Hi again, Jake, Et al: I'm sorry, I wasn't running 4.0.6-2, only 4.0.6-1 (not sure how that happened.)
Turns out the 4.0.6-2 GUI does stop the individual PF processes (at least the 3 or 4 I tried.) All processes would restart too except for PFDNS, at least according to the GUI and pfcmd; I had to reboot the server to recover PFDNS. I'm not a linux admin so don't know any tricks to confirm this except for the ps command, which I didn't try. My apology for the bad info earlier. Steve CSM On Sep 30, 2013, at 10:49 AM, Stephen Wittstruck <[email protected]> wrote: > Hi Jake, > > I'm running the exact same platform, i.e. OS and PF, though not in production > yet. > > I couldn't get PFDNS to stop through the GUI. Curiously I tried the others, > only PFDHCPLISTENER would stop by using the GUI; it would restart also. > > Still curious I tried the command line "./pfcmd service pfdns stop" which > didn't work. Restart stopped it, but it looks like a server reboot is needed > to restart it as nothing else is working (I haven't done this yet), including > the GUI. Below is the terminal session text of these tests. > > Maybe "./pfcmd service pfdns watch" is what you need? > > ============================================ > [swittstr@nac-dev bin]$ ./pfcmd service pfdns stop > service|command > pfdns|stop > > [swittstr@nac-dev bin]$ ./pfcmd service pfdns status > service|shouldBeStarted|pid > pfdns|1|1573 > > [swittstr@nac-dev bin]$ ./pfcmd service pfdns > Usage: pfcmd service <service> [start|stop|restart|status|watch] > > stop/stop/restart specified service > status returns PID of specified PF daemon or 0 if not running > watch acts as a service watcher which can send email/restart the services > > Services managed by PacketFence: > dhcpd | dhcpd daemon > httpd.webservices| Apache Webservices > httpd.admin | Apache Web admin > httpd.portal | Apache Captive Portal > pfdns | DNS daemon > pf | all services that should be running based on your config > pfdetect | PF snort alert parser > pfdhcplistener | PF DHCP monitoring daemon > pfmon | PF ARP monitoring daemon > pfsetvlan | PF VLAN isolation daemon > radiusd | FreeRADIUS daemon > snmptrapd | SNMP trap receiver daemon > snort | Sourcefire Snort IDS > suricata | Suricata IDS > > watch > Watch performs services checks to make sure that everything is fine. It's > behavior is controlled by servicewatch configuration parameters. watch is > typically best called from cron with something like: > */5 * * * * /usr/local/pf/bin/pfcmd service pf watch > > [swittstr@nac-dev bin]$ ./pfcmd service pfdns watch > > [swittstr@nac-dev bin]$ ./pfcmd service pfdns restart > service|command > config files|restart > iptables|restart > pfdns|restart > > [swittstr@nac-dev bin]$ ./pfcmd service pfdns status > service|shouldBeStarted|pid > pfdns|1|0 > > [swittstr@nac-dev bin]$ ./pfcmd service pfdns restart > service|command > config files|restart > iptables|restart > pfdns|restart > > [swittstr@nac-dev bin]$ ./pfcmd service pfdns status > service|shouldBeStarted|pid > pfdns|1|0 > > [swittstr@nac-dev bin]$ ./pfcmd service pfdns start > httpd.admin|already running > Checking configuration sanity... > service|command > config files|start > iptables|start > pfdns|start > > [swittstr@nac-dev bin]$ ./pfcmd service pfdns status > service|shouldBeStarted|pid > pfdns|1|0 > > [swittstr@nac-dev bin]$ ./pfcmd service pfdns status (after waiting 10 or > 15 minutes) > [sudo] password for swittstr: > service|shouldBeStarted|pid > pfdns|1|0 > ============================================= > > Steve > CSM > > > On Sep 30, 2013, at 9:57 AM, "Sallee, Stephen (Jake)" <[email protected]> > wrote: > >> Hello PacketFence Family! >> >> I am running PF 4.0.6-2 on CentOS 6.4 fully updated. >> >> I am still seeing an issue with PFNDS seemingly randomly crashing. I would >> like to get some more information of the problem but since I cannot stare at >> a single terminal all day to see exactly what is happening I am looking for >> some kind of monitoring solution. >> >> Ideally I would like to monitor the PFDNS process and take some actions if I >> see it fail, namely starting the bloody thing back up again as well as >> pulling all the logs for further dissection. >> >> I can do this with some srcipt-fu but I was wondering of anyone out there >> already has something like this or knows of it, that way I can avoid >> reinventing the proverbial wheel. >> >> Also, I have noticed that the issue I reported some time ago where some PF >> services cannot be started from the webgui is still around for me. Can >> anyone verify this? Specifically, if PFDNS is stopped try starting it again >> using the butting in the services menu in the webgui. For me it does not >> work, but I do not get an error banner as normal. The service still says >> stopped though.] >> >> As always, thank you for your time and consideration. >> >> Jake Sallee >> Godfather of Bandwidth >> System Engineer >> University of Mary Hardin-Baylor >> >> 900 College St. >> Belton, Texas >> 76513 >> >> Fone: 254-295-4658 >> Phax: 254-295-4221 >> >> ------------------------------------------------------------------------------ >> October Webinars: Code for Performance >> Free Intel webinars can help you accelerate application performance. >> Explore tips for MPI, OpenMP, advanced profiling, and more. Get the most >> from >> the latest Intel processors and coprocessors. See abstracts and register > >> http://pubads.g.doubleclick.net/gampad/clk?id=60133471&iu=/4140/ostg.clktrk >> _______________________________________________ >> PacketFence-users mailing list >> [email protected] >> https://lists.sourceforge.net/lists/listinfo/packetfence-users >
smime.p7s
Description: S/MIME cryptographic signature
------------------------------------------------------------------------------ October Webinars: Code for Performance Free Intel webinars can help you accelerate application performance. Explore tips for MPI, OpenMP, advanced profiling, and more. Get the most from the latest Intel processors and coprocessors. See abstracts and register > http://pubads.g.doubleclick.net/gampad/clk?id=60134071&iu=/4140/ostg.clktrk
_______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
