Re: [ClusterLabs] Security with Corosync

2016-03-19 Thread Jan Friesse
Nikhil Utane napsal(a): Honza, In my CIB I see the infrastructure being set to cman. pcs status is reporting the same. [root@node3 corosync]# pcs status Cluster name: mycluster Last updated: Wed Mar 16 16:57:46 2016 Last change: Wed Mar 16 16:56:23 2016 Stack: *cman* But corosync also is

Re: [ClusterLabs] Security with Corosync

2016-03-19 Thread Nikhil Utane
[root@node3 corosync]# corosync -v Corosync Cluster Engine, version '1.4.7' Copyright (c) 2006-2009 Red Hat, Inc. So it is 1.x :( When I begun I was following multiple tutorials and ended up installing multiple packages. Let me try moving to corosync 2.0. I suppose it should be as easy as doing

Re: [ClusterLabs] Security with Corosync

2016-03-14 Thread Jan Friesse
Nikhil Utane napsal(a): Follow-up question. I noticed that secauth was turned off in my corosync.conf file. I enabled it on all 3 nodes and restarted the cluster. Everything was working fine. However I just noticed that I had forgotten to copy the authkey to one of the node. It is present on 2

Re: [ClusterLabs] Security with Corosync

2016-03-12 Thread Nikhil Utane
Follow-up question. I noticed that secauth was turned off in my corosync.conf file. I enabled it on all 3 nodes and restarted the cluster. Everything was working fine. However I just noticed that I had forgotten to copy the authkey to one of the node. It is present on 2 nodes but not the third.

Re: [ClusterLabs] Security with Corosync

2016-03-11 Thread Nikhil Utane
Perfect. Thanks for the quick response Honza. Cheers Nikhil On Fri, Mar 11, 2016 at 4:10 PM, Jan Friesse wrote: > Nikhil, > > Nikhil Utane napsal(a): > >> Hi, >> >> I changed some configuration and captured packets. I can see that the data >> is already garbled and not in

Re: [ClusterLabs] Security with Corosync

2016-03-11 Thread Jan Friesse
Nikhil, Nikhil Utane napsal(a): Hi, I changed some configuration and captured packets. I can see that the data is already garbled and not in the clear. So does corosync already have this built-in? Can somebody provide more details as to what all security features are incorporated? See man

Re: [ClusterLabs] Security with Corosync

2016-03-11 Thread Nikhil Utane
Hi, I changed some configuration and captured packets. I can see that the data is already garbled and not in the clear. So does corosync already have this built-in? Can somebody provide more details as to what all security features are incorporated? -Thanks Nikhil On Fri, Mar 11, 2016 at 11:38

[ClusterLabs] Security with Corosync

2016-03-10 Thread Nikhil Utane
Hi, Does corosync provide mechanism to secure the communication path between nodes of a cluster? I would like all the data that gets exchanged between all nodes to be encrypted. A quick google threw up this link: https://github.com/corosync/corosync/blob/master/SECURITY Can I make use of it