This session will use Novell Open Enterprise Server 2 SP2 to demonstrate how to cluster critical services—from NSS and Novell iPrint to Novell GroupWise, AFP and beyond. We'll cover the new features of Novell Cluster Services in the latest release of Novell Open Enterprise Server, and we'll show you how you can ensure consistency by using AutoYaST to build your nodes. This will be a practical session, so be prepared for a few thrills and spills along the way! Speakers: Tim Heywood CTO NDS 8 Mark Robinson CTO Linux NDS8

1. Practical Tips for Novell ® Cluster Services Mark Robinson CTO Linux, NDS8 [email_address] Tim Heywood CTO, NDS8 [email_address]

3. Cluster Services in OES2

4. Our Environment

5. AutoYaST

6. Cluster Build Methodology

7. Creating Resources

8. Cluster Management

9. Troubleshooting

10. Introduction

12. Working with SUSE ® since 1998

13. Working with OES since OES1 Beta 5

14. CLP, CLE, NCE ES, CNI, etc.

16. Working with OES since OES1 Beta 5

17. CNE, MCNE, CNI(ish)

18. Novell Knowledge Partner (SysOp)

20. Based in Edinburgh, work worldwide

22. Workgroup

23. SRM

24. Cluster Services in OES2

27. XEN virtualization support

30. Much faster

31. Much lower system load

33. AFP

34. …

38. GroupWise ®

40. XEN guests (DomU) resources

41. Each resource is a server in its own right

42. Live migration with para-virtualised DomU

43. XEN Cluster Architecture OCFS2 LUN DomU Files Cluster Node Xen Dom0 Cluster Node Xen Dom0 Cluster Node Xen Dom0 Resource DomU Linux iPrint Resource DomU Linux iPrint Resource DomU Linux iFolder Resource DomU Linux GroupWise Resource DomU NetWare pCounter Live Migrate Live Migrate

44. Our Environment

46. VMware shared disk as an alternative to iSCSI

48. Node 1 (built, in the cluster)

49. Node 2 (to be joined to cluster)

52. Add config to node vmx files disk.locking = "false" diskLib.dataCacheMaxSize = "0" scsi1.present = "TRUE" scsi1.sharedBus = "none" scsi1.virtualDev = "lsilogic" scsi1.pciSlotNumber = "35" scsi1:0.present = "TRUE" scsi1:0.fileName = "cluster-lun0.vmdk" scsi1:0.mode = "independent-persistent" scsi1:0.redo = "" scsi1:1.present = "TRUE" scsi1:1.fileName = "cluster-lun1.vmdk" scsi1:1.mode = "independent-persistent" scsi1:1.redo = "" vmware-vdiskmanager -c -s 100mb -a lsilogic -t 2 cluster-lun0.vmdk vmware-vdiskmanager -c -s 1gb -a lsilogic -t 2 cluster-lun1.vmdk

53. Our Environment Resource Server (Tree master, iManager, Installation services, AutoYaST, SMT) Storage VMware Shared Disks OES2 SP2 Nodes

54. Our Environment AutoYaST Third Node Resource Server (Tree master, iManager, Installation services, AutoYaST, SMT) Storage VMware Shared Disks OES2 SP2 Nodes

55. AutoYaST

57. Drink coffee (or suitable non-caffeinated beverage) while server builds itself!

59. Helps with DR

61. Software patterns

62. Network configuration (including VLAN, bonding etc)

64. NSS

66. Scripts/Complete config files to do the rest

67. At the end of the install we will migrate an NSS resource to the new node with no additional configuration!

68. AutoYaST – New Cluster <ncs> <admin_context> cn=admin.o=novell </admin_context> <admin_password> novell </admin_password> <cluster_dn> cn=cluster,ou=resources,o=novell </cluster_dn> <cluster_ip> 10.0.0.100 </cluster_ip> <config_type> New Cluster </config_type> <ldap_ip_address> node IP,LDAP server IP </ldap_ip_address> <ldap_secure_port config:type=&quot;integer&quot;> 636 </ldap_secure_port> <server_name> nodename </server_name> <start> Later </start> <sbd_dev> sdx </sbd_dev> <sbd_dev2> sdy </sbd_dev2> </ncs>

