SlideShare a Scribd company logo
Novell Storage Services ™  File System Performance, Clustering and Auditing in Novell ®  Open Enterprise Server on Linux Marcus Gould Premium Support Engineer Novell, Inc. [email_address] Bart Schoofs WorldWide Support Engineer Novell, Inc. [email_address] Adam Jerome Senior Software Engineer Novell, Inc. [email_address] Vijai Babu Madhavan Filesystem Engineer Novell, Inc. [email_address]
Agenda ,[object Object]
Novell Storage Services and NCP ™ Tuning and Troubleshooting
Novell Storage Services Auditing (Vigil)
Novell Storage Services ™ Feature and Architecture Review
Novell Storage Services ™  Features ,[object Object]
Visibility ,[object Object]
Directory Quotas
User Quotas
Compression
Data Shredding
Immediate Flush
Novell Storage Services ™  Features ,[object Object]
Distributed File Services (DFS)
Multiple Server Activation Prevention
Archive / Versioning enabled
Logical Volumes and Pools
Encryption
Pool Snapshot
File Snapshot (COW)
Architecture:  Novell Storage Services ™  on Linux User Kernel Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
Architecture:  Novell Storage Services ™  on Linux Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
EVMS  (Enterprise Volume Management System) ,[object Object]
NetWare-created pools can mount on Linux
Linux-created pools can mount on NetWare
Must   stick to iManager and  nssmu Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
Novell Storage Services ™ ,[object Object]
All features work as NetWare ® ,[object Object],Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
eDirectory ™ ,[object Object]
Local users require LUM ,[object Object]
Linux uses UIDs internally
Linux passes UIDs to NSS
LUM links GUID to UID via eDirectory ,[object Object],[object Object],Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
VFS  (Virtual File Services) ,[object Object]
Write:  Set unless file is read-only
Execute:  NetWare Execute attribute (cannot copy) or subdirectory ,[object Object]
Some access to NSS directly via zAPI ,[object Object],[object Object],Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
VFS  (Virtual File Services) Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
VFS  (Virtual File Services) (1)  Create File  foo.txt  logged in as Joe with a UID of 705 Client NSS Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
VFS  (Virtual File Services) (1)  Create File  foo.txt  logged in as Joe with a UID of 705 (2)  NSS requests eDirectory name for UID 705 LUM returns joe.acme Client LUM NSS Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
VFS  (Virtual File Services) (1)  Create File  foo.txt  logged in as Joe with a UID of 705 (2)  NSS requests eDirectory name for UID 705 LUM returns joe.acme (3)  NSS requests security equivalence information for joe.acme – eDirectory returns a list of equivalent users and group memberships Client LUM eDirectory NSS Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
VFS  (Virtual File Services) (1)  Create File  foo.txt  logged in as Joe with a UID of 705 (2)  NSS requests eDirectory name for UID 705 LUM returns joe.acme (3)  NSS requests security equivalence information for joe.acme – eDirectory returns a list of equivalent users and group memberships (4)  NSS does normal trustee checking based on users and groups returned by eDirectory Client LUM eDirectory NSS Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
NCP ™  Server ,[object Object]
No standalone NCP daemon ,[object Object]
/var/opt/novell/log/ncpserv.log ,[object Object],[object Object]
/var/opt/novell/log/ncp2nss.log ,[object Object]
Processes NEB events from NSS ,[object Object],[object Object],Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
NCP ™  Server ,[object Object]
User quotas and salvage will not work ,[object Object],[object Object],[object Object],[object Object]
User quotas and salvage will work Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
NCP ™  Server Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
NCP ™  Server (1)  User and Group information for the connection joe.acme is using NCP Server eDirectory Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
NCP ™  Server (2)  Create file foo.txt logged in as joe.acme (1)  User and Group information for the connection joe.acme is using NCP Client NCP Server eDirectory Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
NCP ™  Server (2)  Create file foo.txt logged in as joe.acme (1)  User and Group information for the connection joe.acme is using (3)  Apply trustee rights based on path & connection NCP Client NCP Server eDirectory Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
NCP ™  Server (2)  Create file foo.txt logged in as joe.acme (1)  User and Group information for the connection joe.acme is using (3)  Apply trustee rights based on path & connection (4)  Create foo.txt as root NCP Client NCP Server eDirectory NSS Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
NCP ™  Server (2)  Create file foo.txt logged in as joe.acme (1)  User and Group information for the connection joe.acme is using (3)  Apply trustee rights based on path & connection (4)  Create foo.txt as root (5)  Change owner to joe.acme (by GUID) NCP Client NCP Server eDirectory NSS Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
Tuning Novell Storage Services ™
Linux Memory Recap ,[object Object]
Bottom 1GB on 32 Bit Linux (can be customised)
All memory on 64 Bit Linux ,[object Object],[object Object]
Kernel has to map it to use it 0 1 4 GB 2 3 User Kernel
Novell Storage Services ™  Caching ,[object Object]
Packed on disk in 4K Blocks (Metadata Blocks) ,[object Object],[object Object]
Unpacked into Objects ,[object Object],[object Object]
Saved on disk as 4K Blocks (User data Blocks)
Novell Storage Services ™   Caching on Linux ,[object Object]
Linux:  Memory shared with, and managed by, Linux
nss /HighMemoryCacheType=Private|Linux|None ,[object Object],[object Object],[object Object]
Metadata cache configurable ,[object Object],[object Object]
Previous Versions of  Novell Storage Services ™  on Linux ,[object Object]
NSS user data integrated into Linux cache ,[object Object],[object Object]
Previous Versions of  Novell Storage Services ™  on Linux ,[object Object]

More Related Content

What's hot

Domain Services for Windows: Best Practices for Windows Interoperability
Domain Services for Windows: Best Practices for Windows InteroperabilityDomain Services for Windows: Best Practices for Windows Interoperability
Domain Services for Windows: Best Practices for Windows Interoperability
Novell
 
Server interview[1]
Server interview[1]Server interview[1]
Server interview[1]
sourav nanda
 
GWAVACon 2013: Novell Open Enterprise Server - Roadmap and Future
GWAVACon 2013: Novell Open Enterprise Server - Roadmap and FutureGWAVACon 2013: Novell Open Enterprise Server - Roadmap and Future
GWAVACon 2013: Novell Open Enterprise Server - Roadmap and Future
GWAVA
 
Novell Open Enterprise Server for Beginners
Novell Open Enterprise Server for BeginnersNovell Open Enterprise Server for Beginners
Novell Open Enterprise Server for Beginners
Novell
 
Novell Storage Manager: Your Secret Weapon for Simplified File and User Manag...
Novell Storage Manager: Your Secret Weapon for Simplified File and User Manag...Novell Storage Manager: Your Secret Weapon for Simplified File and User Manag...
Novell Storage Manager: Your Secret Weapon for Simplified File and User Manag...
Novell
 
Distributed Filesystems Review
Distributed Filesystems ReviewDistributed Filesystems Review
Distributed Filesystems ReviewSchubert Zhang
 
Preparing forfirstconnectionsinstall
Preparing forfirstconnectionsinstallPreparing forfirstconnectionsinstall
Preparing forfirstconnectionsinstall
Gabriella Davis
 
New File Server Features Of Windows Server 2008
New File Server Features Of Windows Server 2008New File Server Features Of Windows Server 2008
New File Server Features Of Windows Server 2008
Microsoft TechNet
 
Deep Dive Into Windows Server 2012 Hyper-V
Deep Dive Into Windows Server 2012 Hyper-VDeep Dive Into Windows Server 2012 Hyper-V
Deep Dive Into Windows Server 2012 Hyper-VLai Yoong Seng
 
MCSA Installing & Configuring Windows Server 2012 70-410
MCSA Installing & Configuring Windows Server 2012 70-410MCSA Installing & Configuring Windows Server 2012 70-410
MCSA Installing & Configuring Windows Server 2012 70-410
omardabbas
 
Lesson 4 intro to advanced o perating systems
Lesson 4 intro to advanced o perating systemsLesson 4 intro to advanced o perating systems
Lesson 4 intro to advanced o perating systemsJo Ko
 
Failover cluster
Failover clusterFailover cluster
Failover cluster
Chinmoy Jena
 
Introduction to failover clustering with sql server
Introduction to failover clustering with sql serverIntroduction to failover clustering with sql server
Introduction to failover clustering with sql server
Eduardo Castro
 
