3
• Volumes
• Lightweight Directory Access Protocol (LDAP), Network File System (NFS) or
Common Internet File System (CIFS) shares
• Routes, which are associated with an IP interface
You can set the route table, interface table, and address resolution protocol (ARP)
table for each virtual server individually.
Multiple virtual servers can exist on a NAS Gateway, but NAS Gateways cannot share
the same virtual server. Each cluster can support up to 32 virtual servers. The
automatically created management virtual servers (one per NAS Gateway in the
cluster) do not count against the maximum number of virtual servers.
Note - When you disable a configured virtual server, you interrupt the file
services and IP connectivity provided to the clients.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
3-4
Note - For autosupport to function, the management virtual server must have
the DNS resolver configured, which you can configure through the system
dnsconfigure resolver command. For more information, see “Configuring
DNS Name Resolution for a Virtual Server” on page 3-46.
Because the management virtual server is unprotected, it does not failover to another
NAS Gateway if the NAS Gateway is configured in a clustered environment. The
management virtual server cannot be moved within a cluster.
The management virtual server always contains the name string “VS_MGMT” and a
numerical ID. The ID is generated when the management virtual server name is
created, and is an identifier only. It has no relation to the number of virtual servers
configured.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
3-5
Note - You need to make the configurations for any virtual server within the
context of that virtual server.
You can determine whether you are in virtual server or NAS Gateway context by
looking at the command-line prompt, as shown in the following examples:
eng33> Shows the default prompt, which is the NAS
Gateway’s unique node name. This command
prompt indicates that you are in NAS Gateway
context.
eng33 PUBSTEST> Shows the virtual server named PUBSTEST.
The value eng33 is the NAS Gateway’s unique
node name. This prompt indicates that you are
in the virtual server context.
Table 3-3 lists the virtual server commands, the contexts in which they are available,
and the virtual server state necessary to run the command. If a virtual server state is
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
3-6
listed as N/A, the command does not depend on the virtual server state, so you can run
the command regardless of the virtual server state.
NAS Virtual
Virtual
Command Gateway Server
Server State
Context Context
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
3-7
NAS Virtual
Virtual
Command Gateway Server
Server State
Context Context
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
3-8
Options and
Description
Arguments
VIRTUALSERVER Specifies the name of the virtual server you are creating. Use an
alphanumeric character string from 1 to 15 characters. Do not
use special characters in the virtual server name, such as *, ?,
and /.
• Virtual server names need to start with an alphabetic or
numeric character.
• Each virtual server name must be unique within a cluster.
Even though virtual server names are displayed in
uppercase, they are case insensitive with all vsvr
commands. Therefore, you can use upper or lowercase
when specifying a virtual server name.
• Virtual servers cannot be named with VS_MGMT because
that string is reserved for the management virtual server.
• The keyword All is reserved and cannot be used as a virtual
server name.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
3-9
Note - The virtual server name you create is also the NetBIOS name by
default.
Options and
Description
Arguments
-l LPORT Specifies the name of the logical port that the interface uses.
For more information about logical ports, see “Working with
Logical Ports” on page 5-12.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
3-10
Options and
Description
Arguments
-a IPADDR/MASKLEN Specifies the IP address and mask length in bits that you are
adding. Each virtual server can support up to 32 IP interfaces.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
3-11
Options and
Description
Arguments
Step 3: Create a default route for the virtual server by running the route
add command:
route add default -g IPADDR
-g IPADDR is the IP address of the gateway.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
3-12
Example:
route add default -g 10.2.0.1
Options and
Description
Arguments
INTERFACE Specifies the location of the NAS Gateway and port where you
want to modify the IP interface.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
3-13
Options and
Description
Arguments
-a IPADDR/MASKLEN Specifies the IP address and mask length in bits for the
interface that you are adding. Each virtual server can support
up to 32 IP interfaces.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
3-14
Options and
Description
Arguments
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
3-15
When the virtual servers are added to the domains, the remaining configuration and
management of the NAS Gateway is done through the virtual servers. For more
information about configuring virtual servers, see “Working with Virtual Servers” on
page 3-1.
LDAP or NIS authentication is not mandatory for supporting NFS shares. It is only
required if the virtual server contains volumes with data that is accessed by both CIFS
and NFS clients.
In a Windows domain, CIFS authentication enables the addition of a virtual server to
the domain so that clients can access the virtual server’s resources.
After you have added LDAP, NIS, or Windows domain to the NAS Gateway cluster,
you can add virtual servers to the domain with the vsvr set domain command.
The following sections document the commands necessary to add and manage the
virtual server in an LDAP, NIS, or Windows domain. For more information about
joining the virtual server to an LDAP, NIS, or Windows domain, see:
• “Adding a Virtual Server and a NAS Gateway to an LDAP Domain” on page 3-15
• “Adding a Virtual Server and a NAS Gateway to a NIS Domain” on page 3-19
• “Adding a Virtual Server and a NAS Gateway to a Windows Domain” on page 3-
21
Adding a Virtual Server and a NAS Gateway to an LDAP Domain
You can add an LDAP domain to the NAS Gateway’s configuration by running the
domain add ldap command. This command also specifies the primary LDAP server
and optionally, a backup LDAP server with which the NAS Gateway will register to
become a part of the domain.
To Configure the NAS Gateway for an LDAP Domain
Step 1: From the NAS Gateway context, run the following command:
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
3-16
DOMAINNAME Specifies the name of the LDAP domain that is used for
authentication. Use an alphanumeric character string of
up to 63 characters. Do not use restricted characters
such as *,~,?, and !.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
3-17
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
3-18
Note - Because all optional arguments are character strings, verify any values
you enter with your LDAP system administrator to ensure that they are valid.
Invalid values cause LDAP search errors and might produce unexpected
results.
Step 2: From the virtual server context, run the following command to
disable the virtual server:
vsvr disable
Step 3: From the virtual server context, run the following command to add
the virtual server to the domain:
vsvr set domain ldap DOMAINNAME
DOMAINNAME specifies the domain name for the virtual server.
DOMAINNAME is the domain name you previously specified in
the NAS Gateway using the domain add ldap command.
Step 4: From the virtual server context, run the following command to
enable the virtual server:
vsvr enable
Step 5: From the virtual server context, run the following command to
verify the LDAP domain configuration and to connect to the LDAP
server:
domain verify ldap DOMAINNAME
DOMAINNAME specifies the LDAP domain name for the virtual
server. DOMAINNAME is the domain name you previously
specified in the NAS Gateway using the domain add ldap
command.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
3-19
Note - The domain that you are adding needs to exist before running this
command because the NAS Gateway attempts to register with the domain
controller when this command completes.
After you have added the NAS Gateway to a NIS domain, you can add virtual servers
associated with the NAS Gateway to the NIS domain with the vsvr set domain
command.
To Add the NAS Gateway to a NIS Domain
Step 1: From the NAS Gateway context, run the following command:
domain add nis DOMAINNAME IPADDR
Options and
Description
Arguments
DOMAINNAME Specifies the name of the LDAP domain that is used for
authentication. Enter an alphanumeric character string of up to
63 characters. Do not use restricted characters such as *,~,?,
and !.
Step 2: From the virtual server context, run the following command to
disable the virtual server:
vsvr disable
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
3-20
Step 3: From the virtual server context, run the following command to add
the virtual server to the domain:
vsvr set domain nis DOMAINNAME
DOMAINNAME specifies the domain name for the virtual server.
DOMAINNAME is the domain name you previously specified in
the NAS Gateway using the domain add nis command.
Step 4: From the virtual server context, run the following command to
enable the virtual server:
vsvr enable
Note - When a NIS domain is configured for a virtual server, client host name
resolution occurs through a NIS server, not through the DNS resolver. With
local NIS maps, no NIS server exists for the virtual server, so client host name
resolution does not occur for the virtual server. Therefore, configure DNS on
each virtual server that is using local NIS maps.
Step 5: From the virtual server context, run the following command to
verify the NIS domain configuration:
domain verify nis DOMAINNAME IPADDR [IPADDR]
Options and
Description
Arguments
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
3-21
Note - The domain that you are adding needs to exist before running this
command because the NAS Gateway attempts to register with the domain
controller when this command completes.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
3-22
[-k KRBDOMAINNAME] This option needs to be set for adding a Kerberos domain
only.
[-t CLOCKSKEW] Max. clock skew value in minutes. This option can be
specified only with -k option. Clock skew ranges from 1 to
9999 minutes.
Default value is 5 minutes. All clocks must be
synchronized.
Step 2: From the virtual server context, run the following command to
disable the virtual server:
vsvr disable
Step 3: From the virtual server context, run the following command to add
the virtual server to the domain:
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
3-23
Options and
Description
Arguments
DOMAINNAME Specifies the name of the Windows domain that you are setting
for the virtual server.
[-o ORGUNIT] Specifies the organizational unit in which the computer object
for the virtual server should be created. This option can be set
only for a Kerberos domain.
Step 4: From the virtual server context, run the following command to
enable the virtual server:
vsvr enable
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
3-24
• User (object class, attribute name for the user name, attribute name for the user ID,
and attribute name for the user password)
• Group (object class, attribute name for the group name, attribute name for the
group ID, and attribute name for the group member)
• Netgroup (object class, attribute name for the netgroup name, attribute name for
the netgroup triple (user, host, and domain), and attribute name for the netgroup
member)
• Host (object class, attribute name for the host’s canonical name, attribute name for
the hosts’s alias names, attribute name for the host’s IP address)
To Display the Schema of a Configured LDAP Domain
• Run the following command:
domain show ldap schema DOMAINNAME
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
3-25
If the scope is not specified or is not BASE, ONE, or SUB, the default scope is
SUB.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
3-26
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
3-27
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
3-28
Options and
Description
Arguments
user The user schema. In the user schema you can modify the user
object class, the user name, the user ID number, and the user
password.
group The group schema. In the group schema you can modify the
object class, the group name, the group ID number, and the
group member ID.
netgroup The netgroup schema. In the netgroup schema you can modify
the object class, the netgroup name, the netgroup triple (user,
host, domain), and the netgroup member ID.
host The host schema. In the host schema you can modify the object
class, the host name, and the host’s IP address.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
3-29
Options and
Description
Arguments
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
3-30
Options and
Description
Arguments
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
3-31
Options and
Description
Arguments
DOMAINNAME Specifies the name of the domain that you are modifying. Enter
an alphanumeric character string of up to 63 characters. Do not
use restricted characters such as *,~,?, and !.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
3-32
Options and
Description
Arguments
LOGINUSER Specifies a user name that will be used to contact the domain
controllers by using an alphanumeric character string. This
argument is applicable only to Windows domains.
[-t CLOCKSKEW] Specifies the maximum clock skew value in minutes. This
option can be specified only if the domain was created with -k
option. Clock skew ranges from 1 to 9999 minutes. Default
value is 5 minutes.
2. Remove domain from the NAS Gateway by using the domain delete command.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
3-33
Note - If you want to change the domain definition on the NAS Gateway, you
can delete the domain and reconfigure it. However, a more efficient way to
change a domain definition is through the domain modify command.
Note - You need to repeat steps 2 and 3 for every virtual server in the cluster
that were joined to the domain before you can delete the domain at the NAS
Gateway context.
Options and
Description
Arguments
ldap|nis|windows A list from which you specify one domain type at a time.
DOMAINNAME Specifies the name of the domain that you are deleting.
Step 4: From the virtual server context, run the following command to
enable the virtual server:
vsvr enable
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
3-34
Note - A domain cannot be removed from the NAS Gateway unless there are
no virtual servers associated with the domain.
Options and
Description
Arguments
ldap|nis|windows A list from which you specify one domain type at a time.
DOMAINNAME Specifies the name of the domain that you are deleting. Enter an
alphanumeric character string of up to 63 characters. Do not
use restricted characters such as *,~,?, and !. For Windows
domains, this is the NetBIOS Windows domain name.
Note - The management virtual server is always in unprotected mode and the
vsvr set protected command does not affect the management virtual
server.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
3-35
Step 2: (Optional) You can check the virtual server’s mode by running the
vsvr show command with the virtual server’s name. The ID field
shows the mode as protected. If the ID field shows only the
numerical ID, the virtual server is in unprotected mode.
Note - Configuring the WINS server address for a virtual server is optional.
With the vsvr set wins command, you can specify the IP address of the WINS server
that a virtual server should use. You can specify the WINS server addresses for a
virtual server only if the virtual server is in the disabled state. You can put the virtual
server into disabled state by running the vsvr disable command. For details, see
“Enabling and Disabling a Virtual Server” on page 3-45.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
3-36
Options and
Description
Arguments
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
3-37
Note - You can add additional NetBIOS names to the virtual server with the
cifs server add command. See the ONStor 2200 Series NAS Gateway
Command Reference for details on how to use this command.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
3-38
Part of the vsvr set autocreate command is a file path. For a share with the user’s
name to appear in the Shares List, a directory with the same name must exist in the
path.
The autocreated shares feature has the following considerations:
• You can run the vsvr set autocreate command only when the virtual server is in
the disabled state.
• The volume you specify must be read-writable.
• The volume containing home directories must already be created.
• The path to the home directories must already be configured in the file system on
the home directory’s volume.
• You need to have a home directory for each user.
• The user’s home directory name must be the same as the user’s Windows login.
• If a user logs in with a different name, the user can directly connect to the home
directories of other users. For example, user “paulw” can connect to the home
directory of “johndoe” even though this share is not listed by default for “paulw.”
After a user has connected to another user’s home directory share, this share is
listed in the connected user’s Shares List as long as the user remains connected to
that share. For example, “paulw” will see a share called “johndoe” while listing the
shares in the same virtual server, but only for as long as “paulw” is connected to
the “johndoe” share.
Before configuring a virtual server with the autocreated shares utility, ensure that a
volume with user home directories exists. For more information about creating
volumes, see “Managing Volumes and File Systems” on page 6-1.
Before configuring a virtual server with the autocreated shares utility, gather the name
of the volume where the home directories exist, and the path to the users’ home
directories.
Note - The user home directory structure must match the file path you enter
when configuring the virtual server’s autocreated shares utility.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
3-39
Options and
Description
Arguments
PATHNAME Specifies the absolute path to the directory in which the user
home directories are configured, for example:
\users\local\homes. Use an alphanumeric character string
from 1 to 15 characters. You do not need to specify the user
name as part of the path. The NAS Gateway discovers the user
name from the user’s login and uses the name to determine
which home directory is shared with which user.
Example:
vsvr set autocreate testvol \user\local\homes
This argument takes the file path to the directory where user
home directories are configured. The NAS Gateway prefixes
the volume to the file path. When the user logs into the domain,
the user name from the login is automatically appended to the
end of the volume and file path, resulting in the creation of the
entire share to each user’s home directory.
Note - You do not need to specify the user name in the file
path.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
3-40
Note - You can delete the autocreated shares utility at any time. However, if
you delete the autocreated shares utility while the virtual server is enabled, the
change does not take effect until you have disabled, and then re-enabled the
virtual server.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
3-41
Before you begin configuring a virtual server for any of these environments, you need
prerequisite information. Table 3-4: lists the prerequisite information you need for
each environment before you start configuring a virtual server for it.
Decide whether you want the virtual server CIFS, NFS, and mixed CIFS-NFS
configured in protected mode for failover to
a different NAS Gateway. See “Creating a
Virtual Server and Performing Basic Setup”
on page 3-7.
Decide what the virtual server’s name will CIFS, NFS, and mixed CIFS-NFS
be. By default, the virtual server’s name
and the NetBIOS name are the same, but
you can change the virtual server’s name or
the NetBIOS name later.
Gather the IP addresses you want assigned CIFS, NFS, and mixed CIFS-NFS
to the virtual server. Each virtual server can
be configured with a maximum of 32 IP
addresses. These IP addresses are
assigned to the virtual server itself.
Gather the Windows domain and user CIFS and mixed CIFS-NFS
names. The virtual server uses the
Windows domain.name.
Gather the name of the LDAP domain the NFS and mixed CIFS-NFS
virtual server will join.
Gather the name of the NIS domain the NFS and mixed CIFS-NFS
virtual server will join.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
3-42
Decide if the virtual server will support CIFS and mixed CIFS-NFS
home directories. See “Configuring a Virtual
Server with the Autocreated Shares Utility”
on page 3-37.
To configure and activate a virtual server for a NFS, CIFS, or multiprotocol file
system protocol, follow the steps outlined in the following procedure. Steps for CIFS
only or NFS only file system protocols are specifically noted as such. All other steps
apply to either CIFS, NFS, or multiprotocol file system environment setup. Follow the
steps as required, depending on the type of file system protocol you want to set up.
To Configure and Activate a Virtual Server for an NFS, CIFS, or
Multiprotocol File System Protocol
Step 1: If you are configuring a virtual server for the CIFS file system
protocol, specify any WINS servers that the virtual server should
use by running the vsvr set wins command. For example, to
specify that the virtual server use the primary WINS server at
33.44.55.5, and the secondary WINS server at 33.44.55.66, enter
the command as shown:
vsvr set wins 33.44.55.5 33.44.55.66
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
3-43
Step 3: If you are configuring a virtual server for a CIFS file system
protocol, specify the Windows domain in which the virtual server
will register by running the vsvr set domain command.
For example, to set the Windows domain “effigy” with the login
administrator name “onstor”, run the command as shown:
vsvr set domain windows effigy onstor
You also need to specify the password for the administrator
“onstor”.
Note - DNS is supported through the vsvr set domain windows command.
Step 4: If you are configuring a virtual server for an NFS file system
protocol, specify the NIS domain in which the virtual server will
register by running the vsvr set domain command.
For example, to set the NIS domain “tiamat”, run the following
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
3-44
command:
vsvr set domain nis tiamat
Step 5: Add an interface that supports IP connectivity and a route to the
domain controller by running the interface create command.
For example, to create an interface on fp.0 and logical port lp.0 to
the domain controller 10.2.128.141 with mask length of 24, run
the following command:
interface create fp.0 -l lp.0 -a 10.2.128.141/24
Step 6: Run the vsvr show command to verify the virtual server’s
configuration, and check that you have assigned the resources to
the correct virtual server.
For example, to check the virtual server configuration of
“pubstest,” run the following command:
vsvr show pubstest
• If the virtual server configuration is not correct, you can rerun
commands to delete and reconfigure, or modify, the parts of
the virtual server that need correcting. Configure virtual
server setup parameters while the virtual server is disabled. At
this point, the virtual server is still disabled.
• If the virtual server configuration is correct, proceed to the
next step.
Step 7: Enable the virtual server in runtime, by running the vsvr enable
command from the virtual server context:
vsvr enable
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
3-45
Enabling a virtual server, does not require the virtual server to have any resources
configured, such as IP interfaces, volumes, or shares.
To Enable the Virtual Server Configuration
• Run the following command from the virtual server context:
vsvr enable
New or changed virtual server parameters become active when you run this command.
You can disable individual virtual servers by running the vsvr disable command.
Disabling a virtual server is important for the following functions:
• Changing the setup configuration of a virtual server.
• Adding the virtual server to a domain with the vsvr set domain command.
To Disable a Virtual Server
• Run the following command from the virtual server context:
vsvr disable
Displaying DNS Name Resolution for a Virtual Server
You can display details of DNS configuration by running the system dnsconfigure
show command from the context of the virtual server. This command show hosts and
resolver configuration details of the virtual server.
Configuring DNS Name Resolution for a Virtual Server
The NAS Gateway supports DNS name resolution for virtual servers through a hosts
database specific to each virtual server. The NAS Gateway also supports a specific
DNS resolver configuration for each virtual server.
DNS is configured on a per-virtual server basis. This includes the management virtual
server. For example, for autosupport to work, you need to configure DNS for the
management virtual server.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
3-46
addresses. When the text editor is closed, the mapping you created is saved and name
resolution can begin for the devices you added to the DNS hosts database.
To Configure a DNS Entry in the Hosts Database
Step 1: Run the following command:
system dnsconfigure hosts
This command starts the vi editor for the hosts database.
Step 2: When the editor is opened, you can enter the following information
separated by spaces or tab characters:
• Host IP address in dotted decimal notation
• An official host name
• An alias for the host name
Example:
192.168.10.101 rutile Server10
Note - When an NIS domain is configured for a virtual server, client host name
resolution happens through an NIS server, not through DNS resolver. With
local NIS maps, no NIS server exists for the virtual server, so client host name
resolution does not occur for the virtual server. Therefore, configure DNS on
each virtual server that is using local NIS maps.
The resolver configuration file contains a list of keyword/value pairs that provides
various types of resolver information. Valid keywords for editing the resolver
configuration file are:
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
3-47
• nameserver — Specifies the IP address of a name server for the resolver to query.
When the name server is found, the IP address of that name server is displayed.
You can specify up to three name servers, one per keyword. The resolver queries
them in the order listed. If a query times out, the query algorithm continues to
query each subsequent name server until the list of specified name servers is
completed. The query algorithm then repeats the query of the name servers on the
list for a maximum number of times.
• domain — Specifies the local domain name. Most queries for names within the
domain accept short names relative to the local domain.
• lookup — Specifies which database to search and in which order to search. Valid
keywords are: bind and file.
- If you specify bind only, the resolver search uses the domain server to
search IP address-to-DNS name bindings.
- If you specify file only, the resolver searches the hosts database.
Note - When you are resolving a host name within a virtual server context, the
NAS Gateway always checks the NIS domain for that virtual server first. This
is done automatically; you do not have to explicitly specify this in your query.
• search — Specifies a search list for host-name search. The search list contains a
domain search path following the search keyword with spaces or tabs separating
the names. The search list function supports a maximum of six domains and a total
of 1024 characters. Most resolver queries search each component of the search
path in turn until a match is found.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
3-48
Note - The search process can take a while if the servers for the listed domains
are not local. Queries will time out if no server is available for one of the
domains.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
3-49
Note - Even though virtual server names are displayed in uppercase, they are
case insensitive when entered at the command prompt. Therefore, you can
specify a virtual server name in uppercase or lowercase when you run any of
the vsvr commands.
Options and
Description
Arguments
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
3-50
Options and
Description
Arguments
all An optional keyword that enables you to list all virtual servers
configured in a cluster. When you specify the all keyword, the
runtime state of each virtual server is also listed in the output.
If you enter none of the optional arguments, all virtual servers configured on the
current NAS Gateway are displayed.
Note - If a failover occurs, you can locate virtual servers by running the vsvr
show command. This command executes on the local NAS Gateway by
default.
• If you run the vsvr show command, and the virtual server is
displayed, it resides on the local NAS Gateway.
• If you run the vsvr show command, and the virtual server is
not displayed, it is not currently on the local NAS Gateway.
Run the vsvr show all command to ensure that the virtual
server is still in the cluster. You can also run the vsvr show -
n NODE command against each NAS Gateway in the cluster,
where NODE is the node name of an NAS Gateway.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
3-51
Note - This command is cluster aware, so when you run the command, you can
change context to any virtual server in the cluster regardless of the NAS
Gateway on which the virtual server resides.
You can verify that the vsvr set command has completed by looking at the command
prompt after you run the command:
• If the command completes against an existing virtual server, the command prompt
contains the name of the new virtual server, and you are in the context of the new
virtual server.
• If the command does not complete, the command prompt displays the name of the
virtual server from which you ran the command, and you are still in the context of
that virtual server or you are still in the cluster context (where the command could
also have been run from).
To Change From One Virtual Server to Another Virtual Server
• Run the following command:
vsvr set VIRTUALSERVER
VIRTUALSERVER is an alphanumeric character string from 1 to 15
characters.
Note - You do not have to run the vsvr clear command before changing
virtual server contexts.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
3-52
This command does not delete a virtual server or release any resources configured
within a virtual server. Instead, when you run this command, you return to the NAS
Gateway context.
