Dear list members, at the moment I try to setup a linux cluster of 2 firewalls that should both be online and only one should run virtual ip addresses of all network segments.
My configuration looks like the following:
master fw is linux (uname) and slave is idefix. I generated a
resource group called grp_vips that contains all virtual ip
resources (rsc_int_vip and rsc_ext_vip). If I reboot the master (linux)
idefix takes over all resources and everything is ok, but if I
shutdown a resource (rsc_int_vip) on the master the second resource
(rsc_ext_vip) migrates to the slave (idefix) and the first resource
(rsc_int_vip) stays at the master (linux) as unmanaged. Attached are the
ha.cf and cib.xml files of my configuration.
What I want to achieve is:
- one dedicated master (linux), only, if there are problems
switch to the slave (idefix)
- if the master comes back (or only the interface that was gone)
the whole group should migrate
back to the primary master (linux)
- if one resource of the group goes down, the whole group should
be migrated to the slave
(collocated = true of the group is already set)
- if possible, the slave should become master (to always have
the master where the resources are running
One feature I detected also with my init scripts on Opensuse 10.3 is
that heartbeat sometimes (80%)
does not start because the network is not ready. I downloaded heartbeat
rpms from the linux-ha download
site and I'm using heartbeat 2.1.3.
Any hints how I can achieve what I want are highly appreciated.
Thank you for your help.
Best regards
Christof
ha.cf
Description: Binary data
<cib generated="false" admin_epoch="0" have_quorum="true" ignore_dtd="false" num_peers="0" cib_feature_revision="2.0" epoch="226" num_updates="3" cib-last-written="Thu Aug 7 11:39:25 2008" ccm_transition="1">
<configuration>
<crm_config>
<cluster_property_set id="cib-bootstrap-options">
<attributes>
<nvpair id="cib-bootstrap-options-dc-version" name="dc-version" value="2.1.3-node: 4a3eac571f442c7cfcefc18fcaad35314460c1f6"/>
<nvpair id="cib-bootstrap-options-symmetric-cluster" name="symmetric-cluster" value="false"/>
<nvpair id="cib-bootstrap-options-last-lrm-refresh" name="last-lrm-refresh" value="1218048561"/>
<nvpair id="cib-bootstrap-options-stop-orphan-resources" name="stop-orphan-resources" value="true"/>
<nvpair id="cib-bootstrap-options-default-resource-failure-stickiness" name="default-resource-failure-stickiness" value="100"/>
</attributes>
</cluster_property_set>
</crm_config>
<nodes>
<node uname="linux" type="normal" id="4d09c681-304b-40e6-a7e8-4f9b8c0e8d58">
<instance_attributes id="nodes-4d09c681-304b-40e6-a7e8-4f9b8c0e8d58">
<attributes>
<nvpair name="standby" id="standby-4d09c681-304b-40e6-a7e8-4f9b8c0e8d58" value="off"/>
</attributes>
</instance_attributes>
</node>
<node id="a4c1714a-d165-4380-bd00-2666c8324c93" uname="idefix" type="normal">
<instance_attributes id="nodes-a4c1714a-d165-4380-bd00-2666c8324c93">
<attributes>
<nvpair id="standby-a4c1714a-d165-4380-bd00-2666c8324c93" name="standby" value="off"/>
</attributes>
</instance_attributes>
</node>
</nodes>
<resources>
<group id="grp_vips">
<meta_attributes id="grp_vips_meta_attrs">
<attributes>
<nvpair name="ordered" id="grp_vips_metaattr_ordered" value="false"/>
<nvpair id="grp_vips_metaattr_collocated" name="collocated" value="true"/>
<nvpair id="grp_vips_metaattr_target_role" name="target_role" value="started"/>
<nvpair id="grp_vips_metaattr_resource_failure_stickiness" name="resource_failure_stickiness" value="100"/>
</attributes>
</meta_attributes>
<primitive class="ocf" type="IPaddr2" provider="heartbeat" id="rsc_int_vip">
<instance_attributes id="rsc_int_vip_instance_attrs">
<attributes>
<nvpair id="d0d3f975-4ba8-4baa-b84c-e63e76c1670a" name="ip" value="10.0.1.100"/>
</attributes>
</instance_attributes>
<operations>
<op id="bc2dd740-3dd3-4f6b-b07e-45016d54cd8a" name="monitor" interval="10s" timeout="10s" start_delay="5s" disabled="false" role="Started" on_fail="restart"/>
</operations>
<meta_attributes id="rsc_int_vip_meta_attrs">
<attributes>
<nvpair id="rsc_int_vip_metaattr_target_role" name="target_role" value="started"/>
</attributes>
</meta_attributes>
</primitive>
<primitive class="ocf" type="IPaddr2" provider="heartbeat" id="rsc_ext_vip">
<instance_attributes id="rsc_ext_vip_instance_attrs">
<attributes>
<nvpair id="3c902a87-d556-46f0-bb68-70785ef394bf" name="ip" value="192.168.178.100"/>
</attributes>
</instance_attributes>
<operations>
<op name="monitor" timeout="10s" start_delay="5s" id="325e2ee4-fa54-41d6-b20b-36e032e7c4ce" interval="11s" disabled="false" role="Started" on_fail="restart"/>
</operations>
<meta_attributes id="rsc_ext_vip_meta_attrs">
<attributes>
<nvpair id="rsc_ext_vip_metaattr_target_role" name="target_role" value="started"/>
</attributes>
</meta_attributes>
</primitive>
</group>
</resources>
<constraints>
<rsc_location id="loc:grp_vips_idefix" rsc="grp_vips">
<rule id="prefered_loc:grp_vips_idefix" score="50">
<expression attribute="#uname" id="0f31e671-dca1-4e3d-ad79-7f20e159598b" operation="eq" value="idefix"/>
</rule>
</rsc_location>
<rsc_location id="loc:grp_vips_linux" rsc="grp_vips">
<rule id="prefered_loc:grp_vips_linux" score="100">
<expression attribute="#uname" id="f3061f66-ef4f-4e3c-88f6-6c0a894d8ca7" operation="eq" value="linux"/>
</rule>
</rsc_location>
</constraints>
</configuration>
</cib>
_______________________________________________ Linux-HA mailing list [email protected] http://lists.linux-ha.org/mailman/listinfo/linux-ha See also: http://linux-ha.org/ReportingProblems
