[389-users] Multimaster replication query
Rich Megginson
rmeggins at redhat.com
Fri Jun 17 14:16:05 UTC 2011
On 06/16/2011 11:45 PM, s.varadha rajan wrote:
> Hi,
>
> i ran the below command in supplier side and the output is,
>
> # extended LDIF
> #
> # LDAPv3
> # base <cn=config> with scope subtree
> # filter: (objectclass=nsds5replicationagreement)
> # requesting: ALL
> #
>
> # Replication from varad.xxx.xxx.com <http://varad.xxx.xxx.com> port
> 389 to sam.xxx.xxx.com <http://sam.xxx.xxx.com> po
> rt 389, replica, o\3Dnetscaperoot, mapping tree, config
> dn: cn="Replication from varad.xxx.xxx.com <http://varad.xxx.xxx.com>
> port 389 to sam.xxx.xxx.c
> om port 389",cn=replica,cn="o=netscaperoot",cn=mapping tree,cn=config
> objectClass: top
> objectClass: nsDS5ReplicationAgreement
> cn: "Replication from varad.xxx.xxx.com <http://varad.xxx.xxx.com>
> port 389 to sam.xxx.xxx.com <http://sam.xxx.xxx.com>
> port 389"
> nsDS5ReplicaHost: sam.xxx.xxx.com <http://sam.xxx.xxx.com>
> nsDS5ReplicaRoot: o=netscaperoot
This is the problem. I doubt that you wanted to replicate
o=netscaperoot. You probably wanted to replicate your user data suffix
e.g. dc=example,dc=com.
Can someone please fix mmr.pl?
> nsDS5ReplicaPort: 389
> nsDS5ReplicaBindDN: cn=repman,cn=config
> nsDS5ReplicaBindMethod: simple
> nsds5replicaTimeout: 120
> nsDS5ReplicaCredentials: {DES}VdEnvxoUkmw1TpV1QyVPtg==
> nsds5replicareapactive: 0
> nsds5replicaLastUpdateStart: 20110616123147Z
> nsds5replicaLastUpdateEnd: 20110616123147Z
> nsds5replicaChangesSentSinceStartup:: MToxNC8wIA==
> nsds5replicaLastUpdateStatus: 0 Incremental update succeeded
> nsds5replicaUpdateInProgress: FALSE
> nsds5replicaLastInitStart: 20110616104148Z
> nsds5replicaLastInitEnd: 20110616104153Z
> nsds5replicaLastInitStatus: 0 Total update succeeded
>
> # search result
> search: 2
> result: 0 Success
>
> # numResponses: 2
> # numEntries: 1
>
>
> Regards,
> Varad
>
>
>
> On Thu, Jun 16, 2011 at 8:47 PM, Rich Megginson <rmeggins at redhat.com
> <mailto:rmeggins at redhat.com>> wrote:
>
> On 06/16/2011 07:33 AM, s.varadha rajan wrote:
>> Hi,
>>
>> For me no issues to recive the logs.anyway, i have performed the
>> following steps again,
>>
>> 1.Stop the "dirsrv" on both sides.
>> 2.Enabled "nsslapd-errorlog-level: 8192" on both servers in
>> "dse.ldif" file.
>> 3.Started the "dirsrv" on both servers.
>> 4.Export the datas in .ldif and imported to "sam" system
>> 4.From "varad.xxx.xxx.com <http://varad.xxx.xxx.com>,Remove the
>> agreement again (./mmr.pl <http://mmr.pl> --host1
>> varad.xxx.xxx.com <http://varad.xxx.xxx.com> --host2
>> sam.xxx.xxx.com <http://sam.xxx.xxx.com> --host1_id 1 --host2_id
>> 2 --bindpw <password> --repmanpw <password> --remove)
>> 5.From "varad.xxx.xxx.com <http://varad.xxx.xxx.com>,Created
>> agreement again (./mmr.pl <http://mmr.pl> --host1
>> varad.xxx.xxx.com <http://varad.xxx.xxx.com> --host2
>> sam.xxx.xxx.com <http://sam.xxx.xxx.com> --host1_id 1 --host2_id
>> 2 --bindpw <password> --repmanpw <password> --create)
>> 6.Then created one user under "ou=people" , as a uid=TT in
>> supplier side (varad.xxx.xxx.com <http://varad.xxx.xxx.com>)
>> 7.but not replicated in other system...
