1

TCP/IP Services for OpenVMS V5.1 Technical UpdateTCP/IP Services for OpenVMS V5.1 Technical Update

Presenter: Mark Hollinger

Tech Leader, TCP/IP Engineering

Compaq Computer Corporation

Presenter: Mark Hollinger

Tech Leader, TCP/IP Engineering

Compaq Computer Corporation

2

Recent TCP/IP Services ReleasesRecent TCP/IP Services ReleasesRecent TCP/IP Services ReleasesRecent TCP/IP Services Releases

V5.0 Feature Review– Based on Tru64 UNIX V4.0D TCP/IP Kernel

– Changed facility code from UCX$ to TCPIP$

– Added GateD, DHCP server

– Updated to NTPv3, BIND 8.1.2, SNMPv2 V5.0 shipping since December 1998

– V5.0A since June 1999 V5.1 shipped in February 2001

3

Tru64UNIX

TCP/IPKERNEL

TCP/IP Kernel Ported fromTru64 UNIX

• Protocol engine• Kernel functions

BG driver /BG driver /INTERNET_SERVICESINTERNET_SERVICES

OpenVMSOpenVMS

User interface

Buffer management

Data Link interface

OpenVMS Functions User interface

Socket & QIO Buffer management

UNIX buffer (mbuf) Data Link

VMS COMMUNICATION INTERFACE (VCI)

Tru64 UNIX TCP/IP KernelTru64 UNIX TCP/IP KernelIntegration with OpenVMSIntegration with OpenVMSTru64 UNIX TCP/IP KernelTru64 UNIX TCP/IP KernelIntegration with OpenVMSIntegration with OpenVMS

4

V5.1 TCP/IP Kernel enhancements V5.1 TCP/IP Kernel enhancements (1)(1)V5.1 TCP/IP Kernel enhancements V5.1 TCP/IP Kernel enhancements (1)(1)

TCP/IP Kernel ported from Tru64 UNIX 5.1 TCP enhancements

– SACK (Selective Acknowledgements) Supports multiple acknowledgement windows

– allows outstanding ACKs even if the sequence numbers are out of order or leave a gap

– PAWS (Protection Against Wrapped Sequence numbers) Detects sequence number wrapping with

timestamp option

5

TCP/IP Kernel enhancements TCP/IP Kernel enhancements (2)(2)TCP/IP Kernel enhancements TCP/IP Kernel enhancements (2)(2)

Provides Path MTU discovery for UDP Supports multiple adapters per subnet

– Connections are load balanced

– Must not run GATED or ROUTED

– Entire subnet reachable through each interface That is, all participating interfaces must be

connected to the same Local Area Network

6

IPv6IPv4

Transport

IPv4

Transport

IPv4

TCP/IP Kernel with IPv6 Support TCP/IP Kernel with IPv6 Support Dual-IP StackDual-IP StackTCP/IP Kernel with IPv6 Support TCP/IP Kernel with IPv6 Support Dual-IP StackDual-IP Stack

IPv6

Transport

IPv6

7

TCP/IP Kernel IPv6 support TCP/IP Kernel IPv6 support (1)(1)TCP/IP Kernel IPv6 support TCP/IP Kernel IPv6 support (1)(1)

Support the following protocols– IPv6 base protocol and addressing

– Internet Control Message Protocol (ICMPv6)

– IPv6 over Ethernet and FDDI

– Stateless Address Autoconfiguration

– Neighbor Discovery

– RIPng

8

TCP/IP Kernel IPv6 Support TCP/IP Kernel IPv6 Support (2)(2)TCP/IP Kernel IPv6 Support TCP/IP Kernel IPv6 Support (2)(2)

Support Host and Router functions for IPv6

Configured by executing TCPIP$IP6_SETUP

9

0 bits 31

Ver IHL Total Length

Identifier Flags Fragment Offset

32 bit Source Address

32 bit Destination Address

4 8 2416

Service Type

Options and Padding

Time to Live Header ChecksumProtocol

RemovedChanged

IPv4 Header IPv4 Header 20 octets + options : 13 fields, including 3 flag bits20 octets + options : 13 fields, including 3 flag bitsIPv4 Header IPv4 Header 20 octets + options : 13 fields, including 3 flag bits20 octets + options : 13 fields, including 3 flag bits

10

0 31

Version Class Flow Label

Payload Length Next Header Hop Limit

128 bit Source Address

128 bit Destination Address

4 12 2416

IPv6 HeaderIPv6 Header40 Octets, 8 fields40 Octets, 8 fieldsIPv6 HeaderIPv6 Header40 Octets, 8 fields40 Octets, 8 fields

11

TCP/IP Applications IPv6 SupportTCP/IP Applications IPv6 SupportTCP/IP Applications IPv6 SupportTCP/IP Applications IPv6 Support

