Hi Louis, list, So, today I reinstalled packetfence, from scratch, debian wheezy x64, with the stock 3.6.6 samba.
Installation went fine, and things look a lot better. Some remarks: - the winbind config through the gui worked fine, this time. Not sure why, could be the samba version used: 3.6.6 this time, versus 4.1.17 & 4.2.2 before. - Question: shouldd 'DNS name of the domain' perhaps better be called REALM? Or are we not supposed to enter the realm in capitals there? - One thing that is NOT working better (and I had really hoped it would) is pfdns reliability. PF keeps thinking it's not running, restarting it, but: " Couldn't create UDP socket: Address already in use". It seems to be running, but pf doesn't seem to detect that: > root@pf:/usr/local/pf/logs# lsof -i :53 > COMMAND PID USER FD TYPE DEVICE SIZE/OFF NODE NAME > pfdns 5320 root 9u IPv4 43258 0t0 TCP 10.19.0.1:domain (LISTEN) > pfdns 5320 root 11u IPv4 43260 0t0 UDP 10.19.0.1:domain > pfdns 5320 root 13u IPv4 43262 0t0 TCP 10.0.2.1:domain (LISTEN) > pfdns 5320 root 23u IPv4 43264 0t0 UDP 10.0.2.1:domain > pfdns 5320 root 29u IPv4 43266 0t0 TCP 10.0.3.1:domain (LISTEN) > pfdns 5320 root 30u IPv4 43268 0t0 UDP 10.0.3.1:domain > root@pf:/usr/local/pf/logs# The web admin also reports pfdns is NOT running. Same goes for carbon-cache and carbon-relay, they are running: > root@pf:/usr/local/pf/logs# ps aux | grep carbon > pf 3712 0.5 0.2 84508 14648 ? Sl 19:20 0:08 > /usr/bin/python /usr/bin/carbon-cache > --config=/usr/local/pf/var/conf/carbon.conf > --pidfile=/usr/local/pf/var/run/carbon-cache.pid --logdir=/usr/local/pf/logs > start > pf 3722 0.4 0.2 77672 14516 ? S 19:20 0:06 > /usr/bin/python /usr/bin/carbon-relay > --config=/usr/local/pf/var/conf/carbon.conf > --pidfile=/usr/local/pf/var/run/carbon-relay.pid --logdir=/usr/local/pf/logs > start > root@pf:/usr/local/pf/logs# And surprise: The web admin gui reports them as running... I hoped that a fresh install would have solved these issues too, but alas... MJ On 6/16/2015 19:55, Louis Munro wrote: > I cannot answer for others, but for myself it means that I am busy. > > I also cannot really connect to your server and help you without a > support contract. > There are limits to the support I can offer for free. > > In short, the next steps I would try is to disable “watch”, delete any > existing pid file for winbind, make sure it is really stopped by killing > any such process using pkill or by getting the pid out of ps. > Then I would restart it from pf and see if it is running. > Most likely that will fix it. > > Regards, > -- > Louis Munro > [email protected] <mailto:[email protected]> :: www.inverse.ca > <http://www.inverse.ca> > +1.514.447.4918 x125 :: +1 (866) 353-6153 x125 > Inverse inc. :: Leaders behind SOGo (www.sogo.nu <http://www.sogo.nu>) > and PacketFence (www.packetfence.org <http://www.packetfence.org>) > > On Jun 16, 2015, at 3:57 , mourik jan heupink <[email protected] > <mailto:[email protected]>> wrote: > >> Hi, >> >> The lack of input means that our problem is unsolveable? >> >> MJ >> >> On 06/12/2015 09:24 AM, mourik jan heupink wrote: >>> Hi Louis, >>> >>> Winbind seems to be running now, test binds succeeds, but the gui claims >>> that winbind is NOT running, and also watch tries to restart it every >>> time it runs. >>> >>> I'm guessing that could mean that it's also looking for a pid in a wrong >>> location or so: >>>> Jun 12 09:15:04 pfcmd.pl(15723) INFO: watch found incorrectly >>>> stopped services: winbindd-our-wkgr.conf >>>> (pf::cmd::pf::service::watchService) >>>> Jun 12 09:15:04 pfcmd.pl(15723) INFO: Daemon winbindd-our-wkgr.conf >>>> took 0.034 seconds to start. (pf::services::manager::launchService) >>>> Jun 12 09:16:04 pfcmd.pl(15723) WARN: winbindd-our-wkgr.conf timed >>>> out trying to start (pf::services::manager::postStartCleanup) >>> >>> In chroot winbind logs: >>>> ERROR: winbindd is already running. File >>>> /usr/local/pf/var/run/winbindd.pid exists and process id 3854 is >>>> running. >>> >>>> If it is, it’s not an obvious one. >>>> I just tested this without problem yesterday on fresh installs of >>>> CentOS, Debian and Ubuntu. >>> This (debian 7) system has been upgraded from packetfence 5.0.0 (or 1), >>> don't remember. >>> >>>> Hard to say without access to your system and the full logs. >>>> Systems are unreliable. >>>> Without throwing my hands in the air, there is little more for me to go >>>> on here. >>> Well, I could give you access to the system, of course. We'd discuss >>> access details off list, of course. >>> >>>> Is there anything relevant to this in the logs/httpd.admin.log at the >>>> time when you added the domain from the GUI? >>>> Or was this an done with the upgrade script? >>> First I was required to run the upgrade script. That never worked out, >>> it always kept adding INVERSE everywhere. Then I removed the domain, and >>> added it as new, new name also. I guess this is why I have (by now >>> three) 'old' chroot directories. (pf doesn't seem to delete the chroots, >>> when deleting them from the gui) >>> >>> Would you like access to the system? >>> >>> Regards, >>> MJ >>>> >>>> Regards, >>>> -- >>>> Louis Munro >>>> [email protected] <mailto:[email protected]> >>>> <mailto:[email protected]> :: www.inverse.ca <http://www.inverse.ca> >>>> <http://www.inverse.ca> >>>> +1.514.447.4918 x125 :: +1 (866) 353-6153 x125 >>>> Inverse inc. :: Leaders behind SOGo (www.sogo.nu >>>> <http://www.sogo.nu> <http://www.sogo.nu>) >>>> and PacketFence (www.packetfence.org <http://www.packetfence.org> >>>> <http://www.packetfence.org>) >>>> >>>> >>>> ------------------------------------------------------------------------------ >>>> >>>> >>>> >>>> _______________________________________________ >>>> PacketFence-users mailing list >>>> [email protected] >>>> <mailto:[email protected]> >>>> https://lists.sourceforge.net/lists/listinfo/packetfence-users >>>> >> >> ------------------------------------------------------------------------------ >> _______________________________________________ >> PacketFence-users mailing list >> [email protected] >> <mailto:[email protected]> >> https://lists.sourceforge.net/lists/listinfo/packetfence-users > > > > ------------------------------------------------------------------------------ > > > > _______________________________________________ > PacketFence-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/packetfence-users > ------------------------------------------------------------------------------ _______________________________________________ PacketFence-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/packetfence-users
