Hi,
While writing this eMail I was collecting all data and checking the Ports with
curl:
>curl -X POST -H "Content-Type: application/json" -d '{ "command":
>"list-commands", "service": [ "dhcp4" ] }' http://***:***@10.89.100.39:8001/
I recognized, that the Control Connection was working, but not HA.
When I looked at the list of open Ports, 8001 was bound to 127.0.0.1. I changed
the IP in the kea-dhcp4.conf.json of the HA config from the template ip
127.0.0.1 to 0.0.0.0.
Now everything is working fine.
See my Config below as reference.
Kind Regards
Tom
Hi,
I am trying to switch from ISC-DHCP to KEA. We are using Micetro as IPAM and to
manage our DNS and DHCP Server.
Micetro connects via the Control-agent on Port 8000. HA should use 8001. But I
am getting an error:
Primary:
2025-02-13 08:19:47.435 WARN [kea-dhcp4.ha-hooks/289596.140365545645632]
HA_HEARTBEAT_COMMUNICATIONS_FAILED failed to send heartbeat to test39
(http://10.89.100.39:8001/): Connection refused
2025-02-13 08:19:47.435 WARN [kea-dhcp4.ha-hooks/289596.140365545645632]
HA_COMMUNICATION_INTERRUPTED communication with test39 is interrupted
2025-02-13 08:19:57.444 WARN [kea-dhcp4.ha-hooks/289596.140365570823744]
HA_HEARTBEAT_COMMUNICATIONS_FAILED failed to send heartbeat to test39
(http://10.89.100.39:8001/): Connection refused
2025-02-13 08:19:57.444 WARN [kea-dhcp4.ha-hooks/289596.140365570823744]
HA_COMMUNICATION_INTERRUPTED communication with test39 is interrupted
Secondary:
2025-02-13 08:16:36.775 WARN [kea-dhcp4.ha-hooks/67047.139938589242944]
HA_COMMUNICATION_INTERRUPTED communication with test38 is interrupted
2025-02-13 08:16:46.785 WARN [kea-dhcp4.ha-hooks/67047.139938597635648]
HA_HEARTBEAT_COMMUNICATIONS_FAILED failed to send heartbeat to test38
(http://10.89.100.38:8001/): Connection refused
2025-02-13 08:16:46.785 WARN [kea-dhcp4.ha-hooks/67047.139938597635648]
HA_COMMUNICATION_INTERRUPTED communication with test38 is interrupted
2025-02-13 08:16:56.797 WARN [kea-dhcp4.ha-hooks/67047.139938614421056]
HA_HEARTBEAT_COMMUNICATIONS_FAILED failed to send heartbeat to test38
(http://10.89.100.38:8001/): Connection refused
2025-02-13 08:16:56.797 WARN [kea-dhcp4.ha-hooks/67047.139938614421056]
HA_COMMUNICATION_INTERRUPTED communication with test38 is interrupted
I am running Kea in a rhel9 podman Container:
NAME="Red Hat Enterprise Linux"
VERSION="9.4 (Plow)"
kea-libs-2.2.0-1.el9.x86_64
kea-2.2.0-1.el9.x86_64
kea-hooks-2.2.0-1.el9.x86_64
>podman ps
7dfea2c08f55 kea-rhel:2024091001 2 weeks ago Up 2 weeks
0.0.0.0:519-520->519-520/tcp, 0.0.0.0:4151->4151/tcp,
0.0.0.0:8000-8002->8000-8002/tcp, 0.0.0.0:8088->8088/tcp, 0.0.0.0:67->67/udp,
0.0.0.0:547->547/udp kea_1
Here is the Control Agent Config. It's identical on both Servers:
"Control-agent": {
"http-host": "0.0.0.0",
"http-port": 8000,
"trust-anchor": "/etc/kea/secure/cert.pem",
"cert-file": "/etc/kea/secure/cert.pem",
"key-file": "/etc/kea/secure/key.pem",
"cert-required": false ,
"authentication": {
"type": "basic",
"realm": "kea-control-agent",
"clients": [
{
"user": "user",
"password": "****"
}
]
},
"control-sockets": {
"dhcp4": {
"socket-type": "unix",
"socket-name": "/tmp/kea4-ctrl-socket"
},
"dhcp6": {
"socket-type": "unix",
"socket-name": "/tmp/kea6-ctrl-socket"
},
"d2": {
"socket-type": "unix",
"socket-name": "/tmp/kea-ddns-ctrl-socket"
}
},
"hooks-libraries": [
],
"loggers": [
{
"name": "kea-ctrl-agent",
"output_options": [
{
"output": "/var/log/kea-ctrl-agent.log"
}
],
"severity": "INFO",
"debuglevel": 0
}
]
}
}
Here is the part of the HA Hook:
{
"library": "/usr/lib64/kea/hooks/libdhcp_ha.so",
"parameters": {
"high-availability": [
{
"this-server-name": "test38",
"multi-threading": {
"enable-multi-threading": true,
"http-dedicated-listener": true,
"http-listener-threads": 4,
"http-client-threads": 4
},
"heartbeat-delay": 10000,
"max-ack-delay": 5000,
"max-response-time": 20000,
"max-unacked-clients": 100,
"mode": "hot-standby",
"peers": [
{
"name": "test38",
"role": "primary",
"url": http://0.0.0.0:8001/
},
{
"name": "test39",
"role": "standby",
"url": http://10.89.100.39:8001/
}
]
}
]
}
Diese E-Mail kann vertrauliche Informationen enthalten und irrt?mlich an Sie
gelangt sein. In diesem Fall informieren Sie bitte sofort die Absenderin bzw.
den Absender und vernichten Sie diese E-Mail. Das unerlaubte Kopieren sowie die
unbefugte Weitergabe dieser Mail oder von Teilen dieser Mail sind nicht
gestattet.
Informationen gem?? DSGVO zur Verarbeitung personenbezogener Daten durch die
OeNB finden Sie unter www.oenb.at/datenschutz<https://www.oenb.at/datenschutz>.
--
ISC funds the development of this software with paid support subscriptions.
Contact us at https://www.isc.org/contact/ for more information.
To unsubscribe visit https://lists.isc.org/mailman/listinfo/kea-users.
Kea-users mailing list
Kea-users@lists.isc.org
https://lists.isc.org/mailman/listinfo/kea-users