TELNET server and client FTP server and client RSH server and client REXEC server and client RLOGIN server and client SMTP server and client RCP client

BIND (8.1.2) server for AAAA (IPv6) records

Management commands: IFCONFIG, ROUTE, PING, NETSTAT, TRACEROUTE

Basic IPv6 socket application programming interfaces

12

Dual IP layer– Provides complete support for both IPv4 and IPv6

in hosts and routers Tunnels

– Encapsulate / Decapsulate IPv6 packets within IPv4 packets across an IPv4 infrastructure

IPv4 IPv6 Basic Interoperation ToolsIPv4 IPv6 Basic Interoperation ToolsDual Stacks and TunnelsDual Stacks and TunnelsIPv4 IPv6 Basic Interoperation ToolsIPv4 IPv6 Basic Interoperation ToolsDual Stacks and TunnelsDual Stacks and Tunnels

IPv4 Header

IPv6 Packet

IPv6 Packet

13

Tru64 UNIXNFS

KERNELTCP/IP NFS Ported fromTru64 UNIX

• Protocol engine• Kernel functions

NFS_SERVICESNFS_SERVICES

OpenVMSOpenVMS

User interface

Buffer management

Kernel VCI interface

OpenVMS Functions User interface

QIO Buffer management

via TCP/IP kernelKernel VCI interface

to TCP/IP kernelThread management

Tru64 UNIX NFS Server Tru64 UNIX NFS Server Integration with OpenVMSIntegration with OpenVMSTru64 UNIX NFS Server Tru64 UNIX NFS Server Integration with OpenVMSIntegration with OpenVMS

Threadmanagement

14

NFS Server EnhancementsNFS Server EnhancementsNFS Server EnhancementsNFS Server Enhancements

Supports NFS V2 & V3 (RFC 1094 & 1813)– Increased maximum file size for V3

1 terabyte for an OpenVMS file system 4 gigabytes for a container file system

– Enhanced write performance Provides NFS over TCP and over UDP

NFS Kernel ported from Tru64 UNIX 5.1

15

NFS Server ConfigurationNFS Server ConfigurationNFS Server ConfigurationNFS Server Configuration

Parameters managed using sysconfig – Configuration parameters are not set with logical

names (the TCPIP$NFS* logicals are obsolete)

– Note: TCPIP$CFS* configuration logicals are still used (except for TCPIP$CFS_KEEP_ALLOC)

16

NFS Network LockingNFS Network LockingNFS Network LockingNFS Network Locking

Ported from Tru64 UNIX 5.1 Supports a partial implementation of NFS network

locking (does not support byte-range locking)

– If a byte-range lock request is received, it is handled as a file lock request

Implemented using the Network Lock Manager (NLM) and the Network Status Monitor (NSM)

– Enabled if you select "LOCKD/STATD" from the Server Configuration menu in TCPIP$CONFIG.COM

17

MOUNT EnhancementsMOUNT EnhancementsMOUNT EnhancementsMOUNT Enhancements

MOUNTD ported from Tru64 UNIX 5.1

– Supports Version 1 of the MOUNT protocol for NFS V2 and Version 3 of the MOUNT protocol for NFS V3

The MOUNT service is started along with NFS Parameters managed using sysconfig

18

New Services - New Services - DHCP ClientDHCP ClientNew Services - New Services - DHCP ClientDHCP Client

Based on the JOIN software product from Competitive Automation V4.1

Supports RFC 2131 and RFC 2132

Allows an OpenVMS system to be automatically configured by a DHCP server

– The same system cannot act as both a DHCP client and a DHCP server

19

DHCP ClientDHCP ClientConfigurationConfigurationDHCP ClientDHCP ClientConfigurationConfiguration

Put one or more interfaces under DHCP control by executing TCPIP$CONFIG

– From Core Environment / Interfaces menu Select manual or DHCP control

For “virgin” installation – System can be “auto-configured” by just

executing TCPIP$STARTUP No need to execute TCPIP$CONFIG

20

New Services - New Services - XDMXDMNew Services - New Services - XDMXDM

Manages a collection of X Displays– X Server (e.g. PC Client running eXcursion) can

locate XDM servers (e.g. OpenVMS) using XDMCP and create an X Session

Based on X11R6.1 ported from Tru64 UNIX 5.1

21

Incremental Startup and ShutdownIncremental Startup and ShutdownIncremental Startup and ShutdownIncremental Startup and Shutdown

Change a service configuration without interrupting / restarting TCP/IP Services

Each service has: – SYS$STARTUP:TCPIP$service_STARTUP.COM

– SYS$STARTUP:TCPIP$service_SHUTDOWN.COM

For site-specific settings create:– SYS$STARTUP:TCPIP$service_SYSTARTUP.COM – SYS$STARTUP:TCPIP$service_SYSHUTDOWN.COM

