> I've been having problems with my site giis. I know that the service is
> up and running and that if I query it on ports 2171, 2172, 2173 it
> responds; but no answer is received when queried on default port (2170).
> In fact it says that it can't contact any ldap server. I don't use
> iptables and tried out looking with netstat for the 2170 port but
> nothing seems to be using it. Did somebody knows how to solve it?
The BDII in LCG-2_4_x is organized as follows: there are three instances
listening ports 2171, 2172, 2173. And there are mangling of the nat table of
iptables to redirect port 2170 to one of that ports, such a load-balancing.
So you must check if your nat table looks good. The command is
$ iptables -t nat --list
Our table looks like
-----
Chain PREROUTING (policy ACCEPT)
target prot opt source destination
REDIRECT tcp -- anywhere anywhere tcp dpt:2170 redir ports 2173
Chain POSTROUTING (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
DNAT tcp -- anywhere gate.grid.kiae.ru tcp dpt:2170 to:144.206.66.11:2173
-----
It allows connections to port 2173 and redirects port 2170 to 2173.
If you do not have such entries you should look at /etc/init.d/lcg-bdii script
and debug it.
Hope this helps.
--
rea
|