[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Sks-devel] Error in recon.log
|
From: |
TELEHOST Office |
|
Subject: |
Re: [Sks-devel] Error in recon.log |
|
Date: |
Tue, 03 Feb 2015 21:39:40 +0100 |
|
User-agent: |
Roundcube Webmail/0.8.6 |
Am 2015-02-03 21:19, schrieb Kristian Fiskerstrand:
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
On 02/03/2015 08:46 PM, TELEHOST Office wrote:
Am 2015-02-03 11:00, schrieb Kristian Fiskerstrand: On 02/03/2015
10:30 AM, TELEHOST Office wrote:
Dear Kristian,
thank you very much for your fast feedback.
No problem, but please do not top-post, it makes following the
thread very difficult and is, in general, bad form.
Here a copy of the CentOS cleandb-log:
..
2015-02-03 15:05:59 Unable to get mtime for membership file.
Can't decide whether to reload
Are you sure you have the membership file in the correct location?
Also, what is the explicit content of the file and can you connect to
the peer on tcp ports 11370,11371 and potentially another port
provided for HKP (see /pks/lookup?op=stats).
Both distris have the membership located in /etc/sks/membership.
address@hidden sks]# ls -al
total 24
drwxr-xr-x 2 sks sks 4096 Feb 3 15:04 .
drwxr-xr-x 66 root root 4096 Feb 2 16:16 ..
-rw-r--r-- 1 sks sks 2333 Jan 30 08:25 mailsync
-rw-r--r-- 1 sks sks 36 Feb 3 15:04 membership
-rw-r--r-- 1 root root 1319 Feb 3 15:03 membership_original
-rw-r--r-- 1 sks sks 2591 Feb 2 15:44 sksconf
Is this server accessible somewhere? I tried connecting to
http://194.0.229.61:11371/pks/lookup?op=stats and ditto for
194.0.229.60 without getting a connection at least so you would be
unable to peer with outside servers.
Can you telnet between the servers on port 11370 (or whatever other
port is specified in the membership file, and the HKP transport (as
well as 11371 for default HKP)?
I can connect to each server from the other side. There is no firewall.
Chain INPUT (policy ACCEPT)
num target prot opt source destination
Chain FORWARD (policy ACCEPT)
num target prot opt source destination
Chain OUTPUT (policy ACCEPT)
num target prot opt source destination
address@hidden:/etc/sks# ping 194.0.229.61
PING 194.0.229.61 (194.0.229.61) 56(84) bytes of data.
64 bytes from 194.0.229.61: icmp_req=1 ttl=64 time=0.019 ms
64 bytes from 194.0.229.61: icmp_req=2 ttl=64 time=0.017 ms
64 bytes from 194.0.229.61: icmp_req=3 ttl=64 time=0.018 ms
^C
--- 194.0.229.61 ping statistics ---
3 packets transmitted, 3 received, 0% packet loss, time 2000ms
rtt min/avg/max/mdev = 0.017/0.018/0.019/0.000 ms
address@hidden sks]# ping 194.0.229.60
PING 194.0.229.60 (194.0.229.60) 56(84) bytes of data.
64 bytes from 194.0.229.60: icmp_seq=1 ttl=64 time=0.028 ms
64 bytes from 194.0.229.60: icmp_seq=2 ttl=64 time=0.017 ms
^C
--- 194.0.229.60 ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 1925ms
rtt min/avg/max/mdev = 0.017/0.022/0.028/0.007 ms
I can also establish every port between both enginges (ssh ...)
194.0.229.61 was not open to public (CentOS). Public avaiable is
194.0.229.60.
I granted access for testing to 194.0.229.61 now, too.
So on both engines port 80, 11370 and 11371 are open to public.
Want to have SSH? There's nothing else than SKS on both engines.
Regards,
Thomas
As you see - both servers now are in the same subnet, connected
directly via switch.
Did not understand what happens here ...
Thomas
- --
- ----------------------------
Kristian Fiskerstrand
Blog: http://blog.sumptuouscapital.com
Twitter: @krifisk
- ----------------------------
Public OpenPGP key 0xE3EDFAE3 at hkp://pool.sks-keyservers.net
fpr:94CB AFDD 3034 5109 5618 35AA 0B7F 8B60 E3ED FAE3
- ----------------------------
"Whenever you find yourself on the side of the majority, it is time to
pause and reflect."
(Mark Twain)
-----BEGIN PGP SIGNATURE-----
iQEcBAEBCgAGBQJU0S1oAAoJEP7VAChXwav6q/cH/RSI89Ktrz4hu6Cp/ZnzOP97
Vbv77lLxel/iEIo7UpmtWjrC27RsbSFm7uGOSb3rseqggtKs6T4W5KybN1kN37q2
svorgLd4GZ87cQnVXmwytgC7fIujSJ6sDP95yjmYLnTS9UJjKsvAnpKeSqXbrkBL
z42CIL6LkNW8zXpIsBXygXBlVbxjAlNnJFRXuoEo3opM6T8INFTAsohRsYx3IHwG
P9eYNOJ2wkvZoV74hPGJldj9uUSKV9tI2zL/ovrRMpgWTPYfAGCe8LTKgq2JCX7s
2XiWro7/V/nIGdogIM7krMIwI9yXw0dfan5WW7+kSxsKNOYaSp7Ix64E5nFouyc=
=oGn+
-----END PGP SIGNATURE-----
--
--
TELEHOST Datendienste GmbH
Stadthausstrasse 12
CH-8400 Winterthur
Tel. +41 (0)44 - 515 75 66
Fax. +41 (0)44 - 515 75 67
Sitz der Gesellschaft:
CH-8400 Winterthur
Eingetragen beim Handelsregisteramt des Kantons Zürich
Handelsregisternummer CHE-317.799.873
Geschäftsführer: Francesco Renzo
--
smime.p7s
Description: S/MIME Cryptographic Signature
- Re: [Sks-devel] Error in recon.log, (continued)
- Re: [Sks-devel] Error in recon.log, Kristian Fiskerstrand, 2015/02/03
- Re: [Sks-devel] Error in recon.log, TELEHOST Office, 2015/02/03
- Re: [Sks-devel] Error in recon.log, Kristian Fiskerstrand, 2015/02/03
- Re: [Sks-devel] Error in recon.log, TELEHOST Office, 2015/02/03
- Re: [Sks-devel] Error in recon.log, Kristian Fiskerstrand, 2015/02/03
- Re: [Sks-devel] Error in recon.log, Pete Stephenson, 2015/02/03
- Re: [Sks-devel] Error in recon.log, Kristian Fiskerstrand, 2015/02/03
- Re: [Sks-devel] Error in recon.log, TELEHOST Office, 2015/02/03
- Re: [Sks-devel] Error in recon.log, Kristian Fiskerstrand, 2015/02/03
- Re: [Sks-devel] Error in recon.log,
TELEHOST Office <=
- Re: [Sks-devel] Error in recon.log, Kristian Fiskerstrand, 2015/02/03
- Re: [Sks-devel] Error in recon.log, Andreas Puls, 2015/02/03
- Re: [Sks-devel] Error in recon.log, TELEHOST Office, 2015/02/03
- Re: [Sks-devel] Error in recon.log, Kristian Fiskerstrand, 2015/02/03
- Re: [Sks-devel] Error in recon.log, Daniel Kahn Gillmor, 2015/02/04
- Re: [Sks-devel] Error in recon.log, TELEHOST Office, 2015/02/04