Chapter 1: Networking overview

Chapter 1: Networking overview

Chapter 1
Networking overview

Networking, simply put, is connecting your computers together so they can share information. Effective networking increases productivity by using computer resources (such as files, printers, and memory) more efficiently. A network puts the power of all of your system's hardware and software at your fingertips.

We strongly recommend that you familiarize yourself with the following sections before installing any networking software:

Introduction to networking

The following topics are essential to an understanding of SCO OpenServer networking:

Remote and distributed administration

SCO networking services allow you to administer other systems -- both SCO and other types of systems -- from one workstation on your network. Two types of administration are supported: remote and distributed.

Remote administration

Remote administration allows you to manage one system at a time, as if you were root on another system. This concept is familiar to most UNIX system administrators through commands such as rlogin, telnet, and rcmd. Your SCO OpenServer Desktop or Enterprise system extends these abilities by allowing you to view and administer remote systems from your management workstation to perform tasks such as:

installing and removing software
administering user and group accounts
administering local and remote filesystems
performing system backups
managing printer queues

Distributed administration

Distributed administration allows you to manage entities (for example, users and printers) that may be associated with several systems in a network rather than being attached to one system. It is particularly important for enterprise installations where large numbers of systems must be maintained in a consistent stated. Examples of distributed administration include:

Managing the accounts of users and groups who may log into many systems on the network -- using NIS Network Information Service.
Creating distributed home accounts so users have the same work environment regardless of the system they may log into -- using NIS and automount.
Sending messages to all machines on the network -- using rwall(NADM) and pciwrite(PCI).
Collecting system performance information from all machines on the network and generating failure alerts -- using SNMP (Simple Network Management Protocol) and system monitoring technologies.

For more information on these technologies, see ``The distributed computing environment''.

Both remote and distributed administration can be done with SCOadmin managers, which are graphical administration interfaces supplied with the SCO OpenServer. For more information on SCOadmin managers, see ``Administering other systems with SCOadmin managers''.

About clients and servers

SCO networking is based on the ``client-server'' model. In its simplest form, a ``client'' is a program that requests a service and a ``server'' is a program that provides a service. In a networked environment, client programs frequently issue RPCs (Remote Procedure Calls) to request that an operation be performed; a server responds to the RPC by executing procedures to perform the operation and sending a response to the client. The terms may also refer to machines; ``server'' may refer to a host whose files or services are made available through RPCs, and ``client'' to the requesting host.

The implications of the terms ``client'' and ``server'' may vary in specific networking components. The following table summarizes some of these variations.

Table 1-1 Examples of client-server implementations in SCO networking components

 --------------------------------------------------
 Component     Client             Server
 --------------------------------------------------
 DNS           any program that   any program that
 (Domain       queries for host   responds to
 Name          names and          queries for host
 Service)      addresses          information
 --------------------------------------------------
 NFS           any host           any host that
 (Network      requesting that    ``exports'' file
 File          a remote file      systems for
 System)       system be          remote mounting
               mounted locally
 --------------------------------------------------
 NIS           any host that      any host that
 (Network      requests NIS-      fulfills requests
 Information   managed            for NIS-managed
 Service)      information        information
               across the
               network
 --------------------------------------------------
 SNMP          also called        also called
 (Simple       ``management       ``agent''; any
 Network       station''; any     program that
 Management    program that       responds to
 Protocol)     queries for        queries from a
               system status      management
               information from   station
               a remote system

SCO OpenServer systems provide both client and server administrative functionality; as servers, SCO systems can easily manage other machines using standard technology, while as clients, they can be managed remotely using these technologies.

Network hardware drivers

Network hardware drivers are programs that provide a standard way for many different ``protocol stacks'' and networking products to communicate with the networking adapter installed in your computer. Included with your SCO OpenServer system are the SCO Network Adapter Drivers, which support many available network adapters. Because they conform to a standard set of parameters and interfaces, you can use a single configuration tool, the Network Configuration Manager, to configure any or all of them.

SCO Network Adapter Drivers are available in two forms, both included in your SCO OpenServer system:

the SCO Network Drivers package
the Advanced Hardware Supplement (AHS)

The SCO Network Adapter Drivers package is installed by default during your SCO OpenServer system installation. However, if you wish to install a driver for an adapter not included in the SCO OpenServer system distribution, consult your AHS documentation or contact your SCO dealer to determine if your adapter is supported in the latest AHS release.

Other network drivers

Many network adapter vendors provide SCO-compatible network adapter drivers. Most of these vendors are listed in the SCO Compatible Hardware Web Pages. To use an adapter not listed there, contact the vendor.

Types of networking maintenance tasks

After you decide how your machine fits into the network, you need to install and configure the appropriate protocol packages as described in Chapter 1, ``Configuring network connections'' in Configuring Network Connections. You also need to update the networking files on other machines so that they know of the new machine's existence. This configuration ensures, among other things, that:

all machines on the network know each other's names and addresses.
individual users will have access to files and accounts on various machines.
electronic mail is routed correctly.
the network runs at peak efficiency.

Common tasks that you will perform to ensure these goals include:

installing and maintaining networking hardware and software.
assigning names and addresses to each computer and device on the network.
assigning names and identification numbers (IDs) to network users and groups.
performing the commands required to share, remove, and restrict resources.
updating all appropriate networking files on your network's machines.
troubleshooting network activity.
performance tuning (see ``About this book'' in the Performance Guide).

SCO networking services

SCO OpenServer networking services can be used to connect SCO systems with a wide variety of similar and dissimilar systems, including proprietary minicomputers and workstations, MS-DOS® and OS/2 PCs, PC LANs, other UNIX systems, and SCO OpenServers. SCO networking products comply with standards for TCP/IP internetworking and OSI GOSIP networks, just as SCO operating systems meet X/Open, POSIX, and SVID standards.

SCO networking architecture

SCO networking services are based on an architecture that affords maximum flexibility, interconnectivity, and standards conformance.

The following are not included with SCO OpenServer:

NetBEUI

Included in Microsoft LAN Manager for SCO Systems, available separately.

Third-party protocols

These are available from other vendors.

Networking components

SCO networking functionality is provided in several components included with the SCO OpenServer distribution. The distribution products and component packages may be viewed from the Software Manager; for more information, see ``Examining software packages'' in the SCO OpenServer Handbook.

The following components are included with the SCO OpenServer Connectivity package:

SCO Network Drivers -- the individual networking adapter drivers and the Network Configuration Manager configuration framework
Network Installation Boot Modules.
SCO IPX/SPX Runtime System, including:
- IPX/SPX Base Runtime System, which enables your system to act as a terminal server for DOS NetWare clients and as a NetWare router. SCO IPX/SPX is also required for SCO Gateway for NetWare.
- IPX/SPX Graphical Tools and Related Utilities, which allow you to manage IPX/SPX servers.
- IPX/SPX Runtime System Manual Pages.
SCO TCP/IP Runtime System, including:
- TCP/IP Runtime utilities and drivers, which provide the basis for TCP/IP networking.
- SNMP Agent Runtime Set, which enables your system to run the Simple Network Management Protocol to monitor and manipulate resources across the network.
- NetBIOS Runtime utilities and drivers, which allow products such as LAN Manager Client to run over TCP/IP.
- Remote Line Printing Runtime Set.
- PPP (Point-to-Point Protocol) Runtime utilities and drivers, which enable your system to run TCP/IP over serial lines.
- TCP/IP administration tools.
- SNMP administration tools.
- TCP/IP Documentation, including this guide.
SCO NFS® Runtime System, including:
- Base Network File System (NFS), including automount(NADM).
- Network Information Service (NIS), a distributed database that allows administrators to centralize common system administrative files. For more information, see ``Distributed management framework''.
- Remote Execution (REX).
- Network Lock Manager (NLM).
- NFS Documentation, including all NFS manual pages.
SCO LAN Manager Client, which allows your system to access applications and files from a LAN Manager server. The basic component and documentation (manual pages) are included.
SCO Gateway for NetWare, including:
- SCO Gateway for NetWare Base Runtime System, which allows your system to access applications and files on a NetWare server.
- SCO Gateway for NetWare Print System, which allows your system to access printers on a NetWare server.
- SCO Gateway for NetWare Graphical Tools and Related Utilities, which ease administration of the SCO Gateway for NetWare.
- SCO Gateway for NetWare Documentation, including manual pages.
SCO PC-Interface, a file sharing, printing, and terminal emulation server package to serve DOS and Windows PCs. The basic component and documentation (manual pages) are included.

