1vntsd(1M)               System Administration Commands               vntsd(1M)
2
3
4

NAME

6       vntsd - virtual network terminal server daemon for Logical Domains
7

SYNOPSIS

9       /usr/lib/ldoms/vntsd
10
11

DESCRIPTION

13       The  vntsd  daemon is a server that supports connections to the Logical
14       Domains (LDoms) console by  using  telnet(1).  When  a  telnet  session
15       starts,  vntsd sends telnet options to the client indicating a willing‐
16       ness to remotely echo characters and to suppress go ahead.
17
18
19       Consoles are organized into groups by the LDoms Manager.  Each  console
20       group  is  assigned a unique group name and TCP port number. vntsd uses
21       the group's port number to export access to the  consoles  within  that
22       group.  To  establish  a  connection with a console or console group, a
23       user starts a telnet(1) session with  the  corresponding  group's  port
24       number.  Depending  on  the number of consoles within that group, vntsd
25       does one of two things:
26
27           o      If there is only one console in the group, vntsd connects  a
28                  session to that LDoms console.
29
30           o      If  there  are multiple consoles in the group, vntsd prompts
31                  the user to select the console to which they would  like  to
32                  connect, as shown in "Multiple-Console Options," below.
33
34
35       For  each  console,  vntsd provides write access only to the first user
36       connecting to the console. Subsequent users connecting to  the  console
37       are  allowed  only  to read from the console and wait for write access.
38       When the first user disconnects, write privileges  are  transferred  to
39       the  next  user waiting in the queue. If a user who does not have write
40       privileges attempts to write to a console, the vntsd displays the  fol‐
41       lowing message:
42
43         You do not have write access
44
45
46
47       A  user  who  has  no write access can acquire write access forcibly by
48       using the ~w special console command,  described  in  "Special  Console
49       Commands," below.
50
51
52       vntsd  can  be  invoked only with superuser privileges or by someone in
53       the Primary Administrator role.
54

OPTIONS

56       The options for vntsd are divided  into  multiple-console  options  and
57       console commands.
58
59   Multiple-Console Options
60       The  options  listed  below are supported when there are multiple LDoms
61       consoles in a group. The syntax for the use of these options is:
62
63         <hostname>-vnts-<group-name>: <option>
64
65
66
67       For example:
68
69         myhost-vnts-salesgroup: h
70
71
72
73       The h option invokes help, as described below.
74
75       h
76
77           Display the following help text:
78
79             h -- this help
80             l -- list of consoles
81             q -- quit
82             c{id}, n{name} -- connect to console of domain {id} or domain name
83
84
85
86       l
87
88           List all consoles in the group. For example:
89
90             DOMAIN ID       DOMAIN NAME     DOMAIN STATE
91             0               ldg1            online
92             1               ldg2            connected
93             ...             ...             ...
94
95           The two domain states and their meanings are:
96
97           online
98
99               No one is connected to the console.
100
101
102           connected
103
104               At least one user is already connected to the console.
105
106
107
108       q
109
110           Disconnect from vntsd.
111
112
113       c{id}, n{name}
114
115           Connect to specified console. Upon connection, the  following  mes‐
116           sage is displayed:
117
118             Connecting to console <domain-name> in group <group-name>
119             Press ~? for control options ....
120
121
122
123   Special Console Commands
124       A  tilde  (~)  appearing  as the first character of a line is an escape
125       signal that directs vntsd to perform a  special  console  command.  The
126       tilde-tilde (~~) sequence outputs a tilde. In conjunction with the ini‐
127       tial tilde, vntsd accepts the following special console commands:
128
129       ~.
130
131           Disconnect from the console or console group.
132
133
134       ~w
135
136           Force write access to the console.
137
138
139       ~p
140
141           Disconnect from this console, and connect to the console that  pre‐
142           cedes this console in the list of consoles.
143
144
145       ~n
146
147           Disconnect  from this console, and connect to the console that fol‐
148           lows this console in the list of consoles.
149
150
151       ~#
152
153           Send break.
154
155
156       ~^B
157
158           Send alternate break.
159
160
161       ~?
162
163           Display vntsd help, as follows:
164
165             ~# - Send break
166             ~^B - Send alternate break
167             ~. - Exit from this console
168             ~w - Force write access
169             ~n - Console next
170             ~p - Console previous
171             ~? - Help
172
173
174