Windows Server 2008 R2 Overview
Windows Server 2008 R2 OverviewWindows Server 2008 R2 Overview
Windows Server 2008 R2 OverviewSteven Wilder
 
Coda file system tahir
Coda file system   tahirCoda file system   tahir
Coda file system tahir
Mohammad Faizan
 
Windows Server 2008 R2
Windows Server 2008 R2Windows Server 2008 R2
Windows Server 2008 R2Rishu Mehra
 
Upgrading AD from Windows Server 2003 to Windows Server 2008 R2
Upgrading AD from Windows Server 2003 to Windows Server 2008 R2Upgrading AD from Windows Server 2003 to Windows Server 2008 R2
Upgrading AD from Windows Server 2003 to Windows Server 2008 R2
Amit Gatenyo
 
Windows Server 2008 Management
Windows Server 2008 ManagementWindows Server 2008 Management
Windows Server 2008 Management
Hi-Techpoint
 
Server 2008 r2 ppt
Server 2008 r2 pptServer 2008 r2 ppt
Server 2008 r2 ppt
Raj Solanki
 

What's hot (20)

Domain Services for Windows: Best Practices for Windows Interoperability
Domain Services for Windows: Best Practices for Windows InteroperabilityDomain Services for Windows: Best Practices for Windows Interoperability
Domain Services for Windows: Best Practices for Windows Interoperability
 
Server interview[1]
Server interview[1]Server interview[1]
Server interview[1]
 
GWAVACon 2013: Novell Open Enterprise Server - Roadmap and Future
GWAVACon 2013: Novell Open Enterprise Server - Roadmap and FutureGWAVACon 2013: Novell Open Enterprise Server - Roadmap and Future
GWAVACon 2013: Novell Open Enterprise Server - Roadmap and Future
 
Novell Open Enterprise Server for Beginners
Novell Open Enterprise Server for BeginnersNovell Open Enterprise Server for Beginners
Novell Open Enterprise Server for Beginners
 
Novell Storage Manager: Your Secret Weapon for Simplified File and User Manag...
Novell Storage Manager: Your Secret Weapon for Simplified File and User Manag...Novell Storage Manager: Your Secret Weapon for Simplified File and User Manag...
Novell Storage Manager: Your Secret Weapon for Simplified File and User Manag...
 
Distributed Filesystems Review
Distributed Filesystems ReviewDistributed Filesystems Review
Distributed Filesystems Review
 
Preparing forfirstconnectionsinstall
Preparing forfirstconnectionsinstallPreparing forfirstconnectionsinstall
Preparing forfirstconnectionsinstall
 
New File Server Features Of Windows Server 2008
New File Server Features Of Windows Server 2008New File Server Features Of Windows Server 2008
New File Server Features Of Windows Server 2008
 
Deep Dive Into Windows Server 2012 Hyper-V
Deep Dive Into Windows Server 2012 Hyper-VDeep Dive Into Windows Server 2012 Hyper-V
Deep Dive Into Windows Server 2012 Hyper-V
 
MCSA Installing & Configuring Windows Server 2012 70-410
MCSA Installing & Configuring Windows Server 2012 70-410MCSA Installing & Configuring Windows Server 2012 70-410
MCSA Installing & Configuring Windows Server 2012 70-410
 
Lesson 4 intro to advanced o perating systems
Lesson 4 intro to advanced o perating systemsLesson 4 intro to advanced o perating systems
Lesson 4 intro to advanced o perating systems
 
Failover cluster
Failover clusterFailover cluster
Failover cluster
 
Introduction to failover clustering with sql server
Introduction to failover clustering with sql serverIntroduction to failover clustering with sql server
Introduction to failover clustering with sql server
 
OSCh16
OSCh16OSCh16
OSCh16
 
Windows Server 2008 R2 Overview
Windows Server 2008 R2 OverviewWindows Server 2008 R2 Overview
Windows Server 2008 R2 Overview
 
Coda file system tahir
Coda file system   tahirCoda file system   tahir
Coda file system tahir
 
Windows Server 2008 R2
Windows Server 2008 R2Windows Server 2008 R2
Windows Server 2008 R2
 
Upgrading AD from Windows Server 2003 to Windows Server 2008 R2
Upgrading AD from Windows Server 2003 to Windows Server 2008 R2Upgrading AD from Windows Server 2003 to Windows Server 2008 R2
Upgrading AD from Windows Server 2003 to Windows Server 2008 R2
 
Windows Server 2008 Management
Windows Server 2008 ManagementWindows Server 2008 Management
Windows Server 2008 Management
 
Server 2008 r2 ppt
Server 2008 r2 pptServer 2008 r2 ppt
Server 2008 r2 ppt
 

Similar to Cl309

Visual comparison of Unix-like systems & Virtualisation
Visual comparison of Unix-like systems & VirtualisationVisual comparison of Unix-like systems & Virtualisation
Visual comparison of Unix-like systems & Virtualisation
wangyuanyi
 
Simple, Scalable and Highly Durable NAS in the Cloud - Amazon EFS
Simple, Scalable and Highly Durable NAS in the Cloud - Amazon EFSSimple, Scalable and Highly Durable NAS in the Cloud - Amazon EFS
Simple, Scalable and Highly Durable NAS in the Cloud - Amazon EFS
Amazon Web Services
 
Simple, Scalable and Highly Durable NAS in the Cloud – Amazon EFS
Simple, Scalable and Highly Durable NAS in the Cloud – Amazon EFSSimple, Scalable and Highly Durable NAS in the Cloud – Amazon EFS
Simple, Scalable and Highly Durable NAS in the Cloud – Amazon EFS
Amazon Web Services
 
Chapter 8 distributed file systems
Chapter 8 distributed file systemsChapter 8 distributed file systems
Chapter 8 distributed file systemsAbDul ThaYyal
 
Ranjitbanshpal
RanjitbanshpalRanjitbanshpal
Ranjitbanshpal
ranjit banshpal
 
Presentation on nfs,afs,vfs
Presentation on nfs,afs,vfsPresentation on nfs,afs,vfs
Presentation on nfs,afs,vfs
Prakriti Dubey
 
LOAD BALANCING OF APPLICATIONS USING XEN HYPERVISOR
LOAD BALANCING OF APPLICATIONS  USING XEN HYPERVISORLOAD BALANCING OF APPLICATIONS  USING XEN HYPERVISOR
LOAD BALANCING OF APPLICATIONS USING XEN HYPERVISOR
Vanika Kapoor
 
Deep Dive on Amazon EFS | AWS Public Sector Summit 2017
Deep Dive on Amazon EFS | AWS Public Sector Summit 2017Deep Dive on Amazon EFS | AWS Public Sector Summit 2017
Deep Dive on Amazon EFS | AWS Public Sector Summit 2017
Amazon Web Services
 
(BAC309) Automating Backup and Archiving with AWS and CommVault | AWS re:Inve...
(BAC309) Automating Backup and Archiving with AWS and CommVault | AWS re:Inve...(BAC309) Automating Backup and Archiving with AWS and CommVault | AWS re:Inve...
(BAC309) Automating Backup and Archiving with AWS and CommVault | AWS re:Inve...
Amazon Web Services
 
Linux architecture
Linux architectureLinux architecture
Linux architecturemcganesh
 
Linux internal
Linux internalLinux internal
Linux internalmcganesh
 
Linux architecture
Linux architectureLinux architecture
Linux architecturemcganesh
 
DFSNov1.pptx
DFSNov1.pptxDFSNov1.pptx
DFSNov1.pptx
EngrNabidRayhanKhale
 
Chapter09 -- networking with unix and linux
Chapter09  -- networking with unix and linuxChapter09  -- networking with unix and linux
Chapter09 -- networking with unix and linux
Raja Waseem Akhtar
 
Docker introduction
Docker introductionDocker introduction
Docker introduction
Layne Peng
 
Distributed File System
Distributed File SystemDistributed File System
Distributed File System
Ntu
 
Operating System and Basic Networks
Operating System and Basic NetworksOperating System and Basic Networks
Operating System and Basic Networks
Jherome Tenorio
 
[FDD 2016] Marek Śledziński - Microsoft Windows a sprawa kontenerów
[FDD 2016] Marek Śledziński - Microsoft Windows a sprawa kontenerów[FDD 2016] Marek Śledziński - Microsoft Windows a sprawa kontenerów
[FDD 2016] Marek Śledziński - Microsoft Windows a sprawa kontenerów
Future Processing
 