Included with the SCO OpenServer UNIX Utilities package (under the SCO OpenServer UNIX product) are:

UNIX System Mail Utilities:
- SCO Mail User Agents.
- The MMDF (Multichannel Memorandum Distribution Facility) SMTP (Simple Mail Transfer Protocol) channel.
- The sendmail runtime system.

Included with the SCO OpenServer Optional UNIX Utilities (under the SCO UNIX Operating System product) are:

UUCP Utilities:
- The uucp(C), cu(C), and ct(C) communications utilities.
- High-speed modem dialers for UUCP.
- mail(C), micnet, and other local message programs.

In addition to the networking components included with your SCO OpenServer distribution, SCO also provides:

Microsoft LAN Manager for SCO Systems

The full LAN Manager server system, including:

The NetBEUI protocol stack and Datalink.
MS-DOS and OS/2 client connectivity packages.
The Remoteboot facility.
Over-the-network client installation.
An SNMP agent.
Various administrative utilities.

DCE

The full DCE® (Distributed Computing Environment) runtime system, including:

Security Services.
X.500 Directory Services.
Distributed Administration Services.
Cell Directory Service.

Networking protocol stacks

Computers on a network communicate in agreed ways called protocols. Protocols dictate which signals computers use across cables, how they tell one another that they have received information, and how they exchange information.

Protocols are more accurately termed protocol ``stacks'' or protocol ``suites'' because the communications functions are complex and are usually divided into independent layers or levels. A stack is a collection of protocol layers that implement network communication. The protocol associated with each layer communicates only with the layers immediately above and below it, and assumes the support of underlying layers. Lower layers are closer to the hardware and higher layers are closer to the user. The number of layers and tasks that each layer performs depends on which stack you are using.

Table 1-2 Supported protocol stacks

 -------------------------------------------------------------------
                  Provided by   Provided by other   Supported by SCO
 Protocol stack   SCO System    SCO products        network drivers
 -------------------------------------------------------------------
 TCP/IP               yes               -                 yes
 IPX/SPX              yes               -                 yes
 NetBEUI               -               yes                yes

SCO OpenServer also provides two operating system packages that permit UNIX and XENIX® systems to communicate as part of a remote network:

Although these packages are not protocol stacks, they are discussed here because they provide low-cost alternatives to LANs based on specialized hardware and software.

The relative advantages of the SCO connectivity packages are:

TCP/IP

high performance
the standard protocol for UNIX system LANs

IPX/SPX

high performance
enables network connectivity between SCO and Novell systems

UUCP

low cost; does not require specialized networking cards or software
runs over dedicated serial (RS-232) lines, phone lines (via modem), or LAN

TCP/IP

The TCP/IP (Transmission Control Protocol/Internet Protocol) suite, included with the SCO OpenServer Desktop and Enterprise systems, provides the basis for many useful services, including electronic mail, file transfer, remote login, network monitoring, and others, described in Chapter 3, ``Administering TCP/IP''.

TCP/IP is a set of protocols and programs used to interconnect computer networks and to route traffic among different types of computers. These protocols describe allowable data formats, error handling, message passing, and communication standards. Computer systems that use TCP/IP speak a common language, regardless of hardware or operating system differences.

Many large networks conform to these protocols, including the Internet. Thousands of computers at universities, government agencies, and corporations are connected to a network that follows the TCP/IP protocols. Any machine on the Internet can communicate with any other. Machines on the Internet are referred to as hosts or nodes and are defined by their Internet (or IP) address.

TCP/IP provides:

Remote file transfer and copy via ftp(TC) and rcp(TC).
Remote login capability via rlogin(TC) and telnet(TC).
Remote shell and command execution via rcmd(TC).
Remote file distribution via rdist(TC).
Serial line communications via the Point-to-Point Protocol (PPP) or the Serial Line Internet Protocol (SLIP).
Distributed and local host naming services via the Berkeley Internet Name Domain (BIND) name server or /etc/hosts .
Remote hostname lookup via nslookup(TC)
Time synchronization via the Time Synchronization Protocol (TSP) or Network Time Protocol (NTP).
Gateway and router support via gated(ADMN), irdd(ADMN), and routed(ADMN).
Network management capability via the Simple Network Management Protocol.
Remote printing capabilities via Remote Line Printing (RLP).
The ability to run X and X clients, such as mosaic and scocal, over the network.

TCP/IP Protocols

TCP/IP is made up of three basic protocols -- Internet Protocol (IP), Transmission Control Protocol (TCP), and User Datagram Protocol (UDP) -- as well as a variety of others that run over the IP protocol stack.

The IP protocol splits and forwards packets to the appropriate computer.
The TCP protocol provides security and reliability to the IP protocol.
The UDP protocol is a low-security alternative to TCP.
Other protocols facilitate name services, mail handling, network management, and other useful services.

The Internet Protocol (IP)

The Internet Protocol defines a data delivery system wherein the sending and receiving machines are not necessarily directly connected. IP splits data into packets of a given size, which are then forwarded to the receiving machine via the network. These individual packets of data (often called ``datagrams'') are routed through different machines on the Internet to the destination network and receiving machine. A particular set of data, such as a file, can be broken up into several datagrams that are sent separately.

A datagram consists of header information and a data segment. The header contains information about routing and processing the datagram. Datagrams can be further fragmented into smaller pieces, depending on the physical requirements of the networks they cross. For example, when a gateway sends a datagram to a network that cannot accommodate the datagram as a single packet, the datagram must be split into pieces that are small enough for transmission. The datagram fragment headers contain the information necessary to reassemble the fragments into the complete datagram. Fragments do not necessarily arrive in order; the software module implementing the IP protocol on the destination machine must reassemble the fragments into the original datagram. If any fragments are lost, the entire datagram is discarded.

See also:

The Transmission Control Protocol (TCP)

The Transmission Control Protocol works with IP to provide reliable delivery. It provides a means to ensure that the various datagrams making up a message are reassembled in the correct order at their final destination and that any missing datagrams are re-sent until they are correctly received.

The primary purpose of TCP is to avoid the loss, damage, duplication, delay, or misordering of packets that can occur under IP. When IP forwards datagrams, individual datagrams may or may not arrive, and they probably will not arrive in the order in which they were sent. TCP adds the reliability that IP lacks. Also, security provisions such as limiting user access to certain machines can be implemented through TCP.

TCP provides reliability by using checksums (error detection codes) on the data, sequence numbers in the TCP header, positive acknowledgment of data received, and retransmission of unacknowledged data.

