toasters

toasters@lists.teaparty.net

3 participants
13514 discussions

NDMP tuning on a 270c
by Page, Jeremy 20 Jun '07

20 Jun '07

We are backing up a 270c nightly with Netbackup via NDMP to a dual drive LTO3 machine (only one drive is used for to backup the filer). There are 2.25 TB on one head and 1.1TB on the other. For a full backup it takes about 10 hours to write to tape, which I don't think is too bad (larger volumes hit 31200 KB/sec reported by Netbackup), but the differentials take 5 hours to run,even though the delta on our data is very small. I suspect this is more of a Netbackup issue then a filer based one but wanted to throw it out there incase there was something I should look at on the host side. This is over a normal gigE switched network connection with the default settings on the filer, network-wise. We are not using virtual interfaces, both heads have a single 1 gig connection to the LAN. Any suggestions or inventive flames are welcome. This message (including any attachments) contains confidential and/or proprietary information intended only for the addressee. Any unauthorized disclosure, copying, distribution or reliance on the contents of this information is strictly prohibited and may constitute a violation of law. If you are not the intended recipient, please notify the sender immediately by responding to this e-mail, and delete the message from your system. If you have any questions about this e-mail please notify the sender immediately.

5 5

DFM network stats with vifs
by Leeds, Daniel 19 Jun '07

19 Jun '07

we use DFM 3.5, the network traffic i/o graphs in DFM display nothing for us--they never have in previous versions either. we use multi vifs across several interfaces and then create a viftrunk with tagged vlans. has anyone setup similar and gotten network traffic graphing to work in dfm? -- Daniel Leeds Senior Systems Administrator Edmunds.com

2 2

Cifs audit logs
by Jon Hill 15 Jun '07

15 Jun '07

We've just switched from a Windows file server to a 3020c and are experiencing significant issues with cifs auditing. We have several directories that need to be monitored and we have turned on auditing via NTFS (right-click | properties | security | advanced | auditing). On the old file server we used a third-party tool (ScriptLogic) to monitor CIFS access but it only works on Windows servers. The problem we have is if a user opens up one of the monitored folders, the filer spits out about 300 events for each file. There are three or maybe four slight differences between the 300 events (some might refer to SMBRead and others SMBReadEA, for example), but at least 50 events are completely identical to each other in every way. We've been auditing about 19,000 files (<4GB) for a week and we already have 10GB of .evt files. We tried limiting the audits to List Folder / Read Data, Create Files / Write Data, Create Folders / Append Data, Delete, Change Permissions and Take Ownership, and we applied only to files. It didn't improve things from what we could see. NetApp support told us to contact MS but that didn't get us anywhere so now we're looking for third-party alternatives. Can anyone suggest a good tool that can gather .evt files from a specified directory, weed out duplicates and store the end result in either a database or another .evt file?

3 3

multiple shelf aggregate or single shelf aggregates
by Paul Letta 15 Jun '07

15 Jun '07

We have a new FAS3040 with 3 shelves of 500GB SATA's. It has an onboard controller with 4 ports, and we have 2 expansion controllers with 2 ports each. I'm trying to think about the aggregate layouts. I am thinking that since these are SATA drives, I should put all 3 shelves into 1 big aggregate for performance (to get as many spindles as possible) and then just use flex vols. But then I also am thinking that if I use 3 separate aggregates (1 per shelf), I would have better data protection in case I loose a whole shelf (only loose volumes on that one shelf). Since the raid_size is maxed at 16 for SATA anyways, I am going to end up with a raid group per shelf no matter what (defaults to 14). I've done some write tests. I had an aggregate made from 1 shelf and another aggregate made up of 2 shelves. I didn't see much difference. I was write testing via NFS mounts. The client was on a GigE, and the filer was on a VIF made up of all 4 GigE ports. Is the performance gains from having mutli-shelf aggregates worth the loss of the data protection from a whole shelf failure. As for the FC connections, currently I have all 3 shelves daisy chained with 2 loops, one loop is on the on board and the other loop is on one of the expansion cards. Suggestions ? Thanks ! Paul