MS_Active_Directory.ppt
MS_Active_Directory.pptMS_Active_Directory.ppt
MS_Active_Directory.ppt
Vipin Singhal
 

Similar to Cl309 (20)

Visual comparison of Unix-like systems & Virtualisation
Visual comparison of Unix-like systems & VirtualisationVisual comparison of Unix-like systems & Virtualisation
Visual comparison of Unix-like systems & Virtualisation
 
Simple, Scalable and Highly Durable NAS in the Cloud - Amazon EFS
Simple, Scalable and Highly Durable NAS in the Cloud - Amazon EFSSimple, Scalable and Highly Durable NAS in the Cloud - Amazon EFS
Simple, Scalable and Highly Durable NAS in the Cloud - Amazon EFS
 
Simple, Scalable and Highly Durable NAS in the Cloud – Amazon EFS
Simple, Scalable and Highly Durable NAS in the Cloud – Amazon EFSSimple, Scalable and Highly Durable NAS in the Cloud – Amazon EFS
Simple, Scalable and Highly Durable NAS in the Cloud – Amazon EFS
 
Chapter 8 distributed file systems
Chapter 8 distributed file systemsChapter 8 distributed file systems
Chapter 8 distributed file systems
 
Ranjitbanshpal
RanjitbanshpalRanjitbanshpal
Ranjitbanshpal
 
Presentation on nfs,afs,vfs
Presentation on nfs,afs,vfsPresentation on nfs,afs,vfs
Presentation on nfs,afs,vfs
 
LOAD BALANCING OF APPLICATIONS USING XEN HYPERVISOR
LOAD BALANCING OF APPLICATIONS  USING XEN HYPERVISORLOAD BALANCING OF APPLICATIONS  USING XEN HYPERVISOR
LOAD BALANCING OF APPLICATIONS USING XEN HYPERVISOR
 
Deep Dive on Amazon EFS | AWS Public Sector Summit 2017
Deep Dive on Amazon EFS | AWS Public Sector Summit 2017Deep Dive on Amazon EFS | AWS Public Sector Summit 2017
Deep Dive on Amazon EFS | AWS Public Sector Summit 2017
 
Lamp ppt
Lamp pptLamp ppt
Lamp ppt
 
(BAC309) Automating Backup and Archiving with AWS and CommVault | AWS re:Inve...
(BAC309) Automating Backup and Archiving with AWS and CommVault | AWS re:Inve...(BAC309) Automating Backup and Archiving with AWS and CommVault | AWS re:Inve...
(BAC309) Automating Backup and Archiving with AWS and CommVault | AWS re:Inve...
 
Linux architecture
Linux architectureLinux architecture
Linux architecture
 
Linux internal
Linux internalLinux internal
Linux internal
 
Linux architecture
Linux architectureLinux architecture
Linux architecture
 
DFSNov1.pptx
DFSNov1.pptxDFSNov1.pptx
DFSNov1.pptx
 
Chapter09 -- networking with unix and linux
Chapter09  -- networking with unix and linuxChapter09  -- networking with unix and linux
Chapter09 -- networking with unix and linux
 
Docker introduction
Docker introductionDocker introduction
Docker introduction
 
Distributed File System
Distributed File SystemDistributed File System
Distributed File System
 
Operating System and Basic Networks
Operating System and Basic NetworksOperating System and Basic Networks
Operating System and Basic Networks
 
[FDD 2016] Marek Śledziński - Microsoft Windows a sprawa kontenerów
[FDD 2016] Marek Śledziński - Microsoft Windows a sprawa kontenerów[FDD 2016] Marek Śledziński - Microsoft Windows a sprawa kontenerów
[FDD 2016] Marek Śledziński - Microsoft Windows a sprawa kontenerów
 
MS_Active_Directory.ppt
MS_Active_Directory.pptMS_Active_Directory.ppt
MS_Active_Directory.ppt
 

More from Juliette Ponnet

Cl210
Cl210Cl210
Cl210 lab
Cl210 labCl210 lab
Cl210 lab
Juliette Ponnet
 
Cl302
Cl302Cl302
Cl212
Cl212Cl212
Cl306
Cl306Cl306
Cl105
Cl105Cl105
Cl117
Cl117Cl117
Cl104
Cl104Cl104

More from Juliette Ponnet (8)

Cl210
Cl210Cl210
Cl210
 
Cl210 lab
Cl210 labCl210 lab
Cl210 lab
 
Cl302
Cl302Cl302
Cl302
 
Cl212
Cl212Cl212
Cl212
 
Cl306
Cl306Cl306
Cl306
 
Cl105
Cl105Cl105
Cl105
 
Cl117
Cl117Cl117
Cl117
 
Cl104
Cl104Cl104
Cl104
 

Recently uploaded

Knowledge engineering: from people to machines and back
Knowledge engineering: from people to machines and backKnowledge engineering: from people to machines and back
Knowledge engineering: from people to machines and back
Elena Simperl
 
From Siloed Products to Connected Ecosystem: Building a Sustainable and Scala...
From Siloed Products to Connected Ecosystem: Building a Sustainable and Scala...From Siloed Products to Connected Ecosystem: Building a Sustainable and Scala...
From Siloed Products to Connected Ecosystem: Building a Sustainable and Scala...
Product School
 
ODC, Data Fabric and Architecture User Group
ODC, Data Fabric and Architecture User GroupODC, Data Fabric and Architecture User Group
ODC, Data Fabric and Architecture User Group
CatarinaPereira64715
 
AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...
AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...
AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...
Product School
 
UiPath Test Automation using UiPath Test Suite series, part 3
UiPath Test Automation using UiPath Test Suite series, part 3UiPath Test Automation using UiPath Test Suite series, part 3
UiPath Test Automation using UiPath Test Suite series, part 3
DianaGray10
 
Bits & Pixels using AI for Good.........
Bits & Pixels using AI for Good.........Bits & Pixels using AI for Good.........
Bits & Pixels using AI for Good.........
Alison B. Lowndes
 
FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf
FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdfFIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf
FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf
FIDO Alliance
 
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
Ramesh Iyer
 
From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...
From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...
From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...
Product School
 
Key Trends Shaping the Future of Infrastructure.pdf
Key Trends Shaping the Future of Infrastructure.pdfKey Trends Shaping the Future of Infrastructure.pdf
Key Trends Shaping the Future of Infrastructure.pdf
Cheryl Hung
 
Neuro-symbolic is not enough, we need neuro-*semantic*
Neuro-symbolic is not enough, we need neuro-*semantic*Neuro-symbolic is not enough, we need neuro-*semantic*
Neuro-symbolic is not enough, we need neuro-*semantic*
Frank van Harmelen
 
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
Product School
 
UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4
DianaGray10
 
GraphRAG is All You need? LLM & Knowledge Graph
GraphRAG is All You need? LLM & Knowledge GraphGraphRAG is All You need? LLM & Knowledge Graph
GraphRAG is All You need? LLM & Knowledge Graph
Guy Korland
 
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered Quality
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered QualitySoftware Delivery At the Speed of AI: Inflectra Invests In AI-Powered Quality
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered Quality
Inflectra
 
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...
James Anderson
 
Mission to Decommission: Importance of Decommissioning Products to Increase E...
Mission to Decommission: Importance of Decommissioning Products to Increase E...Mission to Decommission: Importance of Decommissioning Products to Increase E...
Mission to Decommission: Importance of Decommissioning Products to Increase E...
Product School
 
JMeter webinar - integration with InfluxDB and Grafana
JMeter webinar - integration with InfluxDB and GrafanaJMeter webinar - integration with InfluxDB and Grafana
JMeter webinar - integration with InfluxDB and Grafana
RTTS
 
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...
Jeffrey Haguewood
 
The Future of Platform Engineering
The Future of Platform EngineeringThe Future of Platform Engineering
The Future of Platform Engineering
Jemma Hussein Allen
 

Recently uploaded (20)

Knowledge engineering: from people to machines and back
Knowledge engineering: from people to machines and backKnowledge engineering: from people to machines and back
Knowledge engineering: from people to machines and back
 
From Siloed Products to Connected Ecosystem: Building a Sustainable and Scala...
From Siloed Products to Connected Ecosystem: Building a Sustainable and Scala...From Siloed Products to Connected Ecosystem: Building a Sustainable and Scala...
From Siloed Products to Connected Ecosystem: Building a Sustainable and Scala...
 