>>
>> Supplier system (/var/log/dirsrv/slapd-varad/errors):
>> (varad.xxx.xxx.com <http://varad.xxx.xxx.com>):
>>
>> [16/Jun/2011:18:36:48 +051800] NSMMReplicationPlugin -
>> agmt="cn="Replication from varad.xxx.xxx.com
>> <http://varad.xxx.xxx.com> port 389 to sam.xxx.xxx.com
>> <http://sam.xxx.xxx.com> port 389"" (sam:389): Disconnected from
>> the consumer
>> [16/Jun/2011:18:36:48 +051800] NSMMReplicationPlugin -
>> agmt="cn="Replication from varad.xxx.xxx.com
>> <http://varad.xxx.xxx.com> port 389 to sam.xxx.xxx.com
>> <http://sam.xxx.xxx.com> port 389"" (sam:389): State: start ->
>> ready_to_acquire_replica
>> [16/Jun/2011:18:36:48 +051800] NSMMReplicationPlugin -
>> agmt="cn="Replication from varad.xxx.xxx.com
>> <http://varad.xxx.xxx.com> port 389 to sam.xxx.xxx.com
>> <http://sam.xxx.xxx.com> port 389"" (sam:389): State:
>> ready_to_acquire_replica -> wait_for_changes
>> [16/Jun/2011:18:41:49 +051800] NSMMReplicationPlugin -
>> agmt="cn="Replication from varad.xxx.xxx.com
>> <http://varad.xxx.xxx.com> port 389 to sam.xxx.xxx.com
>> <http://sam.xxx.xxx.com> port 389"" (sam:389): State:
>> wait_for_changes -> wait_for_changes
>> [16/Jun/2011:18:41:49 +051800] NSMMReplicationPlugin -
>> agmt="cn="Replication from varad.xxx.xxx.com
>> <http://varad.xxx.xxx.com> port 389 to sam.xxx.xxx.com
>> <http://sam.xxx.xxx.com> port 389"" (sam:389): State:
>> wait_for_changes -> start
>> [16/Jun/2011:18:41:49 +051800] NSMMReplicationPlugin -
>> agmt="cn="Replication from varad.xxx.xxx.com
>> <http://varad.xxx.xxx.com> port 389 to sam.xxx.xxx.com
>> <http://sam.xxx.xxx.com> port 389"" (sam:389): No linger to
>> cancel on the connection
>> [16/Jun/2011:18:41:49 +051800] NSMMReplicationPlugin -
>> agmt="cn="Replication from varad.xxx.xxx.com
>> <http://varad.xxx.xxx.com> port 389 to sam.xxx.xxx.com
>> <http://sam.xxx.xxx.com> port 389"" (sam:389): Disconnected from
>> the consumer
>> [16/Jun/2011:18:41:49 +051800] NSMMReplicationPlugin -
>> agmt="cn="Replication from varad.xxx.xxx.com
>> <http://varad.xxx.xxx.com> port 389 to sam.xxx.xxx.com
>> <http://sam.xxx.xxx.com> port 389"" (sam:389): State: start ->
>> ready_to_acquire_replica
>> [16/Jun/2011:18:41:49 +051800] NSMMReplicationPlugin -
>> agmt="cn="Replication from varad.xxx.xxx.com
>> <http://varad.xxx.xxx.com> port 389 to sam.xxx.xxx.com
>> <http://sam.xxx.xxx.com> port 389"" (sam:389): State:
>> ready_to_acquire_replica -> wait_for_changes
>>
>> Consumer system: (sam.xxx.xxx.xom):
>>
>> [16/Jun/2011:18:46:15 +051800] NSMMReplicationPlugin -
>> agmt="cn="Replication from sam.xxx.xxx.com
>> <http://sam.xxx.xxx.com> port 389 to varad.xxx.xxx.com
>> <http://varad.xxx.xxx.com> port 389"" (varad:389): Disconnected
>> from the consumer
>> [16/Jun/2011:18:46:15 +051800] NSMMReplicationPlugin -
>> agmt="cn="Replication from sam.xxx.xxx.com
>> <http://sam.xxx.xxx.com> port 389 to varad.xxx.xxx.com
>> <http://varad.xxx.xxx.com> port 389"" (varad:389): State: start
>> -> ready_to_acquire_replica
>> [16/Jun/2011:18:46:15 +051800] NSMMReplicationPlugin -
>> agmt="cn="Replication from sam.xxx.xxx.com
>> <http://sam.xxx.xxx.com> port 389 to varad.xxx.xxx.com
>> <http://varad.xxx.xxx.com> port 389"" (varad:389): State:
>> ready_to_acquire_replica -> wait_for_changes
>> [16/Jun/2011:18:51:15 +051800] NSMMReplicationPlugin -
>> agmt="cn="Replication from sam.xxx.xxx.com
>> <http://sam.xxx.xxx.com> port 389 to varad.xxx.xxx.com
>> <http://varad.xxx.xxx.com> port 389"" (varad:389): State:
>> wait_for_changes -> wait_for_changes
>> [16/Jun/2011:18:51:15 +051800] NSMMReplicationPlugin -
>> agmt="cn="Replication from sam.xxx.xxx.com
>> <http://sam.xxx.xxx.com> port 389 to varad.xxx.xxx.com
>> <http://varad.xxx.xxx.com> port 389"" (varad:389): State:
>> wait_for_changes -> start
>> [16/Jun/2011:18:51:15 +051800] NSMMReplicationPlugin -
>> agmt="cn="Replication from sam.xxx.xxx.com
>> <http://sam.xxx.xxx.com> port 389 to varad.xxx.xxx.com
>> <http://varad.xxx.xxx.com> port 389"" (varad:389): No linger to
>> cancel on the connection
>> [16/Jun/2011:18:51:15 +051800] NSMMReplicationPlugin -
>> agmt="cn="Replication from sam.xxx.xxx.com
>> <http://sam.xxx.xxx.com> port 389 to varad.xxx.xxx.com
>> <http://varad.xxx.xxx.com> port 389"" (varad:389): Disconnected
>> from the consumer
>> [16/Jun/2011:18:51:15 +051800] NSMMReplicationPlugin -
>> agmt="cn="Replication from sam.xxx.xxx.com
>> <http://sam.xxx.xxx.com> port 389 to varad.xxx.xxx.com
>> <http://varad.xxx.xxx.com> port 389"" (varad:389): State: start
>> -> ready_to_acquire_replica
>> [16/Jun/2011:18:51:15 +051800] NSMMReplicationPlugin -
>> agmt="cn="Replication from sam.xxx.xxx.com
>> <http://sam.xxx.xxx.com> port 389 to varad.xxx.xxx.com
>> <http://varad.xxx.xxx.com> port 389"" (varad:389): State:
>> ready_to_acquire_replica -> wait_for_changes
>>
>> So,please let me know what is the problem ? and how to resolve ?
> on the supplier
> ldapsearch -x -D "cn=directory manager" -W -b cn=config
> '(objectclass=nsds5replicationagreement)'
>
>>
>> Regards,
>> Varad
>>
>>
>> On Wed, Jun 15, 2011 at 7:41 PM, Rich Megginson
>> <rmeggins at redhat.com <mailto:rmeggins at redhat.com>> wrote:
>>
>> On 06/14/2011 11:59 PM, s.varadha rajan wrote:
>>> Hi,
>>>
>>> Thanks for the reply.that's ok.but if i create one new user
>>> in supplier side,it's not replicating to consumer side.i
>>> think ubuntu 10.04 LTS supports fedora-ds 1.1.x and dont
>>> have updated ppa links. for this case, shall i upgrade the
>>> latest version, will give the solution? After upgrade, how
>>> can i migrate my existing data.
>> First check your errors log on your supplier side to see if
>> there are any errors during the incremental update phase (the
>> messages below are from the init phase), then check the
>> access log on the consumer side to see if the supplier is
>> connecting and attempting to send the new user.
>>
>> If that shows nothing, then try enabling the replication log
>> level -
>> http://directory.fedoraproject.org/wiki/FAQ#Troubleshooting
>>
>>>
>>> or give me a solution for this.
>>>
>>> Regards,
>>> Varad
>>>
>>>
>>> On Tue, Jun 14, 2011 at 8:26 PM, Rich Megginson
>>> <rmeggins at redhat.com <mailto:rmeggins at redhat.com>> wrote:
>>>
>>> On 06/14/2011 08:23 AM, s.varadha rajan wrote:
>>>> Hi,
>>>>
>>>> I followed the procedure to configure
>>>> "multi-master replication" as per
>>>> http://directory.fedoraproject.org/wiki/Howto:MultiMasterReplication.
>>>> but i got an error as
>>>>
>>>> _From consumer side:_
>>>>
>>>> 14/Jun/2011:19:25:41 +051800] NSMMReplicationPlugin -
>>>> multimaster_be_state_change: replica o=netscaperoot is
>>>> coming online; enabling replication
>>>> [14/Jun/2011:19:25:41 +051800] NSMMReplicationPlugin -
>>>> replica_reload_ruv: Warning: new data for replica
>>>> o=netscaperoot does not match the data in the changelog.
>>>> Recreating the changelog file. This could affect
>>>> replication with replica's consumers in which case the
>>>> consumers should be reinitialized.