Note - Virtual server names are case insensitive, so the name vs1 is the same as
the name VS1.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
3-53
vsvr disable
Step 2: Change the name of the virtual server by running the following
command:
vsvr set name generic NAME
NAME is the new name that you are setting on the virtual server.
Step 3: Re-enable the virtual server by running the following command:
vsvr enable
Note - The NetBIOS name of the virtual server won't change when you rename
the virtual server. To modify the NetBIOS name, see the vsvr set name
netbios command.
• Know the name of the NAS Gateway that will own the virtual server after the
move. This NAS Gateway is called the destination NAS Gateway in the following
procedure. You can display the NAS Gateway’s name by running either the
cluster show group or vsvr show all command.
• Ensure that the IP subnets for the virtual servers you are moving are accessible
from the destination NAS Gateway.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
3-54
• Ensure that the destination NAS Gateway has one or more logical ports with the
same name as the logical ports used by the virtual server’s interfaces. The admin
and operational state of the logical ports must be UP.
• Ensure that the destination NAS Gateway has access to each volume owned by the
virtual server.
• You cannot move virtual servers to a NAS Gateway in another cluster.
You can move a virtual server by running the vsvr move command. When the vsvr
move command completes, the virtual server configuration, the IP interfaces, volumes,
and shares configured on the virtual server are retained, but relocated to the destination
NAS Gateway. After the move completes, the virtual server is in the enabled state.
To Move a Virtual Server Between NAS Gateways
Step 1: Verify the virtual server’s name and state by running the
following command:
vsvr show all
Step 2: Specify and set the virtual server you want to move:
vsvr set VIRTUALSERVER
Step 3: To move the virtual server, run the following command:
vsvr move -f DSTNASGATEWAY | -g DSTGROUP
Options and
Description
Arguments
-f DSTNASGATEWAY Specifies the destination NAS Gateway that you want to move
the virtual server to.
-g DSTGROUP Specifies the destination NAS Gateway group that you want to
move the virtual server to.
Step 4: Verify that the virtual server has been moved to the correct NAS
Gateway:
vsvr show all
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
3-55
Note - Virtual servers do not have to be in protected mode for manual load
balancing
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
3-56
Options and
Description
Arguments
-i SECONDS Enables you to set a refresh interval for gathering statistics. The
default refresh interval is 10 seconds.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
3-57
Note - You can execute the vsvr stats command without the keywords all
and agg only from within the context of the virtual server. If you are running
the vsvr stats command with the keywords all and agg, you need to be in the
virtual server context.
Note - The vsvr delete command is available from the NAS Gateway
context as well as a virtual server context. The context you are in when you run
this command affects whether you need to specify an argument.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
3-58
Step 2: Delete all volumes assigned to the virtual server, by running the
volume delete command against all volumes on the virtual server.
Note - If you have not yet deleted the shares, you can run the volume delete
command, and it will delete the shares as part of the volume deletion process.
Step 3: As an option, you can delete all interfaces assigned to the virtual
server, by running the interface delete command.
Note - If IP addresses are associated with the interface, remove them before
deleting the interface. You can use the interface modify command with the
-d IPADDR option to delete the IP address.
Note - The NAS Gateway requires at least one virtual server for processing
client I/O. Be sure not to delete the only virtual server in a cluster. If you do,
you will isolate clients from SAN resources.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
Chapter 4: Managing Storage and
Fibre Channel
This chapter contains the following sections:
• “Managing Storage Ports” on page 4-6
• “Managing LUNs” on page 4-9
• “Managing the SCSI Layer” on page 4-16
Disk LUNs
Logical unit numbers (LUNs) are unique identifiers in the SAN that represent granular
units of storage that the NAS Gateway can control. LUNs represent the disks that the
NAS Gateway needs to access for reading or writing. You cannot divide a LUN into
smaller parts.
LUNs are discovered through SCSI and FC topology discovery routines. After the
LUNs are discovered, the volume manager (VM) groups LUNs with specific
characteristics into storage pools. LUNs are grouped in the storage pool by
characteristics such as:
• Make
• Model
• RAID controller name
The VM can then create volumes out of the LUNs in the storage pools or leave LUNs
in the storage pools. The volume manager (VM) does not control tape drives. As
volumes are created, the NAS Gateway manages the assignment of resources out of
the pool automatically. During runtime operation of the volume, the NAS Gateway
tracks volume space usage and can automatically add new LUNs through the ONStor
AutoGrow™ feature if more space is required in the volume. The AutoGrow feature
selects only the allocatable LUNs that have the correct parameters. For example, you
would get only LUNs that have the same RAID level, make, model, or that were from
the same controller. You can configure LUN parameters for the AutoGrow feature.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
4-2
Free LUNs
Free LUNs are available to the NAS Gateway, but they have not been used for volume
space. The NAS Gateway recognizes free LUNs by a label that you can instruct the
NAS Gateway to put on each LUN. Free LUNs reside in the storage pool and are
available for creating new volumes or for assignment to volume space if the NAS
Gateway’s automatic resizing feature determines that a volume needs to grow.
Foreign LUNs
Foreign LUNs are not available to the NAS Gateway. The NAS Gateway typically
considers LUNs foreign for two reasons:
• The LUN is new and you have not yet made the LUN available to the NAS
Gateway.
• The LUN is in use by another vendor’s storage equipment.
However, you can convert foreign LUNs to free LUNs by making them explicitly
available. Foreign LUNs reside in the foreign LUN pool until you label them.
Out of Cluster
Out of cluster LUNs are recognized by one NAS Gateway as being claimed by another
NAS Gateway that is not in the same cluster. LUNs are only available to a NAS
Gateway if they are in the same cluster as the NAS Gateway.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
4-3
Initial Boot
At initial boot, the FC protocol discovers the storage devices attached to the NAS
Gateway, the connection types they are in, and how they can be accessed. The NAS
Gateway discovers characteristics about each physical device, such as its World Wide
Name (WWN), LUN ID, and relevant number of data blocks for each LUN
discovered. After the initial discovery is complete, any LUN that is added or deleted
from an array requires an operator intervention before the changes become known to
the NAS Gateway. Once a LUN has been added to the NAS Gateway for use by the
file system, care must be taken not to alter the device’s number of blocks. Never
increase or decrease the number of blocks a LUN exports for use after the discovery
completes. This information is passed to other software entities that process the
physical device information for use by volumes or file systems.
Note - The NAS Gateway’s storage software does not discover whether blocks
are used.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
4-4
can detect the available LUN devices, a SAN topology event must take place. This
event will start the LUN discovery in motion for the topology change. When
adding or deleting LUN devices from a target device, operator intervention will be
required before the NAS Gateway will register the changes.
- In the case of Target/LUN discovery, there is one exception to the rule.
If a target does not export a LUN zero, the NAS Gateway will
periodically probe the target device for any changes in the number of
LUN devices exported for use. This probe will only detect newly
exported LUN devices, and add them to the NAS gateway. This will
not detect deleted LUN devices or LUN devices that have changed in
size. For that to take place, operator intervention is required. See
“Managing the SCSI Layer” on page 4-16.
• After the target and LUN devices are discovered and registered, you need to label
them to make them available to the NAS Gateway. After you label the LUN, the
VM adds the LUN to its database of LUNs. The NAS Gateway does not
automatically add this new resource to any part of available file system space. The
LUN remains empty of file system space until you use it to either resize an existing
volume space or create a new file system volume. Automatic resizing is initiated
by the VM. If the new LUN is intended to be part of a file system, perform
additional configuration as documented in “Managing Volumes” on page 6-5.
Note - Never resize an individual LUN after it is in use by the file system.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
4-5
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
4-6
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
4-7
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
4-8
When you disable the storage port, you are not automatically setting it into a state of
inactivity. The storage port is only disabled, not in DOWN mode. When the port is
disabled, it is unable to support a physical layer link.
To Enable a Storage Port
• Run the following command:
port enable PORT
PORT is one of the NAS Gateway’s storage ports. For example,
sp.2 would enable storage port 2 on the SP element. You can also
specify the keyword all to enable all ports.
To Disable a Storage Port
• Run the following command:
port disable PORT
PORT is one of the NAS Gateway’s storage ports. For example,
sp.2 would enable storage port 2 on the SP element. You can also
specify the keyword all to enable all ports.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
4-9
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
4-10
Managing LUNs
The NAS Gateway discovers and manages LUNs automatically through the FC and
SCSI protocols. This section details the LUN management functions available on the
NAS Gateway.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
4-11
Options and
Description
Arguments
DEVICE_NAME Specifies the name of the controller for the LUN. For example,
IBM_KPZ0B663_0 indicates the RAID controller for which you
want to display all the associated LUNs.
-n NODE An optional argument that allows you to sort the output of the
lun show device command by NAS Gateway node name.
This option is only applicable to a clustered environment.
• If you enter a node name, the lun show device
command is run for all LUNs associated with a device on
the specified NAS Gateway.
• If you do not enter a node name, the lun show device
command is run for LUNs associated with a device on the
local NAS Gateway, which is the NAS Gateway on which
you run the command. By default, the lun show device
command executes on the local NAS Gateway.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
4-12
Options and
Description
Arguments
Options and
Description
Arguments
PORT Specifies the storage port on which you are displaying the configured
LUNs. Use an alphanumeric character string.
-n NODE An optional argument that specifies the node. Only devices that are
accessible on the specified node are displayed.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
4-13
Options and
Description
Arguments
Options and
Description
Arguments
-r RAID_LEVEL An optional argument that enables you to filter the output of the
lun show disk command by RAID level.
-t STATE An optional argument that enables you to filter the output of the
lun show disk command by LUN state: free, foreign, used, or
outCluster.
-n NODE An optional argument for filtering the LUN list by node name. Only
devices that are accessible on the specified node are displayed.
The default value is local.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
4-14
Note - A LUN must have the ONStor label for the NAS Gateway to be able to
virtualize and use the LUN.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
4-15
Options and
Description
Arguments
DEVICE_NAME Specifies the device name of the LUN that you want to label.
Note - This is intrusive and immediate. It can write a label on a LUN that
is owned by other NAS Gateways or other clusters. When a label is forced
onto a device, it can destroy volumes or data.
Note - You can view the device’s RAID level by running the lun show
command. If the value in the Raid Level field is None, then the LUN can
be labeled and simultaneously assigned a RAID level.
-c CLUSTERNAME An optional argument that enables you to selectively label the LUN
as part of a different cluster.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
4-16
To Unlabel a LUN
Note - You can unlabel free LUNs only. When a free LUN is unlabeled, it
becomes a foreign LUN. Foreign LUNs are not available to the NAS Gateway
and cannot be used for automatic volume space growth.
Step 1: Run the following command and note the device name of the
LUN that you want to unlabel:
lun show all
Step 2: Run the following command to remove the label from the LUN:
lun unlabel DEVICE_NAME
DEVICE_NAME is the identifier of the LUN that you want to
unlabel. The DEVICE_NAME argument is the controller’s device
name plus the LUN ID of the LUN.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
4-17
Options and
Description
Arguments
sp.0|sp.1|sp.2|sp.3 Selects the storage port on which you want to perform SCSI
device discovery. You can specify only one port at a time.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
4-18
Warning - Never change the number of blocks exported by a LUN device after
the LUN device is in use by the NAS Gateway file system.
Options and
Description
Arguments
• SCSI statistics by device with the scsi show stats DEVNAME command
• SCSI details by device with the scsi show detail DEVNAME command
• Worldwide names of SCSI devices’ ports’ with the scsi show arraywwn
command
To Display the SCSI Configuration
• Run the following command:
scsi show config
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
4-19
This command displays the following information about the current SCSI parameters
and the device counts for each of the NAS Gateway’s FC ports:
• The SCSI Configuration and Status Information section displays the state of the
Device-Path Failback feature. For more information about the SCSI failback
feature, see “Enabling or Disabling the Device-Path Failback Feature” on page 4-
22 and “Managing Device Path Failback” on page 4-22.
• The Device Counts section shows the devices opened on the enumerated ports and
the total number of devices discovered.
When the devices are first discovered, they are kept in the storage devices list. This list
contains all devices and displays configuration and state information about each
device, such as:
• Each device’s WWN
• Each device’s type and model number
• The storage port that each device is available through
• Each device’s state and RAID level supported
To Display the SCSI Devices Discovered by the NAS Gateway
• Run the following command:
scsi show (all | DISK | TAPE) [-P PAGENUMBER
[-S PAGESIZE]]
Options and
Description
Arguments
all Displays all discovered devices. This option displays the entire
storage devices list, including disk and tape devices.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
4-20
The NAS Gateway tracks the SCSI statistics for each identified SCSI device. The
statistics are counted in the SCSI statistics summary.
To Display the SCSI Statistics Summary
• Run the following command:
scsi show stats DEVNAME
DEVNAME is the alphanumeric character string that specifies the
disk or tape device that you want to display.
To Display Details About a SCSI Device
• Run the following command:
scsi show detail DEVNAME
DEVNAME is the name of the storage device for which you want
to display detailed information. Enter the device name of a disk or
tape device. You can find the device name by running the scsi
show all command.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
4-21
Gateway supports manual release operations. You can use the manual release
whenever a tape drive cannot be opened or used.
To Invoke a SCSI Release of a Tape Device
• Run the following command:
scsi release WWN LUN
Options and
Description
Arguments
WWN Specifies the world wide name of the storage device that you want to
release.
LUN Specifies the LUN of the storage device that you want to release.
Note - You can obtain a device’s WWN and LUN ID by running the scsi
show detail command against a device name. For example, scsi show
detail IBM_ECV3HM0B_0. At the bottom of the resulting output, you will see
the WWN and LUN ID field.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
4-22
Note - The port setting you assign through the scsi move command is not
persistent, so the port usage that you set is affected by a reboot.
Options and
Description
Arguments
DEVNAME Specifies the device name of the SAN device that you want to move.
sp.0|sp.1 Specifies the storage port to which to move the device. You can only
specify one port at a time.
Step 4: Run the scsi show all command and check the DEVNAME and
PORT fields of the resulting list to verify that the appropriate
devices have been moved to the appropriate ports.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
4-23
Options and
Description
Arguments
enable Sets the device path used when service restores after a failure to be
the preferred path that had been originally set. This command affects
all devices on a single NAS Gateway. enable is the default setting.
disable Sets the device path used when service restores after a failure to be
whatever the NAS Gateway finds upon restart during the discovery
process. This command affects all devices on a single NAS Gateway.
In this case, if the storage administrator wants to use the original path,
the original path must be configured at the command prompt by
running the scsi move command.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
4-24
Note - You can manually override the automatic primary path selected with the
scsi move command. For details on how to use this command, see “Moving
SCSI Devices to a Specific Storage Port” on page 4-20.
If the primary path fails, the SDM automatically selects a new path from a list of
alternate paths and directs device I/O to that path. When the SDM moves the device
I/O to the new path, it attempts to maintain load balancing across the available NAS
Gateway ports.
When the primary path is available again, the SDM automatically detects the restored
primary path and reverts the device back to it. You also can move the device back to
the primary path manually by running the scsi move command.
Note - Primary and alternate path configurations are lost during a device
reboot.
You can enable or disable the device path failback feature with the scsi failback
enable|disable command. This command enables or disables the device path
failback feature for all devices connected to a single NAS Gateway.
By default, the device path failback feature is enabled in the NAS Gateway.
To Disable Device Path Failback
• Run the following command:
scsi failback disable
You can check the device failback status of all devices connected to a single NAS
Gateway along with additional device configuration information by running the scsi
show config command.
You can check the device failback status and other configuration details of an
individual device by running the scsi show detail DEVNAME command. For details
see “Releasing a Reserved Tape Device” on page 4-19.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
Chapter 5: Working with Network
Interfaces
This chapter contains the following sections:
• “Working with Network Protocols” on page 5-2
• “Working with Management Interfaces” on page 5-4
• “Working with Logical Ports” on page 5-12
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
5-2
Note - Though the NAS Gateway supports IP and IP-based protocols, it does
not perform any routing of network traffic from other IP devices. The NAS
Gateway supports limited static routing for packets originating from the NAS
Gateway.
The NAS Gateway’s IP protocol stack operates mainly on the file processing (FP)
Gigabit Ethernet ports and allows the physical and logical connection to IP-connected
clients.
The NAS Gateway’s routing functionality is used to transmit and receive packets
using UDP or TCP. The NAS Gateway supports Internet Control Message Protocol
(ICMP) for tracking the connectability of hosts and the communication status of
datagrams. Address Resolution Protocol in the NAS Gateway.
The NAS Gateway supports keep alive, traceroute, and ping packets to verify that
nodes are online, and connections are available to carry data and metadata. The NAS
Gateway can initiate ping and traceroute packets and receive them from a host.
For more information about sending pings, see “Pinging Another Device from the
NAS Gateway” on page 16-5. For more information about performing traceroutes, see
“Performing Traceroute to an IP Address” on page 16-5.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
5-3
For more information about adding static entries to the NAS Gateway’s ARP table, see
“Adding Entries to the ARP Table” on page 5-10.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
5-4
Options and
Description
Arguments
-a SPEC An optional argument that specifies the Gigabit Ethernet interface for
which to display information. If you do not specify a port, the entire
interfaces table is displayed for the NAS Gateway.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
5-5
Creating Interfaces
The NAS Gateway interfaces sc1 and sc2 are created automatically. As part of a
virtual server setup you can create interfaces for the virtual server using the
interface create command. For more information, see “Creating a Virtual Server
and Performing Basic Setup” on page 3-7.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
5-6
Options and
Description
Arguments
Note - Configuring the MTU size to a value that is not supported by the switch
and network can cause unexpected behavior or loss of service.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
5-7
Options and
Description
Arguments
MTU Specifies a numerical value, in bytes, that sets the MTU size for
unfragmented packets on the port. Specify an MTU size between 1500
and 16384 bytes. The default MTU size is 1500 bytes. You can set
different MTU sizes on different ports.
PORT Specifies the port on which you are setting the MTU size.
Adding a Route
You can configure routes at the NAS Gateway level or at the virtual server level. When
you add a route, the route is added to the appropriate route table. Routes remain in
either the NAS Gateway’s route table or a virtual server’s route table until you remove
them.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
5-8
Options and
Description
Arguments
-g IPADDR Specifies the address of the gateway router for the route. For
example, 192.168.0.1.
-a IPADDR/MASKLEN Specifies the route and the mask length in bits that you’re
adding. For example, 10.20.30.0/16.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
5-9
Options and
Description
Arguments
-a IPADDR/MASKLEN Specifies the IP address and mask length, for the route table
you want to display. For example, 10.20.30.0/24.
Removing a Route
You can remove a static or default route from the route table at any time. You can
remove routes from either the virtual server’s route table or the NAS Gateway’s route
table.
To Remove a Route From the Route Table
• Run the following command.
route delete {net|default} -g IPADDR
[-a IPADDR/MASKLEN] [-n NODE]
Options and
Description
Arguments
-g IPADDR Specifies the address of the gateway router for the static route.
-a IPADDR/MASKLEN Specifies the static route and mask length in bits that you are
deleting, for example, 10.20.30.0/24.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
5-10
Options and
Description
Arguments
IPADDR Specifies the IP address of the ARP entry you are adding.
The ARP table contains all the resolved ARP transactions for all interfaces in the NAS
Gateway or a virtual server. When you view the ARP table, you see manually added
entries as well as dynamically added entries. You can view the ARP table for the NAS
Gateway or for a virtual server depending on what context you are in.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
5-11
To View the ARP Table for the NAS Gateway or a Virtual Server
• Run the following command:
arp show [-a IPADDR] [-n NODE]
Options and
Description
Arguments
Options and
Description
Arguments
IPADDR Specifies the IP address associated with the ARP entry that you
want to remove.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
5-12
Note - After setting the port preference, the preferred port becomes the active
port for the logical port as long as the preferred port is UP. For more
information about setting the link preference, see “Setting Path Preference for
a Logical Port” on page 5-24.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
5-13
• In aggregation mode, all physical links in the logical port are considered active and
carry traffic simultaneously. In link-aggregated configuration, the traffic is load
balanced across all physical links that are associated with the logical port. Link
aggregated mode provides redundancy by load balancing traffic across remaining
active links if one link goes into the DOWN state.
• In single mode, only one physical port exists. It can be used as a way to rename the
default logical port.
NAS Gateway
Virtual Server “Eng” Virtual Server Virtual Server
CIFS/NFS CIFS/NFS CIFS/NFS
Interfaces
Logical Ports
Link Layer
Physical Ports
Figure 5-1 NAS Gateway Network Stack Showing Logical Port Layer
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
5-14
As shown in Figure 5-1, logical ports exist at the NAS Gateway level and are
associated with virtual servers. Because the interface is associated with the virtual
server, it fails over to a new NAS Gateway whenever the virtual server fails over.
However, the logical ports themselves belong to the NAS Gateway and do not fail
over. Therefore, for a virtual server to successfully fail over from one NAS Gateway to
another, the new NAS Gateway should have all logical ports required by all the
interfaces in the virtual server. During a virtual server failover, the NAS Gateway
checks for the following:
• The existence of a logical port with required names
• The link state of the logical port
The NAS Gateway does not check the logical port’s mode (single, failover, or
aggregation).
Table 5-5 and Table 5-6 are examples of two NAS Gateways (A and B) in which the
logical port configuration is not viable for virtual server failover.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
5-15
In the previous configuration, vs-2 can run on NAS Gateway A. It cannot be failed
over to NAS Gateway B because logical port lp2 does not exist on NAS Gateway B.
For successful virtual server failover, make sure that all NAS Gateways have logical
ports with the same name. There is no restriction on the type of logical port and the
physical port contained in the logical port, which relaxes wiring/cabling requirements.
Consider the following example of two NAS Gateways, A and B. Table 5-7 and
Table 5-8 list the logical port configuration of each NAS Gateway.
Table 5-7: Logical Port Configuration on NAS Gateway A
On NAS Gateway A, ports fp.0 and fp.1 are connected to network1 whereas on NAS
Gateway B fp.0 and fp.1 are connected to network2.
On NAS Gateway A, lp1 is in failover mode whereas on NAS Gateway B lp1 is of
type aggregate.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
5-16
Note - If a port on the NAS Gateway changes to the DOWN state, it does not
transition to the UP state unless the state of autonegotiation on the NAS
Gateway matches the state of autonegotiation on the peer device on the link.
For example, if a port goes offline, and the port’s autonegotiation state is set to
OFF when the peer device on the other end of the link has autonegotiation set
to ON, the NAS Gateway’s port does not come back online because of this
mismatch.
Ensure that the port and peer device are both set to the same autonegotiation
state. To set the autonegotiation state of a port, run the port autoneg
command.
The lport create command must have at least one default port. The command
cannot have more than:
• Four default logical ports for a standard logical port.
• Four logical ports for a stackable logical port.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
5-17
Options and
Description
Arguments
-a PORTS Specifies the default logical ports that are being created. You
can specify multiple default logical ports by separating them
with commas, for example, fp.0,fp.1. The -a PORTS argument
must have at least one default logical port specified, but no
more than four.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
5-18
Note - Logical ports have been tested for interoperability with Cisco Systems
3500, 4000, and Extreme Networks 5i and 7i series switches only.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
5-19
interface GigabitEthernet0/1
port group 1
!
interface GigabitEthernet0/2
!
interface GigabitEthernet0/3
!
interface GigabitEthernet0/4
!
interface GigabitEthernet0/5
!
interface GigabitEthernet0/6
port group 1
!
interface GigabitEthernet0/7
!
interface GigabitEthernet0/8
!
The switch’s port 1 and port 6 have been configured as part of a
port group. Therefore, the switch distributes the traffic on these
two output links based on the source media access control (MAC)
address of the clients.
