initial program load, networking and system management

Architecture and Operation of Commercial Application Systems FU Berlin

SoSe 2005 1

© Copyright IBM Corporation 2005Material may not be reproduced in whole or in part without the prior written permission of IBM.

Lecture 6

Initial Program Load, Networkingand System Management


Remember from last lecture


SoSe 2005 2


Why is Work Management important?• Objective of iSeries Work Management

– Manage Tasks• Prioritize• Improve Response Time• Improve System Throughput

– Allocate Resources• Processor Cycles• Memory

• Need to Know?– Better manage iSeries system– Manage Tasks

• Status• Problem Determination

• Prerequisite for Performance Tuning– Do it if necessary only!


Subsystem

OLTP or "Interactive" (5250 Workstation sessions)

Background Processing(Batch jobs)

autoprestart

interactive batch

Job Queue

job-1

job-2

job-3

Comm

OLTP or "Interactive" (Client sessions)

Work Entries


SoSe 2005 3


PRTxx

*Machine *Base *Interact *Spool

RTGE

JOBQE QBATCH QINTER WSE

Hauptspeicher

Subsysteme

RTGE

JOBQ's

JOB's

Interactiver JobBatch Job

STRPRTWTR

JOBQxx

OUTQxx

iSeries Job Execution


Job RoutingRouting Entry Specification

Determines Execution EnvironmentMemory Pool

Activity Level controls Maximum Active Tasks Execution Class (DSPCLS)

Run priorityTime slice

Task Dispatch Queue (TDQ) Single TDQProcessor time assigned to task

Based on Run priority of taskProcessor affinity

Opt Seq Nbr Program Library Compare Value 0001 QCMD QSYS XYZ 5 0005 QCMD QSYS ABCXYZ

9999 QCMD QSYS *ANY

Pool identifier . . . . . . . . . : 1 Class..................................:QINTER

JobABCXYZ

RoutingData

Priority . . . . . . . . . : 20 Timeslice................:2000

Pool#2

Pool#3

Pool#4


SoSe 2005 4


Task-1

Task-3

Task-2

Activity Levels

Task DispatchQueue (systemwide)

ProcessorCycles

Memory

Subsystem

Priority

SubsystemSubsystem

Output Queue

}12

123

Work Entries

5250Client/Server

Batch

Requests

OUTQEntries

1-way processor

Flow of Work


Job Transition States

(W-I)

Activity Level Free?

Inelig. State

Wait State

Y Time Slice End

N

(A-I)

long wait

(A-W)

Enter key or mouse click

ActivityLevel

WaitQueue(active jobs)

Processor

IneligibleQueue


SoSe 2005 5


Response Time

InputLineTime

Host Response Time(RT)

Active TimeIneligibleTime(IT)

CPUTime(CT)

Waitingfor CPU

(CW)

DiskI/O

(DT)

Waitingfor I/O(DW)

Waitingin

Activity Level

Ex-WaitTime(EW)

OutputLineTime

I I I


6.1 Initial Program Load (IPL)


SoSe 2005 6


Control Panel (1/2)

B CA D E FG

A. Power on lightA blinking light indicates power to the unit.A constant light indicates that the unit is up and is running

B. Power button

C. Processor activity

D. System attention

E. Function/data display

F. Increment and decrement buttons

G. Enter button

This type of control panel has distinct recognizable elements:


IPL TypeMode

NormalManualAutoSecure

IPL SourceDisk (A or B)Alternate Device -Tape/CD (D)Service (C) *not used

Function/Data DisplaySelected Function (IPL Type)SRC (System Reference Codes)

UniprocessorMultiprocessor

Function/Data

Selected Function or SRC

System Attention Power

light

Key

Power Button

Function SelectorButtons

Note: IPL=Initial Program Load

Control Panel (2/2)


SoSe 2005 7


Control Panel Function CodesFunction code Function description

01 Displays the currently selected IPL type (and logical key mode on some system types).Displays the currently selected IPL speed override for the next IPL.

02 Select the IPL type, the logical key mode, and the IPL speed.

03 Starts an IPL to load the system. The IPL uses the selected IPL options.

04 Tests all lamps on entire display; indicators will be switched on.

05 Displays a system reference code (SRC) on the control panel which corresponds to the system power control network (SPCN).

07 Allows you to perform SPCN service functions.

08 Fast power off. To perform a fast power off, see "Powering Down and Powering On the System" in the problem analysis information for your system.

09 through 10 Reserved.

11 through 19 Displays an SRC on the control panel.

20 Displays the machine type, model, processor feature code, processor class indicator, and IPL path description.

21 Causes the Dedicated Service Tool (DST) display to appear on the system console. To exit the DST, select the Resume operating system display option.


Console Types

HMC

Twinax Operations Console (serial)

Operations Console (LAN) Hardware Management Console (i5 only)


SoSe 2005 8


Example: LAN Console •Provides System Console Session

•Includes Graphical Control Panel•Included with iSeries Access for Windows

•LAN Connect Directly to iSeries System


Temporary and Permanent PTF‘s

Speicherbereich B aktiv

LODPTF LICPGM(5769999)

1

APYPTF *TEMP

PWRDWNSYS *IMMEDRESTART(*YES)IPLSRC(B)

3

APYPTF *PERM5

FIX

A B

BUGA B

FIXA B

FIX

FIX

2

4

BUG


SoSe 2005 9


Unattended IPL Steps

SystemState Steps

Running Set Mode to Normal.

ENDSYS or ENDSBS *ALL PWRDWNSYS *IMMED RESTART(*YES)

NotRunning

Set Mode to Normal.

Turn on power for all devices.

Press Power push button to Power on.