See also:

The User Datagram Protocol (UDP)

The User Datagram Protocol provides data transfer without many of the reliable delivery capabilities of TCP. UDP is less CPU-intensive than TCP and is useful when guaranteed data delivery is not of paramount importance.

See also:

udp(ADMP)

Other TCP/IP protocols

Address Resolution Protocol (ARP)

Translates between DARPA Internet and Ethernet addresses. See arp(ADMN) and arp(ADMP).

Internet Control Message Protocol (ICMP)

Handles error-message and protocol control for TCP/IP. See icmp(ADMP).

Point-to-Point Protocol (PPP)

Provides both synchronous and asynchronous network connections over a serial line. See ppp(ADMP) and Chapter 11, ``Configuring the Point-to-Point Protocol (PPP)''.

Reverse Address Resolution Protocol (RARP)

Translates between Ethernet and DARPA Internet addresses.

Serial Line Internet Protocol (SLIP)

Enables IP over serial lines. See slip(ADMP) and Chapter 12, ``Configuring the Serial Line Internet Protocol (SLIP)''.

Simple Mail Transport Protocol (SMTP)

Used by MMDF to send mail via TCP/IP.

Simple Network Management Protocol (SNMP)

Performs distributed network management functions via TCP/IP. See Chapter 10, ``Configuring the Simple Network Management Protocol (SNMP)''.

Network servers and databases

In the UNIX system, most server programs are started by a super server, called the ``Internet daemon''. The Internet daemon, /etc/inetd, acts as a master server for programs specified in its configuration file, /etc/inetd.conf. It listens for service requests for these servers, and starts up the appropriate program whenever a request is received. The configuration file includes information about:

a service name (as found in /etc/services)
the type of socket the server expects (for example, stream or dgram)
the protocol used with the socket (as found in /etc/protocols)
whether to wait for each server to complete before starting up another
the user name under which the server should run
the server program's name
up to five arguments to pass to the server program

Some trivial services are implemented internally in inetd.conf(SFF), and their servers are listed as internal. For example, an entry for the ``daytime'' internal service (that displays the current day and time of any machine on the network) would appear as:

   daytime stream  tcp     nowait  root    internal

Consult inetd.conf(SFF) for more details on the format of the configuration file and the operation of the Internet daemon. Several data files are used by the network library routines and server programs. Most of these files are host independent and are updated only rarely.

Table 1-3 Network database files

 ----------------------------------------------------------------------
 File               Manual reference   Use
 ----------------------------------------------------------------------
 /etc/hosts         hosts(SFF)         host names
 /etc/networks      networks(SFF)      network names
 /etc/services      services(SFF)      list of known services
 /etc/protocols     protocols(SFF)     protocol names
 /etc/hosts.equiv   rshd(ADMN)         list of ``trusted'' hosts
 /etc/ftpusers      ftpd(ADMN)         list of ``unwelcome'' ftp users
 /etc/inetd.conf    inetd(ADMN)        list of servers started by inetd

The files distributed are set up for Internet hosts. Local networks and hosts should be added to the databases to describe the local configuration.

TCP/IP end-user commands

Several TCP/IP commands, described in detail on their manual pages, provide end users with networking capabilities:

Table 1-4 TCP/IP Commands

 --------------------------------------------------------------------
 Command   Purpose
 --------------------------------------------------------------------
 ftp       file transfer between machines running TCP/IP (these
           machines may or may not run the same operating system)
 rcmd      remote command execution on another UNIX system
 rcp       file copying between two UNIX systems
 rlogin    remote login on another UNIX system
 ruptime   status display of local network machines
 rwho      display list of users logged on to local network machines.
 telnet    remote login on a machine running TCP/IP (these
           machines may or may not run the same operating system)

Configuring TCP/IP

To configure TCP/IP, you must:

Establish physical connections (serial or otherwise).
Configure networking drivers.
Configure the TCP/IP protocol stack by:
- ensuring that your system name is unique on the network.
- selecting the appropriate device driver for your networking card, adapter, or serial line.
- selecting a domain name appropriate to your networking needs.
- assigning unique IP addresses to each machine on the network.
- assigning a broadcast address that allows messages to reach all machines on your network.
- assigning netmasks if you are configuring subnets on your network.
configure pseudo-ttys.
configure additional protocols listed in ``Other TCP/IP protocols''.
configure NFS to enable filesharing over TCP/IP.

You may also want to implement subnetworks or serial line gateways as described in Chapter 3, ``Administering TCP/IP''. Subnetworks provide a mechanism that enables several local networks to appear as a single Internet network to off-site hosts. Subnetworks are useful because they allow a site to hide the local topology, requiring only a single route in external gateways. Other benefits include:

overcoming distance limitations in cabling media.
connecting physically dissimilar networks (for example, Ethernet and Token-Ring).
simplifying network administration and troubleshooting in large networks.
connecting groups of users to reflect organizational structure.

You can configure a machine to serve as a gateway between a SLIP network and an Ethernet network; the same procedure can be used for PPP/Ethernet, SLIP/Token-Ring, and PPP/Token-Ring gateways. This procedure entails:

configuring the serial interface with a unique IP address.
configuring the Ethernet or Token-Ring card with a unique IP address.
adding entries to the /etc/hosts file for the new hostname and network addresses.

Administering TCP/IP

Basic administration of TCP/IP consists of:

``Setting interface parameters'' to directly change the netmask, broadcast address, and IP address used at boot time.
``Creating subnets'' to allow several local networks to appear as a single Internet network to off-site hosts.
``Establishing user equivalence'' to enable users to log in to their accounts on the local machine from remote machines without a password.
``Setting up anonymous ftp'' to enable users without accounts on the local system to transfer files via ftp to and from specified areas of your filesystem.
``Configuring UUCP over TCP/IP'' to enable file and mail transfer between two computers that may not be running ftpd, rshd, and smtpd.
``Obtaining RFCs from the Internet'' to obtain additional information on TCP/IP protocols and applications from sources on the Internet.
``Troubleshooting TCP/IP'' to reduce or eliminate TCP/IP errors.

For information on tuning your system for increased TCP/IP performance, refer to ``Tuning TCP/IP performance'' in the Performance Guide.

IPX/SPX

SCO IPX/SPX provides a means of connecting SCO systems and NetWare networks. The following protocols are supported:

IPX

IPX is a datagram service protocol which allows individual packets to be sent to and received from user processes. IPX is a connectionless service; it does not support the concept of a connection or reliable delivery. However, guaranteed services like SPX have been built on top of IPX. IPX is used in situations where a guaranteed service is not required or where an occasional lost packet is not critical.

For more information, see ``Internetwork Packet Exchange (IPX)''.

SPX

SPX is a connection-based, reliable, sequenced transport protocol which provides both guaranteed packet delivery and flow control. Packets are received in order by the destination endpoint and the speed at which the sending and receiving processes manipulate packets is regulated.

SAP

SAP (Service Advertising Protocol) is a method by which networks can advertise available network services. SAP allows service nodes (such as file servers, print servers, and application servers) to advertise their services and addresses. The SAP daemon uses the SAP protocol to advertise these services.

For more information, see ``Service Advertising Protocol (SAP)''

RIP

The Routing Information Protocol (RIP) facilitates the exchange of routing information on a NetWare network. For more information, see ``Routing Information Protocol (RIP)''.

