LVS
lvs-users
Google
 
Web LinuxVirtualServer.org

Re: virtualserver.alert problem

To: lvs-users@xxxxxxxxxxxxxxxxxxxxxx
Subject: Re: virtualserver.alert problem
From: "Daniel O'Neill" <djo@xxxxxxxxxxxxxxxxxxxxxx>
Date: Thu, 27 Jun 2002 11:11:10 -0700
On Thu, Jun 27, 2002 at 08:14:58AM -0400, Carlos Ordonez wrote:
> 
> I had to do a "chown root.root mon" so that mon will run as root to issue
> ipvsadm commands. Carlos :-)

Or even easier you can just edit /etc/init.d/mon and change group and user to 
root.

I still wonder if this is the *best* way, or if making something suid root is 
better (or just equivalent?)
> 
> 
> 
> 
> Carlos A. Ordonez
> IBM Corporation
> Server Consolidation
> 
> 
> 
> |---------+-------------------------------------->
> |         |           "Daniel O'Neill"           |
> |         |           <djo@xxxxxxxxxxxxxxxxxxxxxx|
> |         |           >                          |
> |         |           Sent by:                   |
> |         |           lvs-users-admin@LinuxVirtua|
> |         |           lServer.org                |
> |         |                                      |
> |         |                                      |
> |         |           06/26/2002 10:48 PM        |
> |         |           Please respond to lvs-users|
> |         |                                      |
> |---------+-------------------------------------->
>   
> >-------------------------------------------------------------------------------------------------------------------------------|
>   |                                                                           
>                                                     |
>   |        To:      lvs-users@xxxxxxxxxxxxxxxxxxxxxx                          
>                                                     |
>   |        cc:                                                                
>                                                     |
>   |                 From:                                                     
>                                                     |
>   |               Subject:      Re: virtualserver.alert problem               
>                                                     |
>   |                                                                           
>                                                     |
>   
> >-------------------------------------------------------------------------------------------------------------------------------|
> 
> 
> 
> 
> One problem I've found is that mon is running as daemon and apparently
> doesn't have the permissions to issue ipvsadm commands
> 
> 
> On Wed, Jun 26, 2002 at 02:14:25PM -0700, Daniel O'Neill wrote:
> > I have a working mon configuration up to the point of working mail alert
> for fping and telnet monitor.  Now I am trying to get virtualserver.alert
> to send commands to LVS and something is wrong.  I've set up a one-node
> telnet realserver at 192.168.1.243 which is working correctly.  My VIP is
> 192.168.1.110.
> >
> > I then issue the commands:
> >
> > ipvsadm -C
> > ipvsadm -A -t 192.168.1.110:23 -s rr
> >
> > and then run /var/lib/mon/alert.d/virtualserver.alert  -u -a -t
> 192.168.1.110:23 -r 192.168.1.243 -g -w 1
> >
> > which is what is says to do to test the alert but it fails with the
> output:
> >
> > ------------------virtualserver.alert output-----------------------------
> > command line params: -u -a -t 192.168.1.110:23 -r 192.168.1.243 -g -w 1
> > Unknown option: a
> > Unknown option: r
> > , , , 192.168.1.110:23, , , , , ,
> > , , , , ,
> > kernel_type: 2.4.18-lvs2
> >
> > 2.2.x or 2.4.x kernel on director
> > bring server  up
> > /sbin/ipvsadm    -r   -w
> > Try `/sbin/ipvsadm -h' or '/sbin/ipvsadm --help' for more information.
> > ------------------------------end
> output-------------------------------------
> > (I commented out the extra print lines in the script for debugging...)
> >
> > If I run virtualserver.alert with no arguments I get:
> >
> > -------------virtualserver.alert
> output--------------------------------------
> > command line params:
> > , , , , , , , , ,
> > , , , , ,
> > kernel_type: 2.4.18-lvs2
> >
> > 2.2.x or 2.4.x kernel on director
> > bring server  down
> > /sbin/ipvsadm    -r
> > /sbin/ipvsadm: option requires an argument -- r
> > Try `/sbin/ipvsadm -h' or '/sbin/ipvsadm --help' for more information.
> > ------------------------end
> output-------------------------------------------
> > Not sure what is going on here but it is definitely failing to bring the
> realserver node up or down.
> >
> >
> >
> >
> > --
> > Daniel O'Neill
> > Systems Engineer
> > djoneill@xxxxxxxxxxxxxxxxx
> > 415.644.9600 ext. 238 tel.
> > 415.644.0015 fax
> >
> > _______________________________________________
> > LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
> > Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
> > or go to http://www.in-addr.de/mailman/listinfo/lvs-users
> 
> --
> Daniel O'Neill
> Systems Engineer
> djoneill@xxxxxxxxxxxxxxxxx
> 415.644.9600 ext. 238 tel.
> 415.644.0015 fax
> 
> _______________________________________________
> LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
> Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
>  or go to http://www.in-addr.de/mailman/listinfo/lvs-users
> 
> 
> 
> 
> 
> _______________________________________________
> LinuxVirtualServer.org mailing list - lvs-users@xxxxxxxxxxxxxxxxxxxxxx
> Send requests to lvs-users-request@xxxxxxxxxxxxxxxxxxxxxx
> or go to http://www.in-addr.de/mailman/listinfo/lvs-users

-- 
Daniel O'Neill
Systems Engineer
djoneill@xxxxxxxxxxxxxxxxx
415.644.9600 ext. 238 tel.
415.644.0015 fax


<Prev in Thread] Current Thread [Next in Thread>