05-24-2015 12:24 PM
Hi,
I am trying to exclude a directory called “vormtest” from backup and so far the excludes that I have tried are not working.
I have tried the following
/home/tynchep/vormtest/
/home/tynchep/vormtest/*
/tynchep/vormtest/*
/home/tynchep/
/vormtest/
/vormtest/*
vormtest/*
vormtest/
/tynochep/
/tynochep/*
The client server is using AIX 7.1 and we have 7.6.0.3 installed on the client
Can anyone see where I am going wrong? and why none of those excludes work?
Thanks in advance!
The master server is Linux runnning 7.6.0.3
Solved! Go to Solution.
05-27-2015 03:31 AM
nbustarter360,
Could you send the output of "ls -l /usr/openv/netbackup/exclude_list", "ls -l /home/tynchep/vormtest", and "df -h"?
After that can you run from the master "bpgetconfig -e excludes.txt <client name>", cat excludes.txt, and post that here?
05-27-2015 07:30 AM
Permission denied? As root?
Sure about that?
Something is very wrong.
You need to get hold of a Sysadmin. This is not a NBU issue.
To attach log files, please copy log to a .txt file, e.g. bpbkar.txt.
05-27-2015 09:20 AM
If it is a file system controlled by Vormetric then it is not uncommon. Vormetric is an appliance based file system encryption engine that can prevent root from even seeing the file system.
05-28-2015 03:27 AM
It will not help if the sysadmin can go in and exclude.
NetBackup runs as root.
If ALL_LOCAL_FILES is in the backup selection, the process is as follows (all as root user):
bpmount is executed on the client to dermine 'local drives'.
So, if df commands lists it as a local mount point, so will bpmount.
A separate bpbkar job is created for each local drive.
Only at this point is exclude_list looked at.
If root cannot 'ls' the folder, you will see the status 71.
There is no solution or workaround other than giving root read access on the top level or else replace ALL_LOCAL_DRIVES with individual mount points.
05-24-2015 12:37 PM
05-25-2015 04:43 AM
You need to upgrade the client - there is a know bug in 7.1 client
See
Netbackup client 7.0 through 7.1.0.1 ignoring the exclude list
http://www.symantec.com/docs/TECH150101
05-25-2015 06:49 AM
Thanks Marianne and Nicolai
The full path is below.
tricmscmodev03:/home/tynchep/vormtest>pwd
/home/tynchep/vormtest
tricmscmodev03:/home/tynchep/vormtest>
I checked for typo’s and I did notice the last two excludes I tried were misspelled.
/tynochep/
/tynochep/*
They should have been
/tynchep/
/tynchep/*
I am not sure that will help but I when the next backup runs I will see and get back to you.
Also I created the bpbkar log for the client
Hi Nicolai,
Sorry for the confusion.
The AIX client server is AIX 7.1 the Netbackup client we have installed is >>> 7.6.0.3 installed
Thanks for your responses!
05-25-2015 06:58 AM
/home/tynchep/vormtest
or
/home/tynchep/vormtest/*
should work.
If this is a separate filesystem and you have ALL_LOCAL_DRIVES as Backup Selection, then I expect a job to be created for this filesystem, but only empty mountpoint will be backed up (32Kb).
05-25-2015 10:26 PM
Are you certain this is where the exclude file should be in, and global-readable?
/usr/openv/netbackup/exclude_list
The exclude entry suggested by Marianne should work then.
05-26-2015 04:38 PM
Marianne, watsons thanks for your replies, I took our some of the excludes and left in the 3 below
/home/tynchep/vormtest/
/home/tynchep/vormtest/*
Added the below to the exclude statement
/home/tynchep/vormtest
I agree one or two of those should work. watson yes I am certain thats where the exclude should be
usr/openv/netbackup/exclude_list
Best Regards
05-27-2015 03:31 AM
nbustarter360,
Could you send the output of "ls -l /usr/openv/netbackup/exclude_list", "ls -l /home/tynchep/vormtest", and "df -h"?
After that can you run from the master "bpgetconfig -e excludes.txt <client name>", cat excludes.txt, and post that here?
05-27-2015 04:13 AM
can we see the bpbkar log from the client - we should be able to see how bpbkar parses the exclude list.
You may need VERBOSE = 5 in bp.conf on the AIX client.
05-27-2015 07:12 AM
Andrew thanks,
Here is the output
ClientServer:/>ls -l /usr/openv/netbackup/exclude_list
-rw-r--r-- 1 root system 125 May 26 19:26 /usr/openv/netbackup/exclude_list
For this I got permission denied (I am root)
ClientServer:/>ls -l /home/tynchep/vormtest
ls: 0653-345 /home/tynchep/vormtest: Permission denied.
df –h doesn’t work on the aix client
client:/>df -h
df: Not a recognized flag: h
Usage: df [-P] | [-IMitv] [-gkm] [-s] [filesystem ...] [file ...]
