When do you need a separate service/IO domain?


 
Thread Tools Search this Thread
Operating Systems Solaris When do you need a separate service/IO domain?
# 1  
Old 04-27-2018
When do you need a separate service/IO domain?

Looking at latest recommendations - http://www.oracle.com/technetwork/se...es-2334546.pdf - specifically regarding domain roles.

At the moment, we just have a physical host, primary control domain and then guest ldoms. We then export things like vdisks,vnet etc from control domain to ldom. We don't have any additional service/IO domain.

Should we? Document doesn't really make it clear where and when you need to do this.

Some of our hosts are solaris 10, some 11.2, some 11.3. Ldoms can be anything from solaris 8 upwards.

Hardware wise, we've got some T3s, some T4s, but mainly T5s. And one new S7.
# 2  
Old 04-27-2018
This is mostly used for monster servers such as t5-8 or t7-4, if at all.

Corner cases include regulatory/security demands, where such separation can enable you to run test and production on the same box and still be compliant

It is used for hardware separation, creating 2 (or more) servers (root/service domains) from existing hardware.
This increases the configuration complexity significantly.

For models you specify, depending on the requirements, a one root/service domain is enough for most use cases.
By creating a root/service domain, you are basically assigning a part of your box (one network card, one cpu socket + memory etc.) to serve ldoms independent of each other.

Since you have many servers in your environment, i see no need for having additional complexity of multiple service domains in one box.

Just stick to one naming policy - same vsw/vdsdev names everywhere, save your configs somewhere from all boxes and you are good to go.
Keep firmware and patch level of hypervisors on the same level.

Minimum guest ldom is solaris 10, in which you can create legacy zones if required.

Hope that helps
Regards
Peasant.
These 2 Users Gave Thanks to Peasant For This Post:
# 3  
Old 04-27-2018
Thanks for the excellent answer.
Login or Register to Ask a Question

Previous Thread | Next Thread

5 More Discussions You Might Find Interesting

1. UNIX for Beginners Questions & Answers

Run one service after another service has finished - systemd

Hi all I would like to know how to run task2.service after task1.service has finished. task1.service has a timer (task1.timer), that makes it run every 5 minutes OnCalendar=*:0/5task2.service is basically a script, that has to work on the files created after task1 has finished. This is what I... (2 Replies)
Discussion started by: guilliber
2 Replies

2. Solaris

IPMP in the Service Domain (Oracle VM Sparc)

Hello Using VM server 3.1, I would like to configure a vswitch based on IPMP of 2 physical port so that IPMP is only configured on the primary domain and no more on guest domains. Regarding the documentation (Configuring IPMP in a Logical Domains Environment - Oracle VM Server for SPARC 3.0... (10 Replies)
Discussion started by: yguilloux
10 Replies

3. Shell Programming and Scripting

help to separate name and email domain

hie everyone, Need your help, i have a file which consists list of email addresses as below example:- jaja@email.com kaka@myemail.com baba@youremail.com. lala@email.com i need a script to separate the name and email domian, and count the number of unique domain from the file. From the... (5 Replies)
Discussion started by: anakin30
5 Replies

4. IP Networking

Corporate VPN service with separate nets for different users/groups

Hi We are going to host some services for customers with separate private networks for each customer. Each customer will need one or more users. I have to put up a VPN solution, and I would like to use something that will work on "any" platform, easily, without too much... (0 Replies)
Discussion started by: signal
0 Replies

5. Windows & DOS: Issues & Discussions

How to: Linux BOX in Windows Domain (w/out joining the domain)

Dear Expert, i have linux box that is running in the windows domain, BUT did not being a member of the domain. as I am not the System Administrator so I have no control on the server in the network, such as modify dns entry , add the linux box in AD and domain record and so on that relevant. ... (2 Replies)
Discussion started by: regmaster
2 Replies
Login or Register to Ask a Question