[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: [Linux-cluster] Adding third node to existing cluster



> On Fri, Jul 16, 2010 at 2:06 AM, Rajkumar, Anoop <anoop_rajkumar merck com> wrote:
> Hi
>
> Here are the firewall settings
>
> #more /etc/sysconfig/iptables
> # Generated by iptables-save v1.3.5 on Wed Jul 14 10:13:12 2010
> *filter
> :INPUT ACCEPT [2:186]
> :FORWARD ACCEPT [0:0]
> :OUTPUT ACCEPT [4:486]
> -A INPUT -i eth5 -p udp -m udp --dport 5405 -j ACCEPT
> -A INPUT -i eth5 -p udp -m udp --sport 5405 -j ACCEPT
> -A INPUT -i eth0 -p tcp -m tcp --dport 14567 -j ACCEPT
> -A INPUT -i eth0 -p tcp -m tcp --sport 14567 -j ACCEPT
> -A INPUT -i eth0 -p tcp -m tcp --dport 16851 -j ACCEPT
> -A INPUT -i eth0 -p tcp -m tcp --sport 16851 -j ACCEPT
> -A INPUT -i eth5 -p udp -m udp --dport 50007 -j ACCEPT
> -A INPUT -i eth5 -p udp -m udp --sport 50007 -j ACCEPT
> -A INPUT -i eth5 -p tcp -m tcp --dport 11111 -j ACCEPT
> -A INPUT -i eth5 -p tcp -m tcp --sport 11111 -j ACCEPT
> -A INPUT -i eth5 -p tcp -m tcp --dport 21064 -j ACCEPT
> -A INPUT -i eth5 -p tcp -m tcp --sport 21064 -j ACCEPT
> -A INPUT -i eth5 -p tcp -m tcp --dport 50009 -j ACCEPT
> -A INPUT -i eth5 -p tcp -m tcp --sport 50009 -j ACCEPT
> -A INPUT -i eth5 -p tcp -m tcp --dport 50008 -j ACCEPT
> -A INPUT -i eth5 -p tcp -m tcp --sport 50008 -j ACCEPT
> -A INPUT -i eth5 -p tcp -m tcp --dport 50006 -j ACCEPT
> -A INPUT -i eth5 -p tcp -m tcp --sport 50006 -j ACCEPT
> -A INPUT -i eth5 -p tcp -m tcp --dport 41969 -j ACCEPT
> -A INPUT -i eth5 -p tcp -m tcp --sport 41969 -j ACCEPT
> -A INPUT -i eth5 -p tcp -m tcp --dport 41968 -j ACCEPT
> -A INPUT -i eth5 -p tcp -m tcp --sport 41968 -j ACCEPT
> -A INPUT -i eth5 -p tcp -m tcp --dport 41967 -j ACCEPT
> -A INPUT -i eth5 -p tcp -m tcp --sport 41967 -j ACCEPT
> -A INPUT -i eth5 -p tcp -m tcp --dport 41966 -j ACCEPT
> -A INPUT -i eth5 -p tcp -m tcp --sport 41966 -j ACCEPT
> -A OUTPUT -o eth5 -p udp -m udp --sport 5405 -j ACCEPT
> -A OUTPUT -o eth5 -p udp -m udp --dport 5405 -j ACCEPT
> -A OUTPUT -o eth0 -p tcp -m tcp --sport 14567 -j ACCEPT
> -A OUTPUT -o eth0 -p tcp -m tcp --dport 14567 -j ACCEPT
> -A OUTPUT -o eth0 -p tcp -m tcp --sport 16851 -j ACCEPT
> -A OUTPUT -o eth0 -p tcp -m tcp --dport 16851 -j ACCEPT
> -A OUTPUT -o eth5 -p udp -m udp --sport 50007 -j ACCEPT
> -A OUTPUT -o eth5 -p udp -m udp --dport 50007 -j ACCEPT
> -A OUTPUT -o eth5 -p tcp -m tcp --sport 11111 -j ACCEPT
> -A OUTPUT -o eth5 -p tcp -m tcp --dport 11111 -j ACCEPT
> -A OUTPUT -o eth5 -p tcp -m tcp --sport 21064 -j ACCEPT
> -A OUTPUT -o eth5 -p tcp -m tcp --dport 21064 -j ACCEPT
> -A OUTPUT -o eth5 -p tcp -m tcp --sport 50009 -j ACCEPT
