Problem: This morning, our NIS master server down (due to ram prob), and what happen is all the sun servers able to bind to NIS Slave, able to communicate to other sun and windows servers but not Linux servers.
Detailed Problem: sun_server[sab]% rsh linux01 o_ypcall: clnt_call: RPC: Unable to receive; errno = No route to host sun_server[sab]% telnet linux01
Trying 10.x.x.x...
Connected to linux01.
Escape character is '^]'.
[Code]...
I'm managing a residential network. Each flat is its own subnet, and can only communicate with the other flats through a router (i.e. no broadcast). 95% of these 300 subnets only contains windows computers (from lambda users).
My final goal is to be able to browse the entire network from any computer.
I set up a samba server acting as a wins server, and every computer is aware of it because it is registered in the dhcp. So name resolution is working fine for everyone.
The same samba server is set to be the "Domain master browser":
workgroup = WORKGROUP
wins support = yes
prefered master = yes
local master = yes
domain master = yes
os level = 65
When I browse the network (using "net view" or "browstat view"), I can only see the servers which are in the same subnet as the domain master browser.
Now, when in a subnet the computers arrange themselves to find a "local master browser", the only visible computers are the one in that subnet.
What I don't understand is why all the local masters don't synchronize their lists with the domain master.
So, to sum up, every subnet get the following behaviour:
-if a local master is elected, the only visible computers are the one in the same subnet.
-if no local master is elected, the only visible computers are the one in the subnet of the domain master.
-if I add another samba, configured as a local master winning all elections, then the magic is working and the lists are synchronized.
What is expected:
-every computer can see all the computer from all the subnets.
I have using ubuntu nis server (LTS 8.04.1) and all nis client fedora 6,7,8,9 its working fine yesterday I installed new client os fedora 11 and configure nis client I started ypbind service can't start I did client configuration.
1. /etc/sysconfig/network add NISDOMAIN=TEST
2. /etc/sysconfig/authconfig UseNIS=yes
3./etc/nsswith.conf
passwd: files nis
shadow: files nis
group: files nis
4. /etc/yp.conf
Add nisdomain and ypserver name
After I stop ip6tables and iptable and network Manager
Shutting down NIS service: [FAILED]
Starting NIS service: [ OK ]
Binding NIS service: ....................... [FAILED]
I have a load balancer with 2 web servers behind it. The web servers rsync with cloud storage to update their apache directories 1 time every hour. Apache is just running php pages that pull/push data to a DB so they dont need to be updated that often. However I need to figure out how to implement a Master/Master MySQL setup to have my web servers point to for the PHP stuff. I need to implement it without having a single point of failure. The Load balancers are useless for failover as they only detect availability based on Ping request. So putting a master/master setup behind a Load Balancer is out. what is the best way to setup the master/master mysql in a HA setup without the use of a load balancer provided by the host?
View 2 Replies View RelatedI configured a master DNS server 192.168.2.10 working OK. After that I configure a DNS Slave Server (92.168.2.11)the initial replication worked fine. This is test environment for my certification. I see how the zones from my master are transferred
zones in Master
training.com.db
transferred zone to my slave when I started named service
sec.training.com.db
That's Ok but I added some IPs to resolve to my master zone
webserver IN A 192.168.2.30
fileserver IN A 192.168.2.31
I restart/reload named on master and after that I go to slave and restart/reload but zones wuth the new values are not replicated. How long does it take for slave to take the changes from master? how is the procedure manual or automatic? I see If I go to slave and delete sec.training.com and restart named the zone with the changes is transferred but that is very manual... I am including my DNS Configuration so you can take a look.
I am trying to setup the "NIS" server in my server . But I am not able to start the "ypbind" service. May I know anything wrong in my configuration?
( 1 ) type "system-config-authentication"
( 2 ) tick on "NIS" Support and key in "RHCE" as NIS Domain and "IP_Address" ( My test computer IP Address , is it correct to use my server IP address ? )
( 3 ) click OK twice.
( 4 ) I received the following error message.
[root@server ~]# system-config-authentication
Stopping portmap: [ OK ]
Starting portmap: [ OK ]
not registered: 100000 2 tcp 111 portmapper
[code]....
I'm building a lab of fedora 14 machines that are supported by an RHEL/CentOS 5.6 server. Everything was working fine yesterday, but today ypbind can't connect to the server and nfs mounts fail with this message:
mount.nfs: mount(2): Operation not permitted
mount.nfs: trying text-based options 'addr=10.9.1.6'
mount.nfs: prog 100003, trying vers=3, prot=6
mount.nfs: portmap query failed: RPC: Remote system error - No route to host
I can ping the server from the client using FQDN and ip address.
