5 echo 'sysname= env var is not set'
8 echo 'checking this host''s tuple:'
9 ip=`{ndb/ipquery sys $sysname ip | sed 's/ip=//g'}
13 echo ' ip='$ip 'looks ok'
14 dom=`{ndb/ipquery sys $sysname dom | sed 's/dom=//g'}
20 echo ' dom='$i 'does not have a dot'
21 if not if(! ~ $i $sysname^.*)
22 echo ' dom='$i 'does not start with' $sysname^'; it''s supposed to be the FQDN, not the domain name!'
24 echo ' dom='$i 'looks ok'
27 ether=`{ndb/ipquery sys $sysname ether | sed 's/ether=//g'}
29 echo ' no ether entry'
32 if(! ~ $i [0-9a-f][0-9a-f][0-9a-f][0-9a-f][0-9a-f][0-9a-f][0-9a-f][0-9a-f][0-9a-f][0-9a-f][0-9a-f][0-9a-f])
33 echo ' ether='$i 'has wrong format'
34 if not if(! grep -s $i /net/ether*/addr)
35 echo ' ether='$i 'does not belong to any network interface'
37 echo ' ether='$i 'looks ok'
42 echo 'checking the network tuple:'
43 ipnet=`{ndb/ipquery sys $sysname ipnet | sed 's/ipnet=//g'}
45 echo ' we are not in an ipnet, so looking for entries in host tuple only'
48 echo ' we are in ipnet='^$ipnet
49 ipgw=`{ndb/ipquery sys $sysname ipgw | sed 's/ipgw=//g'}
51 echo ' we do not have an internet gateway, no ipgw= entry'
54 if(! ~ $ipgw *.*.*.* *:*:*:*:*:*:*:* *::*)
55 echo ' ipgw='$ipgw 'does not look like an ip address'
57 echo ' ipgw='$ipgw 'looks ok'
59 dns=`{ndb/ipquery sys $sysname dns | sed 's/dns=//g'}
64 if(! ip/ping -n 1 $i >/dev/null >[2=1])
65 echo ' dns='$i 'does not reply to ping'
67 echo ' dns='$i 'looks ok'
70 auth=`{ndb/ipquery sys $sysname auth | sed 's/auth=//g'}
72 echo ' no auth= entry'
75 if(! ip/ping -n 1 $i >/dev/null >[2=1])
76 echo ' auth='$i 'does not reply to ping'
79 echo ' auth='$i 'looks ok'
83 fs=`{ndb/ipquery sys $sysname fs | sed 's/fs=//g'}
85 echo ' no fs= entry (needed for tls boot)'
88 if(! ip/ping -n 1 $i >/dev/null >[2=1])
89 echo ' fs='$i 'does not reply to ping (needed for tls boot)'
91 echo ' fs='$i 'looks ok'
96 echo 'checking auth server configuration:'
98 echo ' no auth server'
101 if not if(~ $sysname $auth){
102 echo ' we are the auth server'
105 if not if(~ $dom $auth){
106 echo ' we are the auth server'
109 if not if(~ $ip $auth){
110 echo ' we are the auth server'
114 echo ' we are not the auth server '^$auth
115 echo ' if this is a mistake, set auth='$sysname' or auth='$dom
117 echo ' run auth/debug to test the auth server'
120 if(! grep -s keyfs <{ps})
121 echo ' auth/keyfs is not running, try reboot'
123 echo ' auth/keyfs is running'
124 if(! grep -s 'Listen *567' <{netstat -n})
125 echo ' no one listening on port 567, try reboot'
127 echo ' someone is listening on port 567'
128 echo ' run auth/debug to test the auth server'
130 echo ' run auth/asaudit to verify auth server configuration'
135 echo 'checking basic security:'
136 if(@{rfork n; mount -n /srv/boot /root >/dev/null >[2=1]})
137 echo ' file server does not require auth for user '^`{cat '#c'/user}
139 echo ' file server seems to require auth'