3 2

Unix script tool to read Windows ACL
by JacekN 14 Jun '07

14 Jun '07

IHAC who had to make an upgrade from 7.0.3 due to SnapMirror bug. 7.0.6 would be sufficient but I convinced him to jump to 7.2.2 due to some interesting features (both releases are GD). I have studied upgrade guide, bugs and all other documentation and I have found no potential problem. But I was wrong... Customer's scripts stopped to work because NetApp introduced undocumented "feature": access rights displayed by NFS3 client on NTFS volumes are empty (all files have d---------) although access rights are correctly mapped. NetApp provided some kind of workaround but displayed access rights are always only rough approximation. Is there any Unix tool that can read native NTFS ACLs? (SecureShare can read Unix rwx from Windows hosts however it cannot be scripted...) It will solve the customer's problem for ever (NetApp can always change the way of approximation in future releases...) Best regards, Jacek --- avast! Antivirus: Outbound message clean. Virus Database (VPS): 000748-5, 2007-06-13 Tested on: 2007-06-13 22:30:19 avast! - copyright (c) 1988-2007 ALWIL Software. http://www.avast.com -- Opole - Miasto Bez Granic. http://www.opole.pl - tu znajdziesz nowe miejsca, nowe moÂżliwoÂści, nowe inspiracje...

5 5

Problem creating snapshots with SnapDrive for Solaris
by Javier Scanlan Sierra 14 Jun '07

14 Jun '07

I'm having errors creating snapshots with SnapDrive for Solaris. I'm running Solaris 10 on a SPARC processor, Veritas Volume Manager and File System 5 and a FAS270 DOT 7.2.2 filer. I didn't have problems creating the LUNs, even SnapDrive created the /etc/vfstab entries: bash-3.00# snapdrive snap create -dg testvol -snapname snapdgtest 0001-843 Admin error: Failed to read device config info : Could not read disk format for /dev/vx/dmp/Disk_2 bash-3.00# snapdrive storage create -fs /oratest -hostvol dgtest/testvol -lun netapp2:/vol/vol1/lun1 -lunsize 8g LUN netapp2:/vol/vol1/lun1 ... created mapping new lun(s) ... done discovering new lun(s) ... done LUN to device file mappings: - netapp2:/vol/vol1/lun1 => /dev/vx/dmp/Disk_2 disk group dgtest created host volume testvol created file system /oratest created bash-3.00# tail /etc/vfstab /dev/vx/dsk/dg01/vol01 /dev/vx/rdsk/dg01/vol01 /sio01 vxfs - yes - /dev/vx/dsk/dg02/vol02 /dev/vx/rdsk/dg02/vol02 /sio02 vxfs - yes - swap - /tmp tmpfs - yes - /dev/vx/dsk/dgtest/testvol /dev/vx/rdsk/dgtest/testvol /oratest vxfs - yes - Theres is a confusion, because SnapDrive mapped the LUN to /dev/vx/dmp/Disk_2, but the entry on /etc/vfstab is: /dev/vx/dsk/dgtest/testvol /dev/vx/rdsk/dgtest/testvol /oratest vxfs - yes - I hope somone can help me with this, I'm not a Veritas or Solaris expert. Regards Javier Scanlan

1 0

Tape Directly connected
by Luis Sanchez R 14 Jun '07

14 Jun '07

Hi I don't have experience with SAN. My question is: Can I connect directly a SAN tape with a FAS270c, without the use of a SAN switch between them? Thanks Luis

8 7

Re: NFS backups over 1Gb WAN
by Tom Samplonius 14 Jun '07

14 Jun '07

What is the MTU size on your WAN link? ----- "Carl Howell" <chowell(a)uwf.edu> wrote: > What would be the optimal NFS settings for a filer on a 1Gb network > with a 14ms rtt? We have moved our R200 to a remote DC and have seen > NFS performance plummet. The NFS traffic is all backups. > > > > Thanks, > > > > -Carl

