OPCOM messages (722 Views)
Reply
Advisor
Joslovevms
Posts: 24
Registered: ‎10-11-2011
Message 1 of 9 (722 Views)
Accepted Solution

OPCOM messages

We are receiving the below audit alarms on OPCOM every few seconds which is filling up our system disk space.

 

Actually, telnet is trying to disconnect the device which is not available on the server. For example the below device TNA432 is not available on the server but for almost a week we are receiving the below message.

 

Its not only for one sing device, there are number of devides like this on the server.

 

Please advice.

 

Please let me know if you need more input on this.

 

OS version - 7.3-2

Tcpip Version -  V5.4 - ECO 7

H/w  - ES45

 

 

%%%%%%%%%%%  OPCOM  26-DEC-2011 11:22:16.63  %%%%%%%%%%%    (from node XXXX   at 26-DEC-2011 11:22:16.67)
Message from user TCPIP TELNET on XXXX
Session TNA432: disconnected per login timeout period

Please use plain text.
Honored Contributor
Volker Halle
Posts: 5,203
Registered: ‎04-26-2004
Message 2 of 9 (715 Views)

Re: OPCOM messages

[ Edited ]

This problem has been reported before:

 

http://h30499.www3.hp.com/t5/Networking/Make-timeout-messages-stop/td-p/5307037

 

but without a solution.

 

What does TCPIP SHOW SERVICE/FULL TELNET show ?

 

Incoming TELNET devices should be shown by TCPIP SHOW DEV/PORT=23

 

Volker.

Please use plain text.
Advisor
Joslovevms
Posts: 24
Registered: ‎10-11-2011
Message 3 of 9 (703 Views)

Re: OPCOM messages

Hi Volker,

 

  Thanks for your reply.

 

  Here is the telnet configuration:

 

 TCPIP SHOW SERVICE/FULL TELNET

Service: TELNET
                           State:     Enabled
Port:               23     Protocol:  TCP             Address:  0.0.0.0
Inactivity:          0     User_name: not defined     Process:  not defined
Limit:            2500     Active:      158           Peak:       377

File:         not defined
Flags:        Listen Rtty IPv6

Socket Opts:  Keepalive Rcheck Scheck
 Receive:         3000     Send:            3000

Log Opts:     Addr
 File:        not defined

Security
 Reject msg:  not defined
 Accept host: 0.0.0.0
 Accept netw: 0.0.0.0

 

 

 

Please use plain text.
Honored Contributor
Volker Halle
Posts: 5,203
Registered: ‎04-26-2004
Message 4 of 9 (700 Views)

Re: OPCOM messages

[ Edited ]

What does

 

TELNET> SHOW DEV/FULL TNA432: show ?

 

or were you saying that this device TNA432: does not exist (anymore) in your OpenVMS system ?

 

Volker.

Please use plain text.
Honored Contributor
Hoff
Posts: 4,915
Registered: ‎01-29-2006
Message 5 of 9 (696 Views)

Re: OPCOM messages

Forums?  Waste of time for this and similar cases.  Escalate this error to HP Support.

 

Switch to ssh.  Telnet has massive security problems,  in general.   Given you're (still) using VMS, you probably also (still)  using Microsoft Windows, so here is how to set up PuTTY on Windows for ssh with OpenVMS.

Please use plain text.
Advisor
Joslovevms
Posts: 24
Registered: ‎10-11-2011
Message 6 of 9 (692 Views)

Re: OPCOM messages

Hi Volker,

 

  sorry, I was checking on a different node on cluster. The device actually exist.

 

   here is the output:

 

     SHOW DEV/FULL TNA432:
Device TNA432:
    Access port name:       "0.0t: 1111.111.111.111 Port: 44901"    !!! Changed IP as it was public and opened)
    Characteristics:        (none)
    Connection attempts:        0 (tries)
    Connection interval:        0 (seconds)
    Connection timeout:         0 (seconds)
    Data high limit:          512 (bytes at VCI port)
    Data low limit:           256 (bytes at VCI port)
    Idle interval:              0 (seconds)
    Idle timeout:               0 (seconds)
    Network device name:    (not connected)
    Protocol:               TELNET
    Local address:          (not available)
              port:
    Remote address:         (not available)
              port:
    Service type:           None
TELNET> exit

 

 

SHOW DEV/FULL TNA432:

Terminal TNA432:, device type unknown, is offline, device set /NOAVAILABLE,
    record-oriented device, carriage control.

    Error count                    0    Operations completed                  1
    Owner process                 ""    Owner UIC               [SYSTEM, SYSTEM]
    Owner process ID        00000000    Dev Prot              S:RWPL,O:RWPL,G,W
    Reference count                0    Default buffer size                  80

 

 

 

 

 

Please use plain text.
Advisor
Joslovevms
Posts: 24
Registered: ‎10-11-2011
Message 7 of 9 (691 Views)

Re: OPCOM messages

HI Hoff,

 

  Thanks for your reply, We will also raise a call with HP.

 

  Any workaround for this now?

 

Please use plain text.
Honored Contributor
Hoff
Posts: 4,915
Registered: ‎01-29-2006
Message 8 of 9 (687 Views)

Re: OPCOM messages

When you call HP support, you can ask the HP support folks for workarounds.

 

I have already presented one workaround.  Shut down telnet.  Use ssh.   You can use certificates for your logins, and either no passwords required, or passphrase-based logins.  ssh doesn't expose all of the usernames and passwords in cleartext to anyone monitoring the network.  Unlike telnet.  And if you shut off the telnet stuff, you shut off the chatter, of course.)  (There's a really nasty telnet security bug loose in the wild right now, too.)

 

Or shut off the OPCOM traffic from your operator terminals.  See the REPLY /DISABLE sequence in the OpenVMS FAQ.  This won't fix the underlying problem, but it'll hide it.  It's typical to disable the OPCOM chatter on the OPA0: console terminal, which means all this character chunder lands in the OPERATOR.LOG without bothering anyone.

 

Or replace the TCP/IP Services stack with a Process software stack.

 

Or, well, ignore the chatter.

 

Please use plain text.
Honored Contributor
Volker Halle
Posts: 5,203
Registered: ‎04-26-2004
Message 9 of 9 (679 Views)

Re: OPCOM messages

[ Edited ]

As a quick workaround for disabling these messages from filling your OPERATOR.LOG, you might try a REPLY/LOG/DISABLE=(CENTRAL,NETWORK). That should stop these TELNET OPCOM messages from getting into OPERATOR.LOG

 

As you now know the remote IP address (and remote port), you may be able to find out, what might have caused those messages to start. Find out from OPERATOR.LOG, when those messages started and try to use ACCOUNTING and/or ANALYZE/AUDIT to get an idea, what might have caused them.

 

The 'real problem' is most likely in TCPIP$INETACP (some error during an incoming TELNET session and some kind of login error [network login limit exceeded ?] causing an OPCOM message to be generated in some kind of loop). A reboot should cure the problem for now, but does not 'solve' it for the future, make sure to raise a call with HP.

 

Volker.

 

 

Please use plain text.
The opinions expressed above are the personal opinions of the authors, not of HP. By using this site, you accept the Terms of Use and Rules of Participation