ODC, Data Fabric and Architecture User Group
ODC, Data Fabric and Architecture User GroupODC, Data Fabric and Architecture User Group
ODC, Data Fabric and Architecture User Group
 
AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...
AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...
AI for Every Business: Unlocking Your Product's Universal Potential by VP of ...
 
UiPath Test Automation using UiPath Test Suite series, part 3
UiPath Test Automation using UiPath Test Suite series, part 3UiPath Test Automation using UiPath Test Suite series, part 3
UiPath Test Automation using UiPath Test Suite series, part 3
 
Bits & Pixels using AI for Good.........
Bits & Pixels using AI for Good.........Bits & Pixels using AI for Good.........
Bits & Pixels using AI for Good.........
 
FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf
FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdfFIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf
FIDO Alliance Osaka Seminar: Passkeys at Amazon.pdf
 
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
Builder.ai Founder Sachin Dev Duggal's Strategic Approach to Create an Innova...
 
From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...
From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...
From Daily Decisions to Bottom Line: Connecting Product Work to Revenue by VP...
 
Key Trends Shaping the Future of Infrastructure.pdf
Key Trends Shaping the Future of Infrastructure.pdfKey Trends Shaping the Future of Infrastructure.pdf
Key Trends Shaping the Future of Infrastructure.pdf
 
Neuro-symbolic is not enough, we need neuro-*semantic*
Neuro-symbolic is not enough, we need neuro-*semantic*Neuro-symbolic is not enough, we need neuro-*semantic*
Neuro-symbolic is not enough, we need neuro-*semantic*
 
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
De-mystifying Zero to One: Design Informed Techniques for Greenfield Innovati...
 
UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4UiPath Test Automation using UiPath Test Suite series, part 4
UiPath Test Automation using UiPath Test Suite series, part 4
 
GraphRAG is All You need? LLM & Knowledge Graph
GraphRAG is All You need? LLM & Knowledge GraphGraphRAG is All You need? LLM & Knowledge Graph
GraphRAG is All You need? LLM & Knowledge Graph
 
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered Quality
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered QualitySoftware Delivery At the Speed of AI: Inflectra Invests In AI-Powered Quality
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered Quality
 
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...
 
Mission to Decommission: Importance of Decommissioning Products to Increase E...
Mission to Decommission: Importance of Decommissioning Products to Increase E...Mission to Decommission: Importance of Decommissioning Products to Increase E...
Mission to Decommission: Importance of Decommissioning Products to Increase E...
 
JMeter webinar - integration with InfluxDB and Grafana
JMeter webinar - integration with InfluxDB and GrafanaJMeter webinar - integration with InfluxDB and Grafana
JMeter webinar - integration with InfluxDB and Grafana
 
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...
Slack (or Teams) Automation for Bonterra Impact Management (fka Social Soluti...
 
The Future of Platform Engineering
The Future of Platform EngineeringThe Future of Platform Engineering
The Future of Platform Engineering
 

