Sample vxfenmode file output for server-based fencing


Sample vxfenmode file output for server-based fencing
Prev	Configuring server-based fencing on the VCS cluster manually	Next

The following is a sample vxfenmode file for server-based fencing:

#
# vxfen_mode determines in what mode VCS I/O Fencing should work.
#
# available options:
# scsi3      - use scsi3 persistent reservation disks
# customized - use script based customized fencing
# disabled   - run the driver but don't do any actual fencing
#
vxfen_mode=customized

# vxfen_mechanism determines the mechanism for customized I/O 
# fencing that should be used.
# 
# available options:
# cps      - use a coordination point server with optional script
#            controlled scsi3 disks
#
vxfen_mechanism=cps

#
# scsi3_disk_policy determines the way in which I/O Fencing 
# communicates with the coordination disks. This field is 
# required only if customized coordinator disks are being used.
#
# available options:
# dmp - use dynamic multipathing
# raw - connect to disks using the native interface
#
scsi3_disk_policy=dmp

# security when enabled uses secure communication to the cp server
# using VxAT (Veritas Authentication Service)
# available options:
# 0	- don't use Veritas Authentication Service for cp server 
#	  communication
# 1 	- use Veritas Authentication Service for cp server 
#	  communication
security=1

#
# Specify 3 or more odd number of coordination points in this file, 
# one in its own line. They can be all-CP servers, all-SCSI-3  
# compliant coordinator disks, or a combination of CP servers and  
# SCSI-3 compliant coordinator disks. Please ensure that the CP  
# server coordination points are numbered sequentially and in the  
# same order on all the cluster nodes. 
#
# Coordination Point Server(CPS) is specified as: 
#
# 	cps<number>=[<vip/vhn>]:<port>
#
# If a CPS supports multiple virtual IPs or virtual hostnames over 
# different subnets, all of the IPs/names can be specified in a 
# comma separated list as follows:
#
#	cps<number>=[<vip_1/vhn_1>]:<port_1>,[<vip_2/vhn_2>]:<port_2>,...,
#  [<vip_n/vhn_n>]:<port_n>
#
# Where,
#	<number>
#		is the serial number of the CPS as a coordination point; must
#		start with 1.
#	<vip>
#		is the virtual IP address of the CPS, must be specified in
#		square brackets ("[]").
#	<vhn>
#		is the virtual hostname of the CPS, must be specified in square
#		brackets ("[]").
#	<port>
#		is the port number bound to a particular <vip/vhn> of the CPS.
#		It is optional to specify a <port>. However, if specified, it
#		must follow a colon (":") after <vip/vhn>. If not specified, the
#		colon (":") must not exist after <vip/vhn>.
#
# For all the <vip/vhn>s which do not have a specified <port>, a 
# default port can be specified as follows:
#
#	port=<default_port>
#
# 	Where <default_port> is applicable to all the <vip/vhn>s for 
# 	which a <port> is not specified. In other words, specifying <port> 
# 	with a <vip/vhn> overrides the <default_port> for that <vip/vhn>.
#	If the <default_port> is not specified, and there are <vip/vhn>s for
#	which <port> is not specified, then port number 14250 will be used
#	for such <vip/vhn>s.
#
# Example of specifying CP Servers to be used as coordination points:
#	port=57777
#	cps1=[192.168.0.23],[192.168.0.24]:58888,[mycps1.company.com]
# cps2=[192.168.0.25]
#	cps3=[mycps2.company.com]:59999
#
#	In the above example,
#	- port 58888 will be used for vip [192.168.0.24]
#	- port 59999 will be used for vhn [mycps2.company.com], and
#	- default port 57777 will be used for all remaining <vip/vhn>s:
#	   [192.168.0.23]
#	   [mycps1.company.com]
#	   [192.168.0.25]
#	- if default port 57777 were not specified, port 14250 would be used 
#	  for all remaining <vip/vhn>s:
#	   [192.168.0.23]
#	   [mycps1.company.com]
#	   [192.168.0.25]
#
# SCSI-3 compliant coordinator disks are specified as:
#	  
# 	vxfendg=<coordinator disk group name>
#	Example:
#		vxfendg=vxfencoorddg
#
# Examples of different configurations:
# 	1. All CP server coordination points
#	cps1=
#	cps2=
#	cps3=
#
#	2. A combination of CP server and a disk group having two SCSI-3 
#	coordinator disks 
#	cps1=
#	vxfendg=
#	Note: The disk group specified in this case should have two disks
#
#	3. All SCSI-3 coordinator disks
#	vxfendg=
#	Note: The disk group specified in case should have three disks 
#

Table: vxfenmode file parameters defines the vxfenmode parameters that must be edited.

Table: vxfenmode file parameters

vxfenmode File Parameter

Description

vxfen_mode

Fencing mode of operation. This parameter must be set to "customized".

vxfen_mechanism

Fencing mechanism. This parameter defines the mechanism that is used for fencing. If one of the three coordination points is a CP server, then this parameter must be set to "cps".

scsi3_disk_policy

Configure the vxfen module to use either DMP devices, "dmp" or the underlying raw character devices, "raw".

Note:

The configured disk policy is applied on all the nodes.

security

Security parameter 1 indicates that secure mode is used for CP server communications.

Security parameter 0 indicates that communication with the CP server is made in non-secure mode.

The default security value is 1.

cps1, cps2, or vxfendg

Coordination point parameters.

Enter either the virtual IP address or the FQHN (whichever is accessible) of the CP server.

cps<number>=[virtual_ip_address/virtual_host_name]:port

Where port is optional. The default port value is 14250.

If you have configured multiple virtual IP addresses or host names over different subnets, you can specify these as comma-separated values. For example:

cps1=[192.168.0.23],[192.168.0.24]:58888,
[mycps1.company.com]

Note:

Whenever coordinator disks are used in an I/O fencing configuration, a disk group has to be created (vxfencoorddg) and specified in the /etc/vxfenmode file. Additionally, the customized fencing framework also generates the /etc/vxfentab file which specifies the security setting and the coordination points (all the CP servers and the disks from disk group specified in /etc/vxfenmode file).

port

Default port for the CP server to listen on

If you have not specified port numbers for individual virtual IP addresses or host names, the default port number value that the CP server uses for those individual virtual IP addresses or host names is 14250. You can change this default port value using the port parameter.

single_cp

Value 1 for single_cp parameter indicates that the server-based fencing uses a single highly available CP server as its only coordination point.

Value 0 for single_cp parameter indicates that the server-based fencing uses at least three coordination points.