Step 2: On the NAS Gateway, create the logical ports in aggregation mode
by running the lport create command. For example, to create a
logical port named “lp1.0” on the NAS Gateway and associate
physical ports to the logical port, you would enter:
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
5-20
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
5-21
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
5-22
Connect to 2 switches
for failover
Figure 5-2 Configuring a Failover Logical Port out of Child Logical Ports
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
5-23
Note - Not all combinations of logical ports are permitted. Currently the
following restrictions apply to forming a logical port using other logical ports:
• To form a single logical port, use only the ports fp1.0 through fp1.3.
• To form an aggregate logical port, use single ports only.
• Do not use failover ports to form a failover logical port
• Parent logical ports can only be in failover mode. Children
ports can only be in single or aggregation mode.
Options and
Description
Arguments
LPORTNAME Specifies the name of the logical port you are adding by using
an alphanumeric character string.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
5-24
Options and
Description
Arguments
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
5-25
Options and
Description
arguments
LPORTNAME Specifies the failover logical port on which you are setting the
preferred link by using an alphanumeric character string.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
5-26
Options and
Description
Arguments
-m Determines the mode that you are setting on the logical port.
single|failover| • single configures the logical port with a standard single
aggregation port.
• failover causes the logical port to operate in failover mode.
By default, the NAS Gateway assigns the first logical port
configured as the preferred logical port. However, you can
change the preferred logical port by running the lport
prefer command.
• aggregation causes the logical port to operate in link
aggregation mode.
-a PORTS Specifies which ports are being added to or deleted from the
logical port. Ports can be default logical ports or user-defined
logical ports. If you specify multiple logical ports, separate them
with commas.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
5-27
Options and
Description
Arguments
Note - If you need to first delete the interfaces associated with the logical port,
you do so by running the interface delete command.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
5-28
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
Chapter 6: Managing Volumes and
File Systems
This chapter contains the following sections:
• “Introduction to Volumes” on page 6-2
• “Managing Volumes” on page 6-5
• “File System Statistics” on page 6-24
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
6-2
Introduction to Volumes
The NAS Gateway builds its file system from volumes that are created by LUNs. The
following types of volumes can exist on the NAS Gateway, depending on their use:
• File system volumes, also called standard volumes. This type of volume contains a
file system and provides the user a way to make their file system data accessible.
• Mirror volumes are used by the NAS Gateway’s Data Mirror mirroring
application. You can mount a mirror volume only as a read-only volume. For more
information, see “Working with ONStor Data Mirror” on page 13-1.
• Core volumes are used to receive and temporarily hold NAS Gateway core dumps
if the NAS Gateway crashes. The core volume is not mountable. Any core data is
copied from the core volume to the management volume from where you can
retrieve it. One core volume exists on each NAS Gateway. For more information,
see “Working with Core Dumps” on page 16-34.
• Management volumes exist within management virtual servers. This volume
provides a repository for temporary files (for example, during NDMP backup and
restore sessions), and for administrative tasks, such as receiving core dump files
when they are copied from the core volume. One management volume exists on
each NAS Gateway.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
6-3
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
6-4
Note - This step creates the management volume with default usage and
AutoGrow parameters, but you can configure custom parameters. For more
information about the volume usage and AutoGrow parameters, see “Creating
a Volume” on page 6-5.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
6-5
Managing Volumes
Although volumes and their associated physical storage and file systems are managed
automatically in runtime, you need to configure the volume space policy that the NAS
Gateway uses.
Creating a Volume
When creating and managing volumes, consider the following:
• Smaller volumes facilitate and expedite maintenance.
• Smaller volumes are more flexible and efficient for snapshots, mirrors, and other
file system services.
• Smaller and more focused volumes are more easily managed because the amount
of data contained in more focused volumes is less than in one larger volume.
Volumes are created within the context of a virtual server. To configure a volume, the
minimum required parameters are the volume name and the array or device name on
which it is configured. Additional parameters you can configure are disk usage
conditions for triggering the volume AutoGrow feature, and LUN characteristics for
creating or AutoGrow the volume with compatible LUNs.
Before creating a volume, ensure that the following conditions exist:
• One or more LUNs must be labeled. See “Labeling and Unlabeling a LUN” on
page 4-14 for details.
• A virtual server must exist because you create a volume within a virtual server. See
“Configuring a Virtual Server for a File System Protocol” on page 3-41 for details.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
6-6
Options and
Description
Arguments
VOLNAME Specifies the name of the volume you are creating. Volume
names can be any alphanumeric character string of up to 127
characters.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
6-7
Options and
Description
Arguments
-e SHAREDREAD An optional argument that specifies the state of the CIFS “no
shared read” open flag for the volume. This flag is read by NFS
requests, and the state you set affects whether NFS clients
can access files on the volume. You can set this variable to
allow or disallow. By default, the shared read is allowed.
Specify the shared read argument with the following
construction:
• -e sharedread=allow permits NFS requests to ignore
the “no shared read” flag. NFS requests are allowed, and
NFS clients are able to read files on the volume.
• -e sharedread=disallow causes NFS requests to
respect the “no shared read” flag. NFS requests are
not allowed, and NFS clients are not permitted to
read files on the volume.
-g MINAUTOGROW An optional argument that specifies the smallest amount of
storage that the volume can automatically grow if it needs
more space. Enter the volume’s absolute maximum size in
MB. If you set this argument to 0 there is no minimum limit, so
the NAS Gateway can get a chunk of disk space that is any
size. The default value is 500 MB.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
6-8
Options and
Description
Arguments
-j SECURITYSTYLE Controls the security style supported by the file system. When
creating a new filesystem object, any supplied security
information will be honored only if the filesystem security style
matches the style of the security information. Otherwise,
security information from the parent directory is inherited.
Possible values are: normal, nfs, cifs, and
cifsWithSilentNfsFailures.
• When set to normal, both NFS and CIFS security styles
are supported. While an object can have only one form of
security style at any point, it is set by the last protocol that
created or modified it.
• When set to nfs, setting CIFS ACLs will not be supported.
• When set to cifs, any attempt to change security
information by NFS will be ignored.
• When set to cifsWithSilentNfsFailures, any attempt to
change security information by NFS will appear to be
successful, but no change is made to the security
information.
-L LANGUAGE Specifies the language code that you are using to create the
volume. For a list of language codes, use the online help by
running the help volume create command.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
6-9
Options and
Description
Arguments
-r RAIDLEVEL An optional argument that specifies the RAID level of the LUNs
that will be used to create the volume. The NAS Gateway
supports RAID 0, 1, 0 + 1, 3, and 5. Specify the RAID level as
the word RAID plus a dash, then the RAID level. For example,
you would enter the strings “RAID-0+1”, “RAID-3”, or “RAID-5”
(minus the quotation marks) for the corresponding RAID
levels. By default, the NAS Gateway does not pay attention to
RAID level, it just builds the volume on the first available LUN
on the specified array. Therefore, if you want to create a
volume out of LUNs of a specific RAID level, you need to
specify the RAID level.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
6-10
Options and
Description
Arguments
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
6-11
Options and
Description
Arguments
VOLNAME Specifies the name of the volume to which you are adding an array.
Volume names can be a maximum of 127 characters.
ARRAY Specifies a list of controller names for one or more arrays from
which the volume will obtain its LUNs. You can enter a single array
name. Enter the controller names as shown in the lun show
command.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
6-12
Options and
Description
Arguments
ARRAY Specifies a list of device names that you will be deleting from the volume.
You can enter a single array name, or a comma separated array list up to
a maximum of eight arrays. Enter the device names as shown in the lun
show command.
Note - You cannot assign a volume that is already assigned to a virtual server.
To determine whether a volume is currently owned by a virtual server, run the
volume show command. If the Virtual Server column is empty, the volume
is not assigned to a virtual server.
Options and
Description
Arguments
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
6-13
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
6-14
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
6-15
you can explicitly bring the volume online by running the volume online
command. (See “Bringing a Volume Online” on page 6-19.)
• To change the -p NEWVOLNAME parameter, the volume must be offline. If the
volume is online, you can take the volume offline by running the volume offline
command. (See “Taking Volumes Offline” on page 6-18.)
• To change the -q HARDQUOTA, -s SOFTQUOTA, -g MINAUTOGROW, or -d
DEVICENAME (regardless of whether you are using -f) parameters, the volume
can be online or offline.
To Modify a Volume
• Run the following command:
volume modify VOLNAME [-A ATIMEUPDATES]
[-c CHARSUBST] [-d DEVICENAME][-e SHAREDREAD]
[-f] [-g MINAUTOGROW] [-h HIGHWATERMARK]
[-j SECURITYSTYLE] [-L LANGUAGE] [-o OPLOCKS]
[-p NEWVOLNAME] [-q HARDQUOTA] [-s SOFTQUOTA]
[-t CHARSUBSTTABLE]
Options and
Description
Arguments
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
6-16
Options and
Description
Arguments
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
6-17
Options and
Description
Arguments
-h HIGHWATERMARK An optional argument that specifies the trigger that causes the
volume space to grow by the amount specified in the
MINAUTOGROW argument. Enter the value as a percentage
of the total amount of currently allocated space. The NAS
Gateway uses the percentage of total used space to calculate
the actual amount of disk space required. Set the high water
mark to a value between 25% and 100%. If you set the value to
zero (0), then automatic volume space growth is disabled.
Default value: 0, no threshold is set for automatic volume space
growth.
-L LANGUAGE The language code that you are using to create the volume. For
a list of language codes, use the online help by running the
help volume create command.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
6-18
Options and
Description
Arguments
-p NEWVOLNAME An optional argument that specifies the new name that you are
assigning to the volume. When you set the new volume name
the name used in VOLNAME no longer applies.
-q HARDQUOTA An optional argument that specifies the hard quota, which is the
maximum size of the volume. Enter the volume’s absolute
maximum size in MB. Set this argument to 0 (the default) if you
want unlimited growth for the volume.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
6-19
Note - This command can be intrusive. Make sure that no one is currently
using the volume when you take the volume offline.
Note - When you bring an offline volume back online, the shares for the
volume become visible again in the list of shares.
Options and
Description
Arguments
VOLNAME Specifies the currently offline volume that you want to activate.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
6-20
Options and
Description
Arguments
-o MODE An optional argument that sets the access mode for the volume
when it is brought back online:
• -o ro allows read-only access when the volume comes
back online.
• -o rw allows read-write access when the volume comes
back online. Read-write access is the default.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
6-21
Options and
Description
Arguments
CLUSTERNAME Specifies the cluster from which you are importing the volume.
DESTVOLNAME An optional argument that allows you to rename the volume that
you are importing to the new virtual server. If you use this
option, the new name must be unique in the new cluster. If you
do not use this option, the volume is imported with its original
name if that name is not already in use in the new cluster.
Step 5: From the context of the virtual server that received the imported
volume, run the volume show command to verify that the volume
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
6-22
exists on the target virtual server. When you perform this step, the
newly imported volume’s state is offline.
Note - At this point, the volume can appear in both the original cluster and the
new cluster. If the source cluster or virtual server’s state is UP, the volume you
imported still appears in the original cluster until you bring the imported
volume online in the new cluster.
Step 6: From the context of the virtual server that received the imported
volume, put the volume into service by running the volume online
command.
Note - This step causes the volume in the source cluster or virtual server to
automatically go offline in the original cluster because all the LUNs have been
moved. At this point, the imported volume is no longer part of the original
cluster, so it cannot be brought online or managed through the original cluster.
Step 7: From the original cluster, run the volume delete command and
specify the name of the offline volume that has been moved. This
step deletes the offline volume from the source cluster.
Deleting a Volume
By deleting a volume, you delete the file system data on it, any share configured for
the volume, and release the disk space that was assigned to the volume.
To Delete a Configured Volume
Step 1: Run the following command to identify the volume you want to
remove:
volume show
Step 2: Run the following command to remove the volume:
volume delete VOLNAME
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
6-23
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
6-24
Options and
Description
Arguments
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
6-25
Options and
Description
Arguments
-n NODENAME An optional argument that displays the file system cache hash
statistics for a specific node. This is the default setting.
VOLNAME An optional argument that displays the file system cache hash
statistics for a specific volume.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
6-26
Options and
Description
Arguments
-n NODENAME An optional argument that displays the verbose cache statistics for a
specific node. This is the default setting.
VOLNAME An optional argument that displays the verbose cache statistics for a
specific volume.
Options and
Description
Arguments
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
6-27
Options and
Description
Arguments
-n NODENAME An optional argument that displays the file system I/O performance
statistics for a specific node. This is the default setting.
VOLNAME An optional argument that displays the file system I/O performance
statistics for a specific volume.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
6-28
Options and
Description
Arguments
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
6-29
Options and
Description
Arguments
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
6-30
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
Chapter 7: Managing Shares
This chapter documents setting up the NAS Gateway for CIFS, NFS, and
multiprotocol file sharing services. This chapter contains the following sections:
• “NFS Environment” on page 7-2
• “CIFS Environment” on page 7-6
• “Global Namespace (GNS)” on page 7-8
• “GNS Root Management” on page 7-10
• “Junction Management” on page 7-15
• “Virtual Directory Management” on page 7-18
• “Shares Management” on page 7-22
• “Multiprotocol Environment” on page 7-28
• “Configuring CIFS and NFS Shares and Services” on page 7-33
• “Managing NFS Shares” on page 7-46
• “Managing CIFS Shares” on page 7-50
• “Managing CIFS Wide Links” on page 7-56
• “Exporting and Importing Shares” on page 7-62
• “Managing ID Mappings” on page 7-66
• “Multiprotocol File Access Without Using NIS” on page 7-71
• “Working With Symbolic Links” on page 7-75
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-2
NFS Environment
The network file system (NFS) protocol is an industry-standard, file-access protocol
that is platform neutral. The NAS Gateway provides file-level services for NFS v.2
and NFS v.3 clients in IP networks. The NAS Gateway does not require NLM requests
on the share, but you can use the SECURE_LOCK option of the nfs share add
command to configure the requirement for NLM requests. See the ONStor 2200
Bobcat NAS Gateway Command Reference for details on how to use this command.
Figure 7-1 shows a typical configuration in which the NAS Gateway provides file
services for NFS clients in an IP data network.
Gigabit
Ethernet
W orkstation
Fibre Channel
NFS
Client
IP SAN
hub/router
W orkstation
NFS
Client
IBM Compatible
File Server
Consolidated NAS
IBM Compatible
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-3
Note - The EverON file system has no software restriction on the number of
nested directories when sharing. However, implicit practical limits exist, such
as buffer sizes, that can apply a limit to the number of levels for nested shares.
Share Permissions
Permissions indicate how resources are shared with client. The NAS Gateway
supports the following permissions on share:
• Controlling read-only access
• Controlling read-write access
• Controlling the root squash access
• Controlling root access
Sharing with Root Access
Root access enables the clients to access shared resources as the root user, UID 0. The
NAS Gateway supports up to 255 root hosts, and root access can be applied to subnets
and individual hosts.
The NAS Gateway responds to file system requests from hosts depending on what root
access options you have specified for shared resources. Requests can be accepted or
denied as follows:
• When you configure a host with root access on share, the root user on that host
keeps root level access (UNIX UID 0) when accessing the resource.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-4
• When you do not configure root access on share, either root access is denied or the
NAS Gateway performs a root squash, which modifies the root UID for the
request.
By default, the NAS Gateway’s root squash ID is 65534 for “nobody,” but supports
customizable root squash IDs through the ANON_UID and ANON_GID options. You
can configure these options on each NFS share.
Share’s Client List
The client list is the section of the nfs share add command that enables you to specify
one or more clients that are permitted to access the share. The client list supports
single clients, domains, netgroups, or all clients by including an asterisks (*) as a
wildcard.
Note - The maximum number of clients per client list is 16. The maximum
client string size is 255 characters.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-5
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-6
CIFS Environment
The Common Internet File System (CIFS) is a file access protocol that supports IP-
connected clients in a Windows environment. Figure 7-2 shows a typical configuration
in which the ONStor Bobcat 2200 Series NAS Gateway provides file services for
CIFS clients in an IP data network.
ONStor 2200 NAS Gateway Cluster
Gigabit FibreChannel
Ethernet
IP SAN
hub/router
IBM Compatible
Primary Windows
Workstation
Windows
98 Client Domain Controller
IBM Compatible
Windows
W orkstation W orkstation
Windows
Workstation
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-7
• The NAS Gateway supports Windows mandatory byte-range locking and network
lock manager (NLM) advisory byte-range locking. The NAS Gateway is aware of
each lock algorithm and ensures consistent operation of each lock method without
allowing the violation of either one. The NAS Gateway supports 2 million file
locks and 1.5 concurrent locked files.
Opportunistic locks (oplocks) increase network performance by allowing clients to
cache specific information in some file sharing situations. Because the client
retains necessary information in its cache, the client can perform read and write
operations on files without having to consult the server whenever it needs to access
a file. Oplocks are always enabled on the NAS Gateway. They cannot be disabled.
For details about using oplocks, see “Managing Volumes and File Systems” on
page 6-1.
Note - Because read, write, and lock information is cached on the client, events
such as cache flush messages, file close operations, oplock break messages, or
network errors on the client can negatively affect oplocks.
• The NAS Gateway supports symbolic links so that CIFS users can follow UNIX/
NFS symbolic links to their target. Symbolic links are a way of representing a real
directory path in a shorter and easier way to comprehend. For details on how to
manage symbolic links, see “Working With Symbolic Links” on page 7-75.
You can configure CIFS shares by using either the NAS Gateway command-line
interface (CLI) or the Microsoft Windows computer management tool. This chapter
describes how to configure CIFS shares by using the NAS Gateway CLI. For more
information, see “Configuring CIFS and NFS Shares and Services” on page 7-33.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-8
Note - The CIFS share permissions on the alternate paths must match,
otherwise clients will get unexpected access errors. Windows clients will only
traverse up to eight ONStor GNS junctions. This can be the cause of client
access failures.
Offline settings for junction targets are set on the individual CIFS shares that
are specified as targets. If a junction has multiple targets with different offline
settings, the client will use whatever settings are applied to the target.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-9
You must have cluster network privileges to make any changes or to view the global
namespace. The Web UI must support the following operations as well.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-10
Note - You cannot access the GNS root if you login as the local user account.
Options and
Description
Arguments
ROOTNAME Specifies the name of the root. It cannot match any existing root
or CIFS share name in the cluster. It can have a maximum of
250 characters.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-11
COMMENT Specifies the new comment string that will be reported to CIFS
clients when they enumerate the shares on any virtual server.
The default value is no comment.
USERGROUP Specifies the name of the user or group to which the ACL
applies.
RIGHTS Specifies the access rights to grant or deny. The legal value is: r
– Read access.
CACHING Specifies how files are cached on clients. The default value is
manual. The legal values are:
• none - Clients should not cache files to make them available
when working offline.
• manual - Users must manually specify any files they want
available when working offline. To ensure proper file sharing,
the server version of the file is always opened.
• documents - Opened files are automatically downloaded
and made available when working offline. Older copies are
automatically deleted to make way for newer and more
recently accessed files. To ensure proper file sharing, the
server version of the file is always opened.
• programs - Opened files are automatically downloaded and
made available when working offline. Older copies are
automatically deleted to make way for newer and more
recently accessed files. File sharing is not ensured.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-12
Note - The -d and -g options can appear multiple times to build a larger ACL.
By default, the root is created with the Everyone group having Read Access.
Since a GNS root is itself a CIFS share, there is the possibility that a customer
will attempt to modify its security and comment via the Windows Control
Panel. This is not allowed.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-13
Options and
Description
Arguments
ROOTNAME Specifies the name of the root. It cannot match any existing root
or CIFS share name in the cluster. It can have a maximum of
250 characters.
-c COMMENT Specifies the new comment string that will be reported to CIFS
clients when they enumerate the shares on any virtual server.
The default value is no comment.
USERGROUP Specifies the name of the user or group to which the ACL
applies.
RIGHTS Specifies the access rights to grant or deny. The legal value is
r – Read access.
-n NEWNAME Specifies the new name for this root. The object will stay within
the current parent directory.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-14
-o CACHING Specifies how files are cached on clients. This controls how
clients cache files for use when working offline. The default
value is manual. The legal values are:
• none - Clients should not cache files to make them available
when working offline.
• manual - Users must manually specify any files they want
available when working offline. To ensure proper file sharing,
the server version of the file is always opened.
• documents - Opened files are automatically downloaded
and made available when working offline. Older copies are
automatically deleted to make way for newer and more
recently accessed files. To ensure proper file sharing, the
server version of the file is always opened.
• programs - Opened files are automatically downloaded and
made available when working offline. Older copies are
automatically deleted to make way for newer and more
recently accessed files. File sharing is not ensured.
-r The -r option removes the ACL entry associated with the user
or group.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-15
Junction Management
A junction is an object within the global namespace below a root that points to a list of
paths of the form \\server\share\path. These paths can point to a GNS root, a virtual
directory, another junction, a CIFS share, or a directory path below a CIFS share. The
target can be in the same cluster, another cluster, or even to paths outside of ONStor
filers, like a Windows CIFS share
A GNS junction specifies zero or more targets. Each target contains a server, share,
and optional path portion. Each target within a junction must specify a unique server,
share combination. Duplicate targets are not allowed within a junction, nor are targets
that differ only in the path specified.
Since Active Directory is not supported, junction targets are sorted so that targets that
match more IP address octets are sorted first. If a client and a junction server are in the
same subnet, it is more likely to be chosen than a target that is in a different subnet. If
multiple targets have an equal number of matching octets, they are sorted randomly so
clients are load spread.
Creating a Junction
This command adds a new global namespace junction to every virtual server.
To Create a Junction
• Run the following command:
gns add junction cifs ROOTNAME\PATH [-t TARGET]
Options and
Description
Arguments
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-16
ROOTNAME Specifies the name of the root. It cannot match any existing root
or CIFS share name in the cluster. It can have a maximum of
250 characters.
Modifying a Junction
Modifies a CIFS junction in the global namespace.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-17
To Modify a Junction
• Run the following command:
gns modify junction cifs ROOTNAME\PATH
[-n NEWNAME] [-r TARGET] [-t TARGET]
Options and
Description
Arguments
ROOTNAME Specifies the name of the root. It cannot match any existing root
or CIFS share name in the cluster. It can have a maximum of
250 characters.
-n NEWNAME Specifies the new name for this root, the object will stay within
the current parent directory.
-r The -r option removes the ACL entry associated with the user
or group.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-18
Options and
Description
Arguments
ROOTNAME Specifies the name of the root. It cannot match any existing root
or CIFS share name in the cluster. It can have a maximum of
250 characters.
USERGROUP Specifies the name of the user or group to which the ACL
applies.
RIGHTS Specifies the access rights to grant or deny. The legal values is
r – Read access.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-19
Note - By default, the virtual directory is created with the Everyone group
having Read Access.
Options and
Description
Arguments
ROOTNAME Specifies the name of the root. It cannot match any existing root
or CIFS share name in the cluster. It can have a maximum of
250 characters.
USERGROUP Specifies the name of the user or group to which the ACL
applies.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-20
RIGHTS Specifies the access rights to grant or deny. The legal value is:
r – Read access.
-n NEWNAME Specifies the new name for this root, the object will stay within
the current parent directory.
-r The -r option removes the ACL entry associated with the user
or group.
Options and
Description
Arguments
If ROOTNAME is omitted, or all is specified, the names of all of the roots are listed. If
it is provided and PATH is omitted, the detailed information about the root is listed,
including the comment, the ACL, and the list of child GNS objects. For each child
object, the name and the object type, either virtual directory or junction is listed.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-21
If ROOTNAME and PATH are provided and they refer to a virtual directory, detailed
information about the directory including the ACL and the list of child GNS objects is
displayed. For each child object, the name and the object type, either virtual directory
or junction is displayed.