Cl309

  • 1. Novell Storage Services ™ File System Performance, Clustering and Auditing in Novell ® Open Enterprise Server on Linux Marcus Gould Premium Support Engineer Novell, Inc. [email_address] Bart Schoofs WorldWide Support Engineer Novell, Inc. [email_address] Adam Jerome Senior Software Engineer Novell, Inc. [email_address] Vijai Babu Madhavan Filesystem Engineer Novell, Inc. [email_address]
  • 2.
  • 3. Novell Storage Services and NCP ™ Tuning and Troubleshooting
  • 4. Novell Storage Services Auditing (Vigil)
  • 5. Novell Storage Services ™ Feature and Architecture Review
  • 6.
  • 7.
  • 13.
  • 21. Architecture: Novell Storage Services ™ on Linux User Kernel Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
  • 22. Architecture: Novell Storage Services ™ on Linux Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
  • 23.
  • 24. NetWare-created pools can mount on Linux
  • 25. Linux-created pools can mount on NetWare
  • 26. Must stick to iManager and nssmu Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
  • 27.
  • 28.
  • 29.
  • 30.
  • 31. Linux uses UIDs internally
  • 33.
  • 34.
  • 35. Write: Set unless file is read-only
  • 36.
  • 37.
  • 38. VFS (Virtual File Services) Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
  • 39. VFS (Virtual File Services) (1) Create File foo.txt logged in as Joe with a UID of 705 Client NSS Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
  • 40. VFS (Virtual File Services) (1) Create File foo.txt logged in as Joe with a UID of 705 (2) NSS requests eDirectory name for UID 705 LUM returns joe.acme Client LUM NSS Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
  • 41. VFS (Virtual File Services) (1) Create File foo.txt logged in as Joe with a UID of 705 (2) NSS requests eDirectory name for UID 705 LUM returns joe.acme (3) NSS requests security equivalence information for joe.acme – eDirectory returns a list of equivalent users and group memberships Client LUM eDirectory NSS Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
  • 42. VFS (Virtual File Services) (1) Create File foo.txt logged in as Joe with a UID of 705 (2) NSS requests eDirectory name for UID 705 LUM returns joe.acme (3) NSS requests security equivalence information for joe.acme – eDirectory returns a list of equivalent users and group memberships (4) NSS does normal trustee checking based on users and groups returned by eDirectory Client LUM eDirectory NSS Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
  • 43.
  • 44.
  • 45.
  • 46.
  • 47.
  • 48.
  • 49.
  • 50. User quotas and salvage will work Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
  • 51. NCP ™ Server Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
  • 52. NCP ™ Server (1) User and Group information for the connection joe.acme is using NCP Server eDirectory Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
  • 53. NCP ™ Server (2) Create file foo.txt logged in as joe.acme (1) User and Group information for the connection joe.acme is using NCP Client NCP Server eDirectory Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
  • 54. NCP ™ Server (2) Create file foo.txt logged in as joe.acme (1) User and Group information for the connection joe.acme is using (3) Apply trustee rights based on path & connection NCP Client NCP Server eDirectory Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
  • 55. NCP ™ Server (2) Create file foo.txt logged in as joe.acme (1) User and Group information for the connection joe.acme is using (3) Apply trustee rights based on path & connection (4) Create foo.txt as root NCP Client NCP Server eDirectory NSS Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
  • 56. NCP ™ Server (2) Create file foo.txt logged in as joe.acme (1) User and Group information for the connection joe.acme is using (3) Apply trustee rights based on path & connection (4) Create foo.txt as root (5) Change owner to joe.acme (by GUID) NCP Client NCP Server eDirectory NSS Device Drivers EVMS (Enterprise Volume Management System) Media Manager Logic NSS Storage Subsystem Linux Semantic Agent Linux Applications (e.g. SAMBA) NCP _ Admin Management (Virtual File System) eDirectory Handler Up Call VFS (Virtual File Services) Reiser EXT3 XFS
  • 57. Tuning Novell Storage Services ™
  • 58.
  • 59. Bottom 1GB on 32 Bit Linux (can be customised)
  • 60.
  • 61. Kernel has to map it to use it 0 1 4 GB 2 3 User Kernel
  • 62.
  • 63.
  • 64.
  • 65. Saved on disk as 4K Blocks (User data Blocks)
  • 66.
  • 67. Linux: Memory shared with, and managed by, Linux
  • 68.
  • 69.
  • 70.
  • 71.
  • 72.
  • 74.
  • 75. Based on the available memory in the system
  • 76.
  • 77.
  • 78.
  • 79.
  • 80.
  • 81.
  • 82.
  • 83. Higher is not necessarily better
  • 85.
  • 87.
  • 88.
  • 89.
  • 90.
  • 92.
  • 94. NCP on Linux can outperform NCP on NetWare ®
  • 95.
  • 98.
  • 99. TID 7004888 – NCP Performance Tuning on OES2 Linux
  • 100. ncpcon
  • 101.
  • 102.
  • 105.
  • 106. Optimized for both LUM and non-LUM users access
  • 107.
  • 108. Tune NCP Dir Cache
  • 109. Process of elimination (NCP, NSS, etc...)
  • 111.
  • 112.
  • 113.
  • 114.
  • 115. Novell Storage Services ™ Auditing (Vigil)
  • 116. NCP Handling ...(w/o auditing) User-address space Kernel-address space eDirectory Engine POSIX System Call Table VFS NSS NCP Engine NCP_REQEST: OpenFile User: Joe File: fs1/sys:usr/Joe/readme.txt Mode: read_only NCP_REPLY: OpenFile Status : 0 (OK) Handle: 21 (NCP Generated)
  • 117. NCP Handling ...(vigil_nss.ko) User-address space Kernel-address space eDirectory Engine POSIX System Call Table VFS NSS NCP Engine vigil_nss.ko NCP_REQEST: OpenFile User: Joe File: fs1/sys:usr/Joe/readme.txt Mode: read_only NCP_REPLY: OpenFile Status : 0 (OK) Handle: 21 (NCP Generated)
  • 118. NCP Handling ...(vigil.ko) User-address space Kernel-address space eDirectory Engine POSIX System Call Table VFS NSS NCP Engine vigil_nss.ko vigil.ko NCP_REQEST: OpenFile User: Joe File: fs1/sys:usr/Joe/readme.txt Mode: read_only NCP_REPLY: OpenFile Status : 0 (OK) Handle: 21 (NCP Generated)
  • 119. NCP Handling ...(vigil.ko API) User-address space Kernel-address space eDirectory Engine POSIX System Call Table VFS NSS NCP Engine vigil_nss.ko sysfs API vigil.ko NCP_REQEST: OpenFile User: Joe File: fs1/sys:usr/Joe/readme.txt Mode: read_only NCP_REPLY: OpenFile Status : 0 (OK) Handle: 21 (NCP Generated)
  • 120. NCP Handling ...(libvigil) User-address space Kernel-address space eDirectory Engine POSIX System Call Table VFS NSS NCP Engine vigil_nss.ko sysfs API vigil.ko libvigil NCP_REQEST: OpenFile User: Joe File: fs1/sys:usr/Joe/readme.txt Mode: read_only NCP_REPLY: OpenFile Status : 0 (OK) Handle: 21 (NCP Generated)
  • 121. NCP Handling ...(Auditing Client) User-address space Kernel-address space SIGIO eDirectory Engine POSIX System Call Table VFS NSS NCP Engine vigil_nss.ko sysfs API vigil.ko Audit Clients Filter(s) Audit Stream Audit App. libvigil NCP_REQEST: OpenFile User: Joe File: fs1/sys:usr/Joe/readme.txt Mode: read_only NCP_REPLY: OpenFile Status : 0 (OK) Handle: 21 (NCP Generated)
  • 122. NCP Handling ...(Multiple Auditing Clients) User-address space Kernel-address space SIGIO eDirectory Engine POSIX System Call Table VFS NSS NCP Engine vigil_nss.ko sysfs API vigil.ko Audit Clients Filter(s) Audit Stream Audit App. libvigil NCP_REQEST: OpenFile User: Joe File: fs1/sys:usr/Joe/readme.txt Mode: read_only NCP_REPLY: OpenFile Status : 0 (OK) Handle: 21 (NCP Generated) Filter(s) Audit Stream Filter(s) Audit Stream Filter(s) Audit Stream
  • 123. NCP Handling ...(Identity Issue) User-address space Kernel-address space SIGIO eDirectory Engine POSIX System Call Table VFS NSS NCP Engine vigil_nss.ko sysfs API vigil.ko Audit Clients Filter(s) Audit Stream Audit App. libvigil NCP_REQEST: OpenFile User: Joe File: fs1/sys:usr/Joe/readme.txt Mode: read_only NCP_REPLY: OpenFile Status : 0 (OK) Handle: 21 (NCP Generated) Filter(s) Audit Stream Filter(s) Audit Stream Filter(s) Audit Stream User=root
