[Pacemaker] IPaddr2 route problem on active

Longina Przybyszewska longina at sdu.dk
Mon Jun 17 10:48:46 EDT 2013 

Hi,
I have 2 node setup active/passive with drbd/file system/ip-failover

Ubuntu-12.04-2
Linux 3.5.0-34-generic

After Ip-failover is established on  active node, mount client on active  node uses still  real iP-addresse instead of alias ip .

I use standard simple configuration:
---
primitive p_IP ocf:heartbeat:IPaddr2 params ip="10.123.2.7" cidr_netmask="24" nic="eth0" iflabel="1"
---

Filesystem is exported always _TO_ active node , on ip failover - then I get 'Permision denied' on mount.

I tried to google the problem, and some mention that as kernel bug for amd64 arch, some other  point to tuning kernel variable with 'sysctl' command or sysctl.conf file.

In my case:
sysctl -a | grep error

error: permission denied on key 'net.ipv4.route.flush'
net.ipv4.icmp_errors_use_inbound_ifaddr = 0
net.ipv4.icmp_ignore_bogus_error_responses = 1
net.ipv4.route.error_burst = 1250
net.ipv4.route.error_cost = 250
error: permission denied on key 'net.ipv6.route.flush'

All parameters related to ipv4 and eth0 :

sysctl -a | grep eth0| grep ipv4

error: permission denied on key 'net.ipv4.route.flush'
error: permission denied on key 'net.ipv6.route.flush'
net.ipv4.conf.eth0.accept_local = 0
net.ipv4.conf.eth0.accept_redirects = 1
net.ipv4.conf.eth0.accept_source_route = 1
net.ipv4.conf.eth0.arp_accept = 0
net.ipv4.conf.eth0.arp_announce = 0
net.ipv4.conf.eth0.arp_filter = 0
net.ipv4.conf.eth0.arp_ignore = 0
net.ipv4.conf.eth0.arp_notify = 0
net.ipv4.conf.eth0.bootp_relay = 0
net.ipv4.conf.eth0.disable_policy = 0
net.ipv4.conf.eth0.disable_xfrm = 0
net.ipv4.conf.eth0.force_igmp_version = 0
net.ipv4.conf.eth0.forwarding = 1
net.ipv4.conf.eth0.log_martians = 0
net.ipv4.conf.eth0.mc_forwarding = 0
net.ipv4.conf.eth0.medium_id = 0
net.ipv4.conf.eth0.promote_secondaries = 1
net.ipv4.conf.eth0.proxy_arp = 0
net.ipv4.conf.eth0.proxy_arp_pvlan = 0
net.ipv4.conf.eth0.rp_filter = 1
net.ipv4.conf.eth0.secure_redirects = 1
net.ipv4.conf.eth0.send_redirects = 1
net.ipv4.conf.eth0.shared_media = 1
net.ipv4.conf.eth0.src_valid_mark = 0
net.ipv4.conf.eth0.tag = 0
net.ipv4.neigh.eth0.anycast_delay = 100
net.ipv4.neigh.eth0.app_solicit = 0
net.ipv4.neigh.eth0.base_reachable_time = 30
net.ipv4.neigh.eth0.base_reachable_time_ms = 30000
net.ipv4.neigh.eth0.delay_first_probe_time = 5
net.ipv4.neigh.eth0.gc_stale_time = 60
net.ipv4.neigh.eth0.locktime = 100
net.ipv4.neigh.eth0.mcast_solicit = 3
net.ipv4.neigh.eth0.proxy_delay = 80
net.ipv4.neigh.eth0.proxy_qlen = 64
net.ipv4.neigh.eth0.retrans_time = 100
net.ipv4.neigh.eth0.retrans_time_ms = 1000
net.ipv4.neigh.eth0.ucast_solicit = 3
net.ipv4.neigh.eth0.unres_qlen = 32
net.ipv4.neigh.eth0.unres_qlen_bytes = 65536
------
uname -a
Linux qrm1 3.5.0-34-generic #55~precise1-Ubuntu SMP Fri Jun 7 16:25:50 UTC 2013 x86_64 GNU/Linux

Any ideas how to fix it?

Med venlig hilsen

Longina Przybyszewska
Systemprogrammør, IT-service
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.clusterlabs.org/pipermail/pacemaker/attachments/20130617/e87eaef2/attachment-0002.html>

More information about the Pacemaker mailing list