After updates and restart of debian server, my NIS is not functioning. No yptools are working, it cannot find the server. All my commands I issue on the NIS server. When I issue the command yptest, I get:
>>
century4:~# yptest
Test 1: domainname
Configured domainname is "cga.lan"
Test 2: ypbind
Can't communicate with ypbind
century4:~#
<<
rpcinfo gives:
>>
century4:~# rpcinfo -p
program vers proto port
100000 2 tcp 111 portmapper
100000 2 udp 111 portmapper
100004 2 udp 899 ypserv
100004 1 udp 899 ypserv
100004 2 tcp 902 ypserv
100004 1 tcp 902 ypserv
100009 1 udp 901 yppasswdd
600100069 1 udp 904 fypxfrd
600100069 1 tcp 906 fypxfrd
100007 2 udp 913 ypbind
100007 1 udp 913 ypbind
100007 2 tcp 916 ypbind
100007 1 tcp 916 ypbind
100003 2 udp 2049 nfs
100003 3 udp 2049 nfs
100003 4 udp 2049 nfs
100003 2 tcp 2049 nfs
100003 3 tcp 2049 nfs
100003 4 tcp 2049 nfs
100021 1 udp 32795 nlockmgr
100021 3 udp 32795 nlockmgr
100021 4 udp 32795 nlockmgr
100021 1 tcp 59990 nlockmgr
100021 3 tcp 59990 nlockmgr
100021 4 tcp 59990 nlockmgr
100005 1 udp 894 mountd
100005 1 tcp 897 mountd
100005 2 udp 894 mountd
100005 2 tcp 897 mountd
100005 3 udp 894 mountd
100005 3 tcp 897 mountd
100024 1 udp 32797 status
100024 1 tcp 59863 status
century4:~#
I am trying to set up an NIS client on a Fedora Core 12 64-bit system. The ypbind daemon is running via the /etc/init.d/ypbind script. However, whenever I run the ypwhich command, the following error message appears on-screen:
[code]...
The client has been configured so the domain is set, and the client will broadcast for the first available nis server. The client is on a subnet where there is one nis slave server, so it should bind to that server. One thought that came to mind was the fact the client in question is 64-bit, while the nis slave is 32-bit. Could that cause this problem?
I have bind configured with Internal and External views, but the slave server is transferring only the Internal zone files for both Internal and External - a diff shows no difference, and the log shows the same serial number.What am I missing in the config so the slave server properly receives updates from the master for both views?
View 2 Replies View RelatedI have a Centos NIS server that is working fine with other linux clients. i need to have a Solaris 8 client bind to the NIS domain and found out that Sol8 does not support MD5 format passwords that the NIS master is generating. so i am trying to disable the MD5 encryption on the nis master and it does not seem to work. i run this command
authconfig --disablemd5 --enablenis --nisdomain=lab --updateall
and it restarts portmap and nis services ok. on the master server i then do a yppasswd username and a make passwd and it still uses the 34 char password format. what do i need to do to disable MD5 passwords in a centos nis server?
I have set up a master BIND DNS server with 2 slaves. All the services start up fine on all 3 servers, but zones and named.conf info is not being replicated. The 3 servers are tentatively installed on a Xen virtual server for testing purposes. All 3 servers are 64bit and installed with: -> CentOS release 5.4 (Final) - 2.6.18-164.10.1.el5xen -> BIND 9.3.6-P1-RedHat-9.3.6-4.P1.el5_4.2
All 3 servers are fully updated. All 3 servers have static IP addresses. The services on all 3 servers start up without any apparent issues. Master server: # /etc/init.d/named restart ; tail -f /var/log/messages
[Code]...
I have setup two BIND9 servers as slaves for an internal Windows domain. I receive messages in my logs about a Windows server not being the master for the slave domain on BIND. I have placed the allow-notify statement in the global options section of named.conf, as well as setting the IP address in the masters section of the zone. I'm confused as to why I'm still getting this error message.
View 3 Replies View RelatedI have a large environment with many VLANs and NIS slaves serving the VLANs. Previously we have not used a securenets file (don't worry; we don't use NIS for passwords, just NFS maps), but I'd like to start. The number of NIS slaves makes it annoying to update a securenets file on each when we add a new VLAN. Is there a way to propagate the securenets file to each slave when I update it on the master?If not, I guess I can live with propagating the file once and only visiting new slaves when I build them, because in 99% of cases a NIS slave only serves its own subnet.
View 1 Replies View RelatedSo, I wanted a master ftp user that could access all the folders for all the users. I did this by creating a second root user. I'm aware of all the security considerations, and if there's a better way to do this than creating a root user I'd really like to know it. That said, my issue is that my new root user is still unable in FTP to access folders owned by other users that aren't world readable. Note that this is ONLY when logging in via ftp. If I login through SSH I can access all folders without problem and without the need to sudo. So this is a true root user. Does anyone have an idea how I can fix the proftpd configuration to allow my root user access to ALL folders no matter the owner?
