open.itworld.com
  Search  
Security Home Page Security Webcasts Security White Papers Security Newsletters Security News Open Topics Careers ITworld Voices ITwhirled The Security site of ITworld.com

Unix Tip: The perfect crash: Planning after the disaster

 ITworld.com 09/06/2006

Sandra Henry-Stocker, ITworld.com

Send in your Unix questions today! | See additional Unix tips and tricks

Sadly, it is in the aftermath of a big network crash that some of us do our clearest thinking about what we should have done before the disaster struck. We might learn that, even with a powerful UPS, we can find ourselves in a situation in which a sudden loss of power leaves our computer center in the dark, our servers and networking equipment in unknown condition and us with a big problem to solve. How do we get our systems back online with some semblance of control and efficiency when we're not sure what we're starting with?

On this topic
Unix Tip: Reassembling Very Large "split" Files
Unix Tip: Experimenting with Rsync
Unix Tip: Shuffling file systems with rsync
Building a Monitoring Infrastructure with Nagios
Get practical tips, IT news, how-tos, and the best in tech humor.

First, let's look at one scenario that could leave us in the dark. A loss of power that occurs when a UPS is in bypass (maintenance) mode will leave us nearly as unprotected as if we had no UPS at all. Alternately, if our UPS runs out of battery power after a blackout has lasted for an hour or two, we could lose power abruptly. If we are not set up with automated shutdown software, a UPS may extend the time we have before our systems crash, but will not prevent them from crashing.

Disaster Strikes

So, let's imagine that our UPS is in bypass mode when the building power takes a dive. With our UPS in bypass mode, our systems will have been running on utility power and our UPS was likely providing only voltage conditioning. In short, we were protected from power surges but little else when that tree shorted out the power line a mile or two outside of town.

When power returns, some of our systems will boot with ease. We may pause to appreciate that we converted some of your file systems to logging file systems because of their near immunity to corruption.

Computer Triage

If we have some kind of networking monitoring application installed, such as HP OpenView, we may be able to get a quick overview of the status of our computer center but the accuracy of our view will depend on the sophistication on our software. A downed network switch might be easy to identify or it may create the impression that scattered systems are down when, in actuality, they are merely inaccessible.

A good network recovery plan involves several questions: How do we quickly assess the damage? From what location or system do we gain access to the systems that we need to repair and/or reboot? How do we prioritize our systems and decide what to boot first?

Identifying Critical Resources

Critical resources vary from one site to another, but some of the services we are likely to want to get back online quickly include DNS servers, NIS/NIS+ and LDAP servers, NFS services and other forms of network storage devices, switches and routers (without which your ability to connect to many of your servers will be impaired), console servers (which allow you to log into systems which may be waiting for a root password and an "fsck -y" before they will boot).

For the systems that I manage, the first systems that I want to get back online are those that can easily tell me the status of the rest of the network. That includes network monitoring applications and systems which can easily verify that systems are up. A successful ping tells me that systems have power, but a reply to an ssh command tells me they're functional.

The next round of systems that I want to get up are the systems which provide services which other systems depend on. No one will be able to log in to a server that uses LDAP to authenticate users if the LDAP server is down. Similarly, NFS servers, plus SAN and NAS servers must be brought back online before other servers will be usable.

At the same time, verifying that my network devices are working is critical at this stage of recovery. If I am able to access each of my routers and switches, then I know my network is in reasonable shape. Even so, it is possible that only some of the ports on some devices have been damaged, so a full assessment depends on more than accessing each network device.

What Tools Are Available?

In a network emergency, I make heavy use of console servers. Managing hundreds of 1U servers in a computer room far too dense with systems to allow for more than a few monitors, I depend on these devices to give me access to systems which may need my intervention before they will fully boot.

When my console servers are up, I can access the consoles of more than a hundred servers. Even so, it's nice to have a laptop loaded with tterm and a monitor, keyboard and mouse around for those systems that aren't connected to a console server. To the extent possible, I will connect to each system that answers a ping but cannot respond to an ssh request. Most of these will be waiting for an fsck. A forty-eightport console server gives me console access to up to 48 servers. The convenience and speed with which I can get servers back online when I can access their consoles from my desk is not to be underestimated.

By the end of my first hour in recovery, I want to have a short list of systems which still need my attention and confidence that my network is working for well more than 90% of my users. With a little preparation and a plan of attack, I know how to get there as quickly as possible.

 Sandra Henry-Stocker has been administering Unix systems for more than 18 years. She describes herself as "USL" (Unix as a second language) but remembers enough English to write books and buy groceries. She currently works for TeleCommunication Systems, a wireless communications company, in Annapolis, Maryland, where no one else necessarily shares any of her opinions. She lives with her second family on a small farm on Maryland's Eastern Shore. Send comments and suggestions to bugfarm@gmail.com.
Sponsored Links

Sign up for a Microsoft Dynamics® CRM WEBCAST
Hear globally recognized leaders in customer strategy discuss the importance and evolution of CRM.
Sun Microsystems' - FREE 60 DAY TRIAL OFFER!
Test Sun's Newest Servers BEFORE YOU BUY. Plug Them In With Access To Full Technical Support.
100% Web Based Help Desk Software
Easy to use, customizable to meet your needs, powerful and scalable. Free online demo. Try it today!
Sign up for a Microsoft Dynamics® CRM WEBCAST
Hear globally recognized leaders in customer strategy discuss the importance and evolution of CRM.
Used and Refurbished HP ProCurve Switches
Lifetime Warranties, Professional Testing & Shipping on all HP Equipment Purchases!
» Buy a link now

Advertisements
Sponsored links
Locate Hidden Software on business PCs with this free tool
Bring harmony to your mix of UNIX-Linux-Windows computing environments
Top 5 Reasons to Combine App Performance and Security
KODAK i1400 Series Scanners stand up to the challenge
Home  Open source Operating systems Unix
www.itworld.com    open.itworld.com     security.itworld.com     smallbusiness.itworld.com
storage.itworld.com     utilitycomputing.itworld.com     wireless.itworld.com

 
Contact Us   About Us   Privacy Policy    Terms of Service   Reprints  

CIO   Computerworld   CSO   GamePro   Games.net   IDG Connect   IDG World Expo   Infoworld   ITworld   JavaWorld   LinuxWorld  MacUser   Macworld   Network World   PC World   Playlist  

Copyright © Computerworld, Inc. All rights reserved

Reproduction in whole or in part in any form or medium without express written permission of Computerworld Inc. is prohibited. Computerworld and Computerworld.com and the respective logos are trademarks of International Data Group Inc.