>>> This is not an error. It just means the consumer has
>>> been initialized with data from the master, and it had
>>> old data (probably from setup) which was wiped out.
>>>
>>>>
>>>> _From Supplier side:_
>>>>
>>>> [14/Jun/2011:19:26:12 +051800] NSMMReplicationPlugin -
>>>> Beginning total update of replica
>>>> "agmt="cn="Replication from varad.xxx.xxx.com
>>>> <http://varad.xxx.xxx.com> port 389 to sam.xxx.xxx.com
>>>> <http://sam.xxx.xxx.com> port 389"" (sam:389)".
>>>> [14/Jun/2011:19:26:15 +051800] NSMMReplicationPlugin -
>>>> Finished total update of replica "agmt="cn="Replication
>>>> from varad.xxx.xxx.com <http://varad.xxx.xxx.com> port
>>>> 389 to sam.xxx.xxx.com <http://sam.xxx.xxx.com> port
>>>> 389"" (sam:389)". Sent 120 entries.
>>>>
>>>>
>>>> We are using the OS-Ubuntu 10.04. I searched in google
>>>> and got the some result in
>>>> "https://bugzilla.redhat.com/show_bug.cgi?id=388021".
>>>> but i dont know how to fix this.Please help on this.
>>>>
>>>> Regards,
>>>> Varad
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>>
>>>> On Mon, May 30, 2011 at 12:27 PM, s.varadha rajan
>>>> <rajanvaradhu at gmail.com
>>>> <mailto:rajanvaradhu at gmail.com>> wrote:
>>>> >
>>>> > Hi,
>>>> >
>>>> > Thanks for the reply.I will try and update you further.
>>>> >
>>>> > Regards,
>>>> > Varad
>>>> >
>>>> >
>>>> >
>>>> > On Fri, May 27, 2011 at 8:30 PM, Rich Megginson
>>>> <rmeggins at redhat.com <mailto:rmeggins at redhat.com>> wrote:
>>>> >>
>>>> >> On 05/27/2011 12:11 AM, s.varadha rajan wrote:
>>>> >>
>>>> >> Hi,
>>>> >>
>>>> >> Can i get any update on my below query ?
>>>> >>
>>>> >> Regards,
>>>> >> Varad
>>>> >>
>>>> >> On Tue, May 24, 2011 at 6:17 PM, s.varadha rajan
>>>> <rajanvaradhu at gmail.com
>>>> <mailto:rajanvaradhu at gmail.com>> wrote:
>>>> >>>
>>>> >>> Hi,
>>>> >>> We are using Ubuntu 10.04 server OS and all the web
>>>> applications are running on that.We have already
>>>> implemented fedora-ds for ldap auth.now we are planning
>>>> to go some up-gradation.kindly let me know the following,
>>>> >>> 1.How to migrate running fedora-ds server to
>>>> another server ?
>>>> >>> 2.i have taken all the user/group+etc in ldif
>>>> format.is <http://format.is> it enough for migration or
>>>> any other db (/var/lib/dirsrv/slapd-<instance>) also
>>>> need to bacup ?
>>>> >>
>>>> >> LDIF should be fine.
>>>> >>>
>>>> >>> if any procedure please share with me ? how to
>>>> import/export .ldif file
>>>> >>
>>>> >> /usr/lib[64]/dirsrv/slapd-INSTNAME/db2ldif - export
>>>> database to ldif
>>>> >> /usr/lib[64]/dirsrv/slapd-INSTNAME/ldif2db - import
>>>> database from ldif
>>>> >>>
>>>> >>> 3.in <http://3.in> our setup,one server is in
>>>> public network.so i am planning to do replication
>>>> through "ldaps", i.e local server to public server
>>>> replication through highly secure how to ?
>>>> >>
>>>> >> Not exactly, but there is plenty of documentation -
>>>> see
>>>> http://docs.redhat.com/docs/en-US/Red_Hat_Directory_Server/8.2/html-single/Administration_Guide/index.html#Managing_Replication-Replication_Overview
>>>> >>>
>>>> >>> Please help me on the above topics.
>>>> >>> Regards,
>>>> >>> Varad
>>>> >>
>>>> >> --
>>>> >> 389 users mailing list
>>>> >> 389-users at lists.fedoraproject.org
>>>> <mailto:389-users at lists.fedoraproject.org>
>>>> >>
>>>> https://admin.fedoraproject.org/mailman/listinfo/389-users
>>>> >
>>>>
>>>
>>>
>>
>>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.fedoraproject.org/pipermail/389-users/attachments/20110617/c3ed8ee6/attachment.html>
More information about the 389-users
mailing list