How about a background task on the FW machines that checks to see if the server is running. If it is running, the FW program goes back to sleep. If it is not running (ping or something) then the FW program checks again after a set time (in case you have just unplugged the ethernet for a short time) after which it shuts the FW down.
I think HA server configurations do something like this only they use a serial line separately connected to do the "server up" sensing. The background task could be either a cron job (messy) or a normal program or a daemon. Cheers, Jill. -- Jill Rowling, Systems Administrator Eng. Systems Dept, Aristocrat Technologies Australia Level 2, 55 Mentmore Ave Rosebery NSW 2018 Phone: (02) 9697-4484 Fax: (02) 9663-1412 Email: [EMAIL PROTECTED] -----Original Message----- From: Andy Eager [mailto:[EMAIL PROTECTED]] Sent: Friday, 7 June 2002 12:32 To: [EMAIL PROTECTED] Subject: [SLUG] Question regarding sysv scripts Hi all, I have an interesting question regarding SysV startup / shutdown scripts. One machine 'the server' has two smaller machines (firewalls) physically installed inside it. They are single board computers that fit into the 5.25" drive bays on the server. I have configured them as choke & bastion firewalls with iptables: - No problems there. I want to be able to shutdown the server as well as the the two f/w machines at the same time, so I thought about doing this: a) Have a script in init.d that is linked from rc0.d that uses ssh to shutdown each of the f/w machines. (ssh fw1 halt, ssh fw2 halt) b) delay for about a minute c) continue the shutdown process on the server. The problem is that ssh wants a password and presumably there is no way of providing this from the console during a shutdown. Can ssh be configured not to ask for a password ? (I know this is unusual). Any better way of doing this? Regards, Andy -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug ---------------------- CONFIDENTIALITY NOTICE ---------------------- This email is intended only to be read or used by the addressee. The information contained in this e-mail message may be confidential information. If you are not the intended recipient, any use, interference with, distribution, disclosure or copying of this material is unauthorised and prohibited. Confidentiality attached to this communication is not waived or lost by reason of the mistaken delivery to you. If you have received this message in error, please delete it and notify us by return e-mail or telephone Aristocrat Technologies Australia Pty Limited on +61 2 9413 6300. -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
