Ryan Burke
2007-Jun-14 18:42 UTC
[Fwd: Re: [Xen-users] Connection-Problems to servers of my domain (2)]
Copying to list.... ---------------------------- Original Message ---------------------------- Subject: Re: [Xen-users] Connection-Problems to servers of my domain (2) From: "Ryan Burke" <burke@tailorhosting.com> Date: Thu, June 14, 2007 1:41 pm To: "Thomas von Haugwitz" <th.von.haugwitz@gmx.de> --------------------------------------------------------------------------> Hello, > > the security-related settings were properly adjusted for both the mysql > and > postgres servers (due to a routine installation). A "nmap -sT xendbsrv00 > -p > 3306" or "nmap -sT xendbsrv00 -p 5432" call on my master-machine returns > with > PORT STATE SERVICE > 3306/tcp closed mysql > PORT STATE SERVICE > 5432/tcp closed postgres > although mysql / postgres are definitely running... Im quite confused, > this > shouldnt be... > root 2242 0.0 0.9 4496 1244 ? S 20:53 0:00 /bin/sh > /usr/bin/mysqld_safe --defaults-file=/etc/my.cnf > --pid-file=/var/run/mysqld/ > mysqld.pi > mysql 2278 0.0 14.8 137092 19512 ? Sl 20:53 0:00 > /usr/libexec/mysqld --defaults-file=/etc/my.cnf --basedir=/usr > --datadir=/va > r/lib/mysql --use > p > postgres 2699 1.9 2.4 20888 3280 ? S 21:45 0:01 > /usr/bin/postmaster -p 5432 -D /var/lib/pgsql/data > postgres 2704 0.0 0.6 10668 800 ? S 21:45 0:00 postgres: > logger process > postgres 2706 0.0 0.8 20888 1060 ? S 21:45 0:00 postgres: > writer process > postgres 2707 0.0 0.5 11668 780 ? S 21:45 0:00 postgres: > stats buffer process > postgres 2708 0.0 0.7 10812 968 ? S 21:45 0:00 postgres: > stats collector process > > iptables / ip6tables are disabled!!! :-( > > Greetings > > thomas > > ----- Original Message ----- > From: "Tom Brown" <tbrown@baremetal.com> > To: "Thomas von Haugwitz" <th.von.haugwitz@gmx.de> > Sent: Thursday, June 14, 2007 8:12 PM > Subject: Re: [Xen-users] Connection-Problems to servers of my domain (2) > > >> On Thu, 14 Jun 2007, Thomas von Haugwitz wrote: >> >> > Hello people, >> > >> > i asked for help due to connection problems to servers installed in my >> > "xendbsrv00" domain. the problem still exists even if iptables and >> > ip6tables are disabled on both sides. the connection to the sshd on my >> > domain works perfectly. I still was not able to figure out why i can >> > connect to sshd, but not the the installed mysqld and postgres >> daemons. >> >> both mysql and postgress have their own security systems, which I expect >> refuse logins from external machines by default. >In the DomU run "netstat -alpntu" and it will show all open/listening ports. Make sure that they are bound correctly to ports 3306 and 5432. they probably are, but just making sure the process is running doesn''t guarentee it has opened the sockets correctly. Ryan _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users
Thomas von Haugwitz
2007-Jun-14 19:22 UTC
Re: Re: [Xen-users] Connection-Problems to servers of my domain (2)]
Hello ryan, the netstat-call on the DomU tells me the following Aktive Internetverbindungen (Server und stehende Verbindungen) Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name tcp 0 0 0.0.0.0:3306 0.0.0.0:* LISTEN 1684/mysqld ... tcp 0 0 127.0.0.1:5432 0.0.0.0:* LISTEN 1388/postmaster tcp 0 0 127.0.0.1:25 0.0.0.0:* LISTEN 1410/sendmail: acce ... which means postmaster (the postgres-"entrypoint") and mysqld are running properly. I can connect to the mysql-server now and i figured out, that postgres runs on my DomU on Localhost 127.0.0.1:5432, which is the problem. it should run on the DomU''s Host-IP-Address, not localhost. Thank you very much for your help, mailinglist-people! Greetings from germany thomas ----- Original Message ----- From: "Ryan Burke" <burke@tailorhosting.com> To: <xen-users@lists.xensource.com> Sent: Thursday, June 14, 2007 8:42 PM Subject: [Fwd: Re: [Xen-users] Connection-Problems to servers of my domain (2)] Copying to list.... ---------------------------- Original Message ---------------------------- Subject: Re: [Xen-users] Connection-Problems to servers of my domain (2) From: "Ryan Burke" <burke@tailorhosting.com> Date: Thu, June 14, 2007 1:41 pm To: "Thomas von Haugwitz" <th.von.haugwitz@gmx.de> --------------------------------------------------------------------------> Hello, > > the security-related settings were properly adjusted for both the mysql > and > postgres servers (due to a routine installation). A "nmap -sT xendbsrv00 > -p > 3306" or "nmap -sT xendbsrv00 -p 5432" call on my master-machine returns > with > PORT STATE SERVICE > 3306/tcp closed mysql > PORT STATE SERVICE > 5432/tcp closed postgres > although mysql / postgres are definitely running... Im quite confused, > this > shouldnt be... > root 2242 0.0 0.9 4496 1244 ? S 20:53 0:00 /bin/sh > /usr/bin/mysqld_safe --defaults-file=/etc/my.cnf > --pid-file=/var/run/mysqld/ > mysqld.pi > mysql 2278 0.0 14.8 137092 19512 ? Sl 20:53 0:00 > /usr/libexec/mysqld --defaults-file=/etc/my.cnf --basedir=/usr > --datadir=/va > r/lib/mysql --use > p > postgres 2699 1.9 2.4 20888 3280 ? S 21:45 0:01 > /usr/bin/postmaster -p 5432 -D /var/lib/pgsql/data > postgres 2704 0.0 0.6 10668 800 ? S 21:45 0:00 postgres: > logger process > postgres 2706 0.0 0.8 20888 1060 ? S 21:45 0:00 postgres: > writer process > postgres 2707 0.0 0.5 11668 780 ? S 21:45 0:00 postgres: > stats buffer process > postgres 2708 0.0 0.7 10812 968 ? S 21:45 0:00 postgres: > stats collector process > > iptables / ip6tables are disabled!!! :-( > > Greetings > > thomas > > ----- Original Message ----- > From: "Tom Brown" <tbrown@baremetal.com> > To: "Thomas von Haugwitz" <th.von.haugwitz@gmx.de> > Sent: Thursday, June 14, 2007 8:12 PM > Subject: Re: [Xen-users] Connection-Problems to servers of my domain (2) > > >> On Thu, 14 Jun 2007, Thomas von Haugwitz wrote: >> >> > Hello people, >> > >> > i asked for help due to connection problems to servers installed in my >> > "xendbsrv00" domain. the problem still exists even if iptables and >> > ip6tables are disabled on both sides. the connection to the sshd on my >> > domain works perfectly. I still was not able to figure out why i can >> > connect to sshd, but not the the installed mysqld and postgres >> daemons. >> >> both mysql and postgress have their own security systems, which I expect >> refuse logins from external machines by default. >In the DomU run "netstat -alpntu" and it will show all open/listening ports. Make sure that they are bound correctly to ports 3306 and 5432. they probably are, but just making sure the process is running doesn''t guarentee it has opened the sockets correctly. Ryan _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users _______________________________________________ Xen-users mailing list Xen-users@lists.xensource.com http://lists.xensource.com/xen-users