What's really stupid is that the install doesn't add the firewall rules...
Josh Luthman Office: 937-552-2340 Direct: 937-552-2343 1100 Wayne St Suite 1337 Troy, OH 45373 On Tue, Dec 16, 2014 at 11:24 AM, Mike Hammett via Af <af@afmug.com> wrote: > I had something equally ridiculous before. I felt like a fool when Cambium > support found it. I had turned off the firewall when I installed it, but > the install had me reboot and IPTables turned back on. I've started putting > forth the effort to figure out what holes need to be opened up on things > instead of just turning it off. > > > > ----- > Mike Hammett > Intelligent Computing Solutions > http://www.ics-il.com > > ------------------------------ > *From: *"Justin Marshall via Af" <af@afmug.com> > *To: *af@afmug.com > *Sent: *Tuesday, December 16, 2014 9:56:46 AM > > *Subject: *Re: [AFMUG] CNS Server CentOS Install > > LOL > > > > Sure enough, didn’t think about CentOS, and default iptables. I’m more of > a Gentoo guy… > > > > Did a #iptables –F and it came right up > > > > Thanks! > > Justin > > > > *From:* Af [mailto:af-boun...@afmug.com] *On Behalf Of *Josh Luthman via > Af > *Sent:* Tuesday, December 16, 2014 10:47 AM > *To:* af@afmug.com > *Subject:* Re: [AFMUG] CNS Server CentOS Install > > > > New CentOS server? $50 says it is a firewall. > > Josh Luthman > Office: 937-552-2340 > Direct: 937-552-2343 > 1100 Wayne St > Suite 1337 > Troy, OH 45373 > > On Dec 16, 2014 10:45 AM, "Justin Marshall via Af" <af@afmug.com> wrote: > > The firewall is definitely open, same IP I’ve used for CNS server in the > past. > > I disabled SELinux. With setenable 0, and disabled in the > /etc/selinux/config file… > > > > But now that you mention it, I can’t telnet to anything except port 22, > however netstat shows it listening on 80/443 > > Wondering why I can’t telnet to port 80….And I’m trying from another box > from inside the same subnet, no Firewall involved. > > > > > > [root@cnss logs]# netstat -ano > > Active Internet connections (servers and established) > > Proto Recv-Q Send-Q Local Address Foreign > Address State Timer > > tcp 0 0 0.0.0.0:22 0.0.0.0:* > LISTEN off (0.00/0/0) > > tcp 0 0 127.0.0.1:5432 0.0.0.0:* > LISTEN off (0.00/0/0) > > tcp 0 0 127.0.0.1:25 0.0.0.0:* > LISTEN off (0.00/0/0) > > tcp 0 0 0.0.0.0:443 0.0.0.0:* > LISTEN off (0.00/0/0) > > tcp 0 0 0.0.0.0:80 0.0.0.0:* > LISTEN off (0.00/0/0) > > tcp 0 0 127.0.0.1:5432 127.0.0.1:48692 > ESTABLISHED keepalive (63.13/0/0) > > tcp 0 0 10.192.172.113:22 10.192.172.114:53539 > ESTABLISHED keepalive (3954.62/0/0) > > tcp 0 0 127.0.0.1:5432 127.0.0.1:48695 > ESTABLISHED keepalive (63.17/0/0) > > tcp 0 0 127.0.0.1:5432 127.0.0.1:48700 > ESTABLISHED keepalive (63.24/0/0) > > tcp 0 0 127.0.0.1:5432 127.0.0.1:48693 > ESTABLISHED keepalive (63.14/0/0) > > tcp 0 0 127.0.0.1:5432 127.0.0.1:48694 > ESTABLISHED keepalive (63.15/0/0) > > tcp 0 0 127.0.0.1:5432 127.0.0.1:48699 > ESTABLISHED keepalive (63.23/0/0) > > tcp 0 0 127.0.0.1:5432 127.0.0.1:48696 > ESTABLISHED keepalive (63.18/0/0) > > tcp 0 0 127.0.0.1:5432 127.0.0.1:48691 > ESTABLISHED keepalive (63.04/0/0) > > tcp 0 0 127.0.0.1:5432 127.0.0.1:48697 > ESTABLISHED keepalive (63.20/0/0) > > tcp 0 0 127.0.0.1:5432 127.0.0.1:48698 > ESTABLISHED keepalive (63.21/0/0) > > > > and when I manually try and restart Apache I get: > > [root@cnss logs]# /etc/init.d/lappstackApache