4 5

netapp admin with Unix without NFS
by Stephen C. Losen 14 Jun '07

14 Jun '07

I'm accustomed to administering netapps on a Unix box that NFS mounts the root volume and has rsh and/or ssh access to root. I've always used the command line since we got our first filer in 1997 before the GUI came out. We are buying two FAS270s to be placed in two separate locations for disaster recovery. Each filer will store FC LUNs that will be used by a Windows server in each location. One location is primary and the other is standby in case we lose the primary. We will replicate data from the primary filer to the secondary with snapmirror (and also snapdrive I suppose). I am in neither of these locations and each location will be behind its own firewall (oh joy). Obviously the filers will need to talk to each other for snapmirror. Since these filers are FC SAN only, we would prefer to not spring for NFS licenses just for my convenience. I would be interested to know if there are any other Unix folks out there who admin filers without NFS access. I think that all filers come with a mini CIFS license (only one CIFS session?) and I guess I could use smbmount on my Linux box to access the root volume. I wish filers also had a mini NFS license for admin. As for installing DOT, isn't there a way to put the software distribution file on a httpd server and point the filer at it? I have always used the install_netapp script and the compressed tar file. I don't know what sort of holes I can get punched in the firewall. I may need to use a VPN client (yuck). Is anyone else out there in a similar situation? Steve Losen scl(a)virginia.edu phone: 434-924-0640 University of Virginia ITC Unix Support a:link, span.MsoHyperlink {mso-style-priority:99; color:blue; text-decoration:underline;} a:visited, span.MsoHyperlinkFollowed {mso-style-priority:99; color:purple; text-decoration:underline;} span.EmailStyle17 {mso-style-type:personal-compose; font-family:"Calibri","sans-serif"; color:windowtext;} .MsoChpDefault {mso-style-type:export-only;} @page Section1 {size:8.5in 11.0in; margin:1.0in 1.0in 1.0in 1.0in;} div.Section1 {page:Section1;} --> </style>  </head> <body lang=3DEN-US link=3Dblue vlink=3Dpurple> <div class=3DSection1> <p class=3DMsoNormal>What would be the optimal NFS settings for a filer = on a 1Gb network with a 14ms rtt? We have moved our R200 to a remote DC and have = seen NFS performance plummet. The NFS traffic is all backups.<o:p></o:p></p> <p class=3DMsoNormal><o:p> </o:p></p> <p class=3DMsoNormal>Thanks,<o:p></o:p></p> <p class=3DMsoNormal><o:p> </o:p></p> <p class=3DMsoNormal>-Carl<o:p></o:p></p> <p class=3DMsoNormal><o:p> </o:p></p> </div> </body> </html> ------_=_NextPart_001_01C7A881.E74B8860--