– Not overwritten by subsequent installations

22

SMTP EnhancementsSMTP EnhancementsSMTP EnhancementsSMTP Enhancements

Anti-SPAM relay for SMTP mail– Limits and controls circumstances under which

OpenVMS server will relay mail SMTP Send From File (SFF) now supported

– Create a message in a file and send it with headers exactly as you specify

Specification of outbound alias– Users can specify their own address for the

From: header (with TCPIP$SMTP_FROM)

23

Load Balancing Load Balancing EnhancementsEnhancementsLoad Balancing Load Balancing EnhancementsEnhancements

LOAD BROKER server – Failover in a cluster environment

– Still uses DNS Dynamic Updates METRIC server

– Enhanced logging

– Support for multi-homed systems Allows load balancing of incoming traffic across

multiple IP addresses

24

DNS/BINDDNS/BINDEnhancementsEnhancementsDNS/BINDDNS/BINDEnhancementsEnhancements

Dynamic Updates– Merging of Dynamic Updates enabled by default

Cluster failover– Multiple master servers can share a common

database

– Provides redundancy and a failover mechanism when one of the servers becomes unavailable

25

TELNET ClientTELNET ClientEnhancementsEnhancementsTELNET ClientTELNET ClientEnhancementsEnhancements

Support for– NAWS (Negotiate About Window Size) option

Allows the client to send terminal or window size (number of rows and columns)

TELNET terminal (TNAx:) is set accordingly

– The SNDLOC option Allows client to send location information (physical

terminal name and user name)

26

SNMPSNMPEnhancementsEnhancementsSNMPSNMPEnhancementsEnhancements

Ported from Tru64 UNIX 5.1 AgentX API for custom subagents (TCP-based) Enhancements for OpenVMS

– Additional logging and other configuration features

– Automatic restart option

– New MIB browser options

27

OtherOtherEnhancementsEnhancementsOtherOtherEnhancementsEnhancements

DHCP server supports Join V4.1 GATED supports Merit Unicast version 4.0.6 FTP supports PASV mode (FTP through

firewalls) NTP supports OpenVMS V7.3 automatic Daylight

Saving Time (DST) adjustment mechanism

28

Unsupported (but cool!) SDA ToolUnsupported (but cool!) SDA ToolUnsupported (but cool!) SDA ToolUnsupported (but cool!) SDA Tool

Lift the Hood: SDA> TCPIP HELP Many TCPIP commands work

– SDA> TCPIP SHOW DEVICE_SOCKET Several new commands added for V5.1

– SHOW PROXY (new proxy services execlet)– SHOW SUBSYSTEMS (INETREG)– SHOW VCI (/FULL) (new kernel VCI)– SHOW VNODE/MOUNT/THREAD (NFS-related)– SYSCONFIG command (see HELP)

29

FileService

Programming

ApplicationsManagement

Ethernet, FDDI, Token Ring, SLIP, PPP

IPv4, ICMPv4, IGMPv4,ARP

TCP, UDP

QIOs, bsd sockets

ROUTED

GATED

TN3270 FTP Remoteprinting

lpr/lpd

DHCPserver& client

xNTPSUN RPC

TCPIPControlProg(DCL)

TCP/IP Services for OpenVMS V5.1TCP/IP Services for OpenVMS V5.1TCP/IP Services for OpenVMS V5.1TCP/IP Services for OpenVMS V5.1

PCNFS-D

NFS serverNFS client TELNET

rloginrsh, rexec

SMTP

POP

BOOTP

BIND

IPv6, ICMPv6, IGMPv6, AddrConf, ND CIDRPathMTU

UNIXStyleMgmt

SNMPAgentX

V5.1enhancements

30

TCP/IP ServicesDevelopment Areas

Glimpse at the Future

31

Features Planned for Future ReleasesFeatures Planned for Future ReleasesFeatures Planned for Future ReleasesFeatures Planned for Future Releases

Security: IPsec, Kerberos, screenD/Packet filter More IPv6 apps, Mobile IPv6, DHCPv6 etc. NETrain (failover between parallel LAN adapters) Quality of Service Kernel, NFS, and FTP performance work NTPv4 BINDv9 IMAP4 Cluster alias enhancements

32

TCP/IP Services for OpenVMSTCP/IP Services for OpenVMSPointers and ContactsPointers and ContactsTCP/IP Services for OpenVMSTCP/IP Services for OpenVMSPointers and ContactsPointers and Contacts

Compaq’s OpenVMS Network Transports Home Page:

– http://www.openvms.compaq.com/network/networking.html

Contacts:– Product Management

Barbara.Karten@Compaq.comBette.Ruyffelaert@Compaq.com

33

Thanks for Listening!....any questions?

General Feedback