NVT

The Novell Virtual Terminal (NVT) protocol is a guaranteed-delivery, connection-oriented protocol. It is built on top of IPX and uses IPX to send packets and receive positive acknowledgments of packet delivery.

IPX/SPX end-user commands

Several IPX/SPX commands, described in detail on their manual pages, provide end users with networking capabilities:

Table 1-5 IPX/SPX Commands

 ----------------------------------------------------
 Command          Purpose
 ----------------------------------------------------
 dnvt(PADM)       monitor connections to an NVT
                  server
 drouter(PADM)    display the contents of the Routing
                  Information table
 getlan(PADM)     display information about IPX/SPX
                  and LLI interfaces
 ipx(PADM)        start, stop, or restart the IPX/SPX
                  protocols and the NVT server
 nlogin(PADM)     enable remote login via IPX and NVT
 nping(PADM)      test the network connection to a
                  host
 rrouter(PADM)    clear and update the Routing
                  Information table
 showsvcs(PADM)   monitor and/or validate network
                  names, addresses, and services
 track(PADM)      test the operation of the SAP
                  daemon

Configuring IPX/SPX

To configure IPX/SPX, you must:

establish physical connections (serial or otherwise)
configure networking drivers -- for more information, see ``Configuring network hardware'' in Configuring Network Connections
configure the IPX/SPX stack over a networking driver by using the Network Configuration Manager to set these parameters:
- maximum number of simultaneous NVT login connections
- internal network number by which a server is addressed
- network number by which the network segment is addressed
- framing type performed by the network adapter driver
confirm default advanced settings
enable terminal emulation software
configure SCO Gateway for NetWare services -- see ``Accessing NetWare servers with SCO Gateway for NetWare''

See also:

``Configuring protocols'' in Configuring Network Connections

Administering IPX/SPX

IPX/SPX administration consists of:

monitoring and modifying routing information.
monitoring and modifying server information.
troubleshooting IPX/SPX.

See also:

Chapter 4, ``Administering SCO IPX/SPX''

Other SCO-compatible stacks

You can configure other protocol stacks over SCO networking drivers:

NetBEUI

This is included with Microsoft LAN Manager for SCO Systems.

Third-party stacks

These are available from various vendors.

See also:

``Networking components''
Administering LAN Manager

Serial line communications

SCO TCP/IP offers two protocols that allow you to route data over serial lines:

SLIP, the older protocol, supports a wide range of hardware and is straightforward to configure. PPP was created to enhance the capabilities of SLIP, and is required by products such as the SCO Global Access^(TM) web browser.

Each protocol supports the following:

multiple simultaneous links (64 for PPP and SLIP)
communications initiated from either the local or remote host
dynamic acquisition of serial lines, allowing for lines to be shared with programs such as uucp
dynamic link configuration, negating the need for kernel relinks
packet filtering based on packet type
gateway services
asynchronous communications

PPP offers the following capabilities in addition to those offered by SLIP:

Authentication

Authentication of connection requests with CHAP (Challenge-Handshake Authentication Protocol) or PAP (Password Authentication Protocol), which provides additional security.

Debugging

Multiple levels of debugging data, which appear on the console and in the system logfile.

Error detection

Error detection through the use of a checksum program.

Negotiation

Connect-time negotiation of IP addresses, authentication methods, compression, and other configurable parameters.

Packet priority handling

Two-level packet handling, where telnet, rlogin, and ftp packets have a higher priority than all other packets.

Protocol support

Support for multiple protocols. SLIP only supports the IP protocol.

SCO Global Access

Support for the SCO Global Access browser and other products (such as other World Wide Web browsers) that make use of an httpd server.

SNMP MIB support

Support for SNMP queries for objects in the PPP Link Control Protocol MIB and the PPP Network Control Protocol MIB.

NOTE: If your network is simple, static, and does not have use for the capabilities of PPP, use SLIP. If you are connecting to a service provider to use the SCO Global Access browser, or want to use the additional features provided, use PPP.

Configuring serial lines

To configure serial lines:

Install and configure TCP/IP with the Network Configuration Manager.
Configure SLIP or PPP links with the Network Configuration Manager.

Administering serial lines

Serial line administration consists of:

Adding or deleting links with the Network Configuration Manager.
Troubleshooting SLIP or PPP.

UUCP and cu

The UUCP package permits XENIX and UNIX systems to communicate as part of a remote network. The UUCP (UNIX-to-UNIX Copy) package consists of a group of programs that provide these capabilities:

remote file transfer (uucp)
remote command execution (uux)
mail to and from remote sites (via mail)

The UNIX system uses the HoneyDanBaer implementation of UUCP. Used primarily over phone lines, UUCP can connect with specific remote machines on a demand or scheduled basis, and by either dialing out or allowing other machines to call in.

UUCP uses a batch method to manage communications traffic, storing (or ``spooling'') requests for later execution when actual contact is made between systems. When UUCP commands are executed, work files and any data files needed are created in /usr/spool/uucp and its subdirectories. The program uucico scans these directories for the instructions contained in any work files and executes them. Although it is possible to execute commands immediately, most systems call other systems according to a daily schedule (usually during the evenings to reduce connection costs).

Configuring UUCP and cu

UUCP and cu configuration consists of:

Installing a modem on your system.
Setting the appropriate permissions and ownership on the modem's tty line.
Editing the inittab file to support the desired modem speed.
Adding entries into the UUCP Devices, Dialers, and Systems files to support the modem and specify which systems to call.
Using uutry to test connectivity with other sites.
Configuring the polling daemon to call systems at the desired times.

These topics are covered in Chapter 24, ``Adding modems'' in the SCO OpenServer Handbook and Chapter 7, ``Connecting to other computers with UUCP'' in the System Administration Guide.

Administering UUCP and cu

UUCP and cu administration consists of:

troubleshooting UUCP connections.
altering the polling schedule.
monitoring UUCP logfiles.

These topics are covered in Chapter 7, ``Connecting to other computers with UUCP'' in the System Administration Guide.

The distributed computing environment

Distributed computing means the sharing of resources (such as printers, databases, or mail) across machines on the network. With distributed computing, various types of server systems fulfill client systems' requests for data. Occasionally, the server and client software exists on the same machine.

The SCOadmin managers facilitate distributed and remote system administration of SCO OpenServer servers and clients. For information on using these managers, see ``Administering other systems with SCOadmin managers''.

SCO OpenServer supports the following types of servers:

Application servers

Many applications, such as SCOhelp, SCOcalendar, and many relational database management systems, use a client-server model wherein the data resides on one or more application servers. To access the data, users on client machines run a program on the local CPU, which transfers data over a networking protocol such as TCP/IP. The program may be on a local filesystem or it may be mounted via NFS from a file server. In most cases, the user is unaware that the data does not reside on the local system.

In addition, many multiuser host applications are available for SCO systems. You can access them remotely via your network using telnet, rlogin, and other terminal emulation programs.

File servers

File servers, running programs such as Network File System (NFS), Microsoft LAN Manager for SCO Systems, and NetWare, allow users on client machines to transparently access files from server-exported filesystems on the local host. Use of file servers enables you to more effectively balance the disk space load between various machines on your network and to share files between machines running different operating systems.

Installation servers

The networked installation capabilities of SCO OpenServer enable you to install the entire operating system or operating system components over the network.

Mail servers

Both mail transfer agents supported by SCO OpenServer, MMDF (the Multichannel Memorandum Distribution Facility) and sendmail, allow for operation over the network and have the ability to interact with other mailers through mail gateways.