FILES

176       /usr/lib/ldoms/vntsd
177
178           Binary executable vntsd file.
179
180
181       /usr/lib/ldoms/vntsd.xml
182
183           Service management facility (smf(5)) manifest file for vntsd.
184
185

ATTRIBUTES

187       See attributes(5) for descriptions of the following attributes:
188
189
190
191
192       ┌─────────────────────────────┬─────────────────────────────┐
193       │      ATTRIBUTE TYPE         │      ATTRIBUTE VALUE        │
194       ├─────────────────────────────┼─────────────────────────────┤
195       │Availability                 │SUNWldoms                    │
196       ├─────────────────────────────┼─────────────────────────────┤
197       │Interface Stability          │Evolving                     │
198       └─────────────────────────────┴─────────────────────────────┘
199

SEE ALSO

201       telnet(1), svccfg(1M), usermod(1M), auth_attr(4), attributes(5), smf(5)
202

NOTES

204       The vntsd is managed by the service management facility, smf(5),  under
205       the service identifier:
206
207         svc:/ldoms/vntsd
208
209
210
211       You can change the following properties using the svccfg(1M) command:
212
213       vntsd/vcc_device
214
215           Set an instance of the virtual console concentrator (vcc) driver to
216           which vntsd is connected.
217
218
219       vntsd/listen_addr
220
221           Set the IP address to which vntsd listens, using the following syn‐
222           tax:
223
224             vntsd/listen_addr:"xxx.xxx.xxx.xxx"
225
226           ...where  xxx.xxx.xxx.xxx  is a valid IP address. The default value
227           of this property is to listen on IP address  127.0.0.1.  Users  can
228           connect  to  a  guest console over a network if the value is set to
229           the IP address of the control domain.
230
231           Note -
232
233             Enabling network access to a console has  security  implications.
234             Any  user can connect to a console and for this reason it is dis‐
235             abled by default.
236
237
238       vntsd/timeout_minutes
239
240           Set timeout in minutes. vntsd will timeout (close)  telnet  connec‐
241           tion  if there is no activity (input or output) on the console. The
242           default value is 0, which disables timeout.
243
244
245       vntsd/authorization
246
247           Enable the authorization checking of users and roles for the domain
248           console  or  consoles that are being accessed. The default value of
249           this property is  false  to  maintain  backward  compatibility.  To
250           enable  authorization  checking,  use the svccfg(1M) command to set
251           the property value to true. While this  option  is  enabled,  vntsd
252           listens  and  accepts  connections on localhost. If the listen_addr
253           property specifies an alternate IP  address  when  this  option  is
254           enabled,  vntsd  ignores  the alternate IP address and continues to
255           listen on localhost. Connections  that  are  initiated  from  other
256           hosts  will  also  fail. Authorizations are available to access all
257           consoles or console groups, or to access specific consoles or  con‐
258           sole  groups.  When  the  vntsd  service  is enabled, the following
259           authorization is added to the authorization  description  database,
260           auth_attr(4):
261
262             solaris.vntsd.consoles:::Access All LDoms Guest Consoles::
263
264
265           Add  any  fine-grained authorizations based on the name of the con‐
266           sole group. For example, if the name of the  console  group  to  be
267           authorized  is  ldg1,  add  the following entry to the auth_attr(4)
268           file:
269
270             solaris.vntsd.console-ldg1:::Access Specific LDoms Guest Console::
271
272
273           By default, the authorization to access all consoles is assigned to
274           the  root  user  or role. The Primary Administrator (superuser) can
275           use the usermod(1M) command to assign the required authorization or
276           authorizations to other users or roles.
277
278           The  following example gives user user1 the authorization to access
279           all domain consoles:
280
281             # usermod -A "solaris.vntsd.consoles" user1
282
283
284           The following example gives user user1 the authorization to  access
285           the console group named ldg1:
286
287             # usermod -A "solaris.vntsd.console-ldg1" user1
288
289
290
291
292
293
294SunOS 5.11                        31 Mar 2009                        vntsd(1M)
Impressum