Note: Always set Mode to Normal after IPL is finished.


Program QSTRUP

Starts SubsystemsStarts Subsystem MonitorAllocates

Memory Job Structure Space

Starts Spool Writers Starts TCP/IP Support

STRTCPTCP/IP Support

STRTCPSVRTCP/IP Application Servers

STRHOSTSVRHost Server Support

Unattented IPL Startup

editor

QSYS/QSTRUPQSTRUPPGM

QCTLQCTLSBSD

Power-on

QSYS/QSTRUP *PGM

CRTCLPGM

RTVCLSRC

*Library*File (QCLSRC)

Source File Member

01 B N

Normal IPL from "B" side


SoSe 2005 10


0001.00 /********************************************************************/ 0002.00 /* */ 0003.00 /* 5722SS1 V5R2M0 020719 RTVCLSRC Output 02/06/03 10:26:12 */:0025.00 IBM CORP 1980, 2000. LICENSED MATERIAL - PROGRAM PROPERTY OF IBM') 0026.00 QSYS/STRSBS SBSD(QSERVER) 0027.00 MONMSG MSGID(CPF0000) 0028.00 QSYS/STRSBS SBSD(QUSRWRK) 0029.00 MONMSG MSGID(CPF0000) 0030.00 QSYS/RLSJOBQ JOBQ(QGPL/QS36MRT) 0031.00 MONMSG MSGID(CPF0000) 0032.00 QSYS/RLSJOBQ JOBQ(QGPL/QS36EVOKE) 0033.00 MONMSG MSGID(CPF0000) 0034.00 QSYS/STRCLNUP 0035.00 MONMSG MSGID(CPF0000) 0036.00 QSYS/RTVSYSVAL SYSVAL(QCTLSBSD) RTNVAR(&CTLSBSD) 0037.00 IF COND((&CTLSBSD *NE 'QCTL QSYS ') *AND (&CTLSBSD *NE- 0038.00 'QCTL QGPL ')) THEN(GOTO CMDLBL(DONE)) 0039.00 QSYS/STRSBS SBSD(QINTER) 0040.00 MONMSG MSGID(CPF0000) 0041.00 QSYS/STRSBS SBSD(QBATCH) 0042.00 MONMSG MSGID(CPF0000) 0043.00 QSYS/STRSBS SBSD(QCMN) 0044.00 MONMSG MSGID(CPF0000) 0045.00 DONE: 0046.00 QSYS/STRSBS SBSD(QSPL) 0047.00 MONMSG MSGID(CPF0000) 0048.00 QSYS/RTVSYSVAL SYSVAL(QSTRPRTWTR) RTNVAR(&STRWTRS) 0049.00 IF COND(&STRWTRS = '0') THEN(GOTO CMDLBL(NOWTRS)) 0050.00 CALL PGM(QSYS/QWCSWTRS) 0051.00 MONMSG MSGID(CPF0000) 0052.00 NOWTRS: 0053.00 RETURN 0054.00 CHGVAR VAR(&CPYR) VALUE(&CPYR) 0055.00 ENDPGM ****************** End of data ****************************************

QStrUp


Power On and Off Tasks Menu


SoSe 2005 11


Attended IPL

You must perform an attended IPL when:

Changing IPL options

Installing the operating system

Using dedicated service tools

Recovering from a system failure


Attended IPL StepsSystemstate Steps

Running 1. Power on devices.2. Type ENDSYS or ENDSBS *ALL on any command line and press Enter.3. Set Mode to Manual.4. Type PWRDWNSYS *IMMED RESTART(*YES) on any command line and press Enter. Note: If you cannot enter commands, do the following: a. Press the Power push button to turn the system off. b. Press the Power push button to start an IPL.5. Follow the displays on the console to complete the IPL.6. Set the Mode to Normal.

NotRunning

1. Power on devices.2. Set Mode to Manual.3. Press the Power push button to power on.4. Follow the displays on the console to complete the IPL.5. Set the Mode to Normal.

Note: Always set Mode to Normal after IPL is finished.


SoSe 2005 12


Attended IPL Options

IPL or Install the System System: AECAUX3Select one of the following:

1. Perform an IPL2. Install the operating system3. Use Dedicated Services Tools (DST)4. Perform automatic installation of the operating system5. Save Licensed Internal Code

Selection 1


Attended IPL (1/2)

IPL Options

Type choices, press the Enter key.

System date ................................. XX / XX / XX MM / DD / YY System time ................................. XX : XX : XX HH : MM : SS Clear job queues.............................N Y=Yes, N=No Clear output queues..........................N Y=Yes, N=No Clear incomplete job logs....................N Y=Yes, N=No Start print writers..........................Y Y=Yes, N=No Start system to restricted state.............N Y=Yes, N=No

Set major system options.....................Y Y=Yes, N=No Define or change system at IPL...............Y Y=Yes, N=No


SoSe 2005 13


Attended IPL (2/2)

Define or Change the System at IPL System: AECAUX3Select one of the following:

1. Configuration commands2. Change user profile3. System value commands4. Network attribute commands5. General object commands6. Work with shared pools

Selection__F3= Exit and continue IPL


System Values and IPL

QIPLDATTIM IPL automatically on this day/time *NONE

QIPLSTS Previous IPL (0)

QIPLTYPE Unattended / attended (0)

QPWRRSTIPL Automatic IPL after power is restored (0)

QRMTIPL Allow remote IPL (0)

QUPSDLYTIM UPS delay time *CALC

QUPSMSGQ Where UPS messages sent when power interrupted

QSYS/QSYSOPR

System Value Description Default


SoSe 2005 14


Automatic IPLsAfter power failure

Remote IPL

System automatically performs an IPL when utility poweris restored after a power failureSet QPWRRSTIPL to 1

Remote power on and IPL can be started over a telephoneline and a modemSet QRMTIPL to 1

System automatically performs an IPL on a specified dayand timeSet QIPLDATTIM to appropriate date and time

IPL by date and time


Stopping the System: Overview

ZZzzzz

The different options include using:

The PWRDWNSYS command

The Power On and Off Tasks menu

The Power push button

The i5 and iSeries system can be stopped in differentapproaches.