Name servers

Name servers, such as the Domain Name Service (DNS) and the Network Information Service (NIS), maintain repositories of network and host names and addresses, and are queried by programs such as mail and remote login programs operating on client computers. SCO OpenServer supports a variety of local, remote, and distributed name services. Using a name server becomes appropriate as your network grows large or connects to the Internet.

Network management servers

Several programs and protocols provide a framework for managing your users, systems, and network resources.

Most SCOadmin managers allow you to remotely manage system users and resources, such as printers, filesystems, and user accounts.

The Simple Network Management Protocol (SNMP) enables you to remotely manage other network machines and devices running SNMP. For example, you can mark an interface as being down, modify routing information, or generate statistics that pinpoint performance issues.

With the Network Information Service (NIS) or the TCP/IP program rdist(TC), you can maintain central repositories of system files, such as /etc/hosts, /etc/passwd, and /etc/group, which are either served to or pushed onto other machines as appropriate.

Print servers

You can print from your local SCO OpenServer system:

locally, by using lp(C).
remotely, to a printer connected to an SCO OpenServer system or a UNIX system via TCP/IP, by using Remote Line Printing (RLP).
remotely, to a printer connected to a NetWare server, using lp(C) and SCO Gateway for NetWare's print capabilities.
remotely, to a Hewlett-Packard® JetDirect^(TM) printer connected directly to the network.

You can also set up your system to handle print requests from:

Other TCP/IP-connected systems, via Remote Line Printing (RLP).
A DOS, OS/2, or MacIntosh computer using PC-NFS.
A DOS computer running PC-Interface for DOS.

Use the SCOadmin Printer Manager to configure and manage local and remote UNIX system, SCO Gateway for NetWare, and Hewlett-Packard Jet Direct printers.

Time servers

Many database programs depend on time synchronization across the network to allow for effective file locking and authentication. The SCO OpenServer Desktop and Enterprise systems include two TCP/IP protocols, the Network Time Protocol (NTP) and the Time Synchronization Protocol (TSP), which allow for time synchronization on Internet-connected and non-Internet-connected networks, respectively.

User account servers

To effectively manage user accounts across the network:

Use the Network Information Service (NIS) to create and maintain distributed user accounts from a single master NIS server.
Use the automount facility of NFS in conjunction with NIS to make distributed home directories available to any system in an NIS domain.
Use the SCOadmin Account Manager to manage both local and remote user account information.
Use the useradd(ADM) command to add, modify, or delete account information on a remote host.

Administering other systems with SCOadmin managers

Several SCOadmin managers enable you to manage other SCO OpenServer systems on your network. Two types of administration are supported: remote and distributed.

With remote administration, you can manage one remote system at a time. For example, you can add a printer to another system. To add that printer to additional systems, you need to repeat the procedure, once for each system.

With distributed administration, you can manage multiple systems at one time. For example, you can add a user to multiple systems in one step.

Generally speaking, remote administration entails minimal setup but does require repetitive steps to accomplish a task (such as providing a printer definition to multiple systems). Distributed administration, while requiring additional overhead in configuration, allows you to perform a task (such as distributing a user to multiple networked machines) in one step or procedure.

Remote capabilities

The root user can accomplish the following tasks, through remote administration, by opening another host to manage from the Host menu of a SCOadmin manager:

all Account Manager tasks
all Backup Manager tasks
all Filesystem Manager tasks
all Printer Manager tasks
all SNMP Agent Manager tasks
all Software Manager tasks

When you open another host, any administration or configuration you perform affects that host. When using managers to administer the local machine, you can also:

manipulate remote print jobs that show up in the Print Job Manager's queue.
add a remote filesystem to be backed up by the local system with the Backup Manager.
export filesystems to remote machines, and mount remote filesystems, with the Filesystem Manager.

Users other than root can also use portions of these managers if they have been granted the appropriate subsystem authorizations as described in ``Enabling remote manager capabilities''.

Enabling remote manager capabilities

Before using SCOadmin managers to administer remote systems, you must:

Create user equivalence between your system and the systems to be managed. Grant this equivalence for each user (root and others) who has subsystem authorization for the SCOadmin managers. Do so by using the User Equivalence Manager on each system.
CAUTION: Granting user equivalence compromises the security of your system, in that all persons who may access the root account of the remote machine now have access, as root, to your machine. Grant this equivalence sparingly.

Grant subsystem authorization (as described in ``Assigning subsystem authorizations'' in the System Administration Guide) on each machine to those users who will access the SCOadmin managers. Relevant authorizations are:

Table 1-6 Subsystem authorizations

 -----------------------------------------------------------
                 SCOadmin
 Authorization   Manager              User can:
 -----------------------------------------------------------
 lp              Printer Manager      administer printers
 backup          Backup Manager       perform backups
 auth            Account Manager      administer accounts:
                                      adding users, changing
                                      passwords, and so on
 passwd          Account Manager      change user passwords
 sysadmin        Filesystem Manager   mount filesystems

CAUTION: The auth subsystem authorization should only be assigned to persons entrusted with account administration. Never assign auth by default because it permits users to make changes to any account, including root.

With the correct user equivalence and subsystem authorizations configured, you can select a host to configure in one of the managers. Actions taken after selecting another host affect that host.

Distributed capabilities

You can accomplish the following tasks through distributed administration:

Creating, removing, retiring, or modifying NIS-distributed users with the Account Manager (NIS must be configured on your network).
Distributing users' home directories with the Account Manager (NIS and Automounter must be configured on your network).

See Chapter 9, ``Configuring the Network Information Service (NIS)'' and Chapter 15, ``Configuring the NFS automounter'' for more information.

Distributed user applications

User applications usually consist of executable programs (binaries and scripts), support files (such as error message and language libraries), and data storage files or directories. Stand-alone applications operate on a single computer, with the binaries executing on the local CPU and on libraries and application data stored on the local hard disk.
Network applications, on the other hand, make use of the filesharing and file-copying capabilities of the network to:

Distribute the system load from a server machine to users' desktop machines. For example, a database application may be exported via an NFS-mounted filesystem from a database server to a user's desktop machine. When the user runs the database program, his or her CPU does the processing. This allows for central maintenance of the database program and for efficient sharing of CPU resources.
Create easily manageable data servers. For example, a calendar program may run on the local filesystem on many users' desktop machines, while the actual calendar data exists on a calendar server. The data is served to users as requested over TCP/IP. This allows for centralized maintenance of large user databases.

In most cases, the user is unaware that the program or data access is over the network.

The key enabling technologies for distributed user applications are the supported network protocol stacks and filesharing capabilities such as NFS and SCO Gateway for NetWare filesystems.

Your SCO OpenServer system provides these applications, which can be configured to operate locally or, with the Desktop or Enterprise systems, over the network:

Distributed filesystems

Files can be shared across a network when a server exports directories to be shared and clients mount the directories to access the files in them. Filesharing under the SCO OpenServer Desktop and Enterprise systems is provided by:

NFS

The SCO Network File System (NFS) is a product that enables you to export and mount filesystems across a network. This allows users on a local machine, or client, to access specified files and directories from a remote machine, or server, without the time-consuming process of remote logins or machine-to-machine file copying.

In addition to exporting native UNIX filesystems, SCO NFS can export DOS, LAN Manager, and SCO Gateway for NetWare filesystems.

automount

automount allows remote NFS filesystems to be mounted automatically and transparently. Whenever a user on a client machine running automount invokes a command that accesses a remote file or directory (such as when opening a file with an editor), the hierarchy to which that file or directory belongs is mounted and remains mounted for as long as it is needed. No mounting is done at boot time, reducing significantly the time needed to boot up.

