Re: HACMP 5.3 relies over /etc/hosts files!?
- From: Justin Richard Bleistein <jbleistein@xxxxxxxxxxxxxxx>
- Date: Thu, 30 Mar 2006 18:40:23 -0500
The whole point of an HACMP environment is to protect against: "SPOF"'s. This could be one.
Thanks.
--Justin Richard Bleistein
AIX/TSM Systems Administrator
-----Original Message-----
From: IBM AIX Discussion List [mailto:aix-l@xxxxxxxxxxxxx]On Behalf Of
jkstevenson@xxxxxxxxxx
Sent: Thursday, March 30, 2006 4:50 PM
To: aix-l@xxxxxxxxxxxxx
Subject: Re: HACMP 5.3 relies over /etc/hosts files!?
Its actually to protect the cluster from network events and keep communication lines always up running...
Jon
-----Original Message-----
From: IBM AIX Discussion List [mailto:aix-l@xxxxxxxxxxxxx] On Behalf Of MARLON BORBA
Sent: Thursday, March 30, 2006 2:04 PM
To: aix-l@xxxxxxxxxxxxx
Subject: HACMP 5.3 relies over /etc/hosts files!?
Dear AIX gurus,
Reading the "HACMP Cookbook" [1] I've found a surprising statement:
"It is good practise to have all the above IP addresses defined in /etc/hosts file and this file the same on all nodes in the cluster. There is certainly no requirement to use fully qualified names. While HACMP is processing network changes, the NSORDER variable is set to local (i.e., pointing to /etc/hosts), however it is also good practice to set this in /etc/netsvc.conf."
Does it mean that in a HACMP cluster one should not use DNS-resolvable names? What if for some reason the /etc/hosts is damaged or compromised?
[1] http://www.redbooks.ibm.com/redbooks/pdfs/sg246769.pdf
Abraços,
Marlon Borba, CISSP.
--
Se você acha que a criptografia pode resolver
todos os seus problemas de segurança,
então você não conhece os seus problemas
e nem a criptografia.
(Bruce Schneier)
--
*********************************************************************************
The information transmitted via this e-mail is intended only for the
person or entity to which it is addressed and may contain confidential
and/or privileged material. Any review, retransmission, dissemination
or other use of, or pursuing of any action in reliance upon this
information by persons or entities other than the intended recipient is
prohibited. If you are the recipient of this in error, please contact
the sender and delete the material from any computer.
*********************************************************************************
- Follow-Ups:
- Highest AIX on a Model 150
- From: cbaker
- HACMP and /etc/exports / crontab
- From: cbaker
- Highest AIX on a Model 150
- Prev by Date: Re: NIM and an old H50; can't get it to boot up on the NIM_Master
- Next by Date: HACMP and /etc/exports / crontab
- Previous by thread: Re: HACMP 5.3 relies over /etc/hosts files!?
- Next by thread: HACMP and /etc/exports / crontab
- Index(es):
