ROOT(/) FULL IN AIX :

ROOT(/) Full In Aix:

# df –g’ ‘df –k’, find out the highly utilized filesystem.

If root (/) is full

1)    Check the /etc/security/failedlogin file.

    Use the following command to read the contents of the file.

        who /etc/security/failedlogin

The condition of tty's respawning too rapidly will create failed login entries.

To clear the file after reading or saving the output, execute the following command:

      # cp /dev/null /etc/security/failedlogin

  

2)  Check the /dev directory.

    If a device name is typed incorrectly, as in rmto instead of rmt0, a file will be

created in /dev called  rmto. The command will normally proceed until the entire

 root file system is filled before failing. /dev is part of the / file system. Look for

entries that are not devices (that do not have a major or minor number).

    Execute the following:

   #cd /dev

     #  ls -l |pg

    Whereas a file size on an ordinary file would normally be seen, a device

file will have two numbers separated by a comma.

    Example:

       crw-rw-rw-   1 root     system    12,0 Oct 4 10:19 rmt0

    If the output looks like the following, the file should be removed.

       crw-rw-rw-   1 root     system   9375473 Oct 4 10:19 rmto

NOTE: The /dev directory has some valid file names. Look for a file that has a

large size (larger than 500    bytes).

NOTE: If system auditing is running, the /audit directory (default) may

rapidly fill up and require attention.

    Check for very large files.

Large files can be located with the find command. For example, to find all

files in the root (/) directory  larger than 1 MB, enter the following command:

       find / -xdev -size  +2048 -ls |sort -r  +6

This will find all files greater than 1 MB and sort them in reverse order with

the largest files first.

NOTE: When checking the root directory, entries from the /dev directory that have

major and minor numbers instead of file sizes will be interspersed with real files

and can be ignored.

Other useful find command flags may be helpful, such as the -newer flag.

Review the product  documentation to learn more about such flags.

NOTE: Before removing any files, the user should check to see if the file is currently in use by an active user process. Execute the following command:

    fuser <filename>

<filename> is the file name that is being checked by the active user process. If a

 file is open at the time of removal,it is only removed from the directory listing.

 The blocks allocated to that file are not freed until the process holding

 the file open is killed.

You can also remove smit.log and smit.script in the / directory.

4)  If require increse the file system size.

Ex : #chfs -a size=+1G /