If ROOTNAME and PATH are provided and they refer to a junction, the list of target
paths to which this junction points is listed.
Note - If the virtual server context is not set, it might not be possible to convert
the security information into normal user and group names.
Options and
Description
Arguments
ROOTNAME Specifies the name of the root to delete or the parent of the path
that is to be deleted. The name is case insensitive.
Note - Without the -r option, this command will fail if there are child objects.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-22
Shares Management
An administrator can show, modify, and delete a CIFS Share even if the virtual server
is disabled. Creating a new share will still require the virtual server to be enabled so
that we can verify that the path being shared actually exists. Modifications of ACL
information also require the virtual server to be enabled so that we can map names to
IDs.
Options and
Description
Arguments
VOLNAME Specifies the name of the volume for which the CIFS share is
created.
-c COMMENT Specifies the new comment string that will be reported to CIFS
clients when they enumerate the shares on any virtual server.
The default value is no comment.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-23
USERGROUP Specifies the name of the user or group to which the ACL
applies.
AUDITTYPE Specifies the type of Audit ACL. The legal values are:
• success – Audit successful accesses when they use the
specified RIGHTS.
• failed – Audit failed accesses when they use the specified
RIGHTS.
RIGHTS Specifies the access rights to grant or deny. The legal values
are:
• r – Read access.
• c – Change access.
• f – Full access.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-24
Note - The -A, -d, and -g options can appear multiple times to build up a
larger ACL.
By default the share is created with the Everyone group having Full Access.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-25
[-d DOMAIN\\USERGROUP:RIGHTS]
[-g DOMAIN\USERGROUP:RIGHTS] [-o CACHING]
[-R DOMAIN\USERGROUP:AUDITTYPE]
[-r DOMAIN\USERGROUP] [-s SESSIONS]
[-w WIDELINKS]
Options and
Description
Arguments
-c COMMENT Specifies the new comment string that is reported to CIFS clients
when they enumerate the shares on any virtual server. The
default value is no comment.
USERGROUP Specifies the name of the user or group to which the ACL
applies.
AUDITTYPE Specifies the type of Audit ACL. The legal values are:
• success – Audit successful accesses when they use the
specified RIGHTS.
• failed – Audit failed accesses when they use the specified
RIGHTS.
RIGHTS Specifies the access rights to grant or deny. The legal values
are:
• r – Read access.
• c – Change access.
• f – Full access.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-26
-o CACHING Specifies how files are cached on clients. This controls how
clients cache files for use when working offline. The legal values
are:
• none - Clients should not cache files to make them available
when working offline.
• manual - Users must manually specify any files they want
available when working offline. To ensure proper file sharing,
the server version of the file is always opened.
• documents - Opened files are automatically downloaded
and made available when working offline. Older copies are
automatically deleted to make way for newer and more
recently accessed files. To ensure proper file sharing, the
server version of the file is always opened.
• programs - Opened files are automatically downloaded and
made available when working offline. Older copies are
automatically deleted to make way for newer and more
recently accessed files. File sharing is not ensured.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-27
-r The -r option removes the ACL entry associated with the user
or group and can appear multiple times.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-28
Multiprotocol Environment
In a multiprotocol environment, also known as a mixed CIFS and NFS environment,
files are created or accessed through both Windows and UNIX domains. Figure 7-3
shows a typical configuration in which the NAS Gateway provides file and block
services for CIFS clients in an IP data network.
ONStor 2200 NAS Gateway Cluster
Gigabit
Ethernet FibreChannel
NIS
IBM Compatible
Server
IP SAN
hub/router
IBM Compatible
Primary Windows
W orkstation
NFS
Client Domain Controller
IBM Compatible
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-29
• As the CIFS server, the NAS Gateway enables clients that run Windows OS to
read and write to the resources in the SAN at the disk block and file system block
level. The NAS Gateway also participates in the Windows or NetBIOS domains.
Note - The NAS Gateway has no role in client access to specific shares in the
file system. It trusts the challenge results from the domain controllers.
Understanding ID Mapping
The NAS Gateway supports identity mapping between NFS and CIFS shares. The ID
maps are required only for users that do not have identical logons in both NFS or CIFS
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-30
domains. If a user has logons that are identical in both domains, you do not need to
create an ID mapping rule for that user.
The following is an example of an ID map:
Type Index
--------------------------------------------
user 1 spectrum\paulw==paulwilson@chromatis
user 2 *\johndoe=>johndoe@bentoptics
Type Index
--------------------------------------------
group 1 spectrum\domain admins==admins@chromatis
group 2 prism\*=>*@bentoptics
In these samples, the ID map lists users in one section, and groups in another. In the
users section:
• Entry 1 is mapping the CIFS user “paulw” in the CIFS domain “spectrum” to the
NFS user “paulw” in the NFS domain “chromatis” and the NFS user “paulw” in
the NFS domain “chromatis” to the CIFS user “paulw” in the CIFS domain
“spectrum.”
• Entry 2 is mapping the CIFS user “johndoe” from any CIFS domain to the NFS
user “johndoe” in the NFS domain “bentoptics.”
In the groups section:
• Entry 1 is mapping a member of the CIFS group “domain admins” in the CIFS
domain “spectrum” to the NFS group “admins” in the NFS domain “chromatis.”
Because this mapping is bidirectional, the NFS group “admins” in the NFS domain
“chromatis” are being mapped as members of the CIFS group “domain admins” in
the CIFS domain “spectrum.”
• Entry 2 is mapping a user who is a member of any CIFS group in the CIFS domain
“prism” to any NFS group in the NFS domain “bentoptics.”
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-31
Note - The mapping does not control access to CIFS files, just the translation
of users from one domain type to another. Whether a mapped user can actually
access a CIFS file depends on what Access Control (ACE) information is
configured on the CIFS file.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-32
Naming Conventions
The NAS Gateway supports NIS or LDAP and CIFS style names in its ID map.
Therefore, the ID map accept names in the form of name@domain for NFS users or
groups, and Windowsdomain\user for CIFS users.
The NAS Gateway also supports special characters in the ID map:
• An asterisk (*) represents the value any.
• A blank space represents no mapping—no domain if used in the domain position,
or “nobody” if used in the user name position.
• Some domain names, might contain a dot and suffix, or a dot as a separator.
The NAS Gateway supports the NetBIOS naming style only. User names with dots are
not supported. Enter domain names containing dots in the ID map without the dot. The
user name can have up to 20 characters and the domain name can have up to 15
characters. A user name or domain name can contain an internal blank space.
Note - Except for strings in ID mappings, when you use the NAS Gateway’s
CLI to run a command, you need to enclose a name string with an internal
blank space in double quotes.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-33
Preconfiguration Considerations
Consider the following issues before performing the virtual server configuration
procedure:
• Decide whether you want the virtual server configured in protected mode for
failover to a different NAS Gateway.
• Decide the virtual server’s name. Virtual server names are used as the NetBIOS
name. To comply with NetBIOS, virtual server names are a maximum of 15
characters.
• Gather the IP addresses that you want assigned to the virtual server.
• Gather the Windows domain and user names. The virtual server uses the Windows
domain.name.
• Gather the IP address of the primary WINS server and secondary WINS server (if
any). The WINS server might be configured on the domain controller, in which
case, you will need the domain controller’s IP address.
• Decide if the virtual server will support home directories. If so, then gather the
name of the volume where the home directories exist and the path to the users’
home directories. Be aware that:
- the volume that supports the home directories must already exist before
starting this procedure.
- the path to the home directories must already exist on that volume.
• Gather the name of the NIS domain that the virtual server will join.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-34
Configuration Steps
For this procedure, ONStor makes the following assumptions for illustrative purposes
only:
• The virtual server is named “vs1-production.”
• The NIS domain is named “spectrum”.
• The NFS clients reside on 192.168.12.0/24.
• The NIS server is 192.168.12.100.
• The NAS Gateway’s Gigabit Ethernet interface is 192.168.148.61.
• The gateway router is 192.168.148.1.
• The volume to be shared is named “engineering.”
• The volume “engineering” will be shared on the NAS Gateway’s Gigabit Ethernet
interface with read and write access for two NFS clients.
• Home directories will be supported on the volume “homebase” through
\users\local\homes.
Note - The home directory must be configured in the Windows domain. If you
choose to create this path later, the path to the home directories must exist on
the volume where the home directories will be.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-35
Note - The virtual server name you create is also the NetBIOS name by
default.
Step 2: From the virtual server context, assign an IP interface to the virtual
server by running the interface create command. For example,
to create interface 192.168.148.61 on Gigabit Ethernet port 3 as
part of the logical port “lp.3,” run the following command:
interface create fp1.3 -l lp.3 -a 192.168.148.61/24
Note - The same physical port can be used by different virtual servers, but the
same IP address cannot be used on multiple virtual servers.
Step 3: From the virtual server context, create a default route for the
current virtual server by running the route add command:
route add default -g 192.168.148.1
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-36
Do Steps 4 and 5 only if you are configuring for CIFS. If you are configuring only for
NFS, go to Step 6.
Step 4: From the virtual server context, specify the WINS server(s) that the
virtual server should use, by running the vsvr set wins
command. For example, to configure the primary WINS server at
192.168.12.100, and the secondary WINS server at
192.168.12.101, enter the following command:
vsvr set wins 192.168.24.100,192.168.24.101
Step 5: From the virtual server context, specify the Windows domain that
the NAS Gateway will join by running the domain add windows
command. For example, for the NAS Gateway join the Windows
domain “effigy” whose domain controller is at 192.168.24.1, and
use the login name “onstoruser”, run the following command:
domain add windows effigy onstoruser 192.168.24.1
Note - When you run this command, the NAS Gateway prompts you for the
password for the login name.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-37
Step 7: From the virtual server context, specify the Windows domain in
which the virtual server will register by running the vsvr set
domain command. For example, to set the Windows domain
“effigy” with an admin user “onstoradmin,” run the following
command:
vsvr set domain windows effigy onstoradmin
You would also need to specify the password for the admin user
“onstoradmin”.
Step 9: From the virtual server context, specify the Kerberos domain in
which the virtual server will register by running the vsvr set
domain command. For example, to set the Kerberos domain
ORGUNIT, run the following command:
vsvr set domain windows -o ORGUNIT
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-38
Note - The NAS Gateway will post the message “Done” when the LUN has
been completely labelled.
Step 13: Find an array on which to create a volume as the home directories
volume, by running the lun show command. For example:
lun show
LUNs known to the NAS Gateway can be in different states. You
need a LUN with a state of “foreign.”
Step 14: From the virtual server context, create a volume for user data and
specify the array that you are configuring the volume on by running
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-39
Note - This command creates the volume with default parameters. You can set
additional parameters, such as disk usage and AutoGrow parameters, by using
non-default values for those parameters.
Note - This share supports the default share to the root volume. You can create
directories through the Windows client for additional paths you want to share.
By default, the original security on the root of a volume does not allow write
access. To allow write access, change the security, by right clicking the client,
then selecting Properties>Security.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-40
Step 17: If the virtual server supports home directories through the
autocreate facility, add an admin privilege for the admin that is
configuring the virtual server by running the priv add command.
For example, to add the admin user “nate7” for the Windows
domain “shire”, run the command as follows:
priv add allow shire\nate7 CLUSTER cluster
Step 18: (Optional) From the virtual server context, if the virtual server will
be supporting home directories through the autocreate facility, from
a Windows client, connect to the root share that you just created in
Step 13.
Step 19: (Optional) You can create the directories that will reside on the
volume, including the directory structure for the home directories.
Ensure that each user’s directory exists on the volume you named
in Step 13.
Step 20: (Optional) From the virtual server context, you can set the NAS
Gateway’s autocreate facility to display shares to the user home
directories on the volume you specified in Step 13. To configure
this feature, you need to configure the path to the home directories
on the volume you specified in Step 13, and each of the individual
user directories. For example, to connect to the volume
“homebase” and create \user\local\homes, create each of the
user directories that would reside in that path–for example
\user\local\homes\paulw.
Step 21: (Optional) From the virtual server context, you can have the virtual
server support autocreated home directories, by specifying the
volume which will host the user home directories, and specifying
the file path so CIFS autocreate can support a user’s home
directory. To accomplish this, run the vsvr set autocreate
command.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-41
Note - The volume that you specify in the vsvr set autocreate command
must already exist.
To enable this feature, the path to the home directories must already exist on
the volume.
A directory must exist for each user that will have a user directory. This
directory must exist in the last directory of the path.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-42
Step 25: From a Windows client, create the directories that will reside on the
volume.
Step 26: From the virtual server context, verify that the share appears in the
Shares List, by running the cifs show command. For example:
cifs show
This command shows the shares that can be browsed by a
Windows client.
Step 27: From the virtual server context, verify that the share has the correct
parameters, by running the cifs show command name against the
share. For example, to view the configuration of the share “eng”,
run the following command:
cifs show eng
This command provides a detailed display of all the parameters
that are assigned to the share.
Do Step 27 for configuring NFS, CIFS, or multiprotocol.
Step 28: From the virtual server context, you can create additional volumes
in the virtual server by repeating Steps 10 through 12.
Do Step 28 only if you are configuring CIFS or multiprotocol.
Step 29: From the virtual server context, you can create additional CIFS
shares in the virtual server by repeating Steps 15 through 20.
Note - When you are configuring shares through either the NAS Gateway or
through a Windows client, you can add a dollar sign ($) at the end of the share
name (for example, eng$) to configure a hidden share. You cannot browse
hidden shares in the list of shares, but you can still connect to them by
explicitly entering the share name, for example, \\pubstest\eng$.
If you have been configuring CIFS shares, the CIFS shares creation process is
complete at this point.
Do Steps 29-33 only if you are configuring NFS or multiprotocol.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-43
Step 30: From the virtual server, for NFS access, create a route to the IP data
network where the NFS clients reside, by running the route add
net command. For example, to configured a route to the
192.168.12.0/24 network through the gateway router
192.168.148.1, run the following command:
route add net -g 192.168.148.1 -a 192.168.12.0/24
Step 31: From the virtual server context, create an administrator share for
the volume.
• Configure the share with the no root squash option to allow
you to access the share as root.
• Create the administrator share with read-write permission so
that you can configure options on the volume that will be
exported to users.
For example, to configure an administrator share on the volume
called “engineering”, to a client called “admin-pc”, run the
following command:
nfs share add /engineering -o
rw,no_root_squash=admin-pc;rw=*
Step 32: Set the ownership bits to allow you administrator access through
the standard UNIX chown command. For example, run the
following command:
chown usera:usergroup /mnt/nfs-share
usera:usergroup is the name of the administrator and the name of
the administrator group to which the admin belongs.
Step 33: Set the mode bits to allow you administrator access through the
standard UNIX chmod command. For example, run the following
command:
chmod 775 /mnt/nfs-share
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-44
Step 34: Verify that the share has the correct parameters, by running the nfs
show command against the share. You can view the NFS shares on
a per-volume level. For example, to view the NFS shares exporting
the volume “engineering,” run the following command:
nfs show engineering
If you are setting up a multiprotocol share environment, do the following steps to
create the ID mapping between the different types of shares.
Step 35: Run the following command:
idmap insert {user|group} INDEX
Options and
Description
Arguments
INDEX Specifies a number that controls where in the Identity List the ID mapping
will be added. Enter a number that refers to the ID map’s position in the
list.
Step 36: Press the Enter key to receive the mapping prompt, which looks
like this:
Enter the user mapping:
windowsDomain\name ==/<=/=>name@NIS, or LDAPDomain
(*=wildcard, name empty=no mapping)
Step 37: Enter the mapping information at the mapping prompt. Mapping
information takes three building blocks: the CIFS identity, the
mapping director, and the NFS identity. An example of the MAP
argument would be
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-45
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-46
Options and
Description
Arguments
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-47
Options and
Description
Arguments
PATHNAME Specifies the name of a path for which to display mount options.
The path name you enter is the path you noted in the previous
step.
If you specify the pathname, detailed information about options
and the clients to which they apply is displayed.
If you do not specify the pathname, only the share and its state
are displayed.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-48
Note - If you need to modify an NFS share, you can also overwrite the share by
running the nfs share add command and recreating the share with the mount
options you want to change. If you overwrite the share, you are prompted with
a confirmation message similar to the one shown below:
Answering yes (Y) overwrites the existing share with the new one. Answering
no (N) cancels overwriting the existing share.
When you edit the NFS share list, consider the following:
• Each line in the NFS share file contains information about each parameter that you
can configure in the share.
• The sort order for the clients in each line of parameters in the file is from left to
right.
• The first match of a client and its permissions halts the search.
• Clients must be specified by their IP address or host name. You can specify all
clients by using the asterisk ( * ) as a wildcard operator for “all.” You can also use
subnet masking to allow all clients within a configured network address space to
use the share.
• If a client is not listed in the NO_ROOT_SQUASH parameter, it is assumed to
have root-squash capability.
To Modify an NFS Share
Step 1: Run the nfs share modify command to start the vi editor:
nfs share modify PATHNAME
PATHNAME is the name of the exported path for which the NFS
Shares List is editable.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-49
Step 2: When the editor starts, use standard vi commands to search the file
and edit its contents.
Step 3: When you are done editing the share, use the standard vi commands
to save and close the file.
Step 4: After editing shares, run the nfs show command to check that they
are configured correctly.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-50
In the list, you will see not only the file system shares, but also the hidden shares.
Hidden shares are always hidden from the clients, but they are visible to you, the NAS
Gateway administrator. A dollar sign ($) indicates that a share is hidden from the end
user or client. If you create a share with an ending $, it will not show up in the list of
shares when a client is browsing, but you (as admin) can still connect to it directly. The
NAS Gateway supports the IPC$ share by default.
After a CIFS share has been configured, you can display a list of the shares and the
SAN resources that the shares are advertising by running the cifs show command.
This command displays the list of configured shares.
Note - You can view the list of configured shares through standard CIFS client
browsing as well, for example, through the Network Neighborhood display
when you are using a Windows client. The resulting list of Network Places is
the contents of the CIFS Shares List.
Autocreate shares (home directory shares) are not listed in the Shares List by
running the cifs show command. You can see home directory shares only by
browsing the virtual server through the Network Neighborhood display.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-51
Options and
Description
Arguments
Note - Administrative shares are visible through the Shares List, but not
through the NAS Gateway’s command line. For example, if you run the cifs
show command against the share IPC$ to view detailed information about the
IPC$ share, the NAS Gateway will not show any information about this share.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-52
• When you first create the interface that will support the CIFS share, you can set the
state of CIFS on that interface through the interface create command.
• After the initial creation of the interface that supports the CIFS share, you can set
the state of CIFS on that interface through the interface modify command.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-53
removed, so the domain controller is no longer aware of the resource, and clients that
request the resource are denied.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-54
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-55
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-56
Note - Before you can use the wide link feature, you need to set up domain
trusts. For more information on how to setup domain trusts, see
www.microsoft.com. Wide links can allow clients to follow shares to different
domains only if the domains are trusted.
And, assume the following symbolic links have been created on an UNIX box:
1. ln -s /mnt/vol1/afile.txt sym1
2. ln -s /mnt/vol1/Test/dirB sym2
3. ln -s /mnt/vol2/dirC/dirD sym3
When a CIFS client accesses sym1, mapping rule 1 is applied and the client is
redirected to the path /Redir1/afile.txt at the root of volume vol1. The software
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-57
took the path /Redir1 from the mapping rule and /afile.txt from the remaining
symbolic link target text.
When a CIFS client accesses sym2, mapping rule 2 is applied because it matches more
characters than mapping rule 1. The client is redirected to the path /Redir2/Redir3/
dirB at the root of volume vol1. The software took the path /Redir2/Redir3 from
the mapping rule and /dirB from the remaining symbolic link target text.
When a CIFS client accesses sym3, mapping rule 3 is applied and the client is
redirected to \\srv\share\Redir4\dirC\dirD. The CIFS server srv can be any
CIFS server on the network and share can be any CIFS share on that server. EverON
software took the path \\srv\share\Redir4 from the mapping rule and /dirC/dirB
from the remaining symbolic link target text.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-58
• If the target of a wide link is a server and share in another authentication domain,
access is denied without a logon dialog.
• Macintosh (Mac) clients do not support wide links/DFS. The Mac displays wide
links, but when clients click the wide link, nothing is returned.
• A cmd shell deletion cannot remove a wide link.
• You cannot rename a wide link.
Options and
Description
Arguments
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-59
Options and
Description
Arguments
REDIRECTEDPATH Specifies the path the CIFS client should follow when it
encounters an absolute symbolic link whose target text starts
with the text in the LINKTARGETTEXT argument. The
REDIRECTPATH can be either of the following:
• A path within the same volume of the form /dir1/dir2/dir3/...
This form redirects the CIFS client to a specific directory
within the same volume as the symbolic link.
• A CIFS share path of the form
\\server\share\dir1\dir2\dir3\.... This form redirects the CIFS
client using ONStor GNS and Microsoft DFS to any other
CIFS server and share.
To delete a wide link, run the symlink delete command. This command
immediately removes the wide link functionality. Therefore, the client accesses the
link or symbolic link as normal. Be aware that if your data is accessible through a wide
link, and you delete the wide link, the data is no longer accessible until you create a
mount point on the volume that contains it.
Note - When a wide link rule is deleted, the link between source and target
does not become immediately inaccessible. Instead, the link can remain
displayed and accessible for up to 10 minutes. This behavior is controlled by a
link timeout that is set on the client, not by the NAS Gateway.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-60
Options and
Description
Arguments
VOLUME Specifies the volume from which you are deleting a mapping rule.
Enter the name of the volume from which you will be deleting a
symbolic link.
LINK Specifies the symbolic link that you are deleting. Because you are
creating a mapping for an absolute symbolic link, enter the name of
the configured symbolic link that you want to delete, and include the
root slash (/). For example:
/pubs/ paulw/filter
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-61
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-62
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-63
When importing shares to a target volume, the share list file is parsed, and each share
is created on the target volume. The target volume must be online. An event log is
generated for each share to indicate whether the share creation on the target volume
succeeded or failed.
Note - You can have spaces in share names, share paths, and comments.
However, you need to enclose share names with spaces in double quotation
marks.
Options and
Description
Arguments
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-64
Options and
Description
Arguments
LOCATION Specifies the path to a file where to store the exported shares.
Options and
Description
Arguments
LOCATION Specifies the path to a file containing the share list information or
created using the volume share export command.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-65
Note - Use the vol import command only if the volume to be moved is from
another cluster.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-66
Managing ID Mappings
You can manage ID mappings in one of the following ways:
• Editing ID mappings
• Showing ID mappings
• Deleting ID mappings
• Forcing an update of ID mapping rules
Editing an ID Mapping
The NAS Gateway supports identity mapping between NFS and CIFS domains. With
identity mapping, you can specify rules that govern the following translations:
• How NFS user and group IDs (UIDs and GIDs, respectively) are translated to
CIFS users and groups
• How CIFS users and groups are translated to NFS UIDs and GIDs
You can edit an ID mapping by running the idmap edit command. The process of
editing allows you replace an ID mapping in the Identity List. As part of this
command, you specify an index number, which is a numerical value that indicates
which entry in the list will be replaced. Because an entry in the list will be replaced
with a new entry, the net result is zero, and no movement occurs in the list.
This command operates in two steps:
1. You enter the command syntax shown except for the mapping
information. For example, you would run the idmap edit
user 1 command to edit the first user ID map entry. The NAS
Gateway will accept the command syntax then prompt you
with the > for the actual syntax of the map entry that you are
editing.
2. You enter the actual map entry after the NAS Gateway
presents you with the > prompt.
To Edit an ID Mapping
Step 1: Run the following command:
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-67
Options and
Description
Arguments
user|group Specifies the translation semantics for users and groups. This
argument takes the specific syntax that is referenced in the idmap
insert command.
