I need generic command to get complete process details from which i will eventually extract socket details (listen address and port)
ps -ef | ggrep -i server | ggrep -i mydomain
does not yield a process that should have both the grep entries along with the listen address and port.
I need a command generic in Solaris and Linux which also prints the socket details.
If generic is not possible i will appreciate individual ps command for linux and SunOS that gives me the detailed ps output including the socket details.
Unfortunately, this may be far less straightforward for Solaris than you might be hoping. As Chubler_XL has pointed out, on Linux you can use a variant of netstat -lnp or netstat -anp to easily see which processes are responsible for which network connections. So on Linux, this is easy.
For Solaris, however, it all depends on what version you're running. If you're lucky, and you're running 11.2 or later, then the netstat command was extended in 11.2 to include this kind of functionality, which up until then it had entirely lacked. Try netstat -aun for approximately similar output that will let you see the PID attached to each network connection.
If you're running pre-11.2...well. It gets messy, I'm afraid. Basically, what you have to do is use the pfiles command to list the files open for each process ID on the system, and grep for AF_INET in the output. If any lines are returned, then you can on a per-process basis extract the sockets that PID is responsible for that way.
If anyone knows of a better way on pre-11.2 to do this I'm sure they'll chime in (and I'd love to know myself), but to the best of my knowledge those are your options for Solaris.
uname -a
SunOS mymac 5.10 Generic_150400-40 sun4v sparc sun4v
By the way before i can use pfiles how can i get the PID becoz the ps command in the OP does not yield extensive output so ggrep fails to yield any output.
You're on Solaris 10 (SunOS 5.10 in that uname output), so it makes sense that netstat can't do what you need here.
If you manually look at the output of ps -ef yourself, do you see the process you're looking for ? If not, then you won't be able to grep for it. If you don't see the process you're looking for, do you see the full range of normal processes you'd expect to see on a Solaris system, or do you only see a handful of processes at all ?
Lastly, do you know if this Solaris system has been set up to use zones ? If it has, are you running your ps command either inside the same zone as the process you're looking for or from within the global zone ? You'd have to be doing one of those two things to see it if your process is running inside a zone - you wouldn't see it from a different non-global zone, for example.
I was able to get the pid using fuser and from the pid i get the listen address and port using pfiles on SunOS. But i do not know if both the fuser and pfiles will work on Linux.
The basic idea is to step through every PID on the system, run pfiles against it, and if any of the output lines contain AF_INET then those are the sockets that PID has open.
Here's a quick example script I've written. Caveats: this was tested on Tribblix, an illumos distribution, rather than "proper" Solaris, so to speak (since that's what I'm running on my current workstation). But it worked for me, and should work on Solaris 10 as well.
#!/bin/bash
for pid in `/usr/bin/ps -aef -o pid`
do
if /usr/bin/pfiles $pid 2>/dev/null | /usr/bin/grep AF_INET 2>/dev/null
then
echo Above sockets belong to PID $pid
echo -----
fi
done
Run this and you'll get the idea. Hope this helps.
