I see that others have already given you similar suggestions. Hopefully, my "real life" example can help. In our case, we have both a z/900 and a z/990. The z/900 is running the production systems including nearly 600 Linux guests, 3 production z/OS systems and numerous VM based service machines.
All is running in a single image (no LPAR) under z/VM 5.1.0. You have at least 2 LPARs, but it shouldn't make too much difference. In our case, our main LDAP server resides on AIX on a P-series off on the network. All the Linux guests authenticate against it. Our configuration is a bit too complicated to explain in an email. However I have a network diagram and info on our web page: http://www.marist.edu/it/datacenter/zvmnet.html . That will be easier to understand. Since it sounds like your LDAP server is running on z/OS, that system must be on the network. If that is the case, then on the other partition, have a guest lan, or VSWITCH, that also talks to the network. You'll have to have an OSA to spare and your network department will have to give you a subnet to work with. However, once that is done, your Linux guests can talk to the net directly and still authenticate against your LDAP server. (We use PAM for that.) You won't have any device limitations and won't have to mess with IOCP's or any hardware. Adding a new guest is as easy as creating a virtual machine and assigning an IP address. It may seem weird to have data going from one partition to another over the network, rather than internally via a hipersocket. However, unless you are shipping Gigs of data around, this just as fast and more flexible. Martha On Thu, 2 Dec 2004 10:21:35 -0700 Seader, Cameron said: >Martha, >What kind of architecture are you useing? are you on a z900 or z990, could you >give some more details on your setup and architecture? What software do you use >for your monitoring, what authentication scheme do you use? etc. >Thanks, >Cameron Seader >[EMAIL PROTECTED] > > >-----Original Message----- >From: Linux on 390 Port [mailto:[EMAIL PROTECTED] Behalf Of >Martha McConaghy >Sent: Thursday, December 02, 2004 09:03 >To: [EMAIL PROTECTED] >Subject: Re: 127 device limitation for hipersockets > > >You might want to also consider using VSWITCH or hipersocket guest lans >that do not have these limits. We have nearly 600 Linux guests running >on 2 guest lans with no problems. We have several hundred VM and Linux >guests running on another and are pushing large amounts of data through them, >again with no problems. > >Virtual is really the way to go! >Martha > >---------------------------------------------------------------------- >For LINUX-390 subscribe / signoff / archive access instructions, >send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit >http://www.marist.edu/htbin/wlvindex?LINUX-390 > > >This transmission may contain information that is privileged, confidential >and/or exempt from disclosure under applicable law. If you are not the intended >recipient, you are hereby notified that any disclosure, copying, distribution, >or use of the information contained herein (including any reliance thereon) is >STRICTLY PROHIBITED. If you received this transmission in error, please >immediately contact the sender and destroy the material in its entirety, >whether >in electronic or hard copy format. Thank you. A1. > >---------------------------------------------------------------------- >For LINUX-390 subscribe / signoff / archive access instructions, >send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit >http://www.marist.edu/htbin/wlvindex?LINUX-390 ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to [EMAIL PROTECTED] with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390