INDEX Specifies the number that controls where in the list the ID mapping will
be added. Enter the same index number as the entry that you are
replacing.
Step 2: When the NAS Gateway prompts you with the > prompt, enter the
mapping information. Mapping information is a construction of
CIFS identity, translation director, and NFS identity that you want
to edit. For example:
• spectrum\user7077=>user7077@onstorlab could be a
map for a user.
• spectrum\techpubs==publications@stylus could be a
map for a group.
• spectrum\ <=user7077@onstorlab could be a map that
creates an entry for a user that maps to nobody in the CIFS
domain.
• spectrum\guest<=user7077@onstorlab could be an map
that creates an entry for a user that maps to the “guest” user in
the CIFS domain.
The Identity List contains separate sections for user and group mappings. As part of
this command, you can filter the output by specifying the type of ID mapping–either
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-68
user or group–that you want the NAS Gateway to display. As an option, you can use
the “all” keyword to see both sections of the Identity List.
The Identity List contains information about the user or group names for CIFS and
NFS, the index number for each mapping, and the direction of name mapping.
To Display ID Mappings
• Run the following command:
idmap show {all|user|group}
Choose on of all|user|group to display the contents of the
Identity List:
• all displays all entries in the Identity List. Users are
displayed at the top of the Identity List, then groups are
displayed.
• user causes the NAS Gateway to display only the user entries
in the Identity List.
• group causes the NAS Gateway to display only the group
entries in the Identity List.
Deleting an ID Mapping
You can delete an ID mapping any time after it has been created. When you delete an
ID mapping the user or group for which you created the mapping can no longer be
translated between a CIFS or NFS domain. Therefore, that user or group can log in to
their native domain only. For example, a native CIFS user or group will not be able to
log in to a NFS domain, and a native NFS user or group will not be able to log in to a
CIFS domain.
To Delete an ID Mapping
Step 1: Run the following command and locate the user’s or group’s ID
mapping that you want to delete:
idmap show all
Step 2: Run the following command to delete the ID mapping:
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-69
Options and
Description
Arguments
INDEX Specifies the index number associated with the ID map entry that you
are deleting.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-70
use the most recent version of the ID Map, which ensures that the user and group
entries are kept current. The idmap notify change command invokes a quota rebuild
phase.
To Force an Update of the ID Mapping Rules
Step 1: Create a virtual server and configure a volume in it. For more
information about configuring virtual servers, see “Working with
Virtual Servers” on page 3-1.
Step 2: From the context of the virtual server that contains the volume
where the quota is configured, run the following command:
idmap notify change {user|group}
Choose either user or group to specify the type of quota you are
enabling on the volume named in volname. You can specify one
or more quota types. If you specify multiple quota types, separate
each quota type with a comma—for example, user,group.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-71
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-72
NIS mappings support local password and group files for multiprotocol file access
without an NIS server. If you are using this feature, consider the following:
• You need to import and/or configure both the passwd and group files for correct
configuration. The netgroup file is optional.
• You need to manually refresh the cached user name and group name information
for virtual servers that are using the local NIS maps. To refresh the information,
you can do either of the following:
- Disable, then re-enable the virtual server by running the vsvr disable
command followed by the vsvr enable command.
- Run the idmap notify change user|group command to flush any
old mappings out of the cache, and allow the new mappings to be
cached.
To Import Password, Netgroup, and Group Files From an FTP Server
Step 1: From within the virtual server context, set the virtual server to the
domain localhost by running the command:
vsvr set domain nis localhost
Step 2: Import the password or group file by running the localmap
import command from the virtual server context:
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-73
Options and
Description
Arguments
passwd Imports the password file to be used by the current virtual server.
netgroup Imports the netgroup file to be used by the current virtual server.
group Imports the group file to be used by the current virtual server.
IPADDR Specifies the IP address of the FTP server from where to download the
file.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-74
Options and
Description
Arguments
-s Specifies that the edits are saved. When you edit the file, press Enter at
each line you are editing. When you have finished editing, type exit and
press Enter again.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-75
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-76
and only if the symbolic link’s target is equal to or below the directory tree
connection point.
• The NAS Gateway never allows a symbolic link to move to a target that is above
the client’s initial connection point in the directory tree.
Parent
On a Windows client, you are at the top level directory and three subdirectories exist
below called dirA, dirB, and dirC. The directory dirA contains the file A.doc that is a
symbolic link to \C. When a user on the Windows client run the del * operation from
the top level, the NAS Gateway correctly deletes all files in the subdirectories and the
subdirectories themselves. Some other devices would fail the deletion because when
the devices reach dirC it’s an empty directory and cannot be removed.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-77
Note - Symbolic link mappings are per-volume, and the target of the symbolic
link must always lead to the same volume. You cannot create a symbolic link
whose target is on a different volume.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-78
The NAS Gateway will not support absolute symbolic links without a symbolic link
mapping. The mapping allows a CIFS client to follow a symbolic link to a target that is
supported on the same share only. Without a symbolic link mapping, a target volume
or directory is still available through the actual path.
If a symbolic link is configured to a target, the NAS Gateway always follows that link.
However, based on permissions, a user might not be able to open or manipulate the
target of the symbolic link. In such cases, the NAS Gateway will allow the client to
traverse the directory, but will display an empty directory if the permissions disallow
the manipulation of the object at the target of the symbolic link.
If multiple links are configured, the NAS Gateway matches to the longest path. By
default, a symbolic link is active when it is added to the NAS Gateway. The NAS
Gateway can support a total of 32 symbolic links in one path.
The NAS Gateway also uses symlinks to support wide link functionality. A wide link
is a CIFS share that is interacts with an NFS symlink to allow access to domain
controller that can be in another domain or accessable through another virtual server.
When you add a wide link, you are creating a rule for a symlink, and that rule
determines the target volume or CIFS server that the client wants to access. Consider
the following example of a wide link rule added to the NAS Gateway:
symlink add vol1 \\srv\share\Redir4 /mnt/vol2
Assume the following symbolic link exists on an UNIX client:
ln -s /mnt/vol2/dirC/dirD sym3
When a CIFS client accesses the symbolic link, the mapping rule is applied and the
client is redirected to \\srv\share\Redir4\dirC\dirD. The CIFS server srv can be
any CIFS server on the network and share can be any CIFS share on that server. The
NAS Gateway takes the path \\srv\share\Redir4 from the mapping rule and /
dirC/dirB from the remaining symbolic link target text.
You can create a symbolic link’s mapping rule by running the symlink add command.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
7-79
Note - The symlink add command creates a symbolic link mapping rule for
absolute symbolic links only. Symbolic links are always available through
NFS, and they can be created through NFS without using this command.
However, NFS-created symbolic links might not be accessible through CIFS
unless you map the symbolic link with the symlink add command.
Options and
Description
Arguments
TARGET Specifies the directory to which the symbolic link is pointing. Enter the
name of the directory without specifying the root slash or the parent
directories that precede the target directory. When you specify the target
directory, enter just the directory name and use a blank space to
separate the target directory from the volume listed in VOLUME.
LINK Specifies the symbolic link that you are creating to represent the actual
path to the target. Because you are creating a mapping for an absolute
symbolic link, enter the symbolic in reference to the root, so include the
root slash (/). For example: /pubs/paulw/filter
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
7-80
VOLUME specifies the volume for which you want the symbolic
link mapping rules displayed. Enter the name of the volume for
which you want to display symbolic links.
Options and
Description
Arguments
VOLUME Specifies the volume from which you are deleting a mapping rule.
Enter the name of the volume from which you will be deleting a
symbolic link.
LINKTARGETTEXT Specifies the symbolic link that you are deleting. Because you are
creating a mapping for an absolute symbolic link, enter the name
of the configured symbolic link that you want to delete, and
include the root slash (/). For example: /pubs/paulw/filter.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
Chapter 8: Managing File Auditing
This chapter contains the following sections:
• “Understanding File Auditing” on page 8-2
• “Managing File Auditing” on page 8-9
• “Configuring File Auditing” on page 8-19
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
8-2
Note - The NAS Gateway supports viewing the audit log only through the
audit show log command. Therefore, the NAS Gateway, Windows clients,
or Windows servers cannot display the audit log file through the Windows
Event Viewer.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
8-3
success or failure, generates the audit event. The success or fail event is then
written to the audit log file.
• Execution privileges, grant users access rights to files. The privileges that are
audited are:
- SECURITY
- BACKUP
- RESTORE
- TAKEOWNERSHIP
- TRAVERSE
For file auditing in a CIFS environment, configure the file auditing feature on the NAS
Gateway, but also configure the Auditing tab for the file or directory that you want to
audit. For example, you would:
• Log on as an administrator on a Windows client.
• Map a drive to a CIFS share.
• Select a directory.
• Select Properties>Advanced>Auditing for that directory.
For more information about File Auditing in a Windows environment, see the
Microsoft documentation at www.microsoft.com.
Audit Events
The audit events are represented in the audit log file by ONStor abbreviations that
represent Microsoft standard file access events. Each entry in the audit log contains an
access mask that displays the information about the file operation that was audited.
Table 8-1 shows the mapping of the Microsoft label to the ONStor abbreviation that is
displayed in the audit log file. Use this table to decode the access mask in the audit log
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
8-4
file. The NAS Gateway performs auditing on file access operations only. Auditing
does not occur on logon or logoff events.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
8-5
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
8-6
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
8-7
Note - You can determine the domain type by the admin ID format. IDs from a
UNIX domain have the format “admin@domain”, as in user1@domainX. IDs
from a Windows domain have the format “domain\admin”, as in
domainY\user2.
The remainder of the entries are audit records as indicated by their title “file access.”
In this example audit log, you can see the following information is contained in each
audit record:
• The date and timestamp at which the audit record was created, and the reason for
the record. In these examples, a file access request was sent.
• User name information, including the domain in which the user is requesting
access to a file.
• The path that the user used to attempt access to the file.
• The access information about the request, including whether file access was
allowed or denied.
• The type of request the NAS Gateway received from the user.
• The access mask, which is the string of numerals and the file access
abbreviation(s) that indicate which actions were attempted on the file. These
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
8-8
abbreviations map closely to access mask values used by Windows devices, but the
abbreviation for each label is related to the EverON file system. For a list of access
mask values and their ONStor abbreviations, see Table 8-1 on page 8-4.
• The privileges used to access the file.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
8-9
Note - File auditing can impact the NAS Gateway while enabled based on the
volume of transactions and amount of data scanned in each file transaction.
When you disable file auditing, all entries in the audit log file are retained. The audit
file will remain configured on the volume.
To Enable File Auditing
• Run the following command:
audit enable VOLNAME
To Disable File Auditing
• Run the following command:
audit disable VOLNAME
VOLNAME specifies the volume on which the file auditing is
being enabled or disabled.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
8-10
The NAS Gateway compares the permission that is attempting a file access
with the permission required for that file access. In the case of success
parameters, the NAS Gateway then adds a record to the audit log file whenever
the comparison allows the file access.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
8-11
Options and
Description
Arguments
VOLNAME Specifies the name of the volume on which you want to track file
operations that resolve if you are setting success parameters, or the
name of the volume on which you want to delete success parameters.
PRIVILEGES Specifies one or more file privileges that you want the NAS Gateway to
record in the audit log file if you are setting success parameters, or one
or more file privileges that you no longer want the NAS Gateway to
record in the audit log file. Enter one or more of the following privileges:
• security
• backup
• restore
• takeownership
• traverse
If you enter multiple file operations, separate each operation with a blank
space.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
8-12
The NAS Gateway compares the permission that is attempting a file access
with the permission required for that file access. In the case of failure
parameters, the NAS Gateway then adds a record to the audit log file whenever
the comparison disallows the file access.
You can delete failure parameters that are configured for the audit log. A deleted
failure parameter is not automatically tracked as a success parameter. If you want a
deleted failure parameter to be tracked for success, you need to explicitly configure it
as a success parameter.
To Set the Failure Parameters That Are Tracked in the Audit Log
• Run the following command:
audit set fail_privilege VOLNAME PRIVILEGES
To Delete the Failure Parameters That Are Tracked in the Audit Log
• Run the following command:
audit unset fail_privilege VOLNAME PRIVILEGES
Options and
Description
Arguments
VOLNAME Specifies the name of the volume on which you want to configure or
delete failure parameters.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
8-13
Options and
Description
Arguments
PRIVILEGES Specifies one or more file privileges that you want the NAS Gateway
to record in the audit log file if you are configuring failure parameters,
or one or more file privileges that you no longer want the NAS
Gateway to track if you are deleting failure parameters. Enter one or
more of the following privileges:
• security
• backup
• restore
• takeownership
• traverse
If you enter multiple file operations, separate each operation with a
blank space.
Options and
Description
Arguments
VOLNAME Specifies the name of the volume on which you want to file operations to
fail if they cannot be written to the audit log file.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
8-14
Options and
Description
Arguments
yes|no Specifies the state of denying a file operation that cannot be recorded in
the audit log file:
• yes causes the NAS Gateway to deny the file access operation if it
cannot be written into the audit log file.
• no causes the NAS Gateway to allow the file access operation even
if it cannot be written into the audit log file. The default value is no.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
8-15
parameters that track many or all privileges, set your audit log file to a larger size than
if you have fewer success or failure parameters.
To Set the Audit Log’s Size
• Run the following command:
audit set filesize VOLNAME FILESIZE
Options and
Description
Arguments
VOLNAME Specifies the volume on which you are setting the audit log file capacity.
FILESIZE Specifies the total size, in number of Kilobyte blocks, of the audit log file.
Note - If you elect not to enable circular write, you can clear the audit log file
by running the audit clear command.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
8-16
Options and
Description
Arguments
VOLNAME Specifies the volume on which you are enabling or disabling the circular
write feature. Enter the name of the volume whose audit log you setting
with the circular write feature.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
8-17
Options and
Description
Arguments
VOLNAME Specifies volume for which you want to display the audit log file.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
8-18
Options and
Description
Arguments
VOLNAME Specifies the volume for which the audit log file is exported.
LOCATION Specifies the file path to store the audit log. If the path name
is a directory, the audit log is stored in a default file name in
the specified directory.
The default file name is <VOLNAME>.<YYYYMMDD>.
<NUMBER> where YYYYMMDD represents the date of the
export.
For example, in the case of an hourly export of volume
VOL1 on 2/1/07, the export files would be
VOL1.20070201.0, VOL1.20070201.1, ...
VOL1.20070201.23.
-m MINUTE The -m parameter is the minutes (0-59) of the hour at which
the report should be generated and sent.
-h HOUR The -h parameter is the hour (0-23) at which the report
should be generated and sent.
-d DATE The -d parameter is the date (1-31) on which the report
should be generated.
-M MONTH The -M parameter is the month (1-12) in which the report
should be generated and sent.
-D DATE The -D parameter is the day of the week (0-7) on which the
report should be generated. Day 0 or 7 is Sunday.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
8-19
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
8-20
Step 3: Configure the failure events for the privileges that attempt file
access, by running the audit set command:
audit set fail_privilege payroll takeownership
• payroll is the volume on which you want file access attempts
logged in the audit log file.
• takeownership is the privilege that will be audited for
successful file access attempts.
Step 4: Configure the success events for the privileges that attempt file
access, by running the audit set command:
audit set success_privilege payroll takeownership
• payroll is the volume on which you want file access attempts
logged in the audit log file.
• takeownership is the privilege that will be audited for
successful file access attempts.
Step 5: Enable file auditing by running the audit enable command:
audit enable payroll
payroll is the volume on which you are enabling file auditing.
When file auditing is enabled, it applies to all clients that use
shares configured for the volume. For example, if payroll has 46
shares configured on it, the NAS Gateway will apply file auditing
to all clients that use any of the 46 shares that export the volume,
regardless of the file access protocol–NFS or CIFS–the share uses
to advertise payroll to clients.
Step 6: Check the audit log configuration and verify that the auditing
parameters are set correctly, by running the audit show config
command:
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
8-21
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
8-22
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
Chapter 9: Managing Snapshots
This chapter contains the following sections:
• “Snapshots Overview” on page 9-2
• “Managing Snapshots on the NAS Gateway” on page 9-4
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
9-2
Snapshots Overview
Snapshots are static images of the EverON™ file system. Each file system can support
a maximum of 48 snapshots. The maximum size of these snapshots is limited by the
amount of disk space. The NAS Gateway supports two types of snapshots: on-demand
and scheduled.
• You can create an on-demand snapshot manually at any time. For more
information about on-demand snapshots, see “Creating Snapshots On-Demand” on
page 9-4.
• A scheduled snapshot occurs automatically at a preset time and frequency. For
more information about scheduled snapshots, see “Creating Snapshot Schedules”
on page 9-6.
Scheduled Snapshots
Scheduled snapshots can occur either hourly, daily, or weekly. Daily snapshots are
taken at midnight, and weekly snapshots are taken at midnight on every Sunday. Daily
and weekly snapshots have the following scheduling considerations:
• If daily snapshots are configured, hourly snapshots do not occur at midnight.
• If weekly snapshots are configured, daily snapshots do not occur at midnight on
every Sunday.
The NAS Gateway supports a default snapshot schedule, as shown in Table 9-2.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
9-3
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
9-4
Options and
Description
Arguments
VOLNAME Specifies the volume that contains the file system that you are capturing
with a snapshot.
SNAPNAME Specifies the name of the on-demand snapshot that you are taking. The
file suffix (.ss) indicates that the file is a snapshot file. Snapshot names
up to 31 characters long.
-m Creates a snapshot with a name reserved for mirror snapshots. Use this
command if the volume is going to be replicated by array replication and
subsequently used as a part of a mirror. The created snapshot will be
used as the mirror baseline.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
9-5
Note - If you name the on-demand snapshots with any of the default names for
scheduled snapshots, the command fails. For more information about default
names, see Table 9-3 on page 9-6. Do not name any on-demand snapshots with
the following file names:
• hourly.x.ss
• daily.y.ss
• weekly.z.ss
Options and
Description
Arguments
VOLNAME Specifies the volume that contains the snapshot snapshot you are
deleting.
SNAPNAME Specifies the name of the on-demand snapshot that you are deleting.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
9-6
Snapshot
File Name Maintenance Method
Type
When scheduled snapshots are completed, they reside in the /.snapshots directory
along with on-demand snapshots.
When creating the snapshot schedule consider the following:
• The default snapshots schedule should be adequate if:
- Files are not lost often.
- Lost files are noticed quickly after they are lost.
• A customized schedule that keeps snapshots for a longer amount of time should be
used if:
- Files are lost often.
- Lost file are not noticed quickly after they are lost.
• Different snapshot schedules are supported on different volumes enabling you to
customize snapshot schedules to closely match the activity of the volume.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
9-7
Options and
Description
Arguments
VOLNAME Specifies the volume on which you want to take snapshots of the file
system.
-l HOURS An optional hours list that specifies the times at which to take
snapshots. Hours in the list are separated with a comma. Valid range
is 1 to 24, where 1 is 1 a.m., 12 is mid-day, and 24 is midnight. By
default hourly snapshots occur at 8 a.m.,12 p.m.,4 p.m., and 8 p.m.
Note - You can check the status of the snapshot scheduler by running the
snapshot show schedule command. If the snapshot scheduler is disabled,
the output of the show schedule command will show the following message:
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
9-8
Options and
Description
Arguments
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
9-9
Note - After the snapshot has been restored as the live file system, the NAS
Gateway retains the target snapshot as a normal snapshot. The snapshot is not
deleted when it has been restored as the new file system, and the NAS Gateway
does not take a duplicate snapshot of the new file system. Snapshots occur as
normal after a new file system has been created from a snapshot.
Options and
Description
Arguments
VOLNAME Specifies the volume on which you are restoring a snapshot as a live file
system.
Renaming a Snapshot
You can rename an on-demand snapshot or a scheduled snapshot by running the
snapshot rename command.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
9-10
Note - The NAS Gateway uses reserved names for some of its snapshots. If
you are renaming a snapshot, you cannot use any of the following names or the
command fails:
Options and
Description
Arguments
VOLNAME Specifies the volume that holds the snapshot you are renaming.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
9-11
To Unpin a Snapshot
• Run the following command:
snapshot unpin VOLNAME SNAPNAME
Options and
Description
Arguments
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
9-12
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
Chapter 10: Managing File System
Quotas
This chapter contains the following sections:
• “Quotas Overview” on page 10-2
• “Quota Interaction with Other NAS Gateway Features” on page 10-3
• “Configuring Default Quotas” on page 10-9
• “Enabling or Disabling Quotas” on page 10-17
• “Configuring Quotas” on page 10-19
• “Updating ID Mapping Rules” on page 10-22
• “Working With the Quota Log” on page 10-23
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
10-2
Quotas Overview
Quotas help to control the amount of disk space that can be used by a user, group, or
part of the directory tree. You can ensure that disk space is available to other users,
groups, and parts of the directory tree by controlling the amount of disk space that can
be used.
Quota Types
The NAS Gateway’s quota implementation supports the following types of quotas:
• User quotas are usage conditions configured for a specific user or all users.
Note - User quotas cannot be deleted through the NAS Gateway’s CLI. If you
no longer want quotas to operate in the file system, you can disable the quota.
(See “Enabling or Disabling Quotas” on page 10-17.
• Group quotas are usage conditions configured for a specific group or all groups.
• Tree quotas are usage conditions configured on a specific location of the directory
path, either on the root or anywhere along the directory path. Quota conditions on
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
10-3
lower levels of the directory structure are inherited from a higher-level tree quota.
Inheritance of quota conditions moves downward from the directory where the tree
quota is configured, so children of the directory inherit the quota usage conditions
from the parent. Tree quotas can be either simple or nested. The main difference
between simple and nested quotas is where usage is charged.
For each quota type, you can set either default quotas or specific quotas:
• Default quotas apply the same usage conditions to every user, group, or tree quota
that uses the volume. Default quotas are helpful when you want to set the same
usage conditions for all user, group, or tree quotas in a volume.
• Specific quotas apply usage conditions that are different from the default quota’s
conditions. Specific quotas are helpful when you want to set special usage
conditions for some, but not all, user, group, or tree quotas on the volume.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
10-4
• During a full backup, any configured user, group, or tree quotas are backed up to
tape. During a partial backup, quotas are not backed up to tape.
• During a full restore operation, the backed up file system quotas are restorable.
During a partial restore operation, any quotas backed up are not restored.
Behavior is different if the quotas are being restored. When a restore operation occurs,
two outcomes can exist for the backed up quota information:
• Quotas on tape can overwrite any quotas configured in the live file system.
• Quotas on tape can be discarded in favor of quotas in the live file system.
Both scenarios are controlled by ONStor-specific environment variables that
determine whether quotas on tape should be restored to the live file system or not. See
“Setting ONSTOR_SUPERSEDE_QUOTAS” on page 10-4.
File system quotas do not affect the data that is restored. For example, if an enforce
tree quota allows 50 GB of file system space, and a restore operation contains 51 GB
of data, the entire restore operation completes to the live file system. Quotas disregard
data in restore operations to allow the entire data set to be restored.
The NAS Gateway’s implementation of quotas includes the following environment
variables that affect how quotas are restored from tape:
• ONSTOR_SUPERSEDE_QUOTAS, which controls whether quota information on tape is
overwritten when an NDMP restore session occurs.
• ONSTOR_IGNORE_USR_GROUP, which controls the behavior of user and group quotas
when an NDMP restore session occurs.
• ONSTOR_IGNORE_QTREE, which controls the behavior of tree quotas when an
NDMP restore session occurs.
For more information about the NAS Gateway’s implementation of NDMP, see
“Managing Backup and Restore” on page 14-1.
