Tag Archives: solaris

Programing, Solaris, Work

sarpipe.pl – machine readable solaris sar output

Leave a comment

I’ve been scripting somewhat with sar on Solaris 10. The major problem is that for some reason there is no flag to output machine readable output (ie. make it easy to import into spreadsheets or other script). The most imporant part was adding a time field to each and every block device to make it much easier to create disk statistics.

So I threw one together sarpipe.pl:

#!/usr/bin/perl -w
use strict;

#default field delimiter/separator
my $delim = "|";

while($_ = shift @ARGV) {
        if($_ =~ m/--delim/) {
                #change the default field delimter
                $delim = shift(@ARGV);
        }
        else {
                die "Usage: sar [-A...] | $0 [--delim seperator]n";
        }
}

#preset so we don't get any concat empty val errors
my $latesttime = "";
#loop through the sar output
while(<>) {
        chomp;
        #catch time field of output, remove from line
        if($_ =~ s/^(dd[:]dd[:]dd|Average)//) {
                $latesttime = $1 . $delim;
        }
        #remove leading and tailing whitespace
        $_ =~ s/(^s+|s+$)//;
        #replace spaces with field delimiter
        $_ =~ s/s+/$delim/g;
        #if the line contains any content, print time field and line
        print $latesttime  . $_ if($_ =~ m/^.+$/);
        print "n";
}

In use:

user@example$ ./sarpipe.pl  -h
Usage: sar [-A...] | ./sarpipe.pl [--delim seperator]
user@example$ sar -d | ./sarpipe.pl | more

SunOS|bcaeao|5.10|Generic_144488-10|sun4u|08/16/2011

00:00:00|device|%busy|avque|r+w/s|blks/s|avwait|avserv

00:10:01|md110|0|0.0|0|1|0.0|29.9
00:10:01|md111|0|0.0|0|0|0.0|0.0
00:10:01|md115|1|0.0|2|30|0.0|15.3
00:10:01|md116|0|0.0|0|0|0.0|12.8
00:10:01|md120|0|0.0|0|1|0.0|27.4
00:10:01|md121|0|0.0|0|0|0.0|0.0
00:10:01|md125|1|0.0|2|30|0.0|13.4
00:10:01|md126|0|0.0|0|0|0.0|13.0
00:10:01|md130|0|0.0|0|1|0.0|0.0
...
Average|ssd35,c|0|0.0|0|0|0.0|0.0
Average|ssd35,g|1|0.0|2|179|0.0|10.1
Average|ssd36|0|0.0|0|0|0.0|0.0
Average|ssd36,a|0|0.0|0|0|0.0|0.0
Average|ssd36,b|0|0.0|0|0|0.0|0.0
Average|ssd36,c|0|0.0|0|0|0.0|0.0
Average|ssd36,f|0|0.0|0|0|0.0|0.0
Average|ssd36,g|0|0.0|0|0|0.0|0.0
Average|ssd36,h|0|0.0|0|0|0.0|0.0
Average|ssd38|0|0.0|1|5|0.0|2.2
Average|ssd38,c|0|0.0|0|0|0.0|0.0
Average|ssd38,g|0|0.0|1|5|0.0|2.2
user@example$

As you can see, it just formats the sar output to be easily used. It does not remove empty lines or remove annoying psudo block devices (ssd36,h). The default delimiter is a pipe because a comma would interfere with device names with a comma. If you change the delimiter via command line (–delim) be sure to be aware of shell escapes (eg –delim ! not –delim !).

Solaris

Solaris is cool and stuff

Leave a comment

While research a problem with backing up Solaris zones I stumbled across a question about Solaris on Serverfault.com.

And since all the answers didn’t really seem all that good I decided to drop some knowledge:

This question is funny; this is almost the perfect question for a shill to ask to highlight Solaris 10 new features but no one gave the pro-Solaris answer.

This is a textbook application of Solaris Zones. The shared kernel provided by Zones lowers the overhead of virtualization, and increases speed dramatically. If you have an idea of a standard install for VPS (bash, apache2, php5, python 2.X, …) you can create a single “gold” zone to use as a template to clone to new zones. Package repositories are available at sunfreeware and blastwave providing you with pre-compiled packages, removing the need to compile your own if you don’t want to.

