Hi Jonathan,
Try
iptables -F -t nat
Helped for us.
Good luck.
Andreas
On Wed, 21 Sep 2005, Jonathan Schaeffer wrote:
> Hi all,
>
> I'm having a lot of fun in these times making a BDII to work correctly.
> Usualy, it works perfectly, but for this installation, I'm facing some
> troubles.
>
> It's a site BDII. It runs :
>
> $ ps -edf | grep bdii
> edguser 7107 1 0 Sep20 ? 00:01:01 /usr/bin/perl -w
> /opt/bdii//sbin/bdii-update /opt/bdii/etc/bdii.conf
> edguser 7158 1 0 Sep20 ? 00:00:00 bdii-fwd [accepting
> proxy for
> localhost]
>
>
> root 31193 31179 0 09:30 pts/0 00:00:00 script
> /afs/in2p3.fr/common/rootacc/rootacc.cclcgbdiili01.31179.log
> root 31217 31193 0 09:30 pts/0 00:00:00 script
> /afs/in2p3.fr/common/rootacc/rootacc.cclcgbdiili01.31179.log
> edguser 32651 1 0 10:00 ? 00:00:00 /usr/sbin/slapd -f
> /opt/bdii//var/2172/bdii-slapd.conf -h ldap://localhost:2172 -u edguser
> edguser 32708 1 0 10:01 ? 00:00:00 /usr/sbin/slapd -f
> /opt/bdii//var/2173/bdii-slapd.conf -h ldap://localhost:2173 -u edguser
>
> Looking at the active ports, I get :
> netstat -ln
> tcp 0 0 134.158.105.155:2170
> 0.0.0.0:* LISTEN
> tcp 0 0 127.0.0.1:2171
> 0.0.0.0:* LISTEN
> tcp 0 0 127.0.0.1:2172
> 0.0.0.0:* LISTEN
> tcp 0 0 127.0.0.1:2173
> 0.0.0.0:* LISTEN
>
> # telnet 127.0.0.1 2171
> Trying 127.0.0.1...
> Connected to 127.0.0.1.
>
> and it works with 2172 and 2173 too.
>
> I know that our firewall is correctly configured and the IP tables are empty
>
> However, trying to contact port 2170 is hopeless :
> From another machine :
> $ ldapsearch -x -h cclcgbdiili01.in2p3.fr:2170 -b o=grid
> ldap_bind: Can't contact LDAP server (-1)
>
> From inside :
> # telnet 127.0.0.1 2170
> Trying 127.0.0.1...
> telnet: connect to address 127.0.0.1: Connection refused
>
>
> The logs of the BDII shows no errors. But the file bdii-fwd.log is empty.
>
> I'm clueless right now...
>
> so if anybody has an idea, I'm ready to try almost everything :)
>
> Jonathan
>
++++++++++++++++++
Andreas Gellrich
DESY IT
++++++++++++++++++
|