7 13

6070's loosing packets, become unusable
by Todd C. Merrill 13 Jun '07

13 Jun '07

Folks, I'm on a fishing expedition here. We've had four incidents over the past ~6 months of our 6070's loosing packets and becoming effectively unusable. Symptoms include *very* slow response on clients, both CIFS and NFS. Messages file on filer shows problems connecting to all external services (domain controllers, NIS servers, etc.): [selected lines clipped] Wed Jun 6 21:02:23 EDT [xxxxx: nis.server.inactive:warning]: preferred NIS Server xxx.xx.xxx.x not responding Wed Jun 6 21:02:23 EDT [xxxxx: nis.server.active:notice]: Bound to preferred NIS server xxx.xx.xxx.x Wed Jun 6 21:15:10 EDT [xxxxx: nfsap_process:warning]: Directory service outage prevents NFS server from determining if client (xxx.xx.xxx.x has root access to path /vol/YYYYYY/YYYYYY (xid 1346843745). Client will experience delayed access during outage. Wed Jun 6 21:15:18 EDT [xxxxx: rpc.client.error:error]: yp_match: clnt_call: RPC: Timed out Wed Jun 6 21:16:45 EDT [xxxxx: rshd_0:error]: rshd: when reading user name to use on this machine from ZZZZZZZZZ, it didn't arrive within 60 seconds. Wed Jun 6 21:28:54 EDT [xxxxx: auth.dc.trace.DCConnection.errorMsg:error]: AUTH: Domain Controller error: NetLogon error 0xc0000022: - Filer's security information differs from domain controller. Thu Jun 7 00:21:08 EDT [xxxxx: nis_worker_0:warning]: Local NIS group update failed. Could not download the group file from the NIS server. Thu Jun 7 00:21:11 EDT [xxxxx: nis.server.inactive:warning]: preferred NIS Server xxx.xx.xxx.x not responding Thu Jun 7 00:21:11 EDT [xxxxx: nis.server.active:notice]: Bound to preferred NIS server xxx.xx.xxx.x Thu Jun 7 00:21:24 EDT [xxxxx: nis.servers.not.available:error]: NIS server(s) not available. Thu Jun 7 00:21:37 EDT [xxxxx: mnt_assist:warning]: Client xxx.xxx.xx.xx (xid 0) fails to resolve via gethostbyaddr_r() for root access - host_errno = 2, errno = 61 Thu Jun 7 00:22:23 EDT [xxxxx: nis.server.active:notice]: Bound to preferred NIS server xxx.xx.xxx.x Our Nagios system trips on 100% ping loss almost immediately, and then flaps until the filer is restarted. First time, we just rebooted (the whole company twiddling their thumbs, waiting...). Second time, we begged for diagnosis time and called it in, and ended up replacing the motherboard (suspected network port). *Third* time, we no longer suspected hardware, dumped core then rebooted; core analysis didn't find anything. FOURTH time happened last week; dumped core, sent it in, awaiting analysis but not hopeful. This has only happened on our 6070's. Never on our 980's or R200's (running same ONTAP versions). It's happened on two different ONTAP 7.2 releases. It's happened on three different 6070's (two incidents on one of them). We're running full flowcontrol. We're running vif's. System firmware on six of them (and this latest victim) was upgraded in February 2007. We have eight 6070's in one location; two have been affected. We have six 6070's in another location and one has been affected. The only stat that looks "weird" is that ifstat shows an unusually high number of transmit queue overflows / discards (ifstat from autosupport just before last core dump): > ===== IFSTAT-A ===== > > -- interface e0a (102 days, 11 hours, 43 minutes, 36 seconds) -- > > RECEIVE > Frames/second: 24198 | Bytes/second: 4311k | Errors/minute: 0 > Discards/minute: 0 | Total frames: 384g | Total bytes: 107t > Total errors: 1 | Total discards: 1201k | Multi/broadcast: 0 > No buffers: 1201k | Non-primary u/c: 0 | Tag drop: 0 > Vlan tag drop: 0 | Vlan untag drop: 0 | CRC errors: 1 > Alignment errors: 0 | Runt frames: 0 | Long frames: 0 > Fragment: 0 | Jabber: 0 | Xon: 0 > Xoff: 0 | Ring full: 0 | Jumbo: 0 > Jumbo error: 0 > TRANSMIT > Frames/second: 29384 | Bytes/second: 13057k | Errors/minute: 0 > Discards/minute: 0 | Total frames: 470g | Total bytes: 314t > Total errors: 0 | Total discards: 954k | Multi/broadcast: 123k > Queue overflows: 954k | No buffers: 0 | Single collision: 0 > Multi collisions: 0 | Late collisions: 0 | Max collisions: 0 > Deferred: 0 | Xon: 0 | Xoff: 0 > MAC Internal: 0 | Jumbo: 0 > LINK_INFO > Current state: up | Up to downs: 1 | Speed: 1000m > Duplex: full | Flowcontrol: full Switch side shows no extraordinary errors. So, I'm fishing for some ideas here. Waiting for it to happen again to gather network traces is not an optimal strategy (as much as I'd like to have those traces as well). I'm sure NetApp support will do their best in analyzing the core, but as I mentioned above, I'm not hopeful they will find the culprit this second time. So, I'm looking for any anecdotes, other weird behavior, crazy ideas, or even possible ones [1], from this large group, in parallel with NetApp's efforts. [1] "When you have eliminated all which is impossible, then whatever remains, however improbable, must be the truth." --Sherlock Holmes Until next time... The MathWorks, Inc. 508-647-7000 x7792 3 Apple Hill Drive, Natick, MA 01760-2098 508-647-7001 FAX tmerrill(a)mathworks.com http://www.mathworks.com ---

7 8

Jump to page:

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

2001

2000

1999

1998

1997

toasters