SoSe 2005 15


Controlled Power Down with Time Limit

Yes

No

No

Yes

PWRDWNSYSOPTION (*CNTRLD)

DELAY(120)

ANYJOB STILLACTIVE?

120SECOND

TIME-OUT?

SYSTEM CANCELS ALLACTIVE JOBS

SYSTEM INITIATES POWER DOWN SEQUENCE

END

The PWRDWNSYS command with time delaycan be issued from a CL jobstream, from a CLprogram, or by the system operator.

If no jobs are active or if all are completed beforethe delay time expires, the power-down sequencebegins as soon as the last job of any still runninghas finished.

The DELAY parameter allows you to enter howlong, in seconds, you want processing to continuebefore canceling active jobs.

If jobs are canceled because the time has expired,the job files may be partially updated.

The system initiates the power down sequenceafter all jobs have been completed or canceled.


Using the Power Push Button Unpredictable results may occur in data files. Next IPL may take longer to complete.

Use the Power push button only if you cannot use the PWRDWNSYS command or the Power On and Off Tasks menu.

Make sure there is no tape in any tape device.

Make sure mode is set to manual.

Press Power push button.

To confirm, press Power push button again.

1

2

3

4

WARNING


SoSe 2005 16


6.2 Networking


Why Networking?

• Access to– Data– Programs– Documents

• Usage of common ressources– Printer– Calculating capacity– Disk space

• Communication– Messages– Voice– Video

• …


SoSe 2005 17


Network Architecture of the 70th

IBM's SNA

Application

Data Flow

Transmission

Path Control

Data Link Ctrl

Physical

Presentation

Management

Session Ctl

Transport

Routing

Data Link

Physical

Application

User

DEC's DNA

Internet

Transmission Media

Transport

Application

Control

Xerox's XNS


Network Architectures in the 90th

Data Link

PhysicalLayer

Network

Application

Transport

Session

Presentation

Data Link

PhysicalControl

Path Control

Transaction

Transmission

Dataflow

Presentation

NetworkAccess

PhysicalLayer

IP

ApplicationTELNETFTPSMTPetc.

TCP / UDP

Data | LLC 802.2Link | MAC 802.3/5

Physical TRN/ETH

IPX

SPX

OSI TCP/IPSNA/APPN

Novell NetWare


SoSe 2005 18


6.2.1 SNA and APPN


Systems Network Architecture (SNA)IBM's proprietary networking architecture

– First introduced in 1974, – become one of the most complex and complete architectures and is

widely installed in corporate networks. – Was a primary influence for the open systems interconnect (OSI)

reference model in 1978

• SNA was designed with certain objectives in mind– Promote reliability– Enhance network dependability– Promote efficient use of network facilities– Promote ease of use– Improve end-user productivity– Allow for resource sharing– Provide for network security– Provide for resource management– Simplify problem determination– Accommodate new facilities and technologies– Enable Independent networks to communicate


SoSe 2005 19


SSCP = Dependent LU

Application

VTAM SSCP

VTAM SSCP

NCP

GWSSCP

Subarea 01

Subarea 02 Subarea 03

Subarea 04

Subarea 05

SSCP-SSCP Session SSCP-PU Session SSCP-LU Session LU-LU Session Other Sessions

SUBAREA NETWORK 1 SUBAREA NETWORK 2

PU

LU

EXP3270P PU ADDR=C1,IDBLK=056,IDNUM=E3270,..EX327002 LU LOCADR=02,DLOGMOD=MOD2,....

CTLHOST LINKTYPE *SDLC DEVDSP APPTYPE *EML LOCADR 02


Advanced Peer-to-Peer Networking (APPN)

• An extension to SNA featuring– greater distributed network control that avoids

critical hierarchical dependencies, therebyisolating the effects of single points of failure

– dynamic exchange of network topologyinformation to foster ease of connection, reconfiguration, and adaptive route selection

– dynamic definition of network resources– automated resource registration and directory

lookup


SoSe 2005 20


APPN = Independent LU

QSNADSLCLLOCNAME AS4001RMTLOCANE AS4002RMTNETID USIBM000

CP

CP

CP

CP

APPN Node 2 APPN Node 3

APPN Node 1APPN Node 4

QSNADSLCLLOCNAME AS4002RMTLOCANE AS4001RMTNETID USIBM000

ILUILU

CP=Control PointNO SSCP

CTL APPC DEVAPPC RMTLOCNAME LCLLOCNAME RMTNETID LOCADR=0

CTL APPC DEVAPPC RMTLOCNAME LCLLOCNAME RMTNETID LOCADR=0



SoSe 2005 21


6.2.2 TCP/IP Basics



SoSe 2005 22




SoSe 2005 23



IP Address

Internet

172.31.6.1

192.65.200.1

192.168.1.0 192.65.200.1

129.42.17.99

binary (4 Byte) 1100 0000 0100 0001 1100 1000 0000 0001

decimal notation 192 65 200 1


SoSe 2005 24


IP Address Classes

0 1 2 3 4 5 6 7 0 1 2 3 4 5 6 7 0 1 2 3 4 5 6 7 0 1 2 3 4 5 6 7 Class A1.0.0.1 -126.255.255.254Subnet Mask:

Class B128.0.0.1 -191.255.255.254Subnet Mask:

Class C192.0.0.1 -223.255.255.254Subnet Mask:

Class D

Class E

224.0.0.0 - 239.255.255.255 (Multicast)

future use

0 Net-ID Host-ID255. 0. 0. 0.

Host-ID Host-ID

1 0 Net-ID Net-ID255. 255. 0. 0.

