IBM Z Hardware and Operating Systems Ideas Portal


This is the public portal for all IBM Z Hardware and Operating System related offerings. To view all of your ideas submitted to IBM, create and manage groups of Ideas, or create an idea explicitly set to be either visible by all (public) or visible only to you and IBM (private), use the IBM Unified Ideas Portal (https://ideas.ibm.com).


Shape the future of IBM!

We invite you to shape the future of IBM, including product roadmaps, by submitting ideas that matter to you the most. Here's how it works:

Search existing ideas

Start by searching and reviewing ideas and requests to enhance a product or service. Take a look at ideas others have posted, and add a comment, vote, or subscribe to updates on them if they matter to you. If you can't find what you are looking for,

Post your ideas

  1. Post an idea.

  2. Get feedback from the IBM team and other customers to refine your idea.

  3. Follow the idea through the IBM Ideas process.


Specific links you will want to bookmark for future use

Welcome to the IBM Ideas Portal (https://www.ibm.com/ideas) - Use this site to find out additional information and details about the IBM Ideas process and statuses.

IBM Unified Ideas Portal (https://ideas.ibm.com) - Use this site to view all of your ideas, create new ideas for any IBM product, or search for ideas across all of IBM.

ideasibm@us.ibm.com - Use this email to suggest enhancements to the Ideas process or request help from IBM for submitting your Ideas.

Add a new idea Subscribe
Status Not under consideration
Workspace z/OS
Categories Communications Server
Created by Guest
Created on Jan 16, 2023

RELATED IDEAS

zERT Long running reports - Next to Impossible in the current state of zERT

Hi

zERT is mainly used to get a cryptographic picture of the systems we manage. That inherently means it is used to analyze the entire TCPIP traffic on the stacks. Now with this much data going in as the input and we in our shop make it a lean extract with only the subtype 12 records to not fill the database are struggling to run the reports with zERT in its current state.

When used on a week s traffic worth of data for 10 systems it takes hours to do the reports and with web applications there are timeouts and breach it every time. With these sort of limitations , zERT needs to have the ability to run in Batch mode for it to be of any serious use, instead of running 1 day reports to just check it out.

So this is a MUST feature as far as i see.

Now the second part, there is a REPORTS tab, which just saves the reports generated in a particular session of zERT, if a person closes that session or he times out , then everything over there is cleaned up. What is the logic of this ? If this feature was present , a person can submit a long running query and get back after 3-4 hours and get what he wanted to check, else there is no point in having a reports tab, when zERT is used to do the real analysis on the multiple systems a shop manages , in its current state its useful to small shops who have very minimal traffic and have sysplex of 2 or 3 .

Idea priority Medium
  • Guest
    Reply
    |     Apr 7, 2023
    Per our recent discussion, while some of the points in your Idea have merit, there are a number of mitigations you can use to achieve the desired results:

    To improve zERT Network Analyzer query performance:
    Co-locate the Db2 subsystem on the same machine as z/OSMF. This greatly reduces the networking overhead between the two
    Use a longer zERT aggregation recording interval in the TCPIP profile data set to significantly reduce the number of SMF 119-12 records to be imported and, as a result, the number of table rows to be queried. The recording interval is configured on the GLOBALCONFIG ZERT AGGREGATION INTVAL parameter. Valid values re 1-24, which represent one hour increments. So for example, GLOBALCONFIG ZERT AGGREGATION INTVAL 1 would result in a single SMF 119-12 record being written per day for each unique security session (versus one record per SMF interval, which is the default). As I mentioned, doing this will increase the use of above-the-bar 64-bit memory, so you can monitor the memory usage with the D TCPIP,,STOR command ? you?ll see a line labelled ?ZERTAGG HVPRIVATE? which shows the memory used by zERT aggregation.

    Regarding the UI timeouts ? as we discussed on our call, the zERT Network Analyzer mechanism for persisting query results is the export function. The zERT Network Anayzer provides a ?Export Query? function on the Queries tab, which is different from the ?Run Query? function. The ?Export Query? function completely bypasses the reports tab and writes the query results directly to a CSV file. Our expectation is that the export query function will run to completion and write the export file even if the z/OSMF UI session terminates. Hopefully, this will address your needs for running the query without having to continuously refresh the UI.

    Given the availability of the above mitigation measures, this item is unlikely to be given high enough priority to be placed into product plan. Therefore, we are declining this requirement.

By clicking the "Post Comment" or "Submit Idea" button, you are agreeing to the IBM Ideas Portal Terms of Use.
Do not place IBM confidential, company confidential, or personal information into any field.