69. AutoYaST – Existing Cluster <ncs> <admin_context> cn=admin.o=novell </admin_context> <admin_password> novell </admin_password> <cluster_dn> cn=cluster,ou=resources,o=novell </cluster_dn> <cluster_ip></cluster_ip> <config_type> Existing Cluster </config_type> <ldap_ip_address> node IP,LDAP server IP </ldap_ip_address> <ldap_secure_port config:type=&quot;integer&quot;> 636 </ldap_secure_port> <server_name> nodename </server_name> <start> Later </start> <sbd_dev></sbd_dev> <sbd_dev2></sbd_dev2> </ncs>

70. Demo AutoYaST

71. Cluster Build Methodology

73. Network Installation Server – HTTP or NFS

74. AutoYaST repository (can be password protected on HTTP)

75. SMT for patching

76. Magic PiXiEs server

79. Test the shared disk

80. Create the cluster

81. Create the SBD

85. If not 100% right, whack it, modify XML and start build again

88. 7 different methods – some require switch support

89. Link state vs arp monitoring – blades often cannot lose local link!

91. Wide range of SAN support

92. Friendly LUN naming

93. Configuration file can be used (put in place with autoYaST)

94. Creating Resources

98. Modify load script for primary

100. Can be used for iPrint, DHCP etc

101. Use evmsgui to create and format the volume

102. Create the resource in iManager

103. Script to create NCP virtual server

106. NSS/POSIX rights

107. exportfs in load script rather then /etc/exports on nodes

108. Use fsid=x for NSS

109. NFS access SHARED1 Virtual Server SHARED1 Volume NFSaccess Iface UID: 1012 Mis-dweeb UID: 1004 LUM NSS Rights Dweeb Gromit Wallace NFS FPC1 FPC2 FPC3 FPC4 FPC5 fpc.server.novell Mis UID: 1010 Oracle UID: 60003 Mis UID: 1010 Oracle UID: 60003 Iface UID: 1012 Mis UID: 1010 Oracle UID: 60003 Iface UID: 1012 Mis UID: 1010 Oracle UID: 60003 Iface UID: 1012

111. Run iprint_nss_relocate on each node with volume in place

112. NB: only one iPrint resource may run on a node

113. Need to accept certificates in iManager for each node

116. Check NCP:NCPServer objects

117. LUM user required for NSS rights

119. Leases file on NSS volume

121. Logrotate configuration

122. Default AppArmor configuration will not allow logging to here!

125. Run /noatime=volname

127. /etc/ocfs2/cluster.conf automagically created by NCS

128. Fstab mounting uses /etc/init.d/ocfs2 service

129. Cluster Management

134. cluster join/leave

136. cluster pools – check NSS pools and location

137. cluster set – modify heartbeat etc

139. Troubleshooting

142. cat /proc/net/bonding/bondX

145. multipath -ll

147. lsscsi – shows LUN ID numbers

152. OES2 NCS Master Reference TID, FAQ and Troubleshooting – TID #7001433

157. /admin/Novell/Cluster/EventLog.xml

159. echo -n &quot;TRACE SBD ON&quot; > /proc/ncs/vll

160. echo -n &quot;TRACE GIPC ON&quot; > /proc/ncs/vll

161. echo -n &quot;TRACE MCAST ON&quot; > /proc/ncs/vll

162. echo -n &quot;TRACE CVB ON&quot; > /proc/ncs/cluster

163. …

166. *.cmd – “write then read” files for issuing cluster commands

168. Check case of cluster DN in clstrlib.conf

169. www.nds8.co.uk

171. Unpublished Work of Novell, Inc. All Rights Reserved. This work is an unpublished work and contains confidential, proprietary, and trade secret information of Novell, Inc. Access to this work is restricted to Novell employees who have a need to know to perform tasks within the scope of their assignments. No part of this work may be practiced, performed, copied, distributed, revised, modified, translated, abridged, condensed, expanded, collected, or adapted without the prior written consent of Novell, Inc. Any use or exploitation of this work without authorization could subject the perpetrator to criminal and civil liability. General Disclaimer This document is not to be construed as a promise by any participating company to develop, deliver, or market a product. It is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. Novell, Inc. makes no representations or warranties with respect to the contents of this document, and specifically disclaims any express or implied warranties of merchantability or fitness for any particular purpose. The development, release, and timing of features or functionality described for Novell products remains at the sole discretion of Novell. Further, Novell, Inc. reserves the right to revise this document and to make changes to its content, at any time, without obligation to notify any person or entity of such revisions or changes. All Novell marks referenced in this presentation are trademarks or registered trademarks of Novell, Inc. in the United States and other countries. All third-party trademarks are the property of their respective owners.