Sunday, October 9, 2011

Directory server tunning with Etime script


This script very strong and use for various tuning in Sun DS---

-bash-3.00$ ./dseeEtimes.pl -t search_etime -o 101 -l /opt/SUNWdsee/13thOct_Logs_backup/
TITLE     : search_etime
RUN       : 9-13-2010
LOGDIR    : /opt/SUNWdsee/13thOct_Logs_backup/
TAG       : Search
UNIT      : sec
        0 :    587554
        1 :       775
        2 :       110
        3 :        37
        4 :        42
        5 :        15
        6 :        10
        7 :         7
        8 :         2
        9 :         3
-bash-3.00$

-bash-3.00$ ./dseeEtimes.pl -t extops_etime -o 120 -l /opt/SUNWdsee/13thOct_Logs_backup/
TITLE     : extops_etime
RUN       : 9-13-2010
LOGDIR    : /opt/SUNWdsee/13thOct_Logs_backup/
TAG       : Extend
UNIT      : sec
        0 :    308818
        1 :       684
        2 :        10
        3 :         2
        5 :         1
       11 :         1
       27 :         1
       49 :         1
       50 :        10
       51 :        11
       52 :         2
       60 :         6
       61 :         1
-bash-3.00$

-bash-3.00$ ./dseeEtimes.pl -t Bind_etime -o 97 -l /opt/SUNWdsee/13thOct_Logs_backup/
TITLE     : Bind_etime
RUN       : 9-13-2010
LOGDIR    : /opt/SUNWdsee/13thOct_Logs_backup/
TAG       : Bind
UNIT      : sec
        0 :    318814
        1 :      4668
        2 :       533
        3 :       250
        4 :       158
        5 :        66
        6 :        57
        7 :        28
        8 :        29
        9 :         5
       10 :         1
       11 :         2
-bash-3.00$


Logs Backup Location: /opt/SUNWdsee/13thOct_Logs_backup

-bash-3.00$ sudo more access.20101013-103640 | grep -i "etime=60"
[13/Oct/2010:11:14:39 +1100] conn=82436502 op=3 msgId=0 - RESULT err=80 tag=120 nentries=0 etime=60
[13/Oct/2010:11:15:16 +1100] conn=82437001 op=3 msgId=0 - RESULT err=80 tag=120 nentries=0 etime=60
[13/Oct/2010:11:15:54 +1100] conn=82437273 op=3 msgId=0 - RESULT err=80 tag=120 nentries=0 etime=60
[13/Oct/2010:11:16:38 +1100] conn=82438117 op=3 msgId=0 - RESULT err=80 tag=120 nentries=0 etime=60
[13/Oct/2010:11:17:19 +1100] conn=82439086 op=3 msgId=0 - RESULT err=80 tag=120 nentries=0 etime=60
[13/Oct/2010:11:17:59 +1100] conn=82439767 op=3 msgId=0 - RESULT err=80 tag=120 nentries=0 etime=60