NLM

The Network Lock Manager (NLM) network service consists of a loadable device driver and a set of daemons that permit both advisory and mandatory file and record locking on local files. Only advisory file and record locking are supported on remote SCO NFS files. The NLM package includes the SCO NFS Status Monitor, which works in conjunction with the NLM to determine when a remote host has recovered after a crash.

REX

The Remote Execution (REX) service is a remote command service. It allows users to export their user environments to remote servers. These servers execute commands that can access files in the user's current directory and allow the execution of interactive processes such as full-screen editors. REX consists of a set of utilities, commands, and library functions.

File sharing is also provided by these SCO OpenServer interconnectivity components:

Table 1-7 SCO system filesharing interconnectivity

 ---------------------------------------------------------
 Operating system   SCO server     SCO client
 ---------------------------------------------------------
 DOS                LAN Manager*   LAN Manager Client
                    --             SCO Gateway for NetWare
                    PC-Interface   --
 Windows            LAN Manager*   LAN Manager Client
                    --             SCO Gateway for NetWare
                    PC-Interface   --
 OS/2               LAN Manager    LAN Manager Client
 NetWare            --             SCO Gateway for NetWare

*: Microsoft LAN Manager for SCO Systems is available separately.

Configuring NFS

To configure file sharing using NFS, you must:

establish physical connections.
configure networking drivers, TCP/IP, and NFS together using the Network Configuration Manager -- see Chapter 1, ``Configuring network connections'' in Configuring Network Connections.
configure NIS (Network Information Service) if desired -- see Chapter 9, ``Configuring the Network Information Service (NIS)''.
configure NFS by:
- exporting mountable directories from a server using the SCOadmin Filesystem Manager interface.
- starting NFS daemons on the client and server if this was not done when SCO OpenServer was installed.

Once the daemons are running and the filesystems exported, remote filesystems can be mounted by any client with NFS daemons running.

Administering NFS

There are five ways to remote mount exported filesystems:

by the system administrator's using the SCOadmin Filesystem Manager interface
by default when the system goes into multi-user mode through entries in /etc/default/filesys
manually as root using the mount command
automatically by automount whenever an exported filesystem is referenced by a user; see Chapter 15, ``Configuring the NFS automounter''
explicitly by a user using the mnt(C) command through entries in /etc/default/filesys (automount is recommended instead of this method)

NOTE: Entries in /etc/default/filesys and automount are mutually exclusive methods of remote mounting. If both are configured, automatic mounting is thwarted.

NIS can be used in conjunction with automount to ensure that each NIS system can automatically mount filesystems from the same set of NFS servers. In this case, automount maps are maintained on the NIS master server and distributed as NIS maps to other NIS systems. Local variations can be made to NIS-distributed automount maps. See ``Managing automount with NIS''.

Administering NFS entails the regular execution of common tasks, including:

monitoring network performance, particularly with regard to:
- server capacity
- server load balancing
- client mount table entries
adding, modifying and removing imported and exported filesystems as needed using the SCOadmin Filesystem Manager interface.
troubleshooting mount problems and server connections.

See also:

Chapter 14, ``Configuring the Network File System (NFS)''

Remote installation and software administration

If you manage a large enterprise that requires frequent new installations and upgrades of critical software, the SCO remote installation and software management capabilities simplify your job by supporting easily replicatable remote management procedures, such as:

Initial system load (ISL)

You can prepare an installation server, then perform an initial installation or upgrade onto clients with a bootp ROM or a specialized boot floppy.

Post-ISL tasks

After initial system load, you can use custom(ADM) to install (or upgrade) software to or from a remote machine. You can also remove, examine, and verify software on remote machines.

When you install a new component via custom, either over the network or from media, the component is placed in a software storage object (SSO) on your hard disk. SSOs allow multiple releases of the same software component to reside on your system simultaneously; users may then (depending on the system's configuration) access the version of their choice.

See also:

Chapter 21, ``Installing and managing software over the network''

Administering an installation server

Once you initially install your SCO OpenServer system, no additional tasks are required to perform component installations and upgrades across the network.

Distributed electronic mail

Electronic mail (e-mail) on the SCO OpenServer system is handled by two distinct processes:

The Mail User Agent (MUA) enables users to send, read, and manage mail messages, and transfers outgoing mail to a Mail Transfer Agent.
The Mail Transfer Agent (MTA) is the group of programs that route and deliver messages to their destinations.

On a stand-alone system, the MUA (such as mail) and MTA (such as sendmail) interact directly. The MUA, acting on behalf of the sending user, contacts the MTA, which routes the mail to the local recipient. The recipient reads the mail by using an MUA.

On a networked system, the MTA on the sending system has the additional task of determining whether the mail should be delivered to a local user or sent to another machine on the network, and, if sent to another machine, what communications channel (such as SMTP, the Simple Mail Transport Protocol) to use. When the MTA on the destination system receives the mail message, that MTA forwards the message to the appropriate user.

SCO OpenServer provides a choice of Mail Transfer Agents:

MMDF

(Multichannel Memorandum Distribution Facility), the SCO MTA that is included with the SCO UNIX operating system

sendmail

a commonly used alternative MTA that is also included with the SCO operating system

MMDF offers several substantial benefits over sendmail, including:

Configuration files that are easy to read and understand.
The ability for end users to configure their own sorting parameters.
A larger set of supported delivery agents.

For a more detailed comparison of the differences between MMDF and sendmail, see ``Comparison of sendmail with MMDF''. For more information on these MTAs, see Chapter 4, ``Managing mail with MMDF'' in the Mail and Messaging Guide, and Chapter 5, ``sendmail administration'' in the Mail and Messaging Guide.

Both MTAs can use a variety of hostname-to-Internet address mapping schemes; the most effective when connecting to the Internet is the Domain Name Service (DNS).

Configuring a mail transfer agent

To configure electronic mail, you must complete the following procedures:

configuring DNS (Domain Name Service) if desired.
choosing an MTA (Mail Transfer Agent), either at installation time or after the system is installed.
establishing physical connections and configuring networking drivers.
configuring the MTA.

Administering a mail transfer agent

Administering a mail system includes regularly:

monitoring the log file.
monitoring the mail queue.
modifying parameters.

Distributed name services

Programs and protocols that use TCP/IP to route data, Mail Transfer Agents such as MMDF, remote terminal login programs such as rlogin, and PC connectivity packages such as PC-Interface need the ability to map IP addresses to machine names and vice versa.

Name services provided by the SCO OpenServer Desktop and Enterprise systems to facilitate this mapping include:

The hosts file

The /etc/hosts file lists pairs of machine names and IP addresses. Update this file on each machine when a network is small, relatively stable (adding or removing machines infrequently), and not connected to the Internet. See the manual page for hosts(SFF) for more information.

You can use the TCP/IP utility, rdist, to distribute /etc/hosts to a list of designated machines on your local network if the network grows to the extent that editing individual files becomes a burden. See Chapter 20, ``Distributing files remotely over TCP/IP'', and the manual page for rdist(TC) for more information.

Domain Name Service (DNS)

Use DNS to create, maintain, or access a distributed database of names and addresses. These capabilities become critical as your network grows larger or if you connect to the Internet. Many other programs, such as SCO Global Access and various Mail Transfer Agents, either require or make effective use of DNS. See Chapter 6, ``Configuring the Domain Name Service''.

