Ever since InternetAlaska bought two F230's in 1997 I've been professionally using, and loving, NetworkAppliance file serverse. Originally I only used them for the NFS side of things and I never had to delve off into the CIFS worlds. Later at PixelWorks and WetaDigital we required MicrosoftWindows interoperability and this was quite a learning experience.
Here are some nice little tricks I've been picking up along the way (bearing in mind that future releases of DataOnTap my make them irrelevant):
Allow SSH but Disallow Telnet
The trick to this is using the number zero ("0") with the telnet.hosts option.
toaster> options telnet.enable on toaster> options ssh.enable on toaster> options telnet.hosts 0
See also: http://now.netapp.com/Knowledgebase/solutionarea.asp?id=3.0.588777.2547210&resource=
User Mapping
- /vol/vol0/etc/usermap.cfg
- Allows you to define custom user mapping rules between Windows and Unix users. Very very handy.
- NT_DOMAIN\Administrator == root
- If put in the usermap.cfg, this line sets the Windows "Administrator" command to be equivelent to the Unix "root" user.
- options wafl.nt_admin_priv_map_to_root on
- This makes all Windows users in the "Domain Admin" group map to the Unix "root" user.
- cifs.nfs_root_ignore_acl on
- This gives the Unix root user god like permissions on any files.
- wcc -u ashand
- Shows the NT name that the Unix name "ashand" maps to.
- wcc -s ashand
- Shows the Unix name that the NT name "ashand" maps to.
Setting up NIS
Another first for me, setting up a filer to interoperate with a NIS domain (see UsingNis).
nis.domainname nis-domain nis.enable on nis.servers 10.1.1.1
Setting up Quotas
As of recent versions of Data On Tap (Dec 2001) there appear to be a couple new features available which make the Windows <-> Unix quota management a little nicer. Here's an example that should be fairly obivous:
# Setup Unix/Windows mapping rules QUOTA_TARGET_DOMAIN NT_DOMAIN QUOTA_PERFORM_USER_MAPPING ON # Setup default user and qtree quotas /vol/vol0/tools tree 50G - /vol/vol2/cvs tree 4G - /vol/vol2/dept tree 250G - * user@/vol/vol1/users 5G - # Setup quota's for the IS team ashand user@/vol/vol1/users - - # Setup quota's for the Executive team bigboss user@/vol/vol1/users 10G - QUOTA_PERFORM_USER_MAPPING OFF
Other Useful Pieces
- Deleting Large Amounts of Data Can Adversely Affect Client I/O: You can avoid high I/O latency caused by file deletions by staging the deletion of the files over time instead of deleting the entire data set all at once. This may be accomplished by deleting fewer files at once. If it is impractical to reduce the amount of data being deleted during any given time, the following advanced option may be used to throttle the deletion processing.
options wafl.trunc.throttle.hipri.enable off
Useful Tools and Utilities
The NetworkAppliance (supported) toolshed.
The NetworkAppliance (unsupported) toolshed.
CommandLine chmod/chgrp/etc tools for windows:
- Secure Share (Right click method for maintaining Unix permissions from Windows)