-bash-3.00$
-bash-3.00$ sudo more access.20101013-103640 | grep "conn=82436502"
[13/Oct/2010:11:13:38 +1100] conn=82436502 op=-1 msgId=-1 - fd=81 slot=81 LDAPS connection from 172.17.8.22:40985 to 172.17.67.231
[13/Oct/2010:11:13:38 +1100] conn=82436502 op=-1 msgId=-1 - SSL 256-bit AES-256
[13/Oct/2010:11:13:39 +1100] conn=82436502 op=0 msgId=1 - BIND dn="" method=128 version=3
[13/Oct/2010:11:13:39 +1100] conn=82436502 op=0 msgId=1 - RESULT err=0 tag=97 nentries=0 etime=1 dn=""
[13/Oct/2010:11:13:39 +1100] conn=82436502 op=1 msgId=2 - SRCH base="ou=msg,dc=aaa,dc=telstra,dc=com" scope=2 filter="(uid=root)" 
attrs=ALL
[13/Oct/2010:11:13:39 +1100] conn=82436502 op=1 msgId=2 - RESULT err=0 tag=101 nentries=0 etime=0
[13/Oct/2010:11:13:39 +1100] conn=82436502 op=2 msgId=3 - SRCH base="ou=msg,dc=aaa,dc=telstra,dc=com" scope=2 filter="(&(objectClass=posixGroup)(memberUid=root))" attrs="cn userPassword memberUid uniqueMember gidNumber"
[13/Oct/2010:11:13:39 +1100] conn=82436502 op=2 msgId=3 - RESULT err=0 tag=101 nentries=0 etime=0
[13/Oct/2010:11:14:39 +1100] conn=82436502 op=3 msgId=0 - RESULT err=80 tag=120 nentries=0 etime=60
[13/Oct/2010:11:14:39 +1100] conn=82436502 op=-1 msgId=-1 - closing from 172.17.8.22:40985 - B1 - Client request contains an ASN.1 BER tag that is corrupt or connection aborted -
[13/Oct/2010:11:14:39 +1100] conn=82436502 op=-1 msgId=-1 - closed.
-bash-3.00$
-bash-3.00$ sudo more access.20101013-103640 | grep "conn=82437001"
[13/Oct/2010:11:14:16 +1100] conn=82437001 op=-1 msgId=-1 - fd=76 slot=76 LDAPS connection from 172.17.8.23:50789 to 172.17.67.231
[13/Oct/2010:11:14:16 +1100] conn=82437001 op=-1 msgId=-1 - SSL 256-bit AES-256
[13/Oct/2010:11:14:16 +1100] conn=82437001 op=0 msgId=1 - BIND dn="" method=128 version=3
[13/Oct/2010:11:14:16 +1100] conn=82437001 op=0 msgId=1 - RESULT err=0 tag=97 nentries=0 etime=0 dn=""
[13/Oct/2010:11:14:16 +1100] conn=82437001 op=1 msgId=2 - SRCH base="ou=msg,dc=aaa,dc=telstra,dc=com" scope=2 filter="(uid=root)" attrs=ALL
[13/Oct/2010:11:14:16 +1100] conn=82437001 op=1 msgId=2 - RESULT err=0 tag=101 nentries=0 etime=0
[13/Oct/2010:11:14:16 +1100] conn=82437001 op=2 msgId=3 - SRCH base="ou=msg,dc=aaa,dc=telstra,dc=com" scope=2 filter="(&(objectClass=posixGroup)(memberUid=root))" attrs="cn userPassword memberUid uniqueMember gidNumber"
[13/Oct/2010:11:14:16 +1100] conn=82437001 op=2 msgId=3 - RESULT err=0 tag=101 nentries=0 etime=0
[13/Oct/2010:11:15:16 +1100] conn=82437001 op=3 msgId=0 - RESULT err=80 tag=120 nentries=0 etime=60
[13/Oct/2010:11:15:16 +1100] conn=82437001 op=-1 msgId=-1 - closing from 172.17.8.23:50789 - B1 - Client request contains an ASN.1 BER tag that is corrupt or connection aborted -
[13/Oct/2010:11:15:16 +1100] conn=82437001 op=-1 msgId=-1 - closed.
-bash-3.00$