Host-ID Host-ID

1 1 0 255. 255. 255. 0.

Net-ID Net-ID Net-ID Host-ID


Networks and Hosts

IP address 192.65.200.1

subnet mask 255.255.255.0

network 192.65.200

host 1

1111 1111 1111 1111 1111 1111 0000 0000

1100 0000 0100 0001 1100 1000

0000 0001

1100 0000 0100 0001 1100 1000 0000 0001

binarydecimal

192.65.200.0

1

IP address = <network number> <host number>

Network mask notation examples:1) 192.65.200.0 Mask 255.255.255.02) 192.65.200.0/24


SoSe 2005 25


Information Transport

172.31.6.1

172.0.100.1

192.168.1.0 10.40.1.1

129.42.17.99

DataHeader

Datagram

Destination IP address

Source IP address


IP Datagram Header

Options

Version Length Type of service Total Length

Identification Flags FragmentOffset

Time To Live Protocol Header Checksum

Source IP Address

Destination IP Address

Padding

Data


SoSe 2005 26


Routing

192.65.2.0

451

3

201 65

192.65.1.0

451

3

201 65

IBM58532400 bps Modem

Router2.11.1

indirect

direct


TCP/IP Host Name

192.168.2.03

4

201 65

Host1

P1

Host3 Host4

192.168.1.03

451

201 65

Host1Host2

P1

Host3 Rosi

IBM58532400 bps

Modem

Router 2.11.1

22

DNSDNS

Names are better than IP addressesEvery name must be assigned to an IP address

Host Name TableDNS (Domain Name Server)

Host Name Table192.168.1.65 Rosi192.168.2.201 Host3


SoSe 2005 27


What Is Domain Name System (DNS)?root domain

com deorg edu. . .

ibmmycompany

as400www

www

"."

ibm.com domain

com domaintop level domains

www

Maps host names to the IP address (and the IP address to host name)A database of host informationUses a hierarchical name spaceThe Internet Domain Name Space

Root-DomainTop-Level-Domains Second-Level-Domains Subdomains


What Is DHCP?

Protocol that enables you to centrally and dynamically distribute host configuration information, including the IP address Enables configuration of diskless workstations (like IBM Network Station)Simplifies management and maintenance of the network configuration

Host3

Host2Host1


Router

DHCP-Server

10.40.1.210.40.1.1

10.40

.1.10

10.40.1.11

fixed

10.40.1.10

10.40.1.11Addresspool

Assign dynamic host configuration information

IP address 10.40.1.10Subnet Mask 255.255.0.0Default Router 10.40.1.1Primary DNS 10.40.1.1Secondary DNS 10.40.1.2


SoSe 2005 28


Dynamic DHCP

Host3

Host2Rosi


Router

DHCP-Server

10.40.1.210.40.1.1

fixed

10.40.1.10

10.40.1.11Addresspool

1. Assign dynamic IP address

10.40.1.10 Rosi10.40.1.11 Host3

DNSmyCompany.domain.name.com

2. Update DNS Entry


TCP Packet Header

Checksum

Sequence Number

Acknowledgment Number

Source Port Destination Port

Padding

Data

Offset Reserved Flags

Urgent Pointer

Window

Options


SoSe 2005 29


Example of Ports

Client

SMTP

Post Office

Web Server

FTP Server

Physical

IP

TCP

TCP/IP Host

80

21

25

110e-mail

20

Applications connect to TCP ports

By connecting to a specific port, you have access to it's associated application

There are 65,535 total ports

Well-known ports 1 – 1023 (RFC 1700)


SocketsA socket is:

An endpoint for communications that can be named and addressed in a networkA method of communication between processesAddressed by a triple {protocol, local_address, local_port}

Sockets developed as a TCP/IP API

Physical Data Link LayerToken-Ring, Ethernet, X.25, FDDI...

Network LayerIP, IPX, SNA

Transport LayerTCP, UDP, SPX

Socket API

Application


SoSe 2005 30


6.2.3 TCP/IP on iSeries


Communication IOA‘s

IOA IOA CMN03#2838


SoSe 2005 31


TCP/IP Configuration Objects

Work with Configuration Status AECAUX 05/17/01 13:29:14 Position to . . . . . Starting characters Type options, press Enter. 1=Vary on 2=Vary off 5=Work with job 8=Work with description 9=Display mode status 13=Work with APPN status... Opt Description Status -------------Job-------------- PRODTR ACTIVE PRODTNET ACTIVE PRODTTCP ACTIVE QTCPIP QTCP 006311

WRKCFGSTS

LINECONTROLLER

DEVICE


TCP/IP Configuration

Comm ProcessorIOA

IOA

Comm PortsComm Cables

Line Description

Specification

TCP/IP Interface

(IP address)

"next hop"

Domain/Host Name

Host TableEntries

Remote NameServer

CFGTCP iSeries Navigator

OR


SoSe 2005 32


Virtual IP Interface

• is not associated to any physical interface • allows for the implementation of load balancing, fault tolerance and

anchors for unnumbered interfaces

172.23.10.0255.255.255.0

AS20

172.23.10.2

172.23.10.1

Corporatenetwork

router Internet

RouteD: Not ConfiguredVirtual IP address:172.23.10.88


Supported TCP/UDP Applications on iSeries

Application Server ClientTelnet (5250, 3270, VT)FTP (incl. Batch FTP and Anonymous)SMTPPOP3TFTPDHCPBOOTPDNSDDNSLDAPROUTED (RIP1 and RIP2) N/ASNMP (Agent only, no SNMP Manager)LPD / LPRHTTPIPP

The table lists most of the available TCP and UDP applications available in OS/400 V5R3


SoSe 2005 33


6.2.4 TCP/IP Performance


Elements of Response Time

Application

TCP/IP

OS/400

Hardware

iSeries

PrivateNetwork

Workstation

What elements can affect the response

time ?