  • 124. NCP Handling ...(Process Metadata) User-address space Kernel-address space SIGIO eDirectory Engine POSIX System Call Table VFS NSS NCP Engine pmd.ko Process Meta- data Table vigil_nss.ko sysfs API vigil.ko Audit Clients Filter(s) Audit Stream Audit App. libvigil NCP_REQEST: OpenFile User: Joe File: fs1/sys:usr/Joe/readme.txt Mode: read_only NCP_REPLY: OpenFile Status : 0 (OK) Handle: 21 (NCP Generated) Filter(s) Audit Stream Filter(s) Audit Stream Filter(s) Audit Stream
  • 125. NCP Handling ...(Process Metadata Table) User-address space Kernel-address space SIGIO eDirectory Engine POSIX System Call Table VFS NSS NCP Engine pmd.ko Process Meta- data Table vigil_nss.ko sysfs API vigil.ko Audit Clients Filter(s) Audit Stream Audit App. libvigil NCP_REQEST: OpenFile User: Joe File: fs1/sys:usr/Joe/readme.txt Mode: read_only NCP_REPLY: OpenFile Status : 0 (OK) Handle: 21 (NCP Generated) Filter(s) Audit Stream Filter(s) Audit Stream Filter(s) Audit Stream Process Metadata Table
  • 126. NCP Handling ...(Process Metadata Logging) User-address space Kernel-address space SIGIO eDirectory Engine POSIX System Call Table VFS NSS NCP Engine pmd.ko Process Meta- data Table vigil_nss.ko sysfs API vigil.ko Audit Clients Filter(s) Audit Stream Audit App. libvigil Linux Process NCP/NDS Client Metadata NCP_REQEST: OpenFile User: Joe File: fs1/sys:usr/Joe/readme.txt Mode: read_only NCP_REPLY: OpenFile Status : 0 (OK) Handle: 21 (NCP Generated) Filter(s) Audit Stream Filter(s) Audit Stream Filter(s) Audit Stream
  • 127. NCP Handling ...(Process Metadata Retrieval) User-address space Kernel-address space SIGIO eDirectory Engine POSIX System Call Table VFS NSS NCP Engine pmd.ko Process Meta- data Table vigil_nss.ko sysfs API vigil.ko Audit Clients Filter(s) Audit Stream Audit App. libvigil Linux Process NCP/NDS Client Metadata NCP_REQEST: OpenFile User: Joe File: fs1/sys:usr/Joe/readme.txt Mode: read_only NCP_REPLY: OpenFile Status : 0 (OK) Handle: 21 (NCP Generated) Filter(s) Audit Stream Filter(s) Audit Stream Filter(s) Audit Stream
  • 128. NCP Handling ...(Internal NCP Engine Event handling) User-address space Kernel-address space SIGIO eDirectory Engine POSIX System Call Table VFS NSS NCP Engine pmd.ko Process Meta- data Table vigil_nss.ko sysfs API vigil.ko Audit Clients Filter(s) Audit Stream Audit App. libvigil Lazy-Close Dup-Open Events Linux Process NCP/NDS Client Metadata NCP_REQEST: OpenFile User: Joe File: fs1/sys:usr/Joe/readme.txt Mode: read_only NCP_REPLY: OpenFile Status : 0 (OK) Handle: 21 (NCP Generated) Filter(s) Audit Stream Filter(s) Audit Stream Filter(s) Audit Stream
  • 129. NCP Handling ...(vigil_ncp.ko) User-address space Kernel-address space SIGIO eDirectory Engine POSIX System Call Table VFS NSS NCP Engine pmd.ko Process Meta- data Table vigil_nss.ko vigil_ncp.ko sysfs sysfs API vigil.ko Audit Clients Filter(s) Audit Stream Audit App. libvigil Lazy-Close Dup-Open Events Linux Process NCP/NDS Client Metadata NCP_REQEST: OpenFile User: Joe File: fs1/sys:usr/Joe/readme.txt Mode: read_only NCP_REPLY: OpenFile Status : 0 (OK) Handle: 21 (NCP Generated) Filter(s) Audit Stream Filter(s) Audit Stream Filter(s) Audit Stream
  • 130. CIFS Handling User-address space Kernel-address space SIGIO POSIX System Call Table VFS NSS CIFS Engine pmd.ko Process Meta- data Table vigil_nss.ko vigil_cifs.ko sysfs sysfs API vigil.ko Audit Clients Filter(s) Audit Stream Audit App. libvigil Lazy-Close Dup-Open Events Linux Process NCP/NDS Client Metadata CIFS_REQEST: OpenFile User: Joe File: fs1/sys:usr/Joe/readme.txt Mode: read_only CIFS_REPLY: OpenFile Status : 0 (OK) Handle: 21 (NCP Generated) Filter(s) Audit Stream Filter(s) Audit Stream Filter(s) Audit Stream
  • 131. AFP Handling User-address space Kernel-address space SIGIO POSIX System Call Table VFS NSS vigil_nss.ko sysfs API vigil.ko Audit Clients Filter(s) Audit Stream Audit App. libvigil NSS zAPIs AFP_REQEST: OpenFile User: Joe File: fs1/sys:usr/Joe/readme.txt Mode: read_only AFP_REPLY: OpenFile Status : 0 (OK) Handle: 21 (NCP Generated) Filter(s) Audit Stream Filter(s) Audit Stream Filter(s) Audit Stream AFP Engine
  • 132. Auditing Client Applications Blue Lance – LT Auditor+ 9 for SUSE ® Linux NetVision – NVMonitor Version 7.0 Novell ® Sentinel ™ – Log Manager Novell Open Enterprise Server – vlog
  • 133. <AUDIT vlogRecNo=&quot;2&quot; vigilRecNo=&quot;2&quot; pid=&quot;11442&quot; TimeStamp=&quot;2010-03-04 09:46:25.416900&quot; Type=&quot;3 NSS&quot;> <NSS Event=&quot;64 MODIFY&quot; TaskID=&quot;0&quot; Zid=&quot;1C2E&quot; ParentZid=&quot;9A&quot; OpRetCode=&quot;0&quot; FileType=&quot;3 NAMED_DATA_STREAM&quot; FileAttributes=&quot;0x40000021 0-READ_ONLY 5-ARCHIVE 30-ATTR_ARCHIVE&quot; VolID=&quot;B87E55ADF559DE018000D7BDDBFE9C09&quot; VolDn=&quot;VOL1&quot; UserID=&quot;03000000000000000000000000000000&quot; UserDn=&quot;Supervisor&quot; Uid=&quot;0&quot; Uid_name=&quot;root&quot; Euid=&quot;0&quot; Euid_name=&quot;root&quot; Suid=&quot;0&quot; Suid_name=&quot;root&quot; Fsuid=&quot;0&quot; Fsuid_name=&quot;root&quot; Gid=&quot;0&quot; Gid_name=&quot;root&quot; Egid=&quot;0&quot; Egid_name=&quot;root&quot; Sgid=&quot;0&quot; Sgid_name=&quot;root&quot; Fsgid=&quot;0&quot; Fsgid_name=&quot;root&quot; Comm=&quot;ndsd&quot;> <PATH Type=&quot;1 target&quot; NameSpace=&quot;2 unicode&quot;>VOL1:/ajerome/myFile</PATH> <MODIFY_INFO ModifyInfoMask=&quot;0x00000021 0-FILE_ATTRIBUTES 5-METADATA_MODIFIED_TIME&quot; modifyTypeInfoMask=&quot;0x21&quot; /> <FILE_ATTRIBUTES FileAttributes=&quot;0x00000000&quot; FileAttributesModMask=&quot;0x4000000B&quot; /> <METADATA_MODIFIED_TIME Time=&quot;03/04/2010 09:46:25&quot; /> </NSS> </AUDIT> <AUDIT vlogRecNo=&quot;3&quot; vigilRecNo=&quot;3&quot; pid=&quot;11442&quot; TimeStamp=&quot;2010-03-04 09:46:25.417052&quot; Type=&quot;3 NSS&quot;> <NSS Event=&quot;4 OPEN&quot; TaskID=&quot;0&quot; Zid=&quot;1C2E&quot; ParentZid=&quot;9A&quot; OpRetCode=&quot;0&quot; FileType=&quot;3 NAMED_DATA_STREAM&quot; FileAttributes=&quot;0x40000020 5-ARCHIVE 30-ATTR_ARCHIVE&quot; VolID=&quot;B87E55ADF559DE018000D7BDDBFE9C09&quot; VolDn=&quot;VOL1&quot; UserID=&quot;03000000000000000000000000000000&quot; UserDn=&quot;Supervisor&quot; Uid=&quot;0&quot; Uid_name=&quot;root&quot; Euid=&quot;0&quot; Euid_name=&quot;root&quot; Suid=&quot;0&quot; Suid_name=&quot;root&quot; Fsuid=&quot;0&quot; Fsuid_name=&quot;root&quot; Gid=&quot;0&quot; Gid_name=&quot;root&quot; Egid=&quot;0&quot; Egid_name=&quot;root&quot; Sgid=&quot;0&quot; Sgid_name=&quot;root&quot; Fsgid=&quot;0&quot; Fsgid_name=&quot;root&quot; Comm=&quot;ndsd&quot;> <PATH Type=&quot;1 target&quot; NameSpace=&quot;2 unicode&quot;>VOL1:/ajerome/myFile</PATH> <OPEN key=&quot;0x9552AE6B440F959&quot; RequestedRights=&quot;0x00000013 0-READ_ACCESS 1-WRITE_ACCESS 4-SCAN_ACCESS&quot; Accessed=&quot;03/04/2010 09:46:25&quot; Created=&quot;02/05/2010 14:35:01&quot; Modified=&quot;02/05/2010 14:35:01&quot; MetaDataModified=&quot;03/04/2010 09:46:25&quot; /> </NSS> </AUDIT> <AUDIT vlogRecNo=&quot;4&quot; vigilRecNo=&quot;4&quot; pid=&quot;11442&quot; TimeStamp=&quot;2010-03-04 09:46:25.417154&quot; Type=&quot;3 NSS&quot;> <NSS Event=&quot;64 MODIFY&quot; TaskID=&quot;0&quot; Zid=&quot;1C2E&quot; ParentZid=&quot;9A&quot; OpRetCode=&quot;0&quot; FileType=&quot;3 NAMED_DATA_STREAM&quot; FileAttributes=&quot;0x40000020 5-ARCHIVE 30-ATTR_ARCHIVE&quot; VolID=&quot;B87E55ADF559DE018000D7BDDBFE9C09&quot; VolDn=&quot;VOL1&quot; UserID=&quot;03000000000000000000000000000000&quot; UserDn=&quot;Supervisor&quot; Uid=&quot;0&quot; Uid_name=&quot;root&quot; Euid=&quot;0&quot; Euid_name=&quot;root&quot; Suid=&quot;0&quot; Suid_name=&quot;root&quot; Fsuid=&quot;0&quot; Fsuid_name=&quot;root&quot; Gid=&quot;0&quot; Gid_name=&quot;root&quot; Egid=&quot;0&quot; Egid_name=&quot;root&quot; Sgid=&quot;0&quot; Sgid_name=&quot;root&quot; Fsgid=&quot;0&quot; Fsgid_name=&quot;root&quot; Comm=&quot;ndsd&quot;> <PATH Type=&quot;1 target&quot; NameSpace=&quot;2 unicode&quot;>VOL1:/ajerome/myFile</PATH> <MODIFY_INFO ModifyInfoMask=&quot;0x00000021 0-FILE_ATTRIBUTES 5-METADATA_MODIFIED_TIME&quot; modifyTypeInfoMask=&quot;0x21&quot; /> <FILE_ATTRIBUTES FileAttributes=&quot;0x00000001 0-READ_ONLY&quot; FileAttributesModMask=&quot;0x4000000B&quot; /> <METADATA_MODIFIED_TIME Time=&quot;03/04/2010 09:46:25&quot; /> </NSS> </AUDIT> <AUDIT vlogRecNo=&quot;5&quot; vigilRecNo=&quot;5&quot; pid=&quot;11442&quot; TimeStamp=&quot;2010-03-04 09:46:25.417323&quot; Type=&quot;2 NCP&quot;> <NCP Event=&quot;16 OPEN&quot;> <WHO_LINUX Uid=”0” UidName=”root” Euid=”0” EuidName=”root” Suid=”0” SuidName=”root” Fsuid=”0” FsuidName=”root” Gid=”0” GidName=”root” Egid=”0” EgidName=”root” Sgid=”0” SgidName=”root” Fsgid=”0” FsguidName=”root” Comm=”ndsd” /> <PMD_NCP ConnID=&quot;12&quot; TaskID=&quot;4&quot; Guid=&quot;A053F649CB3CD94AE5A3A053F649CB3C&quot; Dn=&quot;.CN=ajerome.O=novell.T=AJEROME-OES2-64-TREE.