One issue with having iptable rules injected by init.d scripts it that
the service needs restarting after every iptables restart. I'd prefer
we're told about nat redirect requirements and implement iptable rules
ourselves.
Peter
Laurence ([log in to unmask]) wrote:
> It looks like it is okay. It takes about 30 seconds for the BDII to
> first populate.
> To check the bdii do
>
> tail -f /opt/lcg/bdii/var/lcg-bdii.log
>
> Juan Jose Pardo Navarro wrote:
>
> >Hi,
> >
> >I have updated to 2_4_0, and the BDII has a error.
> >lcg-bdii put a rule of iptables,
> >
> >why?
> >
> >
> >[root@gridbdii01 root]# iptables -F
> >
> >[root@gridbdii01 root]# /etc/rc.d/init.d/lcg-bdii stop
> >iptables: Bad rule (does a matching rule exist in that chain?)
> >iptables: Bad rule (does a matching rule exist in that chain?)
> >iptables: Bad rule (does a matching rule exist in that chain?)
> >Stopping BDII [ OK ]
> >
> >[root@gridbdii01 root]# /etc/rc.d/init.d/lcg-bdii start
> >Starting BDII [ OK ]
> >
> >
> >
> >% ldapsearch -x -H ldap://gridbdii01.ft.uam.es:2170 -b \
> >mds-vo-name=local,o=grid
> >
> >ldap_bind: Can't contact LDAP server
> >
> >
> >
> >
> >
> >
> >
|