Server performanceIOP speedProcessor speedOperating system performanceTCP/IP performanceApplication efficiency

Network performance - (private)Speed of communicationsAmount of traffic

Workstation performanceSpeed of processorApplication efficiency


SoSe 2005 34


What You Can Control in the iSeries

• OS/400 *Base pool size– Amount of storage assigned to the *Base pool

• Communications Interface Description– Ethernet, Token Ring, and so forth

• Maximum frame size

• TCP/IP Router Descriptions– Maximum Transmission Unit

• TCP/IP attributes– Send and receive buffer sizes


Internet Environment

Application

TCP/IP

OS/400

Hardware

iSeries

TheInternet

Can you tune the Internet ?

R

InternetUsers

Which ISP should I contract?

To answer this question, you should cover the following options:

Connectivity options Cost Performance Growth options Security options


SoSe 2005 35


TCP/IP Traffic

All IP traffic receives equal priorityIP packets are transmitted from point to point without any guarantee of bandwidth or minimum time delay

Guaranteed bandwidth and IP priority becomes importantBecause of increased LAN traffic business critical transactions are delayed

Quality of Service can helpQoS can guarantee a bandwidth for specific flowsQoS offers predictable performance


Quality of Service (QoS)

Tolerance

LOW MEDIUM HIGH

Voice

Fax

Data

MedicalImaging

Video DelayLoss

DelayLossDelayLoss

What is QoS?

•A collection of functions that allows specific TCP/IP traffic to have certain priority or bandwidth across the network

•Important in multi-workload environments

•Mission critical applications can be given higher priority


SoSe 2005 36


TCP/IP Security

Is a topic of next lecture …


6.2.5 IPv6


SoSe 2005 37


TCP/IP Address Trivia Game......

IPv4 Address Facts...• What percentage of the available IPv4 addresses are in use today?

– Answer: 75%

• True/False, Stanford University has more IPv4 address than China?– Answer: True

IPv6 Address Facts...• If every person had their own network, how many addresses could

each have?– Answer: 18,000,000,000,000,000,000

• How many IPv6 addresses could be assigned to each square meter of the earth?– Answer: 665,570,793,348,866,943,898,599


Fragmentation Related Problems:

Router Fragmentation (IPv4)Original Datagram

IP Hdr

TCPHdrData1Data2Data3

IP Hdr

TCPHdrData1

IP Hdr

TCPHdrData1

IP Hdr

IP Hdr

IP Hdr

Data2

Data3

Fragmentation

The receiving station must have enoughbuffer space to collect all the incoming fragments

If a single fragment is lost, mustresend the entire datagram

Fragmented datagrams may provide a securityrisk


SoSe 2005 38


IPv4 Limitations

Limited Priority

No Flow Control

No Real Time Traffic

Limited Addressing Capability

No Autoconfiguration

Limits to Mobile Host usage


IPv6 Main Changes

IP Addresses are now 128 bits long

IP Header has a fixed length of 40 octets

Options contained in separate headers

Fragmentation no longer supported by routers

New Priority criteria

New addressing architecture


SoSe 2005 39


IPv6 Header

0110 Traffic Class Flow Label

Payload Length Next Header Hop Limit

Source Address

Destination address Destination option

Routing Header

Hop by Hop Option

Fragment Header

Resource Reservation Header

Authentication Header

Encapsulated Security Payload

ICMP v6

No Next Header

0

604344

46

51

50

58

59


router

DHCP server

MTU size

MTU size

In IPv6, each node must support a Minimum MTU of 1280 bytes

hostNo fragmentation

on router!

Variable MTU (MTU Discovery)

IPhdr

TCPhdr Data

Fragment 1 Fragment 2 Fragment 3

New IPhdr

Frag1hdr Fragment 1

New IPhdr

Frag2hdr Fragment 2

New IPhdr

Frag3hdr Fragment 3


SoSe 2005 40


IPv6 Address

An IPv6 address is represented in Hexadecimal format, in segments of 16 bits separated by a colon

FEDC:BA98:7654:3210:1000:5AFF:FE:3210

Blocks of 16 "zero" bits can be represented with a single "zero"

1080:0:0:0:0:800:200:417A

•Each IPv6 address is 128 bits, providing a very large address space•The address space is organized using prefixes, which define the address types•The prefixes are the leftmost bits of an address


IPv6 Address representation

Contiguous blocks of all "zero" can be represented with 2 adjacent colons, but only once within an

address

FF01:0:0:0:0:0:0:01

These addresses :

FF01::1

Can be represented as follows::

1080:0:0:0:8:800:200C:417A

0:0:0:0:0:0:0:1

0:0:0:0:0:0:0:0

1080::8:800:200C:417A

::1

::


SoSe 2005 41


Address Categories and Special Addresses

Unicast address for Local Scope (LAN)

Unicast address for Site Scope (intranet)

Unicast address for Global Scope (Internet)

Loopback Address

IPv4 compatible or mapped address

0:0:0:0:0:0:10:0:0:0:0:0:1 or... ::1::1


Aggregatable Global Unicast Address

TLA Id (13 bits) Sub-TLA (13bits) NLA Id (19 bits)

bits 1- 64

bits 65 - 128

Site Id. (16 bits)

Interface Identifier (64 bits)

the Top Level Aggregation ID is a prefix used to route the packets to a group of registries.the Sub-TLA prefix is used for routing the packets to the proper registry.the Next Level Aggregation ID prefix is used for routing the packets to the proper Service Provider and related Customers (or Sites)when a packet reaches its destination site,the Site-ID and the Interface-ID are used to route it to the proper subnet and interface.


