Getting "Connection refused" when runing hprop from master

classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|

Getting "Connection refused" when runing hprop from master

Adam Lewenberg
I trying to replicate the database from a master to a slave using hprop.
However, I am getting this error:

---------------------------------------------------
master# hprop -v kdc-slave-pre.example.com
connect(kdc-slave-pre.example.com): Connection refused
hprop: failed to contact kdc-slave-pre.example.com
hprop: connect kdc-slave-pre.example.com: Connection refused
---------------------------------------------------

I created the principal "hprop/kdc-slave-pre.example.com" on both the
master and slave with the same password.

On the slave, I exported the principal hprop/kdc-slave-pre.example.com
to the file /var/lib/heimdal-kdc/prop.keytab and I run this:

slave# hpropd -i --keytab=/var/lib/heimdal-kdc/prop.keytab

I see a little bit of network traffic from the master on the slave. This
is all I see on the slave side:
---------------------------------------------------
10:35:01.111888 IP 171.67.218.9.43986 > 10.111.1.197.754: Flags [S], seq
4050254657, win 14600, options [mss 1460,sackOK,TS val 1622827709 ecr
0,nop,wscale 7], length 0
10:35:01.111938 IP 10.111.1.197.754 > 171.67.218.9.43986: Flags [R.],
seq 0, ack 4050254658, win 0, length 0
---------------------------------------------------

The principal 'kadmin/hprop' exists on both master and slave (although
with different passwords).

Any ideas?


Reply | Threaded
Open this post in threaded view
|

Re: Getting "Connection refused" when runing hprop from master

Henry B (Hank) Hotz, CISSP-2
Why are you using hprop instead of iprop? It will automatically download the whole DB if the slave doesn’t have one (or it doesn’t have the binary log file that says what version of the DB it has).

> On Sep 12, 2017, at 10:40 AM, Adam Lewenberg <[hidden email]> wrote:
>
> I trying to replicate the database from a master to a slave using hprop. However, I am getting this error:
>
> ---------------------------------------------------
> master# hprop -v kdc-slave-pre.example.com
> connect(kdc-slave-pre.example.com): Connection refused
> hprop: failed to contact kdc-slave-pre.example.com
> hprop: connect kdc-slave-pre.example.com: Connection refused
> ---------------------------------------------------
>
> I created the principal "hprop/kdc-slave-pre.example.com" on both the master and slave with the same password.
>
> On the slave, I exported the principal hprop/kdc-slave-pre.example.com to the file /var/lib/heimdal-kdc/prop.keytab and I run this:
>
> slave# hpropd -i --keytab=/var/lib/heimdal-kdc/prop.keytab
>
> I see a little bit of network traffic from the master on the slave. This is all I see on the slave side:
> ---------------------------------------------------
> 10:35:01.111888 IP 171.67.218.9.43986 > 10.111.1.197.754: Flags [S], seq 4050254657, win 14600, options [mss 1460,sackOK,TS val 1622827709 ecr 0,nop,wscale 7], length 0
> 10:35:01.111938 IP 10.111.1.197.754 > 171.67.218.9.43986: Flags [R.], seq 0, ack 4050254658, win 0, length 0
> ---------------------------------------------------
>
> The principal 'kadmin/hprop' exists on both master and slave (although with different passwords).

You ought to use add -r to create those, not a password. Yes, they do need to match.

> Any ideas?
>
>

Personal email.  [hidden email]