Cheers Derek,
I've configured the VIPs to start up in heartbeat config and this now works.
The high-availability interface appeared in my networks.conf during the setup,
but I think that was me selecting the wrong option during the configurator, so
you can safely ignore that part of my email.
Thanks for the swift reply,
Andi
From: Derek Wuelfrath [mailto:[email protected]]
Sent: 15 July 2014 17:32
To: [email protected]
Subject: Re: [PacketFence-users] Cannot start httpd.portal if reg/iso VIPs
declared
Hello Andi,
I'm just installing version 4.3 for the first time and so far I like that you
can configure the VIPs from the web interface, thanks for this :)
Pleasure. It is a minor improvement but yes, it saves you from some headache
depending on your setup and how you work with the administration interface.
However, when I declare the VIP for the registration and isolation networks I
can no longer start packetfence, commenting the lines out of pf.conf and the
services start with no issue. It works on the management interface with no
issue.
Any thoughts on what I've missed setting up the VIP on these two interfaces? Do
I perhaps need to set them up as an interface in the heartbeat config?
When we thought about adding the possibilty to configure virtual IP from the
configurator / web admin, we didn't want to be too intrusive on the user
system... We had in mind that the "ip add" and interfaces configuration stuff
would be done by the user in the heartbeat config before trying to start
PacketFence. But, as you stated, services are now unable to start if you
configure a VIP in PacketFence without having it configured on the system.
For the moment, you need to configure it manually (heartbeat configuration) but
we're in the process of having it fix in case it is not configured system level.
Also, I had to comment out the high-availability interface out of my
networks.conf as the configurator seemed to want to put it in there.
I'm not sure I fully understand that part...
Cheers!
dw.
--
Derek Wuelfrath
[email protected]<mailto:[email protected]> ::
www.inverse.ca<http://www.inverse.ca>
+1.514.447.4918 (x110) :: +1.866.353.6153 (x110)
Inverse inc. :: Leaders behind SOGo (www.sogo.nu<http://www.sogo.nu>) and
PacketFence (www.packetfence.org<http://www.packetfence.org>)
On Jul 15, 2014, at 11:57 AM, Morris, Andi
<[email protected]<mailto:[email protected]>> wrote:
Hi all,
I'm just installing version 4.3 for the first time and so far I like that you
can configure the VIPs from the web interface, thanks for this :)
However, when I declare the VIP for the registration and isolation networks I
can no longer start packetfence, commenting the lines out of pf.conf and the
services start with no issue. It works on the management interface with no
issue.
Output is:
[root@hallsnac03 ~]# service packetfence restart
Restarting PacketFence...service|command
dhcpd|already stopped
httpd.admin|stop
httpd.portal|already stopped
httpd.proxy|already stopped
httpd.webservices|stop
pfbandwidthd|already stopped
pfdetect|already stopped
pfdhcplistener|stop
pfdns|stop
pfmon|stop
pfsetvlan|stop
radiusd|stop
snmptrapd|stop
snort|already stopped
suricata|already stopped
memcached|stop
memcached|start
httpd: Could not reliably determine the server's fully qualified domain name,
using hallsnac03.internal.uwic.ac.uk<http://internal.uwic.ac.uk/> for ServerName
httpd.admin|start
Checking configuration sanity...
Internet Systems Consortium DHCP Server 4.1.1-P1
Copyright 2004-2010 Internet Systems Consortium.
All rights reserved.
For info, please visit https://www.isc.org/software/dhcp/
Not searching LDAP since ldap-server, ldap-port and ldap-base-dn were not
specified in the config file
Wrote 16 leases to leases file.
Listening on LPF/eth0.705/00:1b:78:37:89:cc/10.1.5.0/24
Sending on LPF/eth0.705/00:1b:78:37:89:cc/10.1.5.0/24
Listening on LPF/eth0.704/00:1b:78:37:89:cc/10.100.0.0/20
Sending on LPF/eth0.704/00:1b:78:37:89:cc/10.100.0.0/20
Sending on Socket/fallback/fallback-net
dhcpd|start
httpd: Could not reliably determine the server's fully qualified domain name,
using hallsnac03.internal.uwic.ac.uk<http://internal.uwic.ac.uk/> for ServerName
(99)Cannot assign requested address: make_sock: could not bind to address
10.100.0.6:80
no listening sockets available, shutting down
Unable to open logs
httpd.portal|not started
httpd: Could not reliably determine the server's fully qualified domain name,
using hallsnac03.internal.uwic.ac.uk<http://internal.uwic.ac.uk/> for ServerName
httpd.webservices|start
pfdhcplistener|start
pfdns|start
pfmon|start
snmptrapd|start
pfsetvlan|start
radiusd|start
pf.conf networking is:
[interface eth0.703]
ip=10.1.3.7
type=management
mask=255.255.255.0
vip=10.1.3.12
[interface eth0.704]
enforcement=vlan
ip=10.100.0.5
type=internal
mask=255.255.240.0
vip=10.100.0.6
[interface eth0.705]
enforcement=vlan
ip=10.1.5.7
type=internal
mask=255.255.255.0
vip=10.1.5.11
[interface eth1]
ip=10.1.227.2
type=none,high-availability
mask=255.255.255.252
Also, I had to comment out the high-availability interface out of my
networks.conf as the configurator seemed to want to put it in there.
Any thoughts on what I've missed setting up the VIP on these two interfaces? Do
I perhaps need to set them up as an interface in the heartbeat config?
Cheers,
Andi
------------------------------------------------------------------------------
Want fast and easy access to all the code in your enterprise? Index and
search up to 200,000 lines of code with a free copy of Black Duck
Code Sight - the same software that powers the world's largest code
search on Ohloh, the Black Duck Open Hub! Try it now.
http://p.sf.net/sfu/bds_______________________________________________
PacketFence-users mailing list
[email protected]<mailto:[email protected]>
https://lists.sourceforge.net/lists/listinfo/packetfence-users
------------------------------------------------------------------------------
Want fast and easy access to all the code in your enterprise? Index and
search up to 200,000 lines of code with a free copy of Black Duck
Code Sight - the same software that powers the world's largest code
search on Ohloh, the Black Duck Open Hub! Try it now.
http://p.sf.net/sfu/bds
_______________________________________________
PacketFence-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/packetfence-users