&quot; /> <NCP_LOCAL__OPENFILE searchAttributes=&quot;0x26&quot; DesiredAccessRights=&quot;0x01&quot; LinuxPath=&quot;/media/nss/VOL1/ajerome/myFile&quot; Status=&quot;0&quot; FileHandle=&quot;000037623030&quot; FileAttributes=&quot;0x00000021 0-READ_ONLY 5-ARCHIVE&quot; FileExecuteType=&quot;00&quot; FileLen=&quot;14&quot; CreationDate=&quot; 5/02/2010&quot; LastAccessDate=&quot; 4/03/2010&quot; LastUpdateDate=&quot; 5/02/2010&quot; LastUpdateTime=&quot;14:35:00&quot; /> </NCP> </AUDIT> <AUDIT vlogRecNo=&quot;6&quot; vigilRecNo=&quot;6&quot; pid=&quot;11442&quot; TimeStamp=&quot;2010-03-04 09:46:25.423618&quot; Type=&quot;2 NCP&quot;> <NCP Event=&quot;32 CLOSE&quot;> <WHO_LINUX Uid=”0” UidName=”root” Euid=”0” EuidName=”root” Suid=”0” SuidName=”root” Fsuid=”0” FsuidName=”root” Gid=”0” GidName=”root” Egid=”0” EgidName=”root” Sgid=”0” SgidName=”root” Fsgid=”0” FsguidName=”root” Comm=”ndsd” /> <PMD_NCP ConnID=&quot;12&quot; TaskID=&quot;4&quot; Guid=&quot;A053F649CB3CD94AE5A3A053F649CB3C&quot; Dn=&quot;.CN=ajerome.O=novell.T=AJEROME-OES2-64-TREE.&quot; /> <NCP_LOCAL__CLOSEFILE FileHandle=&quot;0x000089007B00&quot; Status=&quot;0&quot; /> </NCP> </AUDIT>
  • 134. <AUDIT VlogRecNo=&quot;3&quot; VigilRecNo=&quot; 3 &quot; Pid=&quot; 11442 &quot; TimeStamp=&quot; 2010-03-04 09:46:25.417052 &quot; Type=&quot; 3 NSS &quot; > <NSS Event=&quot; 4 OPEN &quot; TaskID=&quot; 0 &quot; Zid=&quot; 1C2E &quot; ParentZid=&quot; 9A &quot; OpRetCode=&quot; 0 &quot; FileType=&quot; 3 NAMED_DATA_STREAM&quot; FileAttributes=&quot; 0x40000020 5-ARCHIVE 30-ATTR_ARCHIVE&quot; VolID=&quot; B87E55ADF559DE018000D7BDDBFE9C09 &quot; VolDn=&quot;VOL1&quot; UserID=&quot; 03000000000000000000000000000000 &quot; UserDn=&quot;Supervisor&quot; Uid=&quot; 0 &quot; Uid_name=&quot;root&quot; Euid=&quot; 0 &quot; Euid_name=&quot;root&quot; Suid=&quot; 0 &quot; Suid_name=&quot;root&quot; Fsuid=&quot; 0 &quot; Fsuid_name=&quot;root&quot; Gid=&quot; 0 &quot; Gid_name=&quot;root&quot; Egid=&quot;0&quot; Egid_name=&quot;root&quot; Sgid=&quot; 0 &quot; Sgid_name=&quot;root&quot; Fsgid=&quot; 0 &quot; Fsgid_name=&quot;root&quot; Comm=&quot; ndsd &quot; > <PATH Type=&quot; 1 target&quot; NameSpace=&quot; 2 unicode&quot;> VOL1:/ajerome/myFile </PATH> <OPEN Key=&quot; 0x9552AE6B440F959 &quot; RequestedRights=&quot; 0x00000013 0-READ_ACCESS 1-WRITE_ACCESS 4-SCAN_ACCESS&quot; Accessed=&quot; 03/04/2010 09:46:25 &quot; Created=&quot; 02/05/2010 14:35:01 &quot; Modified=&quot; 02/05/2010 14:35:01 &quot; MetaDataModified=&quot; 03/04/2010 09:46:25 &quot; /> </NSS> </AUDIT>
  • 135. <AUDIT VlogRecNo=&quot; 4 &quot; VigilRecNo=&quot; 4 &quot; Pid=&quot; 11442 &quot; TimeStamp=&quot; 2010-03-04 09:46:25.417154 &quot; Type=&quot; 3 NSS &quot; > <NSS Event=&quot; 64 MODIFY &quot; TaskID=&quot; 0 &quot; Zid=&quot; 1C2E &quot; ParentZid=&quot; 9A &quot; OpRetCode=&quot; 0 &quot; FileType=&quot; 3 NAMED_DATA_STREAM&quot; FileAttributes=&quot; 0x40000020 5-ARCHIVE 30-ATTR_ARCHIVE&quot; VolID=&quot; B87E55ADF559DE018000D7BDDBFE9C09 &quot; VolDn=&quot;VOL1&quot; UserID=&quot; 03000000000000000000000000000000 &quot; UserDn=&quot;Supervisor&quot; Uid=&quot; 0 &quot; Uid_name=&quot;root&quot; Euid=&quot; 0 &quot; Euid_name=&quot;root&quot; Suid=&quot; 0 &quot; Suid_name=&quot;root&quot; Fsuid=&quot; 0 &quot; Fsuid_name=&quot;root&quot; Gid=&quot; 0 &quot; Gid_name=&quot; root &quot; Egid=&quot; 0 &quot; Egid_name=&quot;root&quot; Sgid=&quot; 0 &quot; Sgid_name=&quot;root&quot; Fsgid=&quot;0&quot; Fsgid_name=&quot;root&quot; Comm=&quot; ndsd &quot; > <PATH Type=&quot; 1 target&quot; NameSpace=&quot; 2 unicode&quot;> VOL1:/ajerome/myFile </PATH> <MODIFY_INFO ModifyInfoMask=&quot; 0x00000021 0-FILE_ATTRIBUTES 5-METADATA_MODIFIED_TIME&quot; ModifyTypeInfoMask =&quot; 0x21 &quot; /> <FILE_ATTRIBUTES FileAttributes=&quot; 0x00000001 0-READ_ONLY&quot; FileAttributesModMask=&quot; 0x4000000B &quot; /> <METADATA_MODIFIED_TIME Time=&quot; 03/04/2010 09:46:25 &quot; /> </NSS> </AUDIT>
  • 136. <AUDIT VlogRecNo=&quot;5&quot; VigilRecNo=&quot; 5 &quot; Pid=&quot; 11442 &quot; TimeStamp=&quot; 2010-03-04 09:46:25.417323 &quot; Type=&quot; 2 NCP &quot; > <NCP Event=&quot; 16 OPEN &quot; > <WHO_LINUX Uid=” 0 ” UidName=”root” Euid=” 0 ” EuidName=”root” Suid=” 0 ” SuidName=”root” Fsuid=” 0 ” FsuidName=”root” Gid=” 0 ” GidName=”root” Egid=” 0 ” EgidName=”root” Sgid=” 0 ” SgidName=”root” Fsgid=” 0 ” FsguidName=”root” Comm=” ndsd ” /> <PMD_NCP ConnID=&quot; 12 &quot; TaskID=&quot; 4 &quot; Guid=&quot; A053F649CB3CD94AE5A3A053F649CB3C &quot; Dn=&quot;.CN=ajerome.O=novell.T=AJEROME-OES2-64-TREE.&quot; /> <NCP_LOCAL__OPENFILE SearchAttributes=&quot; 0x26 &quot; DesiredAccessRights=&quot; 0x01 &quot; LinuxPath=&quot; /media/nss/VOL1/ajerome/myFile &quot; Status=&quot; 0 &quot; FileHandle=&quot; 000037623030 &quot; FileAttributes=&quot; 0x00000021 0-READ_ONLY 5-ARCHIVE&quot; FileExecuteType=&quot; 00 &quot; FileLen=&quot; 14 &quot; CreationDate=&quot; 5/02/2010 &quot; LastAccessDate=&quot; 4/03/2010 &quot; LastUpdateDate=&quot; 5/02/2010 &quot; LastUpdateTime=&quot; 14:35:00 &quot; /> </NCP> </AUDIT>
  • 137. <AUDIT VlogRecNo=&quot;6&quot; VigilRecNo=&quot; 6 &quot; Pid=&quot; 11442 &quot; TimeStamp=&quot; 2010-03-04 09:46:25.423618 &quot; Type=&quot; 2 NCP &quot; > <NCP Event=&quot; 32 CLOSE &quot;> <WHO_LINUX Uid=” 0 ” UidName=”root” Euid=” 0 ” EuidName=”root” Suid=” 0 ” SuidName=”root” Fsuid=” 0 ” FsuidName=”root” Gid=” 0 ” GidName=”root” Egid=” 0 ” EgidName=”root” Sgid=” 0 ” SgidName=”root” Fsgid=” 0 ” FsguidName=”root” Comm=” ndsd ” /> <PMD_NCP ConnID=&quot; 12 &quot; TaskID=&quot; 4 &quot; Guid=&quot; A053F649CB3CD94AE5A3A053F649CB3C &quot; Dn=&quot;.CN=ajerome.O=novell.T=AJEROME-OES2-64-TREE.&quot; /> <NCP_LOCAL__CLOSEFILE FileHandle=&quot; 0x000089007B00 &quot; Status=&quot;0&quot; /> </NCP> </AUDIT>
  • 138.
  • 139. TID#7004877 – NSS takes time to load and slow access
  • 142.  
  • 143. Unpublished Work of Novell, Inc. All Rights Reserved. This work is an unpublished work and contains confidential, proprietary, and trade secret information of Novell, Inc. Access to this work is restricted to Novell employees who have a need to know to perform tasks within the scope of their assignments. No part of this work may be practiced, performed, copied, distributed, revised, modified, translated, abridged, condensed, expanded, collected, or adapted without the prior written consent of Novell, Inc. Any use or exploitation of this work without authorization could subject the perpetrator to criminal and civil liability. General Disclaimer This document is not to be construed as a promise by any participating company to develop, deliver, or market a product. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. Novell, Inc. makes no representations or warranties with respect to the contents of this document, and specifically disclaims any express or implied warranties of merchantability or fitness for any particular purpose. The development, release, and timing of features or functionality described for Novell products remains at the sole discretion of Novell. Further, Novell, Inc. reserves the right to revise this document and to make changes to its content, at any time, without obligation to notify any person or entity of such revisions or changes. All Novell marks referenced in this presentation are trademarks or registered trademarks of Novell, Inc. in the United States and other countries. All third-party trademarks are the property of their respective owners.