SoSe 2005 42


Local-Use IPv6 Unicast Addresses

FEC0::/10prefix

bits 1 - 64

bits 65 - 128Interface Identifier (64 bits)

Site Id (16 bits)1111111011 all zero (38 bits)

FE80::/10prefix

1111111010bits 1- 64

bits 65 - 128Interface Identifier (64 bits)

all zero (54 bits)

Link-Local addresses are designed to be used for addressing on a single link for purposes such as automatic address configuration,neighbor discovery, or when no routers are present.

Site-local addresses are designed to be used for addressing inside of a site without the need for a global prefix.


Interface IdentifierMAC Address

cccc ccug cccc cccc cccc cccc xxxx xxxx xxxx xxxx xxxx xxxx

cccc ccug cccc cccc cccc cccc xxxx xxxx xxxx xxxx xxxx xxxx

u bit: 0=Universal 1=administeredg bit: 0=Individual 1=Group

1111 1111 1111 1110

u bit: 1=Universal 0=administered

MAC Addr.= 34-56-78-9A-BC-DE

Interface ID = 36-56-78-FF-FE-9A-BC-DE

u bit inverted

Example:


SoSe 2005 43


Address Configuration Models

Stateless Stateful(Auto-configuration) ( manual or with DHCPv6)

Avoid Host manual configuration

In small LANs a Host should automaticallyconfigure its own Interface Identifier

In subnetted networks without DHCP servera Host will learn its site-local prefix from routers

Facilitate address renumbering .

One or more DHCP Servers can be present in anetwork and in different subnets

A client host can obtain an address from a servereither directly or via router acting as DHCP RelayDHCP Server and Relay use port numbers 547 and 546 over UDP A client uses multicast addresses to find DHCP agents

Client and Agents use 6 message types


IPv6 Auto Configuration

Host name=Bob

(Bob's MAC address = 00-00-5A-20-A1-11)

(non canonical)

FE80::4000:5AFF:FE20:A111Tentative interface ID

Host name=Bob

(Bob's MAC address = 00-00-5A-20-A1-11)

FF02::1:FF20:A111

FF02::1:FF20:A111(Solicited Node Multicast)

Host name=Bob

Link-Local = FE80::4000:5AFF:FE20:A111

Host name=Bob

FF02::2

Is there any router?

Host name=Bob

FF02::1

Subnet 8

FE80::4000:5AFF:FE20:A111FEC0::8:4000:5AFF:FE20:A111

Link-Local=

Site-Local=

•Avoid host manual configuration•In small LANs a host should automatically configure

its own Interface Identifier•In subnetted networks without DHCP server a host

will learn its site-local prefix from routers


SoSe 2005 44


Neighbor Discovery with ICMP

Discovery of routers on same Link

Discovery of prefixes on Link

Discovery of Link parameters (MTU, hop-limit)

AND...

Discovery of MAC address of neighbors Link-Local address auto-configuration

Duplicate Address Detection

Address Resolution (replaces ARP)

Neighbor Unreachability

AND...

Next Hop determination

Redirect


Migration Strategies

IPv4

IPv6

Dual Stack

Tunneling

Header Translation


SoSe 2005 45


IPv4 Compatible and Mapped Addresses

In the IPv4 compatible and IPv4 mapped addresses the last 4 octects can be represented with decimal

numbers

0:0:0:0:0:0:13.1.68.30:0:0:0:0:FFFF:129.144.52.38

(IPv4 compatible)

(IPv4 mapped)

...which are the same as:...

::FFFF:8190:3426::0D01:4403

(In Hex.)


Dual Stack (IPv4 + IPv6)

Level 4 Protocols

IPv4 IPv6

protocol 0800 protocol 80DD

Lower levels

Encapsulation of IPv6 into IPv4


SoSe 2005 46


Encapsulation for Tunneling

IPv6packet

IPv6packet

IPv4Header

IPv4Header

IP v4

(IPv4 compatible addresses are used)


Automatic Tunneling

(Router to Host)

IPv6 headersrc: A IPv4 comp.

dst: B IPv4 comp.

A B

IPv4 Network


dst: B IPv4 comp.

IPv4 header

src: A (IPv4)dst: B (IPv4)


dst: B IPv4 comp.

protocol=41

(IPv4/IPv6) (IPv4/IPv6)

R1 R2

(Host to Host)

A B

IPv4 Network

IPv6 headersrc: B (IPv4 comp.)

dst: A (IPv4 comp.)

IPv4 header

src: B (IPv4)dst: A (IPv4)

IPv6 header

protocol=41

IPv6 headersrc: B (IPv4 comp.)

dst: A (IPv4 comp.)

IPv4 header

src: B (IPv4)dst: A (IPv4)

IPv6 header

protocol=41

(IPv4/IPv6) (IPv4/IPv6)

R1 R2

In an automatic tunnel there is a correlation between Source and Destination Addresses contained in the IPv4 Header, and the corresponding addresses contained in IPv6 header.