Setting ONSTOR_SUPERSEDE_QUOTAS
The NAS Gateway’s decision to overwrite or disregard the quota information from
tape is based on the ONStor-specific environment variable
ONSTOR_SUPERSEDE_QUOTAS that can be configured by a data management
application (DMA) that moves data in an NDMP operation. This environment variable
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
10-5
accepts a “yes” or “no” value. The default is “yes.” If this variable is set to “no,” the
variable affects different types of quota differently:
• If a user or group quota already exists, it is not updated with the limits and warning
information from tape.
• If a tree record already exists on the directory in the destination volume, the tree
quota is not updated with values from tape.
Table 10-4 explains the ONSTOR_SUPERSEDE_QUOTAS environment variable if it is
set to “yes.”
Tree quota Non-empty, non-tree quota Fail to set the tree quota
directory values. In this situation, the
data is restored but the
quota metadata is not. A
message is transmitted to
the DMA to indicate that
some of the contents of the
tape are not restored.
Tree quota (simple) Tree quota (simple) Warning and limit values
are restored from tape.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
10-6
Tree quota (nested) Tree quota (nested) Warning and limit values
are restored from tape. Tree
quota settings are restored
from tape.
Tree quota (simple) Tree quota (nested) Warning and limit levels are
restored from tape. A
warning message is
transmitted to the DMA to
indicate that the change
from a nested quota to a
simple quota is not
supported. The nested tree
is retained.
Tree quota (nested) Tree quota (simple) Warning and limit levels are
restored. A warning
message is transmitted to
the DMA to indicate that the
change from a simple quota
to a nested quota is not
supported. The simple tree
is retained.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
10-7
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
10-8
The following list shows special cases for restoring quota tree root directories, and the
resulting action in each case:
• If the tree quota’s root directory does not exist on the destination volume, tree
quota information is restored when the tree quota’s root directory is created.
• If the tree quota’s root directory exists on a destination volume as an empty
directory, the tree quota information is restored from tape to the destination
directory regardless of whether the target directory is a tree quota root directory or
not.
• If the tree quota’s root directory exists on the destination volume as a directory
with content, tree quota information is restored from tape and the directory is made
a tree quota root. In all other situations, the tree quota warning and limit values are
not restored. A message is transmitted to the DMA to indicate that the tree quota
information was not restored. Any files or directories on the directory are restored.
Table 10-6 describes the ONSTOR_IGNORE_QTREES environment variable.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
10-9
Because quota information is present on both the source and target volumes, if the
target volume is promoted, it already owns a copy of the quota conditions that were
active the last time the mirror occurred.
For more information about ONStor Data Mirror, see “Working with ONStor Data
Mirror” on page 13-1.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
10-10
Options and
Description
Arguments
VOLNAME Specifies the name of the volume where the quota will be
configured.
-l LIMIT An optional argument that specifies the absolute limit (in MiBs) for
the quota. A MiB is 1048576 bytes. You can set an infinite limit by
entering the keyword -l followed by a blank space then the word
“infinite.” By default, the limit is “infinite.”
• This argument interacts with the -e enforce argument to
indicate the threshold at which quota enforcement occurs. If
this threshold is exceeded, then an allocation fails.
• This argument also interacts with the -L yes argument to
indicate the threshold at which usage events are recorded
when the log limit has been exceeded.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
10-11
Options and
Description
Arguments
Note - Events are logged once per day regardless of how many times the
log limit has been exceeded in a 24-hour period. This argument allows the
admin to know that usage is getting high before the hard limit is reached
and user requests might fail. If you do not specify this argument, then the
default is -L no, and not logging occurs.
-w WARNING An optional argument that specifies the soft limit (in MiBs) for the
quota. To specify this argument, enter the keyword -w and the
value. You can set an infinite limit by entering the keyword -w
followed by a blank space then the word “infinite.”
This argument works with the -W yes argument. If the user or group
exceeds the -w WARNING usage limit, an event is written to the
quota log if the -W yes argument is configured. If the log limit has
been exceeded, the event is written to the log the first time that
usage exceeds the limit.
Note - Events are logged once per day regardless of how many times the
log limit has been exceeded in a 24-hour period. If you specify no limit,
the default is “infinite.”
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
10-12
Options and
Description
Arguments
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
10-13
definition is inherited by the children directories, the quota is applied to all children in
the directory tree. If the specific tree quota is nested, usage of a directory is recursively
charged up the tree to all quota tree roots until the closest simple quota is encountered
(or the root directory), whichever is first. If a directory is not a quota tree directory, it
does not get charged for usage.
The directory you specify must always be in relation to the root of the volume, so you
need to include the root slash ( / ) when you specify the directory path. You can
configure specific tree quotas as either simple or nested, which changes how the disk
allocation and usage is charged.
For specific tree quotas, you can specify the directory paths in either Windows or
UNIX formats. Because the NAS Gateway is multiprotocol, it reads the path correctly
and applies the quota. The directory path where the quota is being applied must
already exist.
Specific Tree Quotas Removal
The filesystem quota tree remove command removes a directory which is the
root of tree quota. All the directories and files under the quota tree will be removed
recursively.
To Remove Specific Tree Quotas
• Run the following command:
filesystem quota tree remove <VOL> <PATH>
This command does not wait for the actual file removals, but all of them will be taken
out of the namespace and no further access to them allowed. If the path is not a
directory or quota tree root, this operation will fail.
Specific User and Group Quotas
Specific user or group quotas enable you to set specific usage conditions for individual
users or groups that access the volume. These usage conditions for specific user or
group quotas are applied along with the default user or group quotas on the volume.
When multiple specific quotas are configured for a user or group, the NAS Gateway
analyzes all of them, and applies the strictest to offer the most control over usage.
Specific user or group quotas are optional.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
10-14
When setting specific quota, you can specify the name of the user or group to which
the quota applies. You can specify a user ID (UID) for a user quota, a group ID (GID)
for group quota, an NIS user or group name, or a Windows user or group name. The
following is the correct syntax for specifying names and IDs with specific quotas:
• 99@onstor (NIS or LDAP UID format)
• user@onstor (NIS or LDAP user name format)
• onstor\user (Windows user name format)
User and group names must be valid and known to the Windows or NIS domain
controllers. Because the NAS Gateway is multiprotocol, CIFS and NFS users and
groups can be seamlessly mapped between domain types through ID Mapping. For
more information about ID Mapping, see “Managing ID Mappings” on page 7-68.
Note - Problems with accessing the Windows or NIS domains can prevent the
NAS Gateway from displaying per-user quota information.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
10-15
Options and
Description
Arguments
USERNAME Specifies the name of the user to which you are assigning the quota
usage conditions. User names can be either Windows, LDAP, or NIS
formats, and they must match the user name that is configured on the
NIS or LDAP server or Windows domain controller.
Note - You cannot assign specific user quotas to the root user, for example
UID 0.
GROUPNAME Specifies the name of the group to which you are assigning the quota.
Group names can be either Windows, NIS, LDAP formats, and they
must match the group name that is configured on the NIS or LDAP
server or Windows domain controller.
PATHNAME Specifies the first object in the directory path where the tree quota is
configured. Specify the directory path in relation to the root of the
volume, for example /dir1. Children of this object inherit the quota
conditions of the parent.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
10-16
Options and
Description
Arguments
-l LIMIT An optional argument that specifies the absolute limit (in MiBs) for the
specific quota. The default is whatever LIMIT value is configured for
the default quota, or “infinite” if no value is specified for default and
specific quotas. You can set an infinite limit by entering the argument
-l followed by a blank space then the word “infinite.”
• This argument interacts with the enforce argument to indicate the
threshold at which quota enforcement occurs. If this threshold is
exceeded, then an allocation fails.
• This argument also interacts with the -L yes argument to indicate
a threshold when usage events are recorded if the log limit has
been exceeded.
-w WARNING An optional argument that specifies the soft limit (in MiBs) for the
specific quota. To specify this argument, enter the argument -w
followed by a blank space then the value. You can set an infinite limit
by entering the argument -w followed by a blank space then the word
“infinite.” If you specify no warn MiB value, the default is “infinite.”
This argument works with the -L yes argument to specify when an
event is written to the quota log.
-d An optional argument that causes the specific quota to use the values
from the default quota on the volume. This option is useful for
resetting a specific quota’s usage conditions to the same usage
conditions that are assigned to the default quota quota. This option
cannot be combined with the -l LIMIT or -w WARNING arguments.
Note - The -d argument does not set all arguments in the filesystem
quota user config command to their default values. It is used to set a
specific quota to the default quota’s values.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
10-17
Note - Power cycles and reboots do not change quota state. The quota will be
in the same operational state that it was in before the power cycle or reboot
occurred.
To Enable or Disable Quotas That Contains the Volume Where the Quota
Is Configured
• Run the following command from the virtual server context:
filesystem quota enable|disable VOLNAME
{user,group,tree}
Options and
Description
Arguments
VOLNAME Specifies the name of the volume where the quota is configured.
user,group,tree Specifies the type of quota you are enabling or disabling. You can
specify one or more quotas. If you specify multiple quotas,
separate each quota type with a comma.
Displaying Quotas
When you display quotas, the information shown varies depending on the following
conditions:
• If the quota feature is enabled and the quota configuration contains no specific user
quotas, the output of this command shows the default quotas assigned to everyone
on the volume.
• If quotas are enabled and the quota configuration contains one or more specific
user, group, or tree quotas, the output of this command shows the specific quota
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
10-18
configuration for the users, groups, or directory trees. If no limit or warning has
been configured, the output of this command shows infinite warning and limit
levels.
• If the quota feature is disabled, the output shows “unknown (disabled)” to indicate
that usage cannot currently be measured because quota is disabled.
• If the quota rebuild phase is in progress, the output of this command shows
“unknown (rebuilding)” to indicate that usage cannot currently be measured
because quota is rebuilding.
Note - In cases where a CIFS and an NFS identity exist, the NAS Gateway
gives preference to the CIFS identity and the NFS user’s usage is charged to
the CIFS identity.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
10-19
Note - A quota tree always owns its root directory, which is 8K in size, and
usage is always rounded up. Therefore, if you have configured a tree quota that
has no data contents, the output of filesystem quota tree show command
can show 1 MiB of usage because of the root directory.
Options and
Description
Arguments
GROUPNAM An optional argument that specifies the name of the group quota to be
E displayed. The names need to match the group names that are
configured on the NIS or Windows domain controller.
PATHNAME An optional argument that specifies the path for which you are displaying
the tree quota. Paths can be specified in either Windows or NIS format
and can have a maximum length of 1024 characters.
Configuring Quotas
This section documents the step-by-step procedures for configuring user, group, and
tree quotas on the NAS Gateway.
Before configuring quotas, decide the following:
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
10-20
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
10-21
Note - Each time you run the filesystem quota enable command, the NAS
Gateway rebuilds the user quota definition on the volume. To save time
configure all user quotas, and run the filesystem quota enable command
once to enable all user quotas as a batch instead of enabling them individually.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
10-22
Note - When you run the idmap notify change command, the NAS Gateway
preforms a quota rebuild.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
10-23
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
10-24
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
10-25
from different NAS Gateways at a common syslog host. Table 10-7 lists the default
facility values for the different log files that can be exported off of the NAS Gateway.
Elog local0
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
10-26
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
Chapter 11: Monitoring the NAS
Gateway
This chapter contains the following sections:
• “Monitoring with the NAS Gateway” on page 11-2
• “Supported RFCs and MIBs” on page 11-3
• “Managing SNMP” on page 11-4
• “Adding an SNMP Community” on page 11-4
• “Deleting an SNMP Community” on page 11-4
• “Adding an SNMP Trap” on page 11-5
• “Deleting an SNMP Trap” on page 11-7
• “Adding a Trap Specification List” on page 11-7
• “Deleting an SNMP Trap Specification List” on page 11-8
• “Showing an SNMP Configuration” on page 11-8
• “Deleting an SNMP Configuration” on page 11-9
• “Setting the System Contact and System Location” on page 11-9
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
11-2
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
11-3
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
11-4
Managing SNMP
The NAS Gateway uses SNMP commands to configure the SNMP agent on the NAS
Gateway.
Note - The community string that you configure on the NAS Gateway’s SNMP
agent must also be configured on the SNMP management console. Otherwise,
the two devices will not be able to communicate because they are in different
community strings.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
11-5
Trap Object
Trap Name Trap Group/Number
Paramenters
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
11-6
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
11-7
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
11-8
function. When a trap spec by the same name is already defined, the new trap spec
entries are appended to the existing list.
To Add a Trap Specification List
• Run the following command:
snmp add cluster|VIRTUALSERVER trapspec TRAPSPEC
TSLIST
TRAPSPEC specifies the enterprise trap specification list name.
TSLIST is the trap specification list. It is specified in a comma-
delimited list of trap types where each trap list entry is a keyword,
trap group, or trap number(s) as follows:
• gen includes generic traps (Cold-Start, Warm-Start,
AuthenErr).
• elog includes elog event generated enterprise traps with
severity at or above severity threshold.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
11-9
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
11-10
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
Chapter 12: Autosupport and Event
Monitoring
This chapter contains the following sections:
• “Understanding Autosupport” on page 12-2
• “Configuring Autosupport” on page 12-4
• “Event Monitoring and Reporting Services” on page 12-10
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
12-2
Understanding Autosupport
The ONStor NAS Gateway’s autosupport feature enables real time e-mail alerts for
system events. The autosupport feature tracks a specific set of events that the NAS
Gateway reports to the administrator. The tracked events can be:
• System-level, such as node resets.
• Element-level, such as card resets.
• Component-level, such as CPU resets.
For a full list of the events that the NAS Gateway tracks through autosupport, see
“Displaying and Clearing Autosupport Statistics” on page 12-9.
Use the autosupport feature to specify e-mail aliases for receiving system events.
When you specify the e-mail aliases, the NAS Gateway can notify an administrator
through e-mail when system events occur that might present a problem.
For autosupport to function, the management virtual server must have the DNS
resolver configured. For more information about the DNS resolver, see “Configuring
DNS Name Resolution for a Virtual Server” on page 3-46.
Elog Autosupport
Posts an event to an Elog file on the Forwards an e-mail of autosupport events and a
SSC, or displays the Elog message snapshot of the system configuration to the
output on the management console. administrator in real time.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
12-3
Elog Autosupport
Summarizes system events that are Can summarize the system configuration at the
equal to or more severe than an time of the system event in addition to the
administrator configured severity level. system event.
For more information about the NAS Gateway’s Elog facility, see “Setting Elog
Message Levels” on page 16-10.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
12-4
Configuring Autosupport
The following sections document how to configure autosupport.
Note - The e-mail address does not have to exist prior to entering it as part of
the autosupport feature on the NAS Gateway.
You can send notifications and notes sent to the same or a different e-mail
address.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
12-5
Note - You can specify only one e-mail ID in the EMAIL field.
If you don’t configure the e-mail address, it defaults to the NAS Gateway node name.
Note - The e-mail address does not have to exist prior to entering it as part of
the autosupport feature on the NAS Gateway.
You can send notifications and notes sent to the same or a different e-mail
address.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
12-6
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
12-7
Options and
Description
Arguments
-h HOUR Specifies the hour at which to generate the system report. Use a
numeric value between 0 and 23. 0 is midnight, and 23 is 11 pm.
You can use the -m MINUTE argument to specify the
generation of the system report at a time other than the top of
the hour. You can enter multiple values for this argument by
specifying a comma-separated list of values.
-d DATE Specifies the date on which you want the system report
generated. Enter one of the following:
• The numerical date of a particular day in the month. For
example, generate a system report on the first day of each
month, enter 1. Also, you can enter a comma-separated list
of dates.
• A specific date. For example, to generate a system report
on the September 27, 2003, specify the date as 092703.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
12-8
Options and
Description
Arguments
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
12-9
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
12-10
EMRS facilitates diagnosing and troubleshooting the NAS Gateway and provides the
following benefits:
• Faster resolution of issues
• Automatic transmittal of problems to ONStor
• Facilitated analysis of non-optimal NAS Gateway configurations, which can
prevent issues that might arise from a misconfigured NAS Gateway
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
12-11
Method Description
Admin-initiated Sends the output of the system get commands to the ONStor
secure server. For details about these commands, see “Managing
NAS Gateway System Health” on page 16-19.
Event-initiated When selected system events occur, the NAS Gateway transmits
information about those events to the ONStor secure server. CPU
reboot events are not currently a trigger for EMRS to send
information. Event-initiated EMRS enables information to be sent to
the ONStor secure server asynchronously after CPU events occur.
The information is transmitted when a CPU reboots, not when a
CPU crashes.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
12-12
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
12-13
Options and
Description
Arguments
-p PORT Specifies the proxy port that supports the EMRS information from the
NAS Gateway.
-u USER Specifies the user name if the proxy requires one for access.
-P PASSWORD Specifies the password if the proxy requires one for access.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
12-14
Note - The system get config -s command does not support displaying
information contained in admin-initiated uploads.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
12-15
After the information is uploaded to the ONStor secure server, Customer Support can
begin analysis of the information.
To Upload System Information Through a Case Number
Step 1: Make sure there is case opened with ONStor Customer Support.
The case number must be used in uploading the information.
Step 2: When you receive the case number, make a note of it.
Step 3: Run the system get command for the type of information that you
want to upload, and include the case number in the command. For
example, to upload the system information for case number 2659,
run the command as follows:
• system get all -c 2659 to transmit all logs, statistics,
crash information, and configuration information.
• system get config -c 2659 to transmit configuration
information.
• system get logs -c 2659 to transmit various log files.
• system get stats -c 2659 to transmit system and volume
statistics.
• system get tse -c 2659 to transmit pertinent technical
support information.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
12-16
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
Chapter 13: Working with ONStor
Data Mirror
This chapter contains the following sections:
• “Managing ONStor Data Mirror” on page 13-2.
• “Configuring Data Mirrors” on page 13-7.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
13-2
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
13-3
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
13-4
• Target read-only with the ability to move live file systems on a target volume to the
latest snapshot
• Backup of remote mirror target
Data Mirror over IP Prerequisites
For Data Mirror over IP to work you need to open the following specific ports in your
firewalls:
• The sanm agent on the target file processor listens on TCP port 58502.
• The sanmd daemon on the system switch and controller (SSC) listens on UDP port
36035.
ONStor does not support changing these ports.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
13-5
During a base line data copy, a baseline mirror session takes place, which transfers the
file system in its entirety. Subsequent mirror sessions are incremental.
Asynchronous and Synchronous Mirroring
Two types of mirroring exist: synchronous and asynchronous. With synchronous
mirroring, the file system is replicated to the target volume in real time. With
asynchronous mirroring, the file system is replicated to the target volume at recurring
synchronization intervals. The ONStor Data Mirror solution supports asynchronous
mirroring through two methods: a mirror schedule and an on-demand mirror session.
• The mirror schedule is a policy you can configure that sets various time parameters
for managing the mirroring interval of file system data from the source volume to
the target volume.
• The on-demand mirror enables you to manually invoke the transmission of file
system data from the source volume to the target volume. The on-demand mirror
session requires more user intervention because the on-demand session occurs
only once each time you start the session by running a user interface command.
A configured mirror schedule can exist concurrently with an on-demand mirror
session, but only one mirror session per volume can be active.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
13-6
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
13-7
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
13-8
maximum number of volumes allowed per NAS Gateway. You can schedule multiple
mirror sessions to start concurrently. The NAS Gateway processes a maximum of 16
mirror sessions at a time. Any sessions beyond the first 16 sessions scheduled to start
at the same time are placed on a pending list. As mirror sessions complete, the NAS
Gateway automatically starts mirror sessions from the pending list.
To Perform a Baseline Data Copy
Step 1: Create a mirror on the source cluster by running the following
command:
mirror create MIRRORNAME SRC-VOL TGT-VOL
[-R TARGETARRAYORDEVICE] [-S STATE] [-m MINUTE]
[-h HOUR] [-d DATE] [-M MONTH] [-D DAY]
[-l{low|med|high}]
MIRRORNAME Specifies the name of the mirror you are creating. Use an
alphanumeric character string of up to 16 characters.
Avoid using special characters such as *,?, ~, and /.
SRC-VOL Specifies the name of the source volume that the NAS
Gateway will be mirroring onto the target volume.
TGT-VOL Specifies the name of the target volume that will receive
the data copy from the source volume on the source disk.
For a baseline data copy, use an existing volume.
-R TGTARRAYORDEVICE The name of the device controller for the target disk.
Type the name of the array controller. You cannot
mirror a file system volume across multiple arrays.
The name string can be up to 127 characters. This
optional parameter becomes required if the target
volume does not yet exist.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
13-9
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
13-10
Step 2: Start the mirror with the mirror start command to perform a
baseline data copy to the target volume on the source cluster. For
details on how to use this command, see “Starting or Stopping a
Mirror” on page 13-20.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
13-11
Step 3: When the baseline data copy is completed, delete the local mirror
with the mirror delete command on the source cluster. Deleting
the local mirror that you created for the baseline data copy
operation automatically promotes the target volume to a standard
volume. For details on how to use this command, see “Deleting a
Mirror” on page 13-19.
Step 4: Disconnect the target volume storage and move the storage to the
remote site. Then connect it to the target cluster.
Step 5: Delete the target volume from the source cluster with the volume
delete command. For details on how to use this command, see
“Deleting a Volume” on page 6-22.
Step 6: Rescan all LUNs on the source cluster with the lun rescan all
command. For details on how to use this command, see the ONStor
Bobcat 2200 Series Command Reference.
Step 7: Rescan all LUNs on the target cluster with the lun rescan all
command. For details on how to use this command, see the ONStor
Bobcat 2200 Series Command Reference.
Step 8: Import the target volume in a virtual server of the remote cluster as
a mirror volume with the volume import command. For details on
how to use this command, see “Importing a Volume From One
Cluster to Another” on page 6-20.
Step 9: Bring the target mirror volume on the remote cluster online by
running the volume online command. For details on how to use
this command, see “Bringing a Volume Online” on page 6-19.
Step 10: On the source cluster, create a data mirror over IP with the mirror
create command by using the source and target volumes, and the
IP or DNS name of the virtual server where you imported where
you imported the target volume. You do not need to specify the -R
option at this point because the target volume already exists. For
details on how to use this command, see “Creating Local Mirror
and Data Mirror over IP Schedules” on page 13-12.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
13-12
Note - Ensure that the remote mirror name is the same as the local mirror name
you previously created.
At this point, each subsequent mirror session is incremental, and you can
create mirror schedules.
Note - For a remote mirror, this command must be run in the context of the
virtual server associated with the remote mirror's source volume.
Options and
Description
Arguments
MIRRORNAME Specifies the name of the mirror you are creating. Use an
alphanumeric character string of up t 15 characters. Avoid using
special characters such as *,?, ~, and /.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
13-13
Options and
Description
Arguments
-m MINUTE An optional argument that specifies the minutes of the hour at which
to initiate a mirror session. Enter a value from 0 to 59 where 0 is the
top of the hour and 59 is the 59th minute of the hour. This value can
interact with the -h HOUR argument to specify an hour at which the
mirror session will occur. If you do not specify a minute value, the
mirror session will occur at the top of the hour. If you do specify a
minute value, the mirror session occurs at that minute within an hour.
By default, this argument is set to zero (0).
Multiple values can be entered in a comma-delimted list.
-h HOUR An optional argument that specifies the hour of the day at which to
initiate a mirror session. This parameter accepts 24-hour time, so
enter a value from 0 to 23 where 0 is midnight and 23 is 11:00 p.m.
This value can interact with the -m MINUTES argument to specify a
time other than the top of the hour. If you do not specify a minutes
value, the session will occur at the top of the hour that you specify. If
you do specify a minutes value, the session will occur at the number
of minutes in the hour you specify.
Multiple values can be entered in a comma-delimted list.