-bash-3.00$ sudo more access.20101013-103640 | grep "conn=82437273"
[13/Oct/2010:11:14:54 +1100] conn=82437273 op=-1 msgId=-1 - fd=58 slot=58 LDAPS connection from 172.17.8.24:40994 to 172.17.67.231
[13/Oct/2010:11:14:54 +1100] conn=82437273 op=-1 msgId=-1 - SSL 256-bit AES-256
[13/Oct/2010:11:14:54 +1100] conn=82437273 op=0 msgId=1 - BIND dn="" method=128 version=3
[13/Oct/2010:11:14:54 +1100] conn=82437273 op=0 msgId=1 - RESULT err=0 tag=97 nentries=0 etime=0 dn=""
[13/Oct/2010:11:14:54 +1100] conn=82437273 op=1 msgId=2 - SRCH base="ou=msg,dc=aaa,dc=telstra,dc=com" scope=2 filter="(uid=root)" attrs=ALL
[13/Oct/2010:11:14:54 +1100] conn=82437273 op=1 msgId=2 - RESULT err=0 tag=101 nentries=0 etime=0
[13/Oct/2010:11:14:54 +1100] conn=82437273 op=2 msgId=3 - SRCH base="ou=msg,dc=aaa,dc=telstra,dc=com" scope=2 filter="(&(objectClass=posixGroup)(memberUid=root))" attrs="cn userPassword memberUid uniqueMember gidNumber"
[13/Oct/2010:11:14:54 +1100] conn=82437273 op=2 msgId=3 - RESULT err=0 tag=101 nentries=0 etime=0
[13/Oct/2010:11:15:54 +1100] conn=82437273 op=3 msgId=0 - RESULT err=80 tag=120 nentries=0 etime=60
[13/Oct/2010:11:15:54 +1100] conn=82437273 op=-1 msgId=-1 - closing from 172.17.8.24:40994 - B1 - Client request contains an ASN.1 BER tag that is corrupt or connection aborted -
[13/Oct/2010:11:15:54 +1100] conn=82437273 op=-1 msgId=-1 - closed.
-bash-3.00$
-bash-3.00$ sudo more access.20101013-103640 | grep "conn=82438117"
[13/Oct/2010:11:15:38 +1100] conn=82438117 op=-1 msgId=-1 - fd=56 slot=56 LDAPS connection from 172.17.8.25:59805 to 172.17.67.231
[13/Oct/2010:11:15:38 +1100] conn=82438117 op=-1 msgId=-1 - SSL 256-bit AES-256
[13/Oct/2010:11:15:38 +1100] conn=82438117 op=0 msgId=1 - BIND dn="" method=128 version=3
[13/Oct/2010:11:15:38 +1100] conn=82438117 op=0 msgId=1 - RESULT err=0 tag=97 nentries=0 etime=0 dn=""
[13/Oct/2010:11:15:38 +1100] conn=82438117 op=1 msgId=2 - SRCH base="ou=msg,dc=aaa,dc=telstra,dc=com" scope=2 filter="(uid=root)" attrs=ALL
[13/Oct/2010:11:15:38 +1100] conn=82438117 op=1 msgId=2 - RESULT err=0 tag=101 nentries=0 etime=0
[13/Oct/2010:11:15:38 +1100] conn=82438117 op=2 msgId=3 - SRCH base="ou=msg,dc=aaa,dc=telstra,dc=com" scope=2 filter="(&(objectClass=posixGroup)(memberUid=root))" attrs="cn userPassword memberUid uniqueMember gidNumber"
[13/Oct/2010:11:15:38 +1100] conn=82438117 op=2 msgId=3 - RESULT err=0 tag=101 nentries=0 etime=0
[13/Oct/2010:11:16:38 +1100] conn=82438117 op=3 msgId=0 - RESULT err=80 tag=120 nentries=0 etime=60
[13/Oct/2010:11:16:38 +1100] conn=82438117 op=-1 msgId=-1 - closing from 172.17.8.25:59805 - B1 - Client request contains an ASN.1 BER tag that is corrupt or connection aborted -
[13/Oct/2010:11:16:38 +1100] conn=82438117 op=-1 msgId=-1 - closed.
-bash-3.00$

