From: John Floren <john@jfloren.net>
To: Fans of the OS Plan 9 from Bell Labs <9fans@9fans.net>
Subject: [9fans] odd problem with auth (?)
Date: Tue, 12 Jul 2011 11:11:22 -0700 [thread overview]
Message-ID: <CAL4LZyi3V0jf3u1HAEJPD0yxss7mYkD_AvYoMA2z5sZb0L6+Yw@mail.gmail.com> (raw)
I've just set up two cpu servers named gozer and zuul. Gozer has a
local Fossil and keeps a Venti on a Coraid device; it boots a
"pccpufs" kernel (cpu + boot.fs initialization) and is otherwise (to
the best of my knowledge) set up just as specified in the document
"Configuring a Standalone CPU Server". Zuul netboots from gozer and
uses gozer's root, but it also starts a Fossil and Venti from a
different LUN on the Coraid device. Only gozer should be set up to run
auth services (via a line in cpustart, "aux/listen -q -t
/rc/bin/service.auth -d /rc/bin/service tcp"). I also have a terminal
which gets its root from gozer.
My /lib/ndb/local contains these lines (gozer gets its IP from a
different DHCP server):
auth=gozer authdom=mydom
sys=gozer dom=gozer.mydom
sys=zuul dom=zuul