Re: [Linux-HA] heartbeat sends udp to whole network
Hi, thnk for reply, when use ucast things do not seem to work, the nodes are able to bring up the VIP but not any services. When using bcast things seem to work correctly but there is that broadcast problem, I would like to firewall the broadcast and isolate it to the local machine and 2nd node however I do not want to cause additional problems, please advise, thks. nulgor On 5/24/2011 1:52 AM, Dejan Muhamedagic wrote: Hi, On Mon, May 23, 2011 at 03:18:37PM -0700, Nulgor Wankevitch wrote: hi, heartbeat seems to be send udp on port 694 to the whole network segment, Do you use ucast or bcast? With the latter, which is broadcast it's of course expected. If it happens with the former, then you must have gremlins in your network. Thanks, Dejan not just the link host, and getting blocked by firewall, how to limit? Firewall: *UDP_IN Blocked* IN=eth0 OUT= MAC=ff:ff:ff:ff:ff:ff:00:22:19:21:f1:75:08:00 SRC=192.168.1.190 DST=192.168.1.255 LEN=246 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=UDP SPT=42414 DPT=694 LEN=226 any help thnk you, nulgor ___ Linux-HA mailing list Linux-HA@lists.linux-ha.org http://lists.linux-ha.org/mailman/listinfo/linux-ha See also: http://linux-ha.org/ReportingProblems ___ Linux-HA mailing list Linux-HA@lists.linux-ha.org http://lists.linux-ha.org/mailman/listinfo/linux-ha See also: http://linux-ha.org/ReportingProblems ___ Linux-HA mailing list Linux-HA@lists.linux-ha.org http://lists.linux-ha.org/mailman/listinfo/linux-ha See also: http://linux-ha.org/ReportingProblems
Re: [Linux-HA] heartbeat sends udp to whole network
ya, gremlins, very reassuring, thanks. On 5/24/2011 2:42 AM, Dejan Muhamedagic wrote: Hi, On Tue, May 24, 2011 at 02:12:12AM -0700, Nulgor Wankevitch wrote: Hi, thnk for reply, when use ucast things do not seem to work, the nodes are able to bring up the VIP but not any services. When using bcast things seem to work correctly Wow! You really do have gremlins somewhere. ucast cannot not work in the way you described. Either the nodes can communicate or they can't. Did you set the right IP address of the peer? Or there must be some kind of network setup issue. Thanks, Dejan but there is that broadcast problem, I would like to firewall the broadcast and isolate it to the local machine and 2nd node however I do not want to cause additional problems, please advise, thks. nulgor On 5/24/2011 1:52 AM, Dejan Muhamedagic wrote: Hi, On Mon, May 23, 2011 at 03:18:37PM -0700, Nulgor Wankevitch wrote: hi, heartbeat seems to be send udp on port 694 to the whole network segment, Do you use ucast or bcast? With the latter, which is broadcast it's of course expected. If it happens with the former, then you must have gremlins in your network. Thanks, Dejan not just the link host, and getting blocked by firewall, how to limit? Firewall: *UDP_IN Blocked* IN=eth0 OUT= MAC=ff:ff:ff:ff:ff:ff:00:22:19:21:f1:75:08:00 SRC=192.168.1.190 DST=192.168.1.255 LEN=246 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=UDP SPT=42414 DPT=694 LEN=226 any help thnk you, nulgor ___ Linux-HA mailing list Linux-HA@lists.linux-ha.org http://lists.linux-ha.org/mailman/listinfo/linux-ha See also: http://linux-ha.org/ReportingProblems ___ Linux-HA mailing list Linux-HA@lists.linux-ha.org http://lists.linux-ha.org/mailman/listinfo/linux-ha See also: http://linux-ha.org/ReportingProblems ___ Linux-HA mailing list Linux-HA@lists.linux-ha.org http://lists.linux-ha.org/mailman/listinfo/linux-ha See also: http://linux-ha.org/ReportingProblems ___ Linux-HA mailing list Linux-HA@lists.linux-ha.org http://lists.linux-ha.org/mailman/listinfo/linux-ha See also: http://linux-ha.org/ReportingProblems ___ Linux-HA mailing list Linux-HA@lists.linux-ha.org http://lists.linux-ha.org/mailman/listinfo/linux-ha See also: http://linux-ha.org/ReportingProblems
Re: [Linux-HA] heartbeat sends udp to whole network
I think you guys might have jumped the gun on me, why would you assume it is not seen? I reported it will bring up the VIP but not the services. nulgor On 5/24/2011 9:37 AM, Dimitri Maziuk wrote: On 05/24/2011 05:48 AM, Nulgor Wankevitch wrote: ya, gremlins, very reassuring, thanks. If the broadcast packets from host A are seen by host B, and unicast packets from host A to host B are not seen by host B, then your universe is governed by laws of physics we here are completely unfamiliar with. Sometimes we call them gremlins. HTH Dima ___ Linux-HA mailing list Linux-HA@lists.linux-ha.org http://lists.linux-ha.org/mailman/listinfo/linux-ha See also: http://linux-ha.org/ReportingProblems ___ Linux-HA mailing list Linux-HA@lists.linux-ha.org http://lists.linux-ha.org/mailman/listinfo/linux-ha See also: http://linux-ha.org/ReportingProblems
Re: [Linux-HA] heartbeat sends udp to whole network
it seems like cib is on both nodes as I am able to view both from crm_mon and crm configure show shows the same info, am I correct? On 5/24/2011 2:02 PM, Dimitri Maziuk wrote: On 05/24/2011 02:56 PM, Nulgor Wankevitch wrote: I think you guys might have jumped the gun on me, why would you assume it is not seen? I reported it will bring up the VIP but not the services. The only way I can vaguely imagine that possibly happening is if cib isn't propagated to the other node(s) due to, indeed, a problem with comms channel. However, I can think of only one way to make that happen over unicast but not broadcast: unicasting to a wrong host. Dima ___ Linux-HA mailing list Linux-HA@lists.linux-ha.org http://lists.linux-ha.org/mailman/listinfo/linux-ha See also: http://linux-ha.org/ReportingProblems ___ Linux-HA mailing list Linux-HA@lists.linux-ha.org http://lists.linux-ha.org/mailman/listinfo/linux-ha See also: http://linux-ha.org/ReportingProblems
[Linux-HA] heartbeat sends udp to whole network
hi, heartbeat seems to be send udp on port 694 to the whole network segment, not just the link host, and getting blocked by firewall, how to limit? Firewall: *UDP_IN Blocked* IN=eth0 OUT= MAC=ff:ff:ff:ff:ff:ff:00:22:19:21:f1:75:08:00 SRC=192.168.1.190 DST=192.168.1.255 LEN=246 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=UDP SPT=42414 DPT=694 LEN=226 any help thnk you, nulgor ___ Linux-HA mailing list Linux-HA@lists.linux-ha.org http://lists.linux-ha.org/mailman/listinfo/linux-ha See also: http://linux-ha.org/ReportingProblems