Network Information Service (NIS)

Use NIS to serve /etc/hosts data to diskless or dataless NIS clients, or to serve other NIS clients where restricted access to the actual /etc/hosts file is desirable. See Chapter 9, ``Configuring the Network Information Service (NIS)'', for more information.

Administering a name service

Common tasks associated with name services include:

adding, removing, and changing machine names in the system's name service database (/etc/hosts or DNS databases).
distributing updated information to remote machines by manually copying files or distributing files with NIS or rdist.
tuning DNS configuration.

Distributed management framework

Distributed and remote administration of resources (users, printers, filesystems, and networks, for example) depend on several underlying technologies:

User equivalence

All SCOadmin managers that allow for remote administration issue remote commands (rcmds) over TCP/IP. Each user, including root, who wants to use this capability must have an equivalent account on each system to be managed.

For more information about user equivalence, see ``Establishing user equivalence''. To configure user equivalence, use the User Equivalence Manager.

Network Information Service (NIS)

With NIS, you can:

Distribute users between an NIS server and all NIS clients on a network.
Create a single repository for important system files, such as /etc/hosts and /etc/passwd, that are served to clients on an as-needed basis.
Export user home directories to any other system in an NIS domain, when used in conjunction with the automount facility of NFS.

Simple Network Management Protocol (SNMP)

With SNMP, you can both monitor and control TCP/IP-based networks by querying remote hosts and devices for data (such as the host's status, routing table, and system activity) and by issuing commands to remotely manipulate such data.

SNMP is useful in the following ways:

System administrators can use SNMP from the command line to detect and correct network problems.
Developers can build SNMP into their device drivers to provide and monitor status information.
Network managers can use third-party graphical Network Management Stations operating over SNMP to monitor and administer large networks.

For more information, see ``How SNMP works'' and Chapter 10, ``Configuring the Simple Network Management Protocol (SNMP)''.

Distributed printing

Local printing generally refers to sending print jobs via lp(C) to a printer attached to your computer via a serial or parallel port. Distributed printing enables you to use the network to send print jobs to printers attached to networked hosts and to send jobs from remote hosts to a local printer.

To print remotely from your SCO OpenServer Desktop or Enterprise systems, you can:

Send a print job to a printer attached to another SCO OpenServer or compatible UNIX system by using RLP, the remote line printing component of TCP/IP.
Send a print job to a printer attached to a NetWare print server by using the print facilities of SCO Gateway for NetWare.
Send a print job to a printer attached to a LAN Manager for UNIX print server by using the print facilities of LAN Manager Client.

To print remotely to your SCO OpenServer Desktop or Enterprise systems, you can:

Send a print job from a DOS, Windows, or MacIntosh computer running PC-Interface client to an SCO OpenServer system configured as a PC-Interface server.
Send a print job from a DOS or OS/2 computer to an SCO OpenServer Desktop or Enterprise system running pcnfsd(NADM), a component of NFS .
Send a print job from a NetWare computer to an SCO OpenServer Desktop or Enterprise system running IPX/SPX.

Configuring remote printing

To configure remote printing, you must complete the following procedures:

Establish physical connections.
Configure networking drivers.
Configure the appropriate protocol stack.
Configure local and remote printers with the SCOadmin Printer Manager.

Additional configuration is required for each remote printing procedure.

Distributed time services

Synchronizing clocks across a network or group of networks helps programs that use time stamps function accurately. Examples include database, configuration management, and transaction-processing programs. Without this synchronization, database files may be simultaneously (and incorrectly) accessed by multiple machines, or updates to system files may be pushed to remote machines at incorrect times.

Use the Time Synchronization Protocol (TSP) or the Network Time Protocol (NTP), both members of the TCP/IP protocol suite, to synchronize clocks on your network.

Both TSP and NTP are fully supported in SCO OpenServer Release 5. Each has its own advantages, which are fully detailed in ``TSP guidelines'' and ``NTP guidelines''. The primary differences between NTP and TSP are:

NTP synchronizes clocks to Coordinated Universal Time (UTC), the international time standard. TSP synchronizes clocks to a master time server you designate, which may or may not be synchronized to an external standard.
A set of NTP servers, located on and accessible via the Internet, provide NTP services to machines with Internet access. TSP servers and clients must be configured on the local network.
NOTE: It is possible to use NTP without Internet access but with diminished accuracy. It is also possible to configure a TSP server that is itself an NTP client.
TSP consists of a single server (that you define) servicing a group of clients. If the server goes down, an election algorithm determines a new server, which then takes over responsibility for time synchronization. With NTP, a hierarchy of servers, some on the local network, some on the Internet, handle time synchronization. This redundancy of servers allows one or more to go down without jeopardizing time synchronization on the local network.
TSP is fairly straightforward to configure and administer, while NTP offers more functional robustness and has a more complex underlying file structure.

Distributed user management

In a distributed environment, user account management can quickly become complicated if the network administrator must keep account information synchronized on all the networked machines where a given user has access. Your SCO OpenServer Desktop or Enterprise system provides the following services to facilitate network user account management:

NIS (Network Information Service)

NIS designates a single server as ``master'' of files and databases containing system administration information and distributes this information to all systems in an NIS ``domain''. Among the files distributed by default are /etc/passwd and /etc/group; user and group accounts managed by NIS are called distributed accounts. NIS also provides a means to exempt accounts from distributed management, so they are local to a given machine; such accounts are called local accounts. For more information, see ``Administering NIS users and groups''.

automount in conjunction with NIS

Although NIS-distributed accounts allow users to log in to any machine in an NIS domain, they must have a home directory on each of those machines. However, the automount facility can be figured to automatically NFS-mount their home directory wherever they log in. For more information, see ``Distributing home directories''.

SCOadmin Account Manager

The SCOadmin Account Manager provides a convenient, interactive way to perform most administrative tasks on both distributed and local accounts. See ``The Account Manager interface'' in the System Administration Guide.

useradd

You can use the useradd(ADM) command to add, modify, and delete remote account information from the command line or in batch jobs.

NOTE: When NIS is configured, the SCOadmin Account Manager and the useradd command may be run remotely on the NIS master server or from NIS client machines if the administrator has auth privileges.

Administering distributed user accounts

Common administrative tasks associated with distributed user accounts include:

adding, modifying, and removing distributed and local accounts
changing distributed accounts into local accounts and vice-versa
assigning and controlling passwords
controlling login access and limits
changing the system security profile

NOTE: The use of NIS entails special security considerations; see ``NIS interaction with security modes'' for more information.

Connecting to other operating systems

You can serve other operating systems from your SCO OpenServer server:

DOS clients

Provide print, file, terminal emulation, and other services with PC-Interface. Provide print services with the pcnfsd(NADM) component of NFS.

DOS NetWare clients

Provide distributed applications services to NetWare clients with IPX/SPX.

OS/2 clients

Provide print services with pcnfsd(NADM).

If you install LAN Manager for UNIX Systems, you can also provide print, file, and terminal services to other systems running LAN Manager.

Your SCO OpenServer system can be a client to computers running other operating systems:

DOS servers

Consume print, remote login, and file services offered by LAN Manager servers, by using LAN Manager Client.

NetWare servers

Consume print, remote login, and file services offered by NetWare servers, by using SCO Gateway for NetWare.

OS/2 servers

Consume print, remote login, and file service offered by LAN Manager servers, by using LAN Manager Client.

