Hi.
I dont know IF Ubuntu is system compliant, on OpenSuse Leap 42.1 I got it
working.
First you have to create the configuration file, I got two files, since I
listen to UDP and TCP to be Mikrotik compatible.
/etc/openvpn/openvpnTCP.conf
/etc/openvpn/openvpnUDP.conf
On systemd environment each instance of Openvpn is enabled using the
configuration file name, so on Pacemaker we have this:
primitive openvpnTCP systemd:openvpn@openvpnTCP \
op start timeout=60 interval=0 \
op stop timeout=60 interval=0 \
op monitor interval=60 timeout=60
primitive openvpnUDP systemd:openvpn@openvpnUDP \
op start timeout=60 interval=0 \
op stop timeout=60 interval=0 \
op monitor interval=60 timeout=60
group openvpn-group openvpnUDP openvpnTCP
Also, if you do not start any connection from your Openvpn i.e. you just
receive connections from clients you can start Openvpn on both servers, letting
the tunnels ready for connection.
clone openvpn-clone openvpn-group \
meta target-role=Started globally-unique=false
Regards,
Carlos Xavier.
> -----Mensagem original-----
> De: Kristoffer Grönlund [mailto:kgronl...@suse.com]
> Enviada em: segunda-feira, 7 de março de 2016 18:37
> Para: Thorsten Stremetzne; users@clusterlabs.org
> Assunto: Re: [ClusterLabs] Pacemaker issue lsb service
>
> Thorsten Stremetzne <clusterl...@webants.com> writes:
>
> > Hello all,
> >
> >
> > I have built an HA setup for a OpenVPN server.
> > In my setup there are two hosts, running Ubuntu Linux, pacemaker &
> > chorosync. Also both hosts have a virtual IP which migrates to the
> > host that is active, when the other fails. This works well, but I also
> > configured a primitive for the openvpn-server init scrip, via
> >
> >
> > crm configure primitive failover-openvpnas lsb::openvpnas op monitor
> > interval=15s
> >
>
> Hi,
>
> Unfortunately most LSB init scripts are not cluster-compatible by default,
> they often do not implement
> monitor actions correctly and may report incorrect status when the resource
> is not running.
>
> I would recommend using an OCF resource agent if possible, or worst case
> wrapping the LSB init script
> in a custom OCF resource agent which handles the corner cases. Another option
> if you are running a
> system with systemd is to use a systemd service. I have heard reports that
> there are some issues with
> using systemd services directly as well, but the ones I have tried have
> worked out of the box.
>
> Cheers,
> Kristoffer
>
> >
> > The service will be added, but it will always fail, due to the syslog, the
> > init script will be
> called in a wrong way.
> > I'm in troubles debugging how pacemaker will try to start/stop the service
> > on the hosts.
> >
> >
> > Can someone please assist me with some ideas and suggestions?
> >
> >
> > Thanks very much
> >
> >
> > Thorsten
> >
> >
> > Diese E-Mail kann vertrauliche und/oder rechtlich geschützte Informationen
> > enthalten. Wenn Sie nicht
> der beabsichtigte Empfänger sind oder diese E-Mail irrtümlich erhalten haben,
> informieren Sie bitte
> sofort den Absender telefonisch oder per E-Mail und löschen Sie diese E-Mail
> aus Ihrem System. Das
> unerlaubte Kopieren sowie die unbefugte Weitergabe dieser Mail ist nicht
> gestattet.
> > _______________________________________________
> > Users mailing list: Users@clusterlabs.org
> > http://clusterlabs.org/mailman/listinfo/users
> >
> > Project Home: http://www.clusterlabs.org Getting started:
> > http://www.clusterlabs.org/doc/Cluster_from_Scratch.pdf
> > Bugs: http://bugs.clusterlabs.org
>
> --
> // Kristoffer Grönlund
> // kgronl...@suse.com
>
> _______________________________________________
> Users mailing list: Users@clusterlabs.org
> http://clusterlabs.org/mailman/listinfo/users
>
> Project Home: http://www.clusterlabs.org Getting started:
> http://www.clusterlabs.org/doc/Cluster_from_Scratch.pdf
> Bugs: http://bugs.clusterlabs.org
_______________________________________________
Users mailing list: Users@clusterlabs.org
http://clusterlabs.org/mailman/listinfo/users
Project Home: http://www.clusterlabs.org
Getting started: http://www.clusterlabs.org/doc/Cluster_from_Scratch.pdf
Bugs: http://bugs.clusterlabs.org
