Regarding the last issue: That's odd. This is LMS 3.1 here. So it's exhibiting the symptom of a bug that's supposed to have been fixed?

I was under the impression that you were migrating data, and these were still LMS 3.0 daemons. If they are 3.1 daemons, then there may be something else wrong. If the problem is reproducible, you should get the output of ptree on the dmgtd PID when things are running. This will help isolate why dmgtd is not shutting everything down properly.

Doh, I got confused. It was LMS 2.6 actually. Those wfengine processes seemed to have died eventually some time, after lingering for +/- a day.

I also ran into a warning during LMS 3.1 installation that Sun Cluster patch:

WARNING: Ensure that you have installed the recommended Solaris 10 cluster patches released

WARNING: on Apr/17/07, in this server.

WARNING: If these cluster patches are not installed, please download and install them

WARNING: from http://www.sun.com/.

WARNING: Otherwise, some features of the CiscoWorks applications will not function properly.

If my Sol 10 box is not using clustering, is this patch needed? Would my LMS be missing "features"?

Regarding the necessity of the TFTP daemon, I see the following errors for "Partially Successful" devices under "Config Archive":

VLAN Config fetch is not supported using SCP.VLAN Config fetch is not supported using TFTP.

Does it mean RME tries other procotols than TFTP for vlan.dat? I have the impression that newer IOS no longer uses vlan.dat, as the latter's contents are included in the regular startup/running configs. If so (and when we get there), can TFTP be done away with in LMS completely then? Would the removal/absence of /tftpboot cause any issue with LMS 3.1, whether TFTP is used by RME/etc. or not? Will LMS create /tftpboot automatically whenever it sees fit (my current /tftpboot is a symlink, since the actual / fils system is very small).

We are unable to adequately detect the Sun cluster patch. You must make sure that yoy have at least the April 2007 cluster patch installed. I recommend August 2007 or later.

If other protocols are selected for config fetch, they will be passed to the vlan.dat fetch code, but will be summarily rejected. Only TFTP will work for fetching vlan.dat.

Yes, vlan.dat is obsolete in newer versions of IOS. If all of your devices move to a release that supports protocols other than TFTP for config and software operations, then you can do away with TFTP.

Could you clarify whether we need the cluster patches even when we're not using clustering? Thanks.

The patch has nothing to do with Sun Cluster Manager. Cluster here refers to a cluster of recommend Solaris patches. Yes, you absolutely need this recommended patch cluster.

I see. So it's a bad choice of words in the LMS 3.1 installer then.

Another concern that comes up is regarding the CSCsr20682 (Solaris IPMP) patch I requested produced for LMS 3.1. It's much smaller than the original.

ls -al /opt/CSCOpx/MDC/tomcat/webapps/cwhp/WEB-INF/lib

-rwxr-x--- 1 casuser casusers 152118 Jul 18 13:59 ctm.jar

-rwxr-x--- 1 casuser casusers 304869 Jun 15 16:04 ctm.jar.old

cksum ctm.jar

2048561110 152118 ctm.jar

This is the correct cksum. I generally create smaller jar files than the originals.

A follow-up question on the TFTP issue: Does LMS 3.1 do anything else to enable its own TFTPD other than adding " /opt/CSCOpx/bin/in.tftpd" to /etc/inetd.conf ? I was told that the default TFTPD, even if enabled, doesn't show up there on Sol 10. So I assume there's more to be done than simply touching inetd.conf?

How feasible is it to implement an enhancement request that LMS fetches vlan.dat using non-TFTP protocols? Would that be considered unnecessary because 12.1(20)E and up starts advising configuring VLAN from config mode?

On Solaris 10, the lines in inetd.conf will automatically be converted to inetadm commands (see inetadm -l svn:/network/tftp). From then on, all modifications must be done with inetadm.

Yeah, I think adding further support to the vlan.dat fetching code would be futile since this is now an obsolete convention.

I just learned from Cisco AS that apart from the deprecated "VLAN database mode", vlan.dat is also used on switches serving as VTP servers. I suppose this kills the idea of trying to turn off TFTP on the LMS server then.

I haven't heard this. I have a VTP server in the lab running without vlan.dat. In fact, trying to enter vlan database on one such switch, you get the following:

% Warning: It is recommended to configure VLAN from config mode,

as VLAN database mode is being deprecated. Please consult user

documentation for configuring VTP/VLAN in config mode.

Did your AS contact present any documentation on using vlan.dat for a VTP server?