Editor's Notes

  1. The vigil_ncp.ko module was architected to audit these (2) specific NCP internal events. The NCP engine has been modified to pass these events (through a sysfs interface) to vigil_ncp.ko. For each of these specific NCP internal events, vigil_ncp.ko module retrieves the NCP/NDS client metadata through the Process Metadata Table (in the same fassion as does the vigil_nss.ko module). An audit record is created and passed on to vigil.ko for further processing.
  2. The vigil_ncp.ko module was architected to audit these (2) specific NCP internal events. The NCP engine has been modified to pass these events (through a sysfs interface) to vigil_ncp.ko. For each of these specific NCP internal events, vigil_ncp.ko module retrieves the NCP/NDS client metadata through the Process Metadata Table (in the same fassion as does the vigil_nss.ko module). An audit record is created and passed on to vigil.ko for further processing.
  3. The vigil_ncp.ko module was architected to audit these (2) specific NCP internal events. The NCP engine has been modified to pass these events (through a sysfs interface) to vigil_ncp.ko. For each of these specific NCP internal events, vigil_ncp.ko module retrieves the NCP/NDS client metadata through the Process Metadata Table (in the same fassion as does the vigil_nss.ko module). An audit record is created and passed on to vigil.ko for further processing.
  4. The vigil_ncp.ko module was architected to audit these (2) specific NCP internal events. The NCP engine has been modified to pass these events (through a sysfs interface) to vigil_ncp.ko. For each of these specific NCP internal events, vigil_ncp.ko module retrieves the NCP/NDS client metadata through the Process Metadata Table (in the same fassion as does the vigil_nss.ko module). An audit record is created and passed on to vigil.ko for further processing.
  5. The vigil_ncp.ko module was architected to audit these (2) specific NCP internal events. The NCP engine has been modified to pass these events (through a sysfs interface) to vigil_ncp.ko. For each of these specific NCP internal events, vigil_ncp.ko module retrieves the NCP/NDS client metadata through the Process Metadata Table (in the same fassion as does the vigil_nss.ko module). An audit record is created and passed on to vigil.ko for further processing.
  6. The vigil_ncp.ko module was architected to audit these (2) specific NCP internal events. The NCP engine has been modified to pass these events (through a sysfs interface) to vigil_ncp.ko. For each of these specific NCP internal events, vigil_ncp.ko module retrieves the NCP/NDS client metadata through the Process Metadata Table (in the same fassion as does the vigil_nss.ko module). An audit record is created and passed on to vigil.ko for further processing.
  7. The vigil_ncp.ko module was architected to audit these (2) specific NCP internal events. The NCP engine has been modified to pass these events (through a sysfs interface) to vigil_ncp.ko. For each of these specific NCP internal events, vigil_ncp.ko module retrieves the NCP/NDS client metadata through the Process Metadata Table (in the same fassion as does the vigil_nss.ko module). An audit record is created and passed on to vigil.ko for further processing.
  8. The vigil_ncp.ko module was architected to audit these (2) specific NCP internal events. The NCP engine has been modified to pass these events (through a sysfs interface) to vigil_ncp.ko. For each of these specific NCP internal events, vigil_ncp.ko module retrieves the NCP/NDS client metadata through the Process Metadata Table (in the same fassion as does the vigil_nss.ko module). An audit record is created and passed on to vigil.ko for further processing.
  9. The vigil_ncp.ko module was architected to audit these (2) specific NCP internal events. The NCP engine has been modified to pass these events (through a sysfs interface) to vigil_ncp.ko. For each of these specific NCP internal events, vigil_ncp.ko module retrieves the NCP/NDS client metadata through the Process Metadata Table (in the same fassion as does the vigil_nss.ko module). An audit record is created and passed on to vigil.ko for further processing.
  10. The vigil_ncp.ko module was architected to audit these (2) specific NCP internal events. The NCP engine has been modified to pass these events (through a sysfs interface) to vigil_ncp.ko. For each of these specific NCP internal events, vigil_ncp.ko module retrieves the NCP/NDS client metadata through the Process Metadata Table (in the same fassion as does the vigil_nss.ko module). An audit record is created and passed on to vigil.ko for further processing.
  11. The vigil_ncp.ko module was architected to audit these (2) specific NCP internal events. The NCP engine has been modified to pass these events (through a sysfs interface) to vigil_ncp.ko. For each of these specific NCP internal events, vigil_ncp.ko module retrieves the NCP/NDS client metadata through the Process Metadata Table (in the same fassion as does the vigil_nss.ko module). An audit record is created and passed on to vigil.ko for further processing.
  12. The vigil_ncp.ko module was architected to audit these (2) specific NCP internal events. The NCP engine has been modified to pass these events (through a sysfs interface) to vigil_ncp.ko. For each of these specific NCP internal events, vigil_ncp.ko module retrieves the NCP/NDS client metadata through the Process Metadata Table (in the same fassion as does the vigil_nss.ko module). An audit record is created and passed on to vigil.ko for further processing.
  13. The vigil_ncp.ko module was architected to audit these (2) specific NCP internal events. The NCP engine has been modified to pass these events (through a sysfs interface) to vigil_ncp.ko. For each of these specific NCP internal events, vigil_ncp.ko module retrieves the NCP/NDS client metadata through the Process Metadata Table (in the same fassion as does the vigil_nss.ko module). An audit record is created and passed on to vigil.ko for further processing.
  14. The vigil_ncp.ko module was architected to audit these (2) specific NCP internal events. The NCP engine has been modified to pass these events (through a sysfs interface) to vigil_ncp.ko. For each of these specific NCP internal events, vigil_ncp.ko module retrieves the NCP/NDS client metadata through the Process Metadata Table (in the same fassion as does the vigil_nss.ko module). An audit record is created and passed on to vigil.ko for further processing.
  15. The vigil_ncp.ko module was architected to audit these (2) specific NCP internal events. The NCP engine has been modified to pass these events (through a sysfs interface) to vigil_ncp.ko. For each of these specific NCP internal events, vigil_ncp.ko module retrieves the NCP/NDS client metadata through the Process Metadata Table (in the same fassion as does the vigil_nss.ko module). An audit record is created and passed on to vigil.ko for further processing.
  16. The vigil_ncp.ko module was architected to audit these (2) specific NCP internal events. The NCP engine has been modified to pass these events (through a sysfs interface) to vigil_ncp.ko. For each of these specific NCP internal events, vigil_ncp.ko module retrieves the NCP/NDS client metadata through the Process Metadata Table (in the same fassion as does the vigil_nss.ko module). An audit record is created and passed on to vigil.ko for further processing.