SoSe 2005 47


Configured Tunneling

(Router to Router)

A C

IPv6 headersrc: C (IPv6)

dst: A (IPv6)

(IPv4/IPv6) (IPv6 only)


dst: A (IPv6)

R2

IPv4 header

src: R2 (IPv4)dst: R1 (IPv4)

protocol=41


dst: A (IPv6)

R1

(Host to Router)

IPv6 headersrc: A (IPv6)

dst: X (IPv6)

IPv4A

R1

(IPv4/IPv6)X

(IPv6 only)

IPv4 header

src: A (IPv4)dst: R1 (IPv4)

protocol=41

IPv6 headersrc: A (IPv6)

dst: X (IPv6)

In a configured tunnel there is NO correlation between Source and Destination Addresses contained in the IPv4 Header, and the corresponding addresses contained in IPv6 header.


Header Translation

(Using IPv4 Mapped Address)

RxA B

IPv6 IPv4(IPv4/IPv6)only only

IPv6 headersrc=::FFFF:xx:0A

dst=::FFFF:yy:0B

TCP header+ Data

IPv4 headersrc = x.x.0.A

dst = y.y.0.B

TCP header+ Data


SoSe 2005 48


Mobile IP

IPv6 unterstützt Mobile IP effektiver als IPv4in Netzen, die mobile Knoten unterstützen, müssen eine Reihe von IP Adressen für die mobilen Knoten

reserviert werden– möglicherweise sind in diesem Netz nicht genügend IPv4 Adressen vorrätig– IPv6 benutzt Anycast Adressen, kann also Pakete an ein oder mehrere Systeme schicken, denen diese

Anycast Adresse zugewiesen wurde – Mobile IPv6 nutzt dies bei der dynamischen home agent discovery sehr effektiv, indem es binding updates an

die home agent Anycast Adresse im Heimatnetz schickt. IPv4 sieht diese elegante Lösung nicht vor• Durch die stateless Adreß-Autokonfiguration und den neighbor discovery Mechanismus benötigt

mobile IPv6 weder DHCP-Server noch foreign agents in Gastnetzen• Mobile IPv6 kann IPSec für alle sicherheitsrelevanten Mechanismen nutzen, wie z.B. die

Authentifizierung und Encapsulation.• Um Bandbreite effektiver zu nutzen, spezifiziert mobile IPv6 Routen-Optimierung (bei IPv6 fester

Bestandteil)


6.3 iSeries Access


SoSe 2005 49


iSeries Host Server

Client Access

IP

Central server

Data queue server

Database server

File server

Network print server

Remote command

TCP

8471

OS/400 Host Server

8472

8473

8474

8475

8470

Client Function OS/400 Server UsedDatabase access APIs(SQL, ODBC API's) Database server

Data Transfer Database server

ODBC driver Database server

Access Integrated File System File server

Data queue APIs Data queue server

OLE DB provider

Data Queue Server Database ServerRemote command call serverSignon server

License management Signon server

Remote command functions Remote command call server

Distributed program call Remote command call serverSend password for validation and change expired password Signon server


Service Table Entries ManagementWRKSRVTBLE

Work with Service Table Entries System : AECAUX Type options, press Enter. 1=Add 4=Remove 5=Display Opt Service Port Protocol as-dtaq-s 9472 tcp as-dtaq-x 32472 spx as-edrsql 4402 tcp as-file 8473 tcp as-file-s 9473 tcp as-file-x 32473 spx as-mgtctrl 5555 tcp as-mgtctrl-cs 5577 tcp as-mgtctrl-ss 5566 tcp as-netdrive 8477 tcp as-netprt 8474 tcp more... Parameters for options 1 and 4 or command ===> F3=Exit F4=Prompt F5=Refresh F6=Print list F9=Retrieve F12=Cancel


SoSe 2005 50


6.3.1 iSeries Access Family


iSeries Access Family for Desktop Connectivity

• Connectivity Options– iSeries Access for Linux (5722-XL1)– iSeries Access for Windows (5722-XE1)– iSeries Access for Wireless (5722-XP1)

• iSeries Toolbox for Java ME – iSeries Access for Web (5722-XH2)

• Browser-based– HATS LE -Host Access Transformation Server Limited Edition

• Programming Tool to web-enable "5250" Applications

• Browser- basedWindowsClient

iSeriesServer


SoSe 2005 51


iSeries Access for Linux

• Full-function 5250 emulator • ODBC Driver

– Linux PC applications can access information in DB2 UDB for iSeries• Linux Desktop Requirements

– – GLibc 2.2– – Red Hat Package Manager (RPM) 3.0– – OpenMotif 2.0 or later for the 5250 emulator– – unixODBC driver manager version 2.0.11 or later must be installed

on the client• Recommended iSeries LPAR (Power PC) Linux Distributions

– – SUSE Linux Enterprise Server 8– – Red Hat Enterprise Linux 3

• Web download: www.ibm.com/eserver/iseries/access/linux


iSeries Access for Windows• Uses standard functions of Windows

– TCP/IP Connectivity• EZ-Setup Wizards

– Initial Setup of iSeries• iSeries Navigator (Operations)

– GUI Interfaces• iSeries Operations• SQL Performance Monitor• Virtual Private Network (VPN) Support• Management Central

– Operations Console Support• Local/Remote Console

• PC5250 Support– 5250 Emulation

• Character-based interface


SoSe 2005 52


iSeries Access for Windows (Cont)

• PC-iSeries Data Transfer– To iSeries– From iSeries

• Remote Program Call– iSeries to PC– PC to iSeries

• iSeries Database Access– From PC through Drivers

• ODBC• OLE-DB

• IBM Toolbox for Java– Access to iSeries Database

• Through JDBC driver


iSeries Access for Windows


SoSe 2005 53


EZ-Setup•GUI wizard-style setup tool

•Included with Access for iSeries for Windows•Uses connected PC •Step-by-step screens