Df –g on the client server is below
Client server:/>df -g
Filesystem GB blocks Free %Used Iused %Iused Mounted on
/dev/hd4 0.50 0.21 59% 12856 18% /
/dev/hd2 8.25 2.81 66% 58737 8% /usr
/dev/hd9var 5.75 5.31 8% 10152 1% /var
/dev/hd3 3.75 3.22 15% 1497 1% /tmp
/dev/hd1 0.62 0.41 35% 89 1% /home
/dev/hd11admin 0.12 0.12 1% 9 1% /admin
/proc - - - - - /proc
/dev/hd10opt 1.38 0.68 51% 8602 5% /opt
/dev/livedump 0.25 0.25 1% 4 1% /var/adm/ras/livedump
/dev/dblv 10.00 8.04 20% 15 1% /arsdb
/dev/oralv 15.00 3.71 76% 54936 6% /arsora
/dev/cachelv 20.00 20.00 1% 75 1% /arscache
/dev/oraloglv 20.00 20.00 1% 4 1% /arsdb_primarylog
/dev/dwldlv 20.00 18.90 6% 48 1% /arsdwld
/dev/indxlv 10.00 10.00 1% 4 1% /arsindx
/dev/aixtl 20.00 5.23 74% 1501 1% /aixtl
/opt/vormetric/DataSecurityExpert/agent/secfs/.sec 1.38 0.68 51% 8602 5% /opt/vormetric/DataSecurityExpert/agent/secfs/.sec
/home/tynchep/vormtest 0.62 0.41 35% 89 1% /home/tynchep/vormtest
Nicolai thanks,
I added the verbose =5 to the bp.conf on the client,
Fyi – for some reason I have not been successfully in attached a AIX bpbkar.log to my threads. Only been successful attached Window Netbackup error logs to my threads
05-27-2015 07:30 AM
Permission denied? As root?
Sure about that?
Something is very wrong.
You need to get hold of a Sysadmin. This is not a NBU issue.
To attach log files, please copy log to a .txt file, e.g. bpbkar.txt.
05-27-2015 07:38 AM
Try adding a .txt extension or zip the log files. There may be a limitation to the upload size.
05-27-2015 07:39 AM
Is ACL's (Access Control Lists) in use ?
Can you show us /etc/fstab - what file system type is /home/tynchep/vormtest
05-27-2015 09:20 AM
If it is a file system controlled by Vormetric then it is not uncommon. Vormetric is an appliance based file system encryption engine that can prevent root from even seeing the file system.
05-27-2015 09:21 AM
Make sure there is a space between the = and the 5 in the bp.conf. Were you able to run bpgetconfig?
05-27-2015 11:02 AM
Marianne, Andrew Nicolai Thanks,
Marianne, I am root and the command does not work
Clientserver:/>ls -l /home/tynchep/vormtest
ls: 0653-345 /home/tynchep/vormtest: Permission denied.
clientserver:/>ls -l /home/tynchep/vormtest
ls: 0653-345 /home/tynchep/vormtest: Permission denied.
clientserver:/>ls -l /home/tynchep/vormtest
ls: 0653-345 /home/tynchep/vormtest: Permission denied.
However you are correct this is NOT and NBU issue. I tried the command below on other directories in /home/tynchep (see below) and it worked.
clientserver:/home/tynchep>ls -l /home/tynchep/dest.txt
-rw-r--r-- 1 root system 10 Feb 14 2013 /home/tynchep/dest.txt
clientserver:/home/tynchep>ls -l /home/tynchep/temp.adm
-rw-r--r-- 1 root system 1444 Apr 20 14:52 /home/tynchep/temp.adm
clientserver:/home/tynchep>ls -l /home/tynchep/cmausers.xml
-rw-r--r-- 1 root system 77046 Apr 28 10:09 /home/tynchep/cmadusers.xml
I checked with the sysadmin and Andrew you are correct
"If it is a file system controlled by Vormetric then it is not uncommon. Vormetric is an appliance based file system encryption engine that can prevent root from even seeing the file system"
There is an encryption software that they are testing and they used the directory, /home/tynchep/vormtest and it may have been permissioned where only one account has access.
So, I am going to see if they can either give our account permissions or ask if they could add to the exclude list.
I thank you all for your responses, I will be closing the thread soon.
Best regards
05-27-2015 12:56 PM
So why were you trying to exclude it? Were you getting an error during backup? Why do you believe that the sysadmin would have any better luck adding it to the exclude list than you would?
05-27-2015 03:56 PM
The backups are getting Netbackup code 71 (none of the files in the file list exist) and showing up in our reports (opscenter) we are trying to eliminate as many failures/error codes (although this is not a failure) as we can.
The sysadmin said "/home/tynchep/vormtest and it may have been permissioned where only my account (meaning her account) has access".
Also, we were given permission to exclude it by the sysadmins.
So unless you can think of another way? besides them giving us permission access (and I don't know if thats possible yet) to the directory vormtest for Vormetric Data Encryption software. I am checking to see if the sysadmin can go in and exclude.
Best regards
05-28-2015 03:27 AM
It will not help if the sysadmin can go in and exclude.
NetBackup runs as root.
If ALL_LOCAL_FILES is in the backup selection, the process is as follows (all as root user):
bpmount is executed on the client to dermine 'local drives'.
So, if df commands lists it as a local mount point, so will bpmount.
A separate bpbkar job is created for each local drive.
Only at this point is exclude_list looked at.
If root cannot 'ls' the folder, you will see the status 71.
There is no solution or workaround other than giving root read access on the top level or else replace ALL_LOCAL_DRIVES with individual mount points.
05-28-2015 05:38 AM
Changing from ALL_LOCAL_DRIVES to listing the specific mount points is going to be a regular work around in a Vormetric environment. As you can see from your df command you are going to contend with just a bit more than a single mount point.
Another thought came to mind: What does your include_list file look like?
Is there a problem with you running the bpgetconfig command I ask to have run?