You can create your template, charge $X per VPS and clone the template for each new customer, total config time upwards of 5min, 0min if you script/automate it. Upgrading the “global” zone (the base system) will cascade those upgrades into the zones, or you can upgrade per zone, also highly automatable.

Solaris has kernel space accelerated SSL encryption for supported hardware: expensive cards, Sun/Oracle Niagra2 CPU based systems, and the new Nahalem systems with AES acceleration, which greatly increases the number of SSL protected websites you can host per system (a href=”http://www.c0t0d0s0.org/archives/6926-Performance-Impact-of-kssl.html” target=”_blank”>link).

Solaris 10 has many new features in resource management allowing you to segregate individual zones/processes/groups/users and keep runaway or compromised applications in one zone/group/user from impacting any others, as well as all the normal POSIX resource controls on memory use, file descriptors, etc.

Solaris 10 Zones (and Solaris 10 in general) was designed from the ground up to prove excellent security, accountability, resource management, and to dovetail nicely with Sun (and now Oracle) hardware offerings. When released the Sun T5240 + Sun Solaris + Solaris Zones package was the best platform for page views per second for the money.

In terms of technical merits, Solaris Zones is probably the best VPS solution available. But as is usually the case the issue is requirements and costs. Licensing, support costs, and Niagra2 or newer CPU hardware costs are rising with the Oracle takeover.

So evaluate the following: Will the higher VPS density, better VPS isolation and wiz-bang features compensate for higher licensing costs (if using Oracle Solaris), smaller user base to draw peer support from, higher hardware costs (for SSL accel), cost of supporting yet-another-OS, cost of hiring people to support yet-another-OS, the longer time it takes for security patches to get released.

If you already have a windows team, do you really want to hire a Solaris team just to shave a few percent off of your hardware bill? Stick with Hyper-V until it’ll save you money to switch. If you already have a large deployment of Solaris systems then go with Solaris. If you have a large Linux skill pool to draw on, do a Solaris trial and see how much extra time it takes 3 admins to learn the differences and maintain a new environment for 6 months

But technology should almost never dictate your business decision process. Much as I hate to say it for most service providers it makes more sense to provide a Windows based VPS system than a Solaris one. Unless you know now that you’re going to need the feature set, and the advantages are going to save you lots of Time And Money(TM) you probably don’t want Solaris.

But if this isn’t for a business and more about having fun, then go ahead, use Solaris! It’s alot of fun, has tons of features and options that you’ve never even thought of if you’re coming from a non-commercial Unix background. The deeper you get in to Solaris the more you learn about smart engineering and new ways of solving technical problems. I’ve yet to see a Linux box with a “load average: 1000.0+, 1000.0+, 1000.0+” that was responsive and easy to recover.

@symcbean: I know Solaris (or Slow-laris as it is sometimes called) has a reputation for poor performance (eg your fork example) but I seem to recall that the “Solaris Internals” book said that they re-engineered the threads significantly for Solaris 10, and process creation/forking performance was among the industry leaders. The LWP framework where each thread in an app is mapped to it’s own light weight process in kernel space apparently gave a big boost to performance, reliability, and accounting. The big hurdles for Solaris aren’t so much technical as operational (bad ui), cultural (small user base), and political (Oracle).

Link to original

Work

Patching

Leave a comment

Okay, so I’m stuck at work trying to patch some computers on sunday morning so I can get live upgrade working (see here) to shorten the outage for an impending upgrade/patch cycle. Boo. Then I manage to break said computer attempting a roll back. Double boo.

Now i’m doing the ghettoest of the ghetto restore techniques. Netbackup? No, Netapp’s magical snap client? No.
Tar baby!


(cd /mnt/netapp/mount/point/root && tar cEf - *) | (cd / && tar xpf -)

Hint: Gotta have the star ’cause a dot would include netapp specific hidden directories

or even better

ssh otherserver -l root "cd /mnt/netapp/mount/point/root && tar cEf - *" | (cd / && tar xpf -)

’cause I can’t use rsh (which would be much much faster [no encryption]). Yeah, the speed of ssh.

The moral of the story? Don’t try so hard. Don’t patch a machine with the specific minimal patches you need to you can use live upgrade to make patching and upgrading faster. Do a full 10_Recommended(2.6GB of patches [as of Jun 2009]), then any remaining patches, then get live upgrade working. So what if it takes an extra 24 hours of outage time. At least you know it’s going to work.