restart > > [Tue Dec 16 05:34:01.272177 2014] [so:warn] [pid 7245] AH01574: module > php5_module is already loaded, skipping > > [Tue Dec 16 05:34:01.284824 2014] [so:warn] [pid 7245] AH01574: module > php5_module is already loaded, skipping > > [Tue Dec 16 05:34:01.284875 2014] [so:warn] [pid 7245] AH01574: module > rewrite_module is already loaded, skipping > > AH00548: NameVirtualHost has no effect and will be removed in the next > release /opt/cnsserver/stack/apache2/conf/httpd.conf:557 > > Syntax OK > > > > > > *From:* Af [mailto:af-boun...@afmug.com] *On Behalf Of *Josh Luthman via > Af > *Sent:* Tuesday, December 16, 2014 9:58 AM > *To:* af@afmug.com > *Subject:* Re: [AFMUG] CNS Server CentOS Install > > > > Also turn down Selinux > > Josh Luthman > Office: 937-552-2340 > Direct: 937-552-2343 > 1100 Wayne St > Suite 1337 > Troy, OH 45373 > > On Dec 16, 2014 9:57 AM, "Josh Luthman" <j...@imaginenetworksllc.com> > wrote: > > Did you open the firewall? Do a netstat to see if it is running and > telnet to see if you can connect to the ports. > > Josh Luthman > Office: 937-552-2340 > Direct: 937-552-2343 > 1100 Wayne St > Suite 1337 > Troy, OH 45373 > > On Dec 16, 2014 9:52 AM, "Justin Marshall via Af" <af@afmug.com> wrote: > > Hi, > > Trying to do an install of CNS Server on CentOS 6.6(x86_64). Accepted all > the defaults as far as postgres username/port. When i try and login > through http/https, no page loads. > > Doing a #ps -ax shows something up with postgres i believe. > > 2060 ? Ss 0:04 /opt/cnsserver/stack/apache2/bin/httpd -f > /opt/cnsserver/stack/apache2/conf/httpd.conf > 2061 ? S 0:00 /opt/cnsserver/stack/apache2/bin/httpd -f > /opt/cnsserver/stack/apache2/conf/httpd.conf > 2062 ? S 0:00 /opt/cnsserver/stack/apache2/bin/httpd -f > /opt/cnsserver/stack/apache2/conf/httpd.conf > 2063 ? S 0:00 /opt/cnsserver/stack/apache2/bin/httpd -f > /opt/cnsserver/stack/apache2/conf/httpd.conf > 2064 ? S 0:00 /opt/cnsserver/stack/apache2/bin/httpd -f > /opt/cnsserver/stack/apache2/conf/httpd.conf > 2065 ? S 0:00 /opt/cnsserver/stack/apache2/bin/httpd -f > /opt/cnsserver/stack/apache2/conf/httpd.conf > 6248 ? Ss 0:00 /usr/sbin/anacron -s > 6399 ? S 0:00 pickup -l -t fifo -u > 6417 ? S 0:00 /opt/cnsserver/stack/postgresql/bin/postgres -D > /opt/cnsserver/stack/postgresql/data > 6419 ? Ss 0:00 postgres: checkpointer process > 6420 ? Ss 0:00 postgres: writer process > 6421 ? Ss 0:00 postgres: wal writer process > 6422 ? Ss 0:00 postgres: autovacuum launcher process > 6423 ? Ss 0:00 postgres: stats collector process > 6462 pts/1 S 0:00 /bin/bash ./start_cnss.sh > 6470 pts/1 Sl 0:02 ../jre/bin/java -classpath > ../conf:../libs/backend/log4j-1.2.16.jar:../libs/backend/snmp4j-2.2.3.jar:../libs/backend/postgresql-9 > 6485 ? Ss 0:00 postgres: postgres cnss 127.0.0.1(48691) idle > 6486 ? Ss 0:00 postgres: postgres cnss 127.0.0.1(48692) idle > 6487 ? Ss 0:00 postgres: postgres cnss 127.0.0.1(48693) idle > 6488 ? Ss 0:00 postgres: postgres cnss 127.0.0.1(48694) idle > 6489 ? Ss 0:00 postgres: postgres cnss 127.0.0.1(48695) idle > 6490 ? Ss 0:00 postgres: postgres cnss 127.0.0.1(48696) idle > 6491 ? Ss 0:00 postgres: postgres cnss 127.0.0.1(48697) idle > 6492 ? Ss 0:00 postgres: postgres cnss 127.0.0.1(48698) idle > 6493 ? Ss 0:00 postgres: postgres cnss 127.0.0.1(48699) idle > 6494 ? Rs 0:00 postgres: postgres cnss 127.0.0.1(48700) BIND > > I've tried stopping/restarting all the services, rebooting... > > When i try and stop or restart the lappstackPostgresSQL service i get: > > [root@cnss logs]# /etc/init.d/lappstackPostgreSQL restart > > waiting for server to shut > down............................................................... failed > > pg_ctl.bin: server does not shut down > > HINT: The "-m fast" option immediately disconnects sessions rather than > > waiting for session-initiated disconnection. > > /opt/cnsserver/stack/postgresql/scripts/ctl.sh : postgresql could not be > stopped > > /opt/cnsserver/stack/postgresql/scripts/ctl.sh : postgresql (pid 1966) > already running > > So i try a killall postgres && /etc/init.d/lappstackPostgreSQL start > I get: > > waiting for server to start.... done > > server started > > /opt/cnsserver/stack/postgresql/scripts/ctl.sh : postgresql started at > port 5432 > > but still the same (idle) output from #ps ax > > Digging around through the /opt/cnsserver/logs dir, all logs are empty > except utils.log is filled with messages such as: > > 2014-12-15 08:58:14,836 ERROR ConnectionPool.validateConnection(): > Connection to database lost. Attempting to reconnect. > > 2014-12-15 08:58:14,842 ERROR ConnectionPool.openConnectionToDatabase(): > Could not connect to the database: org.postgresql.util.PSQLException: > Connection re > > fused. Check that the hostname and port are correct and that the > postmaster is accepting TCP/IP connections. > > > org.postgresql.core.v3.ConnectionFactoryImpl.openConnectionImpl(ConnectionFactoryImpl.java:138) > > > org.postgresql.core.ConnectionFactory.openConnection(ConnectionFactory.java:66) > > > org.postgresql.jdbc2.AbstractJdbc2Connection.<init>(AbstractJdbc2Connection.java:125) > > > org.postgresql.jdbc3.AbstractJdbc3Connection.<init>(AbstractJdbc3Connection.java:30) > > > org.postgresql.jdbc3g.AbstractJdbc3gConnection.<init>(AbstractJdbc3gConnection.java:22) > > > org.postgresql.jdbc4.AbstractJdbc4Connection.<init>(AbstractJdbc4Connection.java:32) > > org.postgresql.jdbc4.Jdbc4Connection.<init>(Jdbc4Connection.java:24) > > org.postgresql.Driver.makeConnection(Driver.java:393) > > org.postgresql.Driver.connect(Driver.java:267) > > java.sql.DriverManager.getConnection(Unknown Source) > > java.sql.DriverManager.getConnection(Unknown Source) > > > com.cambiumnetworks.cnss.services.utils.database.ConnectionPool.openConnectionToDatabase(ConnectionPool.java:169) > > > com.cambiumnetworks.cnss.services.utils.database.ConnectionPool.validateConnection(ConnectionPool.java:210) > > > com.cambiumnetworks.cnss.services.utils.database.ConnectionPool.getConnection(ConnectionPool.java:105) > > > com.cambiumnetworks.cnss.services.utils.database.ConnectionPool.getConnection(ConnectionPool.java:94) > > > com.cambiumnetworks.cnss.services.utils.dao.GenericConfigurationDAO.getConfigurationData(GenericConfigurationDAO.java:37) > > > com.cambiumnetworks.cnss.services.launcher.ServiceLauncher.main(ServiceLauncher.java:203) > > 2014-12-15 08:58:14,843 ERROR ConnectionPool.getConnection(): Unable to > recover lost database connection. Shutting down server. > > > > I’ve installed CNS Server on CentOS before without any issues, not sure > why this time it’s fighting me. > > Not sure what direction to take from here. Anyone have any ideas? > > > > Thanks, > > Justin > > just...@pdmnet.net > > > >
