On Sat, 6 Aug 2005, Sajjad Asghar wrote:
> Hi
> I have jus installed lcg 2_6_0 on our CE pcncp04.ncp.edu.pk. But I am
> getting error to retrieve information. ldapsearch commands returning
> following error
>
> [lxplus019] ~ > ldapsearch -x -H ldap://pcncp04.ncp.edu.pk:2170 -b
> mds-vo-name=NCP-Lcg2,o=grid
> ldap_bind: Can't contact LDAP server
>
> But same command works fine when I use it on the CE itself
> (pcncp04.ncp.edu.pk)
Did you stop the old lcg-bdii before upgrading?
In any case, what do these commands report:
iptables -L
iptables -L -t nat
There must be only rules that you explicitly put in yourself.
For example, on testbed CE lxb1766.cern.ch we still have the old lcg-bdii
and we see this:
-----------------------------------------------------------------------------
[root@lxb1766 root]# iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:2173
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:2172
ACCEPT tcp -- anywhere anywhere state NEW tcp dpt:2171
Chain FORWARD (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
-----------------------------------------------------------------------------
And:
-----------------------------------------------------------------------------
[root@lxb1766 root]# iptables -L -t nat
Chain PREROUTING (policy ACCEPT)
target prot opt source destination
REDIRECT tcp -- anywhere anywhere tcp dpt:2170 redir ports 2172
Chain POSTROUTING (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
DNAT tcp -- anywhere lxb1766.cern.ch tcp dpt:2170 to:128.142.66.36:2172
-----------------------------------------------------------------------------
All such rules must be removed.
If it still does not work, reboot the node.
|