•Initial configuration •Network adapter •TCP/IP properties


Basic Features

• PC5250 Support– iSeries 5250 Terminal Emulation (Requires 5722-XW1)

• Character-based "Green-screen" functions– Printer Emulation

• PC Printers Accessed as iSeries Devices

• Network (Virtual) Printer Support– iSeries Printers Accessed as Client Devices

• File Serving– Network Drives located on iSeries – Store and Access PC Data

• Communications Support – TCP/IP

• Ethernet/Token-Ring– Network Security

• Secure Sockets Layer (SSL)

4

2

13

5


SoSe 2005 54


Data Access• Icon Driven

–Point-click access to iSeries Database–Uses

•SQL•Client Access ODBC Driver

–Data Transferred • Viewer• Spreadsheets•Lotus 1-2-3•Excel

• User Friendly !• Integrated with Windows

–Data Transfers PC-iSeries server

•Transfer to printer, file, and display •Background option


ODBC Drivers

• ODBC Driver shipped with Client Access

–DB2 UDB for OS/400 access from Desktop Applications

•Select iSeries Data Source•Support for Large Objects

–Easy to configure and activate–Asynchronous processing–Stored procedures –Optimized performance–iSeries Navigator Tools

•Open Table •Manipulates DB Table•Run SQL Scripts•Connect to the data sources•Perform SQL through ODBC


SoSe 2005 55


iSeries Navigator• GUI for

administrators/operators–DB Operations–HW/SW Management –Work with users –Perform backups–Manage

•iSeries Work•Security•Network•Integrated xSeries Servers

• GUI for end users–Work with printers–Work with jobs–Send messages–Connections to Network Neighborhood –AFP Viewer

•Overlays/page segments outside of spool files


Application AdministrationControl which iSeries Navigator, Client Applications, Host Application functions PC user has access to

iSeries Navigator: iSeries Navigator and any application plug-in functions

Management Central"My Connections"

Client Applications:iSeries Access for WindowsOther applications

Host Applications:TCP/IP Utilities, Certificate ManagerClusterDisk managementBackup Recovery and Media ServicesLPAR Management (not i5 models)


SoSe 2005 56


Access for Web

• Access iSeries from Browser Client

–Can be deployed as portlets•Presented via WebSphere Portal)

–– Lotus Instant Messaging integration–No special iSeries code required on Client –Uses HTTP, HTTPS, and HTML–5250 access–Run batch commands–Send/Receive messages–Access

•Database Queries•Integrated File System•iSeries Printers/Print Queue•Jobs


HATS Limited Edition

HATS LE on-the-fly conversion

using customer-provided HTML

(logo and graphics)

Traditional green screen

Drop-downmenu


SoSe 2005 57


Access for Wireless

• Access to iSeries from Wireless devices– Personal Digital Assistants (PDA)– Internet-enabled phones

• Access Support– iSeries Toolbox for Java Micro Edition

• Customized Java Toolbox applications– Java classes execute on the devices

– JDBC Micro Edition• Access to DB2 UDB for iSeries

– Java Applets running on a wireless device– Full-featured JDBC applications

» Transactions, stored procedures, DB triggers, and so forth

• Management Central-Pervasive– Manage iSeries Operations


Management Central-Pervasive

Endpoint Systems

Firewall and Internet

Central System

optional

Webapplication

server

Personal Data Assistant+wireless modem

WebBrowser

InternetPhone

System Group

HTTP Server

MC-PervasiveServlet-

McYpvPervasive

Monitor/control specific jobs or serversMonitor message queues, respond to messagesRun commandsManage Integrated xSeries ServersSupport for additional phone devices Read only mode for selected users


SoSe 2005 58


6.3.2 Management Central


Management Central


SoSe 2005 59


Management Central• Integrated with iSeries Navigator

– Collection Services• Tool for collecting/managing Performance Data• Reduced impact of data collection at high-end• Optional creation of database tables for analysis

– Object Packaging• Transfer of information • Across iSeries file systems• Over Multiple Systems in the Network• Scheduled

– PTF Management • Over Multiple iSeries servers• Compare/Distribute PTF levels• Test versus Production Systems

– Multi-Systems Inventory Management• Hardware/Software/PTFs

– Real-time Graphical Monitors

??

?


System Monitoring (Real-time)

• Management Central Monitors can display:

–Real time performance data–Graph performance data

•Interface with PM/400


SoSe 2005 60


Real-time MonitorsSystem

Performance metrics: Thresholds, run commandsOne or more systemsReal time graphicsEvent logGraph History

JobMetrics: Job count, job status change, job log, job performance metricThresholds, run commandsSelection by job name, user, subsystem, type or serverEvent log

MessageAny queueSelection by IBM-supplied message list, message ID, type, severity, number of messages Automate response Run command

B2B activityMonitoring B2B transactions Used in combination with an application as ConnectThresholds, run commandsGraph HistoryDetailed view on transaction

FileNotification when a file is changedThresholds on sizeMonitor for specified string


System Monitoring (Real-time)


SoSe 2005 61


System Monitor - Display


Collection ServicesThe performance collector

Completely replaces STRPFRMON/ENDPFRMON commandsOne or more systemsPredefined set of metrics or user selectedRequired for PM/400Graph history

Performance data for application-defined transactionsAdd user-defined category


SoSe 2005 62


InventoryInventories supported:

Hardware, software, fixes, system values, users and groups New in V5R2: network attribute, service attribute, and contact information

Inventory under Management Central:One or more systemsScheduleCollect, then perform action on inventory

Search, ExportRun actionFor users and groups - advanced search


iSeries Access Web Site

http://www-1.ibm.com/servers/eserver/iseries/access/