Accessing DOS and OS/2 servers with LAN Manager Client

The LAN Manager Client allows you to connect your SCO OpenServer Desktop or Enterprise system to resources on these servers:

Microsoft LAN Manager for SCO Systems Server
XENIX-NET Server
Microsoft® LAN Manager Server for OS/2
Microsoft MS-NET Server

LAN Manager Client capabilities

Users on a LAN Manager Client can:

view servers on a LAN Manager network and the services they provide.
access shared filesystems on a LAN Manager server.
set ``persistent connections'' with a shared filesystem to simplify login procedures.
copy and move files over the network.
run commands on the server.
print files to a shared printer.
send messages to other LAN Manager users and aliases.
log in to a LAN Manager server.
perform remote administration on a LAN Manager server.

For more information, see Chapter 4, ``Administering and using LAN Manager Client'' in the Guide to Gateways for LAN Servers.

Administration procedures

LAN Manager Client administration consists of:

adding client to the networks.
configuring clients.
starting and stopping clients.
monitoring client status.

The management of LAN Manager resources and accounts is performed on the server, as described in Administering LAN Manager, although remote access permissions may be granted for server administration.

Accessing NetWare servers with SCO Gateway for NetWare

SCO Gateway for NetWare allows you to connect your SCO OpenServer Desktop or Enterprise system to Novell NetWare servers running NetWare versions 3.x or 4.x, and corresponding NetWare for UNIX Servers software SCO Gateway for NetWare requires that SCO IPX/SPX be configured.

SCO Gateway for NetWare capabilities

Users on a SCO Gateway for NetWare system can:

access shared filesystems on a NetWare server, either by a static mount or through the NetWare automounter facility.
send print jobs to printers connected to a NetWare server.
log into a NetWare server.
change their NetWare server password.
view available printers and disk space on NetWare servers.

Administering SCO Gateway for NetWare

SCO Gateway for NetWare administration, as described in Chapter 3, ``Administering SCO Gateway for NetWare'' in the Guide to Gateways for LAN Servers, consists of:

installing SCO Gateway for NetWare on the client machine.
installing NetWare Loadable Modules on Novell NetWare servers that will serve SCO Gateway for NetWare machines.
configuring print and filesharing services.

Serving DOS computers with PC-Interface

You can provide services from your SCO OpenServer system to computers running DOS or Windows by using PC-Interface. With PC-Interface configured on your SCO OpenServer server and PC-Interface or PC-Interface Plus configured on the client, users can:

Create, access, or execute files stored on an SCO OpenServer host from a computer running Windows or DOS.
Print files from the computer on host printers.
Print files from the computer or from the host on printers directly connected to other computers.
Execute UNIX operating system commands from DOS on a computer.
Conduct a terminal session on a host computer, using the computer as if it were a terminal.
Take advantage of client-server network applications that require TCP/IP.
Take advantage of client-server electronic mail applications that require a Post Office Protocol (POP) server.

DOS users need not know about SCO OpenServer to use host services. They just treat the host system as an enhanced disk drive connected directly to their computers. Users familiar with both the DOS and UNIX operating systems can combine host file services and terminal emulation, toggling back and forth between the two modes. For example, a user could create a text file in host file services mode using a DOS word processing package, then switch to terminal emulation mode to include that file in a UNIX system mail message.

For more information, see Chapter 1, ``Understanding the PC-Interface server'' in the PC-Interface Guide.

Administering PC-Interface

PC-Interface administration consists of:

installing and configuring PC-Interface software on the SCO OpenServer system and on client computers.
creating PC-Interface users on the server.
configuring printers, including adding print definitions, creating spool files, altering default destinations, and creating an alias list.
tuning PC-Interface for security and performance.

Serving NetWare computers with IPX/SPX

You can provide services from your SCO OpenServer Desktop or Enterprise system to NetWare DOS clients by using IPX/SPX. With IPX/SPX configured on your SCO OpenServer system, users from a remote system running NetWare can:

log in to the SCO OpenServer system using NVT (the Novell Virtual Terminal) protocol.
access distributed applications from the SCO OpenServer system that are configured to operate over IPX/SPX.

Administering IPX/SPX

IPX/SPX administration consists of:

installing and configuring IPX/SPX software on the SCO OpenServer system
modifying routing information
troubleshooting IPX/SPX

The Internet

The Internet is the largest network in the world. Developed over 20 years ago as a US Defense Department network called ARPAnet, the Internet has grown to include other networks located around the world. The Internet was originally built primarily on UNIX systems, and has since diversified to include a variety of operating systems.

Services that run over the Internet include e-mail, file transfer between systems (FTP), remote use of systems (telnet), and the World Wide Web.

Organizations can use Web technologies and the Internet to make key information available to a worldwide audience of millions of people. It is an effective and inexpensive way to distribute information such as newsletters, financial reports, marketing information, and other important documents. These can be available 24 hours a day, and can easily be kept up-to-date. Because customers or clients download this information directly onto their own computers, printing, mailing, and distribution costs are reduced while service and response time are improved.

The Internet can be used as a tool to sell and market products and services. Organizations can leverage the Internet to provide valuable marketing and sales information to their traditional customers while expanding their reach into new markets. Customers can purchase product 24 hours a day at their own convenience, and the automated tasks of ordering products electronically can streamline the sales process, resulting in a higher level of customer satisfaction.

Providing your organization with access to Internet resources can enhance productivity. The Internet provides the largest library of useful information in the world. Employees can use the Internet to access a wealth of up-to-date information, including newsletters, reports, and online databases. For more information on setting up Internet access, see Chapter 26, ``Configuring Internet services'' in the SCO OpenServer Handbook.

The World Wide Web

The World Wide Web is a global matrix (web) of interconnected documents on the Internet. Clicking on a cross-reference in one of these documents displays the referenced document, even though it might be located on a computer half-way around the world. This is possible because all systems connected to the World Wide Web use a common communication protocol, HTTP (Hypertext Transfer Protocol), to send and receive documents, and because all Web documents use the same method, HTML (Hypertext Markup Language), to define document formatting. Consult the Netscape home page at http://www.netscape.com for information on creating web pages and HTML documents.

A collection of documents from one organization or individual on the Web is called a ``Web site'' (typically on a single system, although a large site can be supported by multiple systems or several sites could be located on one system). A Web site publishes these documents with software called a ``Web server'', and they are viewed with a ``Web browser''. Documents are typically divided into a number of short Web pages for convenient viewing. The top-level page at a site is referred to as a ``home page''. Web activity is not limited to viewing pages: data can be exchanged by the server and browser and manipulated by either or passed on to other software. This makes it possible to run programs, conduct business, and manage remote computer systems over the Web.

Although the Internet has existed for some time, the introduction of the World Wide Web caused an explosive growth in its use. Prior to the Web, navigating the Internet required typing complicated paths and searching newsgroups for largely unformatted text. Moving about on the Web is a simple matter of clicking on interesting references. Searching the World Wide Web for information is also simple, and the support for graphics, sound, and motion makes the results of the search more rewarding. Encryption and other security features have made it possible to buy and sell services and products online. Increasingly, a presence on the Web is as much a part of doing business as being connected to the global telephone or e-mail networks.

Intranets

An ``intranet'' is an internal network that uses World Wide Web technologies for sharing work and information between departments and/or remote locations. Intranets can be used to facilitate teamwork and project collaboration through e-mail and other network-based applications. Company announcements, health insurance information, corporate policies, procedure manuals and the like can be made readily available from a central, easily updated Web site.

Consult the Netscape home page at http://www.netscape.com for more information.