[CentOS] GFS + Restarting iptables

Tue Feb 17 16:17:54 UTC 2009
Scott Silva <ssilva at sgvwater.com>

on 2-17-2009 3:00 AM Sven Kaptein | MARS websolutions spake the following:
>>> Dear List,
>>>
>>> I have one last little problem with setting up an cluster. My gfs  
>>> Mount will hang as soon as I do an iptables restart on one of the  
>>> nodes..
> 
>> Undoubtedly someone else with more experience with GFS will give you an
>> answer, but to me this makes me think ip_conntrack stuff gets cleared
>> out and sessions have to reestablish themselves.
>>
>> Ray
> 
> Ray,
> 
> Thanks for your fast answer and getting me into the right direction. This
> sounds like a possible solution, but I have no clue how to fix it. I googled
> already a lot on ip_conntrack + gfs, but don't see a possible solution
> coming up.
> 
> Can someone/you please help me a little bit more with the issue?
> 
> Thanks a lot!
> Sven
Are your GFS mounts and your cluster on different sides of the firewall?

Maybe you can do something simple like a tunnel between the clusters and the
mounts. Should be easier and safer than punching holes in the firewall. Or put
a separate subnet or vlan just for the GFS traffic.

-- 
MailScanner is like deodorant...
You hope everybody uses it, and
you notice quickly if they don't!!!!

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 258 bytes
Desc: OpenPGP digital signature
URL: <http://lists.centos.org/pipermail/centos/attachments/20090217/707ff7ca/attachment-0005.sig>