Hi, I try to setup a 2 node split-site cluster, which brought me in confrontation with quorumd - and with some trouble -, scanning this list for some hints, I found a number of similar posts, e.g. by Michael Schwartzkopff (http://www.mail-archive.com/[email protected]/msg06090.html Feb 2, 2008) or by Daniel Moreda GarcĂa (http://www.mail-archive.com/[email protected]/msg08124.html May, 6 2008) about this theme with a number of valuable suggestions - especially, to use s_client (from openssl) as test utility; unfortunately, only a close look at source code of the quorum plugins (v. 2.1.4) got the right point..., and the results might be interesting for others, too:
- Whereas the QuorumServerGuide (linux-ha.org) say's "Please notice that the CN of the client certs must be the name of the cluster", it's not the whole thought: the CN must be the name of course the name cluster, but more oven the DN of the client certs must also consists ONLY of the CN (note usually a Cert Request has a subject (=DN) like "CN=cluster1,C=de,O=MyOrg". In the case of quorumd, but only a DN "CN=cluster1" works [if 'cluster1' is the cluster name used in quorumd.conf]. - I found no dependence, of quorumd, running on a host, which also needs to have run heartbeat, as mentioned in one of the postings. - The utility quorumdtest is a bit too simple, it uses hard coded values for quorum_server (pluto) an cl_name [=cluster name] (mycluster), when the name 'pluto' is not resolvable, it core dumps... But changing these values, it caused quorumd to core dump! -- Reason: because of my initial CN problem, quorumd answers the t_init Request with result=fail, but this wasn't checked by quorumtest, it tries to continue with t_quorum requests, with no luck for the server... Kind regards, Tankred ----------------- Dr. Tankred Hirschamnn -- PASS Consulting -- Aschaffenburg, Germany _______________________________________________ Linux-HA mailing list [email protected] http://lists.linux-ha.org/mailman/listinfo/linux-ha See also: http://linux-ha.org/ReportingProblems