> -A OUTPUT -o eth5 -p tcp -m tcp --dport 50009 -j ACCEPT
> -A OUTPUT -o eth5 -p tcp -m tcp --sport 50008 -j ACCEPT
> -A OUTPUT -o eth5 -p tcp -m tcp --dport 50008 -j ACCEPT
> -A OUTPUT -o eth5 -p tcp -m tcp --sport 50006 -j ACCEPT
> -A OUTPUT -o eth5 -p tcp -m tcp --dport 50006 -j ACCEPT
> -A OUTPUT -o eth5 -p tcp -m tcp --sport 41969 -j ACCEPT
> -A OUTPUT -o eth5 -p tcp -m tcp --dport 41969 -j ACCEPT
> -A OUTPUT -o eth5 -p tcp -m tcp --sport 41968 -j ACCEPT
> -A OUTPUT -o eth5 -p tcp -m tcp --dport 41968 -j ACCEPT
> -A OUTPUT -o eth5 -p tcp -m tcp --sport 41967 -j ACCEPT
> -A OUTPUT -o eth5 -p tcp -m tcp --dport 41967 -j ACCEPT
> -A OUTPUT -o eth5 -p tcp -m tcp --sport 41966 -j ACCEPT
> -A OUTPUT -o eth5 -p tcp -m tcp --dport 41966 -j ACCEPT
> COMMIT
>
> Here are the IP in the system,I am using eth5 (Which is in private network
> with other two nodes, connected to switch)
>
> [root usrylxap235 ~]# ip addr list
> 1: lo: <LOOPBACK,UP,LOWER_UP> mtu 16436 qdisc noqueue
>     link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
>     inet 127.0.0.1/8 scope host lo
>     inet6 ::1/128 scope host
>        valid_lft forever preferred_lft forever
> 2: eth0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast qlen
> 1000
>     link/ether 00:1c:c4:f0:bd:d8 brd ff:ff:ff:ff:ff:ff
>     inet 54.3.254.235/24 brd 54.3.254.255 scope global eth0
>     inet6 fe80::21c:c4ff:fef0:bdd8/64 scope link
>        valid_lft forever preferred_lft forever
> 3: eth1: <BROADCAST,MULTICAST> mtu 1500 qdisc noop qlen 1000
>     link/ether 00:1c:c4:f0:bd:da brd ff:ff:ff:ff:ff:ff
> 4: eth2: <BROADCAST,MULTICAST> mtu 1500 qdisc noop qlen 1000
>     link/ether 00:1c:c4:5e:f8:d8 brd ff:ff:ff:ff:ff:ff
> 5: eth3: <BROADCAST,MULTICAST> mtu 1500 qdisc noop qlen 1000
>     link/ether 00:1c:c4:5e:f8:da brd ff:ff:ff:ff:ff:ff
> 6: eth4: <BROADCAST,MULTICAST> mtu 1500 qdisc noop qlen 1000
>     link/ether 00:1e:0b:71:ac:6c brd ff:ff:ff:ff:ff:ff
> 7: eth5: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc pfifo_fast qlen
> 1000
>     link/ether 00:1e:0b:71:ac:6e brd ff:ff:ff:ff:ff:ff
>     inet 192.168.0.7/24 brd 192.168.0.255 scope global eth5
>     inet6 fe80::21e:bff:fe71:ac6e/64 scope link
>        valid_lft forever preferred_lft forever
> 8: sit0: <NOARP> mtu 1480 qdisc noop
>     link/sit 0.0.0.0 brd 0.0.0.0
>
> Thanks
> Anoop

Hi,

Let's see if we can rule out security or network issues here. Are you
able to allow all traffic for eth5 on all nodes? In addition, you may
want to add a static multicast route to ensure the multicast traffic
is going through eth5 on all nodes.

Regards,
Bernard


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]