-bash-3.00$ sudo more access.20101013-103640 | grep "conn=82439086"
[13/Oct/2010:11:16:18 +1100] conn=82439086 op=-1 msgId=-1 - fd=90 slot=90 LDAPS connection from 172.17.8.26:40986 to 172.17.67.231
[13/Oct/2010:11:16:18 +1100] conn=82439086 op=-1 msgId=-1 - SSL 256-bit AES-256
[13/Oct/2010:11:16:18 +1100] conn=82439086 op=0 msgId=1 - BIND dn="" method=128 version=3
[13/Oct/2010:11:16:18 +1100] conn=82439086 op=0 msgId=1 - RESULT err=0 tag=97 nentries=0 etime=0 dn=""
[13/Oct/2010:11:16:18 +1100] conn=82439086 op=1 msgId=2 - SRCH base="ou=msg,dc=aaa,dc=telstra,dc=com" scope=2 filter="(uid=root)" attrs=ALL
[13/Oct/2010:11:16:18 +1100] conn=82439086 op=1 msgId=2 - RESULT err=0 tag=101 nentries=0 etime=0
[13/Oct/2010:11:16:18 +1100] conn=82439086 op=2 msgId=3 - SRCH base="ou=msg,dc=aaa,dc=telstra,dc=com" scope=2 filter="(&(objectClass=posixGroup)(memberUid=root))" attrs="cn userPassword memberUid uniqueMember gidNumber"
[13/Oct/2010:11:16:18 +1100] conn=82439086 op=2 msgId=3 - RESULT err=0 tag=101 nentries=0 etime=0
[13/Oct/2010:11:17:19 +1100] conn=82439086 op=3 msgId=0 - RESULT err=80 tag=120 nentries=0 etime=60
[13/Oct/2010:11:17:19 +1100] conn=82439086 op=-1 msgId=-1 - closing from 172.17.8.26:40986 - B1 - Client request contains an ASN.1 BER tag that is corrupt or connection aborted -
[13/Oct/2010:11:17:19 +1100] conn=82439086 op=-1 msgId=-1 - closed.
-bash-3.00$

-bash-3.00$ sudo more access.20101013-103640 | grep "conn=82439767"
[13/Oct/2010:11:16:59 +1100] conn=82439767 op=-1 msgId=-1 - fd=57 slot=57 LDAPS connection from 172.17.8.27:40979 to 172.17.67.231
[13/Oct/2010:11:16:59 +1100] conn=82439767 op=-1 msgId=-1 - SSL 256-bit AES-256
[13/Oct/2010:11:16:59 +1100] conn=82439767 op=0 msgId=1 - BIND dn="" method=128 version=3
[13/Oct/2010:11:16:59 +1100] conn=82439767 op=0 msgId=1 - RESULT err=0 tag=97 nentries=0 etime=0 dn=""
[13/Oct/2010:11:16:59 +1100] conn=82439767 op=1 msgId=2 - SRCH base="ou=msg,dc=aaa,dc=telstra,dc=com" scope=2 filter="(uid=root)" attrs=ALL
[13/Oct/2010:11:16:59 +1100] conn=82439767 op=1 msgId=2 - RESULT err=0 tag=101 nentries=0 etime=0
[13/Oct/2010:11:16:59 +1100] conn=82439767 op=2 msgId=3 - SRCH base="ou=msg,dc=aaa,dc=telstra,dc=com" scope=2 filter="(&(objectClass=posixGroup)(memberUid=root))" attrs="cn userPassword memberUid uniqueMember gidNumber"
[13/Oct/2010:11:16:59 +1100] conn=82439767 op=2 msgId=3 - RESULT err=0 tag=101 nentries=0 etime=0
[13/Oct/2010:11:17:59 +1100] conn=82439767 op=3 msgId=0 - RESULT err=80 tag=120 nentries=0 etime=60
[13/Oct/2010:11:17:59 +1100] conn=82439767 op=-1 msgId=-1 - closing from 172.17.8.27:40979 - B1 - Client request contains an ASN.1 BER tag that is corrupt or connection aborted -
[13/Oct/2010:11:17:59 +1100] conn=82439767 op=-1 msgId=-1 - closed.
-bash-3.00$

From the above we can see that all the etime=60 connections are LDAPS connections. I presume this is a problem with RSA key size or the present harware is not capable of handling 2058 bit RSA key encryption.


Posted by Identity Solutions at 10:34 AM
Labels:

1 comment:

  1. sumantMay 27, 2013 at 6:24 AM

    Hi,

    How can I get this script? I think it can be helpful for me to trouble shoot root cause for high etime values for some bind operations. Can you please help me on this?

    ReplyDelete

Subscribe to: Post Comments (Atom)