-M MONTH An optional argument that specifies the month of the year in which to
initiate a mirror session. Enter a value from 1 to 12 where 1 is January
and 12 is December. This value can interact with the -d DOM
argument. to specify a particular date at which the mirror session will
occur. If you do not specify a month value, the mirror session will
occur every month based on the time values configured with the other
time parameters. If you do specify a month value, the mirror session
occurs at that month within the year.
Multiple values can be entered in a comma-delimted list.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
13-14
Options and
Description
Arguments
Note - You can also create a mirror schedule when you first create a mirror
with the mirror create command.
Note - You need to run this command from the context of the virtual server of
the NAS Gateway that you are logged on.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
13-15
Options and
Description
Arguments
MIRRORNAME Specifies the name of the mirror you are modifying. Use an
alphanumeric character string of up to 16 characters. Avoid using
special characters such as *,?, ~, and /.
-s SRCFSYS Specifies the name of the source volume. You can change this
attribute only when the mirror is idle.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
13-16
Options and
Description
Arguments
-t TGTFSYS Specifies the name of the target volume.You can change this
attribute only when the mirror is idle.
-l Specifies the relative load that the mirror session should place on
{low|high|med} the NAS Gateway. The default is med.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
13-17
Note - Mirror sessions can now resume, and subsequent mirror sessions will be
incremental.
Note - This procedure assumes that the target volume has been promoted and is
currently servicing data from the remote site.
Step 1: When the source NAS Gateway is back up, run the mirror
disable command on the source NAS Gateway to prevent the
source NAS Gateway from attempting to send data to the target
volume. Any such attempt would fail because you promoted the
target volume in Step 2.
Step 2: Reverse the mirror by running the following command on the
source NAS Gateway:
mirror reverse MIRROR
MIRROR is the name of the mirror you are reversing. Reversing a
mirror automatically enables the mirror.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
13-18
Step 3: Run the mirror start command on the source NAS Gateway that
recovered to transfer back to the original source volume all target
volume modifications made to the target since the target volume
was promoted. Before doing this, you might want to disable CIFS
and NFS services to prevent additional modifications to the target
volume. For details on how to use the mirror start command, see
“Starting or Stopping a Mirror” on page 13-20. For details on how
to disable NFS and CIFS shares, see “Enabling or Disabling NFS
Shares” on page 7-49 and “Enabling or Disabling CIFS” on page 7-
53.
The following steps are intended to restore your original mirror direction after a
disaster recovery.
Step 4: Take the source volume on the original NAS Gateway that serviced
the data offline by running the volume offline command. For
details on how to use this command, see “Taking Volumes Offline”
on page 6-18.
Step 5: Promote the source volume on the original source cluster that had
the disaster with the mirror promote command. For details on
how to use this command, see “Promoting Mirrors” on page 13-21.
Step 6: On the original target NAS Gateway that serviced the data
temporarily, reverse the mirror by running the following command:
mirror reverse MIRROR
MIRROR is the name of the mirror you are reversing.
Step 7: Bring the source and target volumes online on their respective
clusters by running the volume online command. For details on
how to use this command, see “Bringing a Volume Online” on
page 6-19.
Mirror sessions can now resume through the mirror schedule or
by using the mirror start command.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
13-19
Deleting a Mirror
When you delete a mirror, all its configured parameters are deleted, but the file system
data associated with the mirror is not deleted from the target disk array. Deleting a
mirror when the target volume has not yet been promoted will promote the target
volume from a mirror to a standard volume. The target volume has to be offline.
To Delete a Mirror Schedule
• Run the following command:
mirror delete MIRRORNAME
MIRRORNAME is an alphanumeric character string of up to 15
characters.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
13-20
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
13-21
Promoting Mirrors
You can promote a mirror to a mountable, read-write file system.
Before you can promote a mirror, ensure that the target volume is in an operational
state of IDLE and that the target volume is offline.
To Promote a Mirror to a Read-Write File System
Step 1: Check whether the mirror you want to promote is in IDLE state
by running the following command:
mirror show
From within the context of the NAS Gateway, this command
displays a list of all mirrors associated with that NAS Gateway
and the mirror’s operational state.
If the mirror you want to promote is in paused or in-progress
state, wait for it to reach idle state.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
13-22
Step 2: If the mirror you are promoting has is scheduled to occur at regular
intervals, turn off the mirror schedule by running the following
command:
mirror schedule MIRRORNAME
MIRRORNAME is the name of the mirror.
Clear all parameters presently specified in the mirror schedule to
remove the mirror schedule.
Step 3: Run the following command to obtain the latest mirror before
promoting it:
mirror start MIRRORNAME
MIRRORNAME is the name of the mirror.
Step 4: Take the target volume offline by running the following command:
volume offline VOLNAME
VOLNAME is the name of the target volume to be taken off line.
Step 5: Promote the mirror to the role of file system by running the
following command:
mirror promote MIRRORNAME
MIRRORNAME is an alphanumeric character string of up to 15
characters.
Step 6: Unless you plan to demote the target volume, you can delete the
mirror information from the cluster database by running the
following command:
mirror delete MIRRORNAME
MIRRORNAME is the name of the mirror you just promoted to the
role of file system.
Note - Using mirror delete on the source cluster in Step 5 instead of mirror
promote automatically promotes the target volume and deletes the mirror.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
13-23
The target volume can now be brought online and service data after you add shares.
Note - When you pause a mirror session, the file system can change without
the mirror reflecting the changes.
Paused mirror sessions do not time out or restart. When a mirror session is paused, it
remains paused until you resume the mirror session.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
13-24
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
Chapter 14: Managing Backup and
Restore
This chapter contains the following sections:
• “Introducing Backup and Restore” on page 14-2
• “Adding Local User Accounts for NDMP Services” on page 14-18
• “Managing NDMP Sessions” on page 14-28
• “Configuring the NAS Gateway for NDMP Services” on page 14-39
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
14-2
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
14-3
Note - All aspects of scheduling and activating backups are configured through
the NDMP client, not on the ONStor NAS Gateway (NDMP server).
For details about supported DMAs and how to configure the NAS Gateway to
interoperate with DMAs see “Supported Data Management Applications” on page 14-
5 and “Configuring the NAS Gateway for NDMP Services” on page 14-39. For more
information about NDMP, consult www.ndmp.org.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
14-4
also lose quota information. Consequently, during a restore operation that file system
meta data is not restored. However, all files with file data are restored.
Note - Using a CIFS or NFS client for backing up data might adversely affect
performance.
This chapter does not describe in detail backup and restore operations using a
CIFS or NFS client. The remainder of this chapter focusses on NDMP backup
and restore operations.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
14-5
On the NDMP client, you can give incremental backups a level that ranks them
and allows a backup only when a higher ranking increment occurs. For details on
how to assign levels to incremental backups, see the documentation that
accompanied your backup application.
• The NAS Gateway supports cumulative and differential backups for full and
partial backups. In a cumulative backup, a backup of the changed data since the
last full backup occurs. In a differential backup, only the changes in the data that
occurred since the last backup are backed up. Some DMA vendors use different
terminology and time intervals for differential, partial, or cumulative backup. For
specifics, consult the documentation that accompanied your DMA product.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
14-6
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
14-7
In the setup phase for remote backup and restore, the client issues commands to
establish two control connections: one to the tape server handling all tape control and
one to the data server to control the backup and restore operation.
The commands that the NDMP client issues can include:
• Authentication and queries for NDMP server information
• The types of backup supported
• File system information
• Tape information
• SCSI tape changer information
Using the control connection, the NDMP client is the initiator of requests that trigger
responses from the NDMP server. The NDMP client opens control connections in the
setup phase. After successful discovery of the target device and its characteristics, the
NDMP client requests a data connection for actual transfer of data to a storage device.
For a local backup and restore session, the address type is always local. For a remote
backup and restore session, the address type is TCP.
In the communication phase, the actual transfer of data between the disk and the target
storage device that was discovered in the setup phase occurs. In the communication
phase, the NDMP client is still the initiator of requests, and the NDMP server is the
agent that activates drivers that place data on, or pull data from, one or more tape
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
14-8
devices. Figure 14-3 shows the local backup and restore operations and related control
connections and data flow.
NDMP Client
Control Connection
NDMP Server
(ONStor NAS Gateway)
Data
Disk
Tape Library
Figure 14-3 NDMP Client and Server in Simple Topology
During the setup phase, the NAS Gateway listens for the NDMP client’s requests on
the NDMP server’s TCP port. The NAS Gateway also contacts the tape drive or the
robot arm of a tape library and prepares the tape to receive data. In Figure 14-3, the
dashed line shows this as the control connection. During the communications phase,
on each instance of backup or restore, the NAS Gateway creates an NDMP session on
a one-to-one basis with each client.
In each NDMP backup session, the backup application transmits data from the disk
and writes it to the tape drive, as shown by the solid black line in Figure 14-3. The
NDMP client governs opening and closing the backup session, and transmitting the
data.
In each NDMP restore session, the restore application reads data from the tape library
and writes it to disk, as shown by the grey line in Figure 14-3. The NDMP client
governs opening and closing the backup session, and transmitting the data.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
14-9
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
14-10
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
14-11
To Back Up a Mirror
Step 1: Create a snapshot on the source volume by running the snapshot
create command. This command requires a volume name and a
snapshot name.
A snapshot name can be in any alphanumeric character format of
up to 256 characters. However, do not use any of the following
snapshot names:
• Reserved snapshot names, such as hourly.x, daily.y., or
weekly.z. For more information about reserved snapshot
names, see “Managing Snapshots” on page 9-1.
• Mirror snapshot names, such as SANM_SS_m1_000001.
Step 2: Note the name of the snapshot that you just created, you will use it
later.
Step 3: Create the mirror by running the mirror create command. For
more information about this command, see “Working with ONStor
Data Mirror” on page 13-1.
Step 4: Start the mirror by running the mirror start command.
Note - Wait for the mirror to complete successfully before continuing with
Step 5.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
14-12
Note - Although you can use the management virtual server for configuring
user data or populating it with file system data, ONStor recommends to reserve
the management virtual server for system functions.
The management volume is used to store state information when performing a backup
or restore operation. Do not delete any files or directories within the temporary
directory on the management volume.
Ensure that you have enough free space on the management volume during a backup
or restore sessions:
• For backup operations, use the following formula as a general guideline for
determining how much free space you need on the management volume: On the
management volume, reserve 0.3 percent of the size of the volume you are backing
up.
• For restore operations, use the following formula as a general guideline for
determining how much free space you need on the management volume: On the
management volume, reserve 1 percent space of the amount of space used on the
volume you are restoring. This formula is based on an average file size of 16 K.
Space requirements change linearly with changes of the average file size.
AutoGrow parameters are in effect when backup or restore occurs. If the amount of
data for a backup or restore operation is larger than the volume can hold, the
AutoGrow feature is triggered and the volume manager obtains enough LUN space to
accommodate the amount of data in the operation.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
14-13
Some environment variables are supported by the NDMP specification, and others are
specific to ONStor. Table 14-11 lists all environment variables defined by the NDMP
protocol and ONStor and supported by the NAS Gateway. In the table, all variables
specific to ONStor are indicated as such. The NAS Gateway ignores any unsupported
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
14-14
variables and does not send a message to the DMA or the NAS Gateway’s
management console.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
14-15
FILESYSTEM Default: Used in backup and restore sessions. Defines the root of
none the backup. The path must include the volume name and
must begin with a forward slash ( / ), for example, /vol1, /
vol1/homes. Also include the snapshot directory for the
volume, for example, /vol1/.snapshots, so that the
volume’s snapshots are also backed up and restored.
When backing up a read-only mirror, set this variable to a
path within a snapshot that was created on the NAS
Gateway where the volume is writable.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
14-16
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
14-17
PATH_ return value Used in backup sessions as a return value to the DMA.
SEPARATOR Default: Defines the character to be used as a separator in the
none path. The forward slash ( / ) is always returned as the
path separator at the end of each backup session. The
DMA must use the character specified by
PATH_SEPARATOR when specifying files to be restored.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
14-18
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
14-19
Options and
Description
Arguments
USERNAME Specifies the user account name. Use an alphanumeric character string
between 3 to 63 characters.
-k “PUBKEY” Specifies the SSH key for a local user account when the user account is
created. The -k PUBKEY argument must be the SSH key that the client
generated. If the key is not supplied or is not an exact match with the
client’s SSH key, the user account cannot automatically log in. Therefore,
you need to enter a password every time the user account accesses the
NAS Gateway.
The first time you create a local user account, you need to specify the
password, even if you use the -k PUBKEY argument. The NAS Gateway
gives precedence to the SSH key, so if it is specified, it is used instead of
the password. If the SSH key is removed, the password is still configured,
and you need to enter it for the local user account to be granted access to
the NAS Gateway.
The PUBKEY value is a character string from 1 to 4094 characters
enclosed in double quotation marks.
Step 2: When prompted, enter the password for the user account you just
created. The password for the local user account is an alphanumeric
character string from 6 to 64 characters.
Step 3: Set the privileges for the user account you just created by running
the priv add allow command. For more information about this
command, see “Managing Privileges” on page 2-1. As part of this
command, you need to set a scope at which the privilege is applied.
For NDMP functionality, valid scopes are cluster or vsvr (virtual
server). The scope cluster is greater than the scope vsvr and
therefore includes the scope vsvr. You can also provide various
levels of functionality with this command:
• For adding a user with full NDMP administrative privileges,
set the user to cluster privilege.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
14-20
Options and
Description
Arguments
DEVNAME Specifies the physical device name of the tape device as known
to the NAS Gateway.
LOGICALNAME Specifies the logical device name of the tape device for which
you are creating an alias.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
14-21
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
14-22
• The tape device’s logical device name. Each physical device can support up to 12
logical device names.
• The tape’s state. Valid states are:
- CLOSED
- OPENING
- OPEN
- BUSY
- REWINDING
- UNLOADING
- CLOSING
• Any configured alias for each tape device. If the device has no configured alias,
the Alias field contains NA.
• The tape’s attributes. Valid values are:
- Density, either high density (HIGH-DENSITY) or low density (LOW-
DENSITY).
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
14-23
Options and
Description
Arguments
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
14-24
Note - The tape must be open for this command to complete. Otherwise, the
NAS Gateway displays an error message indicating that the device is not open.
Options and
Description
Arguments
DEVNAME Specifies the tape controller that you want to close to read and write
operations.
-f An option that forces the tape controller to close. Any client that
attempts a subsequent session will get an error message.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
14-25
Options and
Description
Arguments
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
14-26
Options and
Description
Arguments
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
14-27
the device. When the device is closed, the SCSI_Release flag is sent to the NAS
Gateway to remove the lock and allow the device to be opened.
In some error cases, the SCSI_Reserve flag is not removed even when the device is
closed, so the device remains unavailable. The NAS Gateway supports the scsi
release command to explicitly remove the SCSI_Reserve flag. ONStor recommends
using the scsi release command only after you determine that the device is actually
closed. Run the scsi release command from the same NAS Gateway that reserved
the tape device.
To Release a Reserved Tape Device
Step 1: Run the following command to determine whether the device is
open or closed:
tape devlist
Note the physical name of the device you want to release. You
will use this information in the next step.
Step 2: Run the following command to display detailed information about
the device:
tape devlist -v DEVNAME
DEVNAME is the unique name of the tape device you want to
release.
Note the WWN and LUN ID of the device. You will use this
information in the next step.
Step 3: Run the following command to release the device:
scsi release WWN LUN
Options and
Description
Arguments
WWN Specifies the world wide name of the device you want to
release.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
14-28
Note - Use this command with caution. Many DMAs use multiple sessions to
perform a backup or restore operation. In some cases, if you run this command
while a session is active, you might cause an error that stops the entire
operation. For example, if multiple sessions comprise a single backup
operation, and you run this command while one session in the operation is
active, the entire backup operation can be stopped. ONStor therefore
recommends that you verify that all sessions in the virtual server are closed
before running the ndmp disable command.
You can verify that all sessions in the current virtual server are closed by
running the ndmp show status -v command. If you run this command and no
sessions are listed, no sessions are active, and you can safely run the ndmp
disable command.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
14-29
active:
ndmp show status
• If this command returns an empty list, proceed to the next
step.
• If this command returns one or more sessions, wait until the
in-progress sessions complete.
Step 2: When no sessions are active, run the following command from
within the context of a virtual server to disable the NDMP software
on that virtual server:
ndmp disable
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
14-30
Note - For more information about what version of NDMP your backup
applications supports, refer to the product documentation that accompanied
your backup application.
If a protocol version mismatch occurs between the client and NAS Gateway, automatic
negotiation occurs with between the NDMP client and the NAS Gateway to reach
agreement on which version of NDMP to use. The NAS Gateway, as the NDMP
server, responds to the version requested by the client. Therefore, the client must
support either NDMP v3 or v4.
To Set the Active Version of NDMP
• Run the following command:
ndmp set version NUM
NUM indicates the version of the NDMP protocol that should be
negotiated. By default, v4 is used, but if the client cannot support
NDMP v4, the client and NAS Gateway will renegotiate to
NDMP v3. However, certain DMAs fail to perform protocol
negotiation. If you are using such a DMA, you can use this
command may restrict the NDMP server to version 3.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
14-31
Note - This command is presently supported at the CLI only. It is not supported
by the NAS Cluster Manager.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
14-32
• The standard tape model used causes the tape driver to halt at a file mark and
position the tape at the beginning of tape (BOT) side of the file mark. To support
Veritas interoperability with NDMP v3, configure this tape model behavior by
setting the alternative tape model parameter to true. To support Tivoli TSM
interoperability, set the alternative tape model parameter to false.
By default, the alternative tape model feature is set to false, which supports
interoperability with Tivoli TSM and all versions of Veritas that use NDMP v4. When
set to true, the virtual server supports the default tape driver functionality within a
negotiated NDMP v3 environment.
Configuring the alternative tape model enables the NAS Gateway to conform to other
vendors’ backup implementations. For more information about which version of tape
driver model to set, consult the documentation that accompanied your NDMP backup
solution. Then, set the NAS Gateway to comply with that implementation.
Note - This command has no effect if the DMA negotiates protocol version 4,
which is the default. Use this command only if version 3 is negotiated.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
14-33
Note - If you are specifying the tape block size, specify a multiple of 512-
bytes. Otherwise, you might experience I/O errors.
Setting this parameter can change the tape device’s read and write speed.
A mismatch occurs between the tape block mode configured on the NAS
Gateway and the tape block mode configured on the DMA can cause I/O
errors.
Options and
Description
Arguments
-1 Sets the virtual server to use the default tape block mode and size that are
in use on the tape device.
SIZE Specifies the size, in bytes of a tape block, for the virtual server to support
fixed block mode.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
14-34
Note - You can view the current state of the NDMP software by running the
ndmp show config command.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
14-35
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
14-36
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
14-37
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
14-38
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
14-39
Preconfiguration Considerations
Most NDMP applications require some information to set up the application. Obtain
the following information before performing the configuration procedure:
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
14-40
• Device paths. For more information, see “Mapping Device Paths to Physical
Devices” on page 14-41.
• The IP address of the virtual server in which you are configuring NDMP
functionality. Run the vsvr show command from the virtual server context to view
this information.
• The TCP port that will support NDMP services. By default, this is 10,000, but you
can set it to a different value with the ndmp set port command.
• The username and password for authentication. This information is configured
with the NAS Gateway’s useraccount add command. For more information
about this command, see “Adding Local User Accounts for NDMP Services” on
page 14-18.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
14-41
Note - If you create the management volume with default parameters, you can
always configure custom usage and AutoGrow parameters later by running the
volume modify command against the management virtual server. You cannot
change the management volume’s name through the volume modify
command because the management volume name is automatically generated.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
14-42
• Through a SCSI bridge, for topologies with a SCSI bridge. See “Mapping a Device
Path to a Physical Device by Querying a SCSI Bridge”.
• By querying the tape library, for topologies with a direct-attached tape. See
“Mapping a Device Path to a Physical Device by Querying a Tape Library” on
page 14-43.
Note - Determining the device path is optional for configuring NDMP services
on the NAS Gateway. In standard configurations, the tape device is directly
connected to the SAN, and mapping device paths is not necessary.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
14-43
Step 4: Access the SCSI bridge. For more information about accessing or
using the SCSI bridge, consult the documentation that accompanied
the SCSI bridge.
Step 5: On the SCSI bridge, display the WWNs and LUNs and locate the
tape device associated with the LUN you learned from the NAS
Gateway’s scsi show detail command. With the LUN
information, you can map the FC LUN on the NAS Gateway to the
SCSI LUN on the SCSI bridge. For more information about using
the SCSI bridge, consult the documentation that accompanied the
SCSI bridge.
The information from the NAS Gateway and the SCSI bridge is
sufficient to determine which path is for which physical device.
Mapping a Device Path to a Physical Device by Querying a Tape Library
When you know a device’s path ID, you can map the path to the actual physical drive
that owns it. When you map a path to a device, you use the Path ID displayed on the
NAS Gateway, relate that value to a LUN, and locate the LUN on the tape library.
To Map Which Path Equates to Which Drive
Step 1: Obtain the mapping for a tape device by issuing the tape
devlist -v command. Note the device name.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
14-44
in the LUN ID is the FC LUN ID, not the SCSI LUN ID.
Step 4: Access the tape library. For more information about accessing or
using the tape library, consult the documentation that accompanied
the tape library.
Step 5: On the tape library, display the WWNs and LUNs and locate the
tape device associated with the LUN you learned from the NAS
Gateway’s scsi show detail command. With the LUN
information map the FC LUN on the NAS Gateway to the SCSI
LUN on the tape library. For more information about using the tape
library, consult the documentation that accompanied the tape
library.
The information from the NAS Gateway and the tape library is
sufficient to determine which path is for which physical device.
Note - TSM supports only local NDMP backup and restore operations.Veritas
supports local and remote backup and restore operations.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
14-45
Note - The remaining NDMP commands will be run in the context of the
current virtual server.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
14-46
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
14-47
Note - Setting this parameter can change the tape device’s read and write
speed. Your NDMP sessions will slow down if you set fixed block mode with
an invalid size.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
14-48
Step 14: On the NDMP client, enter the TCP port on which the NAS
Gateway is supporting NDMP services. If you changed the TCP
port where NDMP will be supported, enter the port that you
configured in Step 4 on page 14-46.
On the NDMP client, supply the username and password for use in authentication.
Enter the username and password that you configured in Step 1 on page 14-45.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
Chapter 15: Managing Virus
Scanning
This chapter contains the following sections:
• “Introducing Virus Scanning” on page 15-2
• “Installing the VirusScan Applet” on page 15-4
• “Unregistering the VirusScan Applet” on page 15-17
• “Configuring the VirusScan Applet” on page 15-18
• “Configuring the CIFS Domain” on page 15-23
• “Prerequisites and System Recommendations” on page 15-27
• “Configuring the Symantec AntiVirus Scan Engine” on page 15-29
• “Configuring the McAfee VirusScan Enterprise 8.0i Software” on page 15-30
• “Managing Virus Scanning From the CLI” on page 15-31
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
15-2
Although a virtual server can use multiple VirusScan applets, all applets a
virtual server uses must be of the same type, either Symantec or McAfee.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
15-3
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
15-4
Installation Prerequisites
Before installing the VirusScan applet, verify the following:
• Verify that your NAS Gateway is installed, powered up, and configured.
• If you are using the Symantec AntiVirus Scan Engine, ensure that it is installed and
configured to use ICAP. Refer to the Symantec AntiVirus Scan Engine
documentation on how to do this.
• If you are using the McAfee AntiVirus Engine API, ensure that the .DAT files are
available to enable the virus-scan engine to run.
• Verify that both the VirusScan applet and the virus-scan engine (if you are using
Symantec) are installed on servers configured with a static IP address.
• You are logged in as an administrator or with an account that has administrator
privileges for installing the VirusScan applet.
• CIFS domain users must have administrator privileges on the machine where the
applet is installed.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
15-5
You can click Cancel at any time to stop the installation. Click
Next to continue with the installation.
Step 2: Select Symantec as the applet that you want to install and click
Next.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
15-6
Step 3: The Custom Setup dialog box enables you to customize the default
setup of the applet. You can make the following changes:
• Change the directory location where the applet will be
installed.
• Select from a dropdown list whether you want to install the
basic features or all features of the applet, and when and
where you want to install them.
• View the disk space requirements for the installation.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
15-7
Step 4: From the Symantec Virus Scanner dropdown list, select the features
you want.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
15-8
Step 5: If you want to change the location of the applet, click Change on
the Custom Setup dialog box. You can either browse to the
directory where you want the applet to install or you can enter the
directory path.
Step 6: To view disk space requirements for the installation of the applet,
click Space on the Custom Setup menu. Disks that are highlighted
on the Disk Space Requirements list do not have enough disk space
available for the installation of the applet.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
15-9
Step 7: When you have completed the custom setup, click Next to continue
the installation.
Step 8: On the Ready to Install the Program window, click Install to
continue the installation of the applet.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
15-10
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
15-11
You can click Cancel at any time to stop the installation. Click
Next to continue with the installation.
Step 2: Select McAfee as the applet that you want to install. Click Next.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
15-12
Step 3: The Custom Setup dialog box enables you to customize the default
setup of the applet. You can make the following changes:
• Change the directory location where the applet will be
installed.
• Select from a dropdown list whether you want to install the
basic features or all features of the applet, and when and
where you want to install them.
• Select the disk space for the installation.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
15-13
Step 4: From the McAfee Virus Scanner dropdown list, select the features
you want.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
15-14
Step 5: If you want to change the location of the applet, click the Change
on the Custom Setup dialog box. You can either browse to the
directory where you want the applet to install or you can enter the
directory path.
Step 6: To select the disk to which to install the applet, click Space on the
Custom Setup dialog box. Disks that are highlighted on the Disk
Space Requirements list do not have enough disk space available
for the installation of the applet.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
15-15
Step 7: When you have completed the custom setup, click Next to continue
the installation.
Step 8: On the Ready to Install the Program window, click Install to
continue the installation of the applet.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
15-16
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
15-17
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
15-18
File Description
ONStorVirusScanApplet.exe Application.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
15-19
Note - If you do not use the default port for ICAP, you need to specify the port
number in the applet configuration file.
<ONStorVirusScanApplet>
<LogFile mode="disable" name="VScanApplet.log" />
<Resource MaxNumberofParallelFileScanning="100" />
<ScanEngine>
<Symantec™>
<Engine IP="127.0.0.1" Port="1344" />
</Symantec>
</ScanEngine>
</ONStorVirusScanApplet>
• You can specify for the virus-scan application to write a virus-scan log to a log file
in the same directory in which the applet is installed. The applet shown previously
includes a log-file entry that is disabled.
- If you specify the log file mode by replacing “disable” in the shown
code with “enable”, the applet creates a log file or writes to the existing
log file either in the current directory or in a path you provide within
the applet.
- If the log file mode is specified to be “disable”, the applet sends output
to the console only.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
15-20
Note - Enabling the log file mode is not recommended because it slows down
the virus-scanning performance. Even when the applet log file mode is
disabled, the applet will log errors and some warnings to the Windows Event
Log.
If the current log file reaches the maximum size of 5MB, the file is automatically
renamed (for example, from applet.log to an older version log file, such as
applet.log.old). If an older version already exists, the newer version overwrites the
older version, and new incoming messages are written to the active log file.
• You can configure the applet to scan a number of files concurrently. The
MaxNumberOfParallelScanning parameter in the configuration file specifies the
maximum number of files the applet can scan concurrently. The default is 100.
• If you want the applet to use more than one virus-scan engine, add the IP addresses
for each into the configuration file so the client library can automatically load
balance over the virus-scan engines. The following example shows an applet using
two Symantec AntiVirus Scan Engines, 10.2.14.150 and 10.2.14.151. Both use the
default port, 1344.
<ONStorVirusScanApplet>
<LogFile mode="enable" name="VScanApplet.log" />
<Resource MaxNumberofParallelFileScanning="100" />
<ScanEngine>
<Symantec>
<Engine IP="10.2.14.150" Port="1344" />
<Engine IP="10.2.14.151" Port="1344" />
</Symantec>
</ScanEngine>
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
15-21
</ONStorVirusScanApplet>
Note - Enabling the log file mode is not recommended because it slows down
the virus-scanning performance. Even when the applet log file mode is
disabled, the applet will log errors and some warnings to the Windows Event
Log.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
15-22
If the current log file reaches the maximum size of 5MB, the file is automatically
renamed (for example, from applet.log to an older version log file, such as
applet.log.old). If an older version already exists, the newer version overwrites the
older version, and new incoming messages are written to the active log file.
• You can configure the applet to scan a number of files concurrently. The
MaxNumberOfParallelScanning parameter in the configuration file specifies the
maximum number of files the applet can scan concurrently. The default is 100.
• The DatPath and EnginePath parameters contain the path to the location of the DAT
files and the engine DLLs. By default the values of these parameters are set to
empty string (“ ”) to enable the applet to use the DAT files and engine DLLs from
the McAfee VirusScan Enterprise 8.0i package. You can however use these
parameters to specify a different location for downloading the required files.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
15-23
Step 2: Make sure that the checkbox for the user is marked to set the “Log
on as service” privileges for this user on Local Policy Setting. If the
designated virus scan administrator is not listed in the dialog box
that displays, click Add. Clicking Add invokes the “Security
Policy—Select Users or Groups” as shown in Figure 18 on
page 15-24.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
15-24
Step 3: Find and click the proper user in the scroll list or type the user name
in the space provided.
Step 4: Click OK when done. Make sure that the checkbox for the user for
Local Policy Setting is marked to set the “Log on as service”
privileges for this user. For more information, see your Windows
documentation.
Step 5: Within the context of the directory where the VirusScan applet files
are located, use the DOS Prompt utility to install and register the re-
implemented ONC/SUN RPC port map service by running the
following command:
portmap -register
This step registers the port mapping as a Windows Service (logon
as local system account) and starts the port map service
automatically.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
15-25
Step 6: Within the context of the directory where the VirusScan applet files
are located, use the DOS Prompt utility to register and start the
VirusScan applet as a Windows service by running the following
command:
OnStorVirusScanApplet.exe -register DOMAIN USER
where:
• DOMAIN specifies the domain name.
• USER specifies your user name.
This command starts the VirusScan applet as a Windows service
automatically (logon as domainName\userName account).
Step 7: Check the service status for each of the preceding Windows
services in the Windows Service file. The registered service names
should be “ONStorRPCPortmapper” and
“OnStorVirusScanApplet”.
The two registered ONStor Windows service names should
appear as shown enclosed within the box in Figure 19.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
15-26
Note - Ensure that the CIFS client is on the same subnet as the NAS Gateway
and that WINS is configured. Otherwise, virus notification messages might not
transmit.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
15-27
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
15-28
• If you are running the VirusScan applet on the same server as the McAfee
VirusScan Enterprise 9.0i software, 15 MB hard disk space is required for the
installation of the applet and one network interface card (NIC) running TCP/IP
with a static IP address.
• The ONStor VirusScan applet needs to access files in read/write mode in the
virtual server. Therefore the user account that launches the applet must be
configured with the BACKUP and RESTRORE privilege. The scope of the
privilege can be either VIRTUAL SERVER or CLUSTER. To enable virus
scanning, configure the privilege before starting the ONStor VirusScan applet, or
restart the applet after you configure the privilege. Use the priv add command to
configure privileges for the user account. For more information about this
command, see “Managing Privileges” on page 2-1.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
15-29
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
15-30
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
15-31
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
15-32
Note - Have your third-party equipment with the virus scanning engine set up,
powered on, connected, installed, and configured before you add a virus scan
server.
Have your VirusScan applet installed and properly configured on the server
running the virus scanning engine such that it communicates with the virus
scanning engine.
To Add a Virus Scan Server to the List of Available Virus Scan Servers
for Your Virtual Server
Step 1: In the virtual-server context, run the vscan server show
command to see if any virus scan servers have been added to the
virtual server and to see what the configurations are.
Step 2: To add a virus scan server (the virtual server can be in enabled or
disabled state), run the following command:
vscan server add IPADDR
IPADDR is the IP address of the selected virus scan server.
Before deleting the last virus scan server from a virtual server, disable virus scanning
on that virtual server.
To Delete a Virus Scan Server
• To delete a virus scan server, run the following command from a
virtual server context:
vscan server delete IPADDR
IPADDR is the IP address of the selected virus scan server.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
15-33
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
15-34
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
15-35
This command displays the current virus scan log configuration that applies to the
virus scan log.
Note - If the virus scan log is on a remote host, this command does not display
any virus scan log messages. You can specify the virus scan log to be located
on a remote host by the vscan log host command. See the next section for
details.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
15-36
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
15-37
Options and
Description
Arguments
Step 3: To disable virus scanning for outgoing traffic, run the following
command:
vscan disable outgoing PROTOCOL [,PROTOCOL]
PROTOCOL is a protocol, which can be either CIFS or NFS. Case
is ignored. Multiple protocols are separated by commas.
Step 4: You are prompted to confirm disabling virus scanning of outgoing
traffic. Enter “y” to confirm the action, or “n” to continue virus
scanning of outgoing traffic.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
15-38
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
15-39
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
15-40
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
Chapter 16: Managing NAS Gateway
System Settings
This chapter contains the following sections:
• “Introducing NAS Gateway System Management” on page 16-2
• “Displaying IP Statistics” on page 16-17
• “Displaying File Processing Port Load Statistics” on page 16-18
• “Managing NAS Gateway System Health” on page 16-19
• “Working with the Read Ahead Cache” on page 16-32
• “Working with Core Dumps” on page 16-34
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
16-2
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
16-3
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
16-4
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
16-5
Options and
Description
Arguments
HOSTNAME Specifies the host name of the device you are pinging. If you are
pinging to a host name or gateway name, the name needs to be a DNS
of NIS resolvable name.
IPADDR Specifies the IP address of the node that you are pinging.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
16-6
Note - To avoid discrepancies, always run the system time set command on
all NAS Gateways in the cluster, and run this command before configuring the
NTP server.
Options and
Description
Arguments
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
16-7
Options and
Description
Arguments
.SS Specifies two digits for the current seconds. Separate minutes (MM) and
seconds (.SS) with a period.
Note - If NTP was active on the NAS Gateway, then you disable NTP, the NAS
Gateway must be rebooted in order for it to begin re-synchronization with a
specific server or a broadcasted time signal on TCP port 123.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
16-8
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
16-9
Note - The SSC is not in the main data path, so the load on SSC CPUs is not
displayed.
For these processors, the load average displays a value between zero (0) and one (1)
that indicates how loaded each processor is. Zero indicates that the processors has no
load; one indicates that the processor is at full load; and a decimal value between 0 and
1 indicates the percentage of load on the processors. The stats show ldavg command
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
16-10
gathers the processor loads by using a polling model. Each polling interval is
approximately 1 to 2 seconds long.
To Display the Load Average for CPUs in the Main Data Path
• Run the following command:
stats show ldavg
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
16-11
ergency is the minimum level of elog message that you want the NAS
Gateway to report. Select only one value and that value plus all values of
greater severity will be reported. The default level is warning.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
16-12
• If the host address is set to 0 all elog messages are forwarded to the local syslog
daemon and eventually stored in /usr/local/agile/log/messages.
• If a non-zero syslog host is specified all messages are forwarded to the specified
host using the currently configured facility code.
Note - If you set the Syslog host to a valid IP address, make sure that the
remote syslog host is configured to receive syslog messages from other hosts.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
16-13
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
16-14
Note - This command is closely associated with the system config restore
command, which enables you to restore the secondary system configuration
that has been saved through the system config copy command.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
16-15
Note - To reconfigure the NAS Gateway after deleting the cluster database,
reboot the NAS Gateway. When the NAS Gateway reboots, it proceeds
through the ONStor Configuration Tool (OCT) through which you can
configure the NAS Gateway. When you finish the bootup script, the NAS
Gateway will be online and operating with a default configuration that you can
customize to your needs.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
16-16
Note - This command is closely associated with the system config copy
command, which enables you to create a backup copy of the system
configuration that can then be restored through the system config restore
command.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
16-17
Displaying IP Statistics
The NAS Gateway compiles statistics and usage information for its IP interfaces and
its connection-oriented interfaces, such as transmission control protocol (TCP) and
user datagram protocol (UDP) ports. You can display system wide information about
the IP layer protocols supported, and the TCP and UDP connections established on the
NAS Gateway. The IP statistics table consists of the following parts that are displayed
in a scrolling list:
• IP statistics
• ICMP statistics
• IGMP statistics
• IP Encapsulation statistics
• TCP statistics
• UDP statistics
Note - Some of listed statistics are returned by the kernel software. The NAS
Gateway does not use all of the listed statistics.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
16-18
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
16-19
Note - Create the directory where the system information will be written.
Otherwise, the system get commands cannot complete.
For example, assume the /tmp/onstor/support directory has been created. When
you run the system get commands, the output file is written to the target location in
the following format:
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
16-20
system_get_TYPE,HOST,DATE<.NUM>
The output file contains the following format:
• type is the type of information that the system get command retrieved. Valid
values are all, config, logs, stats, or tse. These values refer to the types of output
information.
• host is the host name.
• date is the year, month, and date when the system get command retrieved the
information.
• NUM is an optional format and a number that identifies individual copies of
information if multiple copies exist with the same date stamp. The NUM element is
appended only if more than one directory is output by the system get commands
on the same day.
Here are some examples of the output:
• system_get_all,ONStor0,05-03-18 indicates that the system get all
command gathered information from the NAS Gateway named ONStor0 on March
18, 2005.
• system_get_all,ONStor0,05-03-18.1 indicates that the system get all
command gathered a second iteration of information from the NAS Gateway
named ONStor0 on March 18, 2005.
• system_get_stats,ONStor0,05-03-19 indicates that the system get stats
commands gathered information from the NAS Gateway named ONStor0 on
March 19, 2005.
• system_get_config,ONStor0,05-03-20 indicates that the system get config
command gathered information from the NAS Gateway named ONStor0 on March
20, 2005.
The system get commands are supported on a per-NAS Gateway basis.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
16-21
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
16-22
Options and
Description
Arguments
-V VSVRNAME An optional argument that specifies the name of the target virtual
server where the information is saved. By default, the information is
written to the management virtual server, but you can specify a
different virtual server.
The target virtual server must exist and be enabled. If the targeted
virtual server does not exist or is not enabled, the command fails.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
16-23
Options and
Description
Arguments
-v VOLNAME An optional argument that specifies the name of the target volume
where the information is saved. By default, the information is written to
the management volume, but you can specify a different volume. If
you do not want the information written to the management volume,
enter the name of an existing volume.
Note - If the target volume does not exist or is offline, the command fails.
-d DIRECTORY An optional argument that specifies the name of the target directory
where the information is saved. The default directory is the root
directory ( / ), but you can specify a different directory. If you do not
want the information written to the root directory, enter the name of an
existing directory.
Note - If the target directory does not exist, the command fails.
Note - Gathering configuration information from the NAS Gateway can take
some time.
You can keep multiple copies of the system get config output because the NAS
Gateway creates a unique name for each output. If multiple copies of the information
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
16-24
exist for the same date, a number is appended to the end of the new file name to
prevent overwriting of the existing file.
When the system get config command stops, a symlink is created to the most
recent system_get_config information. This symlink always points to the latest
iteration of configuration information, so you can always find the most recent
information by following the symlink. The symlink takes the format of TYPE_FILER,
where TYPE is the type of system get command that was run, and FILER is the name
of the NAS Gateway on which the command was run.
To Display the System Configuration Information
• Run the following command from the virtual server context:
system get config [-s | [-V VSVRNAME] [-v VOLNAME]
[-d DIRECTORY] [-c CASENUM]
Options and
Description
Arguments
-V VSVRNAME An optional argument that specifies the name of the target virtual
server where the information is saved. By default, the information is
written to the management virtual server.
Note - The target virtual server must exist and be enabled. If the targeted
virtual server does not exist or is not enabled, the command fails.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
16-25
Options and
Description
Arguments
-v VOLNAME An optional argument that specifies the name of the target volume
where the information is saved. By default, the information is written to
the management volume, but you can specify a different volume. If you
do not want the information written to the management volume, enter
the name of an existing volume.
Note - If the target volume does not exist or is offline, the command fails.
-d DIRECTORY An optional argument that specifies the name of the target directory
where the information is saved. By default, the default directory is the
root directory ( / ).
Note - If the target directory does not exist, the command fails
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
16-26
Options and
Description
Arguments
-V VSVRNAME An optional argument that specifies the name of the target virtual
server where the information is saved. By default, the information is
written to the management virtual server,
Note - The target virtual server must exist and be enabled. If the targeted
virtual server does not exist or is not enabled, the command fails.
-v VOLNAME An optional argument that specifies the name of the target volume
where the information is saved. By default, the information is written to
the management volume.
Note - If the target volume does not exist or is offline, the command fails.
-d DIRECTORY An optional argument that specifies the name of the target directory
where the information is saved. The default directory is the root
directory ( / ), but you can specify a different directory. If you do not
want the information written to the root directory, enter the name of an
existing directory.
Note - If the target directory does not exist, the command fails.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
16-27
one or all volumes. The statistics are posted to a target directory, which by default is
the management volume or a volume that you specify in the file system.
You can keep multiple copies of the system get stats output because the NAS
Gateway creates a unique name for each output. If multiple copies of the information
exist for the same date, a number is appended to the end of the new file name to
prevent the existing file from being overwritten.
When the system get stats command stops, a symlink is created to the most recent
system_get_stats information. This symlink always points to the latest iteration of
statistics, so you can always find the most recent information by following the
symlink. The symlink takes the format of TYPE_FILER, where TYPE is the type of
system get command that was run, and FILER is the name of the NAS Gateway on
which the command was run.
You can stop statistics gathering intervals in either of the following ways:
• If the previously configured statistics gathering interval is in progress, it stops if
you run the system get stats command.
• If the current statistics gathering interval is in progress, you can stop it by using the
optional -k argument. This option is useful if you have started the statistics
gathering interval, but need to stop it before it completes.
To Display the System Configuration Information
• Run the following command from a NAS Gateway context:
system get stats [-k] [-n NUMBER] [-i INTERVAL]
[-a]
[-s | [-V VSVRNAME] [-v VOLNAME] [-d DIRECTORY] |
[-c CASENUM]]
Options and
Description
Arguments
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
16-28
Options and
Description
Arguments
-V VSVRNAME An optional argument that specifies the name of the target virtual
server where the information is saved. By default, the information is
written to the management virtual server, but you can specify a
different virtual server. If you do not want the information written to
the management virtual server, enter the name of an existing virtual
server.
Note - If the target virtual server does not exist or is not enabled, the
command fails.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
16-29
Options and
Description
Arguments
-v VOLNAME An optional argument that specifies the name of the target volume
where the information is saved. By default, the information is written
to the management volume
Note - If the target volume does not exist or is not online, the command
fails.
-d DIRECTORY An optional argument that specifies the name of the target directory
where the information is saved. The default directory is the root
directory ( / ).
Note - If the target directory does not exist, the command fails.
Note - This command is needed only if significant parts of the NAS Gateway
are not operating and you cannot run the system get config or system get
all commands.
The system get tse command obtains system information and places it in a
directory on the target location, which is by default the management volume default,
or a volume you specify in the file system.
You can keep multiple copies of the system get tse output because the creates a
unique name for each output. If multiple copies of the information exist for the same
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
16-30
date, a number is appended to the end of the new file name to prevent overwriting the
existing file.
When the system get tse command stops, a symlink is created to the most recent
system_get_tse information. This symlink always points to the latest iteration of the
TSE information, so you can always find the most recent information by following the
symlink. The symlink takes the format of TYPE_FILER, where TYPE is the type of
system get command that was run, and FILER is the name of the NAS Gateway on
which the command was run.
To Display the System Configuration Information
• Run the following command from a NAS Gateway context:
system get tse [-V VSVRNAME] [-v VOLNAME]
[-d DIRECTORY] | [-c CASENUM]
Options and
Description
Arguments
-V VSVRNAME An optional argument that specifies the name of the target virtual
server where the information is saved. By default, the information is
written to the management virtual server.
Note - If the targeted virtual server does not exist or is not enabled, the
command fails.
-v VOLNAME An optional argument that specifies the name of the target volume
where the information is saved. By default, the information is written
to the management volume.
Note - If the targeted virtual server does not exist or is not enabled, the
command fails.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
16-31
Options and
Description
Arguments
-d DIRECTORY An optional argument that specifies the name of the target directory
where the information is saved. By default, the default directory is the
root directory ( / ).
Note - If the targeted virtual server does not exist or is not enabled, the
command fails.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
16-32
Note - You can determine whether read ahead caching needs to be enabled or
disabled by running the system show readahead performance command. If
an excessive amount of cache misses is occurring, you can try enabling read
ahead caching for more optimized use of the cache. If the amount of cache
misses is acceptable, read ahead caching can be left in its current state.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
16-33
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
16-34
Note - When the core volume is created, it appears in the volume show
command’s output as Status NotMounted and Type Core.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
16-35
Options and
Description
Arguments
VOLNAME Specifies the name of the volume that you are creating as the NAS
Gateway’s core volume. The core volume cannot support a file system.
LUN An optional argument that enables you to configure the core volume on a
specific LUN. By default, the NAS Gateway takes the first “free” LUN
when you run this command. You can use only a “free” LUN for this
argument. To get a list of LUNs, you can run the lun show disk
command, and page through the display until you find a LUN whose state
is “free”.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
16-36
context:
system delete corevolume VOLNAME [force]
Options and
Description
Arguments
VOLNAME Specifies the name of the core dump volume that you are deleting. When
the core volume is deleted, all data within it is deleted.
force An optional argument that deletes the core dump volume regardless of
any checks or processes to take the core dump volume offline gracefully.
This option is immediate.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
16-37
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
16-38
Table 16-13: Possible Data Types for Volume Exception Dump File
INODESMRU The most recently used Inodes. This includes the Inodes that have
been modified and have not been written to the disk yet
BUFFERSMRU The most recently used buffers. This includes the buffers that have
been modified and have not been written to the disk yet.
INODES 1 All Inodes that were cached at the time of the exception.
BUFFERS 1 All buffers that were cached at the time of the exception.
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
16-39
Table 16-13: Possible Data Types for Volume Exception Dump File (Continued)
1: These data types can significantly increase the size of the volume exception dump file.
By default, not all of the data types are stored in the volume exception dump file. The
default data types stored are:
• FS (file system)
• Superblock
• Threadstacks
• Contexts
• Locks
• Requests
To Configure the Volume Exception Dump File
• Run the following command:
system modify volumeexceptiondump [-m on|off]
[-a DATATYPE] [-d DATATYPE] [-r]
Options and
Description
Arguments
-m on|off Specifies the operating mode of the volume exception dump feature.
Use this argument to turn volume exception on or off. By default, the
feature is off.
-a DATATYPE An argument for adding a specified data type to the volume exception
dump.
-d DATATYPE An argument for deleting a specified data type from the volume
exception dump.
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
16-40
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
Index
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
1-2
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
I-1-3
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
1-4
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
I-1-5
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
1-6
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1
I-1-7
690-0015-0001G1 ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide
1-8
ONStor Bobcat 2200 Series NAS Gateway System Administrator’s Guide 690-0015-0001G1