Hi Louis, et al. I'm so sorry, I just now saw your post from Feb. 24. (... darn Apple Mail threading.)
I have good news, our Linux admin found an issue with sudoer's requiretty setting and now has all PF processes properly starting on the VM server boot. The only other thing I know is it's probably a conflict with the puppet configuration (I can't tell you what puppet is managing on this VM but do know it's used to facilitate management of many VM's.) Thank you very very much for your patient help. Steve On Feb 24, 2014, at 7:31 AM, Louis Munro <[email protected]> wrote: > Hi Stephen, > This looks normal. > > What does /var/log/boot.log record? > > What does puppet manage on this VM? > > -- > Louis Munro > [email protected] :: www.inverse.ca > +1.514.447.4918 *125 :: +1 (866) 353-6153 > Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence > (www.packetfence.org) > > On 2014-02-17, at 16:56 , Stephen Wittstruck <[email protected]> wrote: > >> Hi Louis, >> >> No problem, I've been preoccupied too. I needed to finally check-in though >> because in the middle of March I'll be out for 6 or more weeks and need to >> have a better handle on all of my PF's statuses before I leave. >> >> auditd 0:off 1:off 2:on 3:off 4:off 5:off 6:off >> crond 0:off 1:off 2:on 3:on 4:on 5:on 6:off >> dhcpd 0:off 1:off 2:off 3:off 4:off 5:off 6:off >> dhcpd6 0:off 1:off 2:off 3:off 4:off 5:off 6:off >> dhcrelay 0:off 1:off 2:off 3:off 4:off 5:off 6:off >> htcacheclean 0:off 1:off 2:off 3:off 4:off 5:off 6:off >> ip6tables 0:off 1:off 2:on 3:off 4:off 5:off 6:off >> iptables 0:off 1:off 2:off 3:off 4:off 5:off 6:off >> memcached 0:off 1:off 2:off 3:off 4:off 5:off 6:off >> messagebus 0:off 1:off 2:on 3:on 4:on 5:on 6:off >> mysqld 0:off 1:off 2:on 3:on 4:on 5:on 6:off >> named 0:off 1:off 2:off 3:off 4:off 5:off 6:off >> netconsole 0:off 1:off 2:off 3:off 4:off 5:off 6:off >> netfs 0:off 1:off 2:off 3:on 4:on 5:on 6:off >> network 0:off 1:off 2:on 3:on 4:on 5:on 6:off >> ntpd 0:off 1:off 2:on 3:on 4:on 5:on 6:off >> ntpdate 0:off 1:off 2:off 3:off 4:off 5:off 6:off >> oddjobd 0:off 1:off 2:on 3:on 4:on 5:on 6:off >> packetfence 0:off 1:off 2:on 3:on 4:on 5:on 6:off >> portreserve 0:off 1:off 2:on 3:on 4:on 5:on 6:off >> postfix 0:off 1:off 2:on 3:on 4:on 5:on 6:off >> puppet 0:off 1:off 2:on 3:on 4:on 5:on 6:off >> radiusd 0:off 1:off 2:off 3:off 4:off 5:off 6:off >> rdisc 0:off 1:off 2:off 3:off 4:off 5:off 6:off >> restorecond 0:off 1:off 2:off 3:off 4:off 5:off 6:off >> rsyslog 0:off 1:off 2:on 3:on 4:on 5:on 6:off >> saslauthd 0:off 1:off 2:off 3:off 4:off 5:off 6:off >> snmpd 0:off 1:off 2:off 3:off 4:off 5:off 6:off >> sshd 0:off 1:off 2:on 3:on 4:on 5:on 6:off >> sssd 0:off 1:off 2:on 3:on 4:on 5:on 6:off >> udev-post 0:off 1:on 2:on 3:on 4:on 5:on 6:off >> vmware-tools 0:off 1:off 2:on 3:on 4:off 5:on 6:off >> >> Thank you. >> Steve >> >> On Feb 17, 2014, at 2:23 PM, Louis Munro <[email protected]> wrote: >> >>> Hi Stephen, >>> Sorry, been busy… >>> >>> So I had to reread our previous emails to see why I was asking about your >>> sudoers file. >>> In any case, it seems ok. >>> >>> Can you post the output to >>> chkconfig --list >>> >>> so that we see what is supposed to start when you reboot? >>> >>> >>> Regards, >>> -- >>> Louis Munro >>> [email protected] :: www.inverse.ca >>> +1.514.447.4918 *125 :: +1 (866) 353-6153 >>> Inverse inc. :: Leaders behind SOGo (www.sogo.nu) and PacketFence >>> (www.packetfence.org) >>> >>> On 2014-02-17, at 15:50 , Stephen Wittstruck <[email protected]> wrote: >>> >>>> Hi again, >>>> >>>> It's been 6 weeks since I posted the PF VM sudoer's file but haven't heard >>>> from any so thought I should check in. >>>> >>>> Does anyone see any issues with the sudoers file below? This is a >>>> homegrown VM, it's not the Zen release. Dhcpd and pfdhcplistener do not >>>> start on a server reboot, they will start manually, later. >>>> >>>> =================================================== >>>> Here are the contents of the file /etc/sudoers.d/10_packetfence >>>> >>>> pf ALL=NOPASSWD: /sbin/iptables, /usr/sbin/ipset, /sbin/ip, /sbin/vconfig, >>>> /sbin/route, /sbin/service, /usr/bin/tee, >>>> /usr/local/pf/sbin/pfdhcplistener, /bin/kill, /usr/sbin/dhcpd, >>>> /usr/sbin/radiusd, /usr/sbin/snort, /usr/bin/suricata >>>> Defaults:pf !requiretty >>>> >>>> That file is included in the config because of this line in /etc/sudoers: >>>> >>>> ## Read drop-in files from /etc/sudoers.d (the # here does not mean a >>>> comment) >>>> #includedir /etc/sudoers.d >>>> =================================================== >>>> >>>> Thanks. >>>> Steve >>>> >>>> On Jan 29, 2014, at 2:32 PM, Stephen Wittstruck <[email protected]> wrote: >>>> >>>>> =================================================== >>>>> Here are the contents of the file /etc/sudoers.d/10_packetfence >>>>> >>>>> pf ALL=NOPASSWD: /sbin/iptables, /usr/sbin/ipset, /sbin/ip, >>>>> /sbin/vconfig, /sbin/route, /sbin/service, /usr/bin/tee, >>>>> /usr/local/pf/sbin/pfdhcplistener, /bin/kill, /usr/sbin/dhcpd, >>>>> /usr/sbin/radiusd, /usr/sbin/snort, /usr/bin/suricata >>>>> Defaults:pf !requiretty >>>>> >>>>> That file is included in the config because of this line in /etc/sudoers: >>>>> >>>>> ## Read drop-in files from /etc/sudoers.d (the # here does not mean a >>>>> comment) >>>>> #includedir /etc/sudoers.d >>>>> =================================================== >>>> >>>> ------------------------------------------------------------------------------ >>>> Managing the Performance of Cloud-Based Applications >>>> Take advantage of what the Cloud has to offer - Avoid Common Pitfalls. >>>> Read the Whitepaper. >>>> http://pubads.g.doubleclick.net/gampad/clk?id=121054471&iu=/4140/ostg.clktrk_______________________________________________ >>>> PacketFence-users mailing list >>>> [email protected] >>>> https://lists.sourceforge.net/lists/listinfo/packetfence-users >>> >>> ------------------------------------------------------------------------------ >>> Managing the Performance of Cloud-Based Applications >>> Take advantage of what the Cloud has to offer - Avoid Common Pitfalls. >>> Read the Whitepaper. >>> http://pubads.g.doubleclick.net/gampad/clk?id=121054471&iu=/4140/ostg.clktrk_______________________________________________ >>> PacketFence-users mailing list >>> [email protected] >>> https://lists.sourceforge.net/lists/listinfo/packetfence-users >> >> ------------------------------------------------------------------------------ >> Managing the Performance of Cloud-Based Applications >> Take advantage of what the Cloud has to offer - Avoid Common Pitfalls. >> Read the Whitepaper. >> http://pubads.g.doubleclick.net/gampad/clk?id=121054471&iu=/4140/ostg.clktrk_______________________________________________ >> PacketFence-users mailing list >> [email protected] >> https://lists.sourceforge.net/lists/listinfo/packetfence-users > > ------------------------------------------------------------------------------ > Flow-based real-time traffic analytics software. Cisco certified tool. > Monitor traffic, SLAs, QoS, Medianet, WAAS etc. with NetFlow Analyzer > Customize your own dashboards, set traffic alerts and generate reports. > Network behavioral analysis & security monitoring. All-in-one tool. > http://pubads.g.doubleclick.net/gampad/clk?id=126839071&iu=/4140/ostg.clktrk_______________________________________________ > PacketFence-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/packetfence-users
smime.p7s
Description: S/MIME cryptographic signature
------------------------------------------------------------------------------ Subversion Kills Productivity. Get off Subversion & Make the Move to Perforce. With Perforce, you get hassle-free workflows. Merge that actually works. Faster operations. Version large binaries. Built-in WAN optimization and the freedom to use Git, Perforce or both. Make the move to Perforce. http://pubads.g.doubleclick.net/gampad/clk?id=122218951&iu=/4140/ostg.clktrk
_______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