View 3 Replies View RelatedI have configured master and slave Bind servers. Everything works fine. But whenever I add a new zone entry at master server it is not getting updated at slave server in logs I see this error:
client 192.168.1.1#43428: view external: received notify for zone 'yourdomainname.com': not authoritative
At master server I do not see any error or warning message. This error clearly indicates that named.conf file does not have zone entry in it or domain name is wrong. While checking the named.conf file I see that the zone entry has not been updated at slave server. If I update it manually and reload named on slave then zone files (db files) are getting created without any issue and any modification at master server for the zone records are also getting updated. My concern is why zone record is not getting appended at slave server in named.conf file.
Is there anything I am missing in the configuration. I am pasting the steps which I have followed to configure my master and slave server:
Configure Bind as master and slave server
Install Bind on your server
yum install bind
OR
sudu apt-get install bind9
Generate RNDC Key using the command
rndc-confgen -a -k rndc-key
it will stored in /etc/rndc-key file
Master Server IP 192.168.0.1
Slave Server IP 192.168.1.1
Master Server Configuration
options .....
I have set up a master DNS server at 192.168.50.9 and a slave DNS at 192.168.50.6. Both servers are BIND9.Machines are for testing/experimenting, hence the IP addresses. Initially, the zone transfer was blocked by the firewall on the master, as the slave uses randomly selected non-privileged ports for zone-transfer query. So, as far as I understand, there are two possible approaches:
1. Allow connections based on source, which should be
Code:
-A RH-Firewall-1-INPUT -p tcp -m state --state NEW,ESTABLISHED -s 192.168.50.6 --sport 1024:65535 --dport 53 -j ACCEPT
(and it works for me fine)
2. Allow ESTABLISHED and RELATED connections, which would be something like
Code:
-A RH-Firewall-1-INPUT -m state --state ESTABLISHED,RELATED -j ACCEPT
which was my initial idea but didn't work, but has inspired me to dig deeper into firewall configuration topics :).
Question: Does zone change notification message count for opening a dialog, or notification from master and slave zone update request are two absolutely separate actions? If the latter is true, that, of course, explains why option #2 didn't work.
i've 2 namesevrers running bind 9 and i restricted the transfer between the master and salve through the TSIG, The transfer goes well with no problem for all zones but when i make dig axfr domain.tld @master i got transfer failed and on the other hand master logs said that transfered denied?
View 4 Replies View RelatedHave someone used Linux heartbeat to send email when the Slave server becomes the Master? I've read I can configure the MailTo under.
But I really don't know how to do it. I basically need my primary server to send an email when it becomes inactive and all the activities are manage by the secondary node.
In our Server they configure Master / Slave Dns using SSL authentication while tranfering the zone files, i dont have much idea about ssl authentication for Dns, how it will works
View 3 Replies View RelatedFaced with disk-bound issues on a FTP server with high traffic. Would like to set up multiple FTP server nodes with dedicated storage for each node where all FTP access is managed by a master FTP server. So, a user would FTP to a single externally visible IP address for the master FTP server and then get routed to the appropriate FTP node. Are the mutiple FTP nodes required or is there a better way of doing this? Perhaps only one FTP server is required and then each node would serve as a separate file server
View 1 Replies View RelatedI started over combining the first parts of this guide: [URL]..ubuntu8.04 (Only the first few parts in terms of configuration and naming). Then I used this guide: [URL]..Surprisingly enough all steps worked.
1. Now I need to set up LAMP servers with MySQL master/slave replication and Apache rsync.
2. Next i need to add BIND to both my Load Balancers with master/slave backup and replication...
Are there any guides to look at to follow on these? Can tou point me to the right direction for BIND with replication.
I want to back up the master boot on my hard drive, in case something screws it up. What software do you recommend for this?
My first idea is to boot from a Linux CD and dd the first 512 bytes of /dev/sda, and dd it back to recover. Will this solution work, and is it safe?
I came across Linux in university syllabus and quite loved it.Hope I will get to learn here Linux. How to become master in Linux can some body suggest some fast ways to do the same?I want to learn Linux Very fast.
View 14 Replies View RelatedI am looking for a 802.11n wireless card that Linux supports that can be dropped into AP/master mode.
I would prefer PCI, but USB would be tolerable, just not preferred.
I installed bind 9 sucessfully, and create many zones on its.
I want to biuld 1 slave server but i have problem :
How to transfer all zone from master to slave server ?
I was able to start puppet server using.
Code:
service puppetmaster start
but since i upgrade the puppet i m not able to start it.
Code:
# puppet --version
2.7.1
# service puppetmaster start
puppetmaster: unrecognized service
[Code]....
My shell script is calculating the count of each shortcode series wise whose sample output is as follows:
Code:
56882
9124 1
9172 1
9173 4
[code]....
urgentlyostfix status:[COLOR="DarkRed"]master dead but pid file exist[/COLOR]
View 1 Replies View Relatedhow to get the port number of the "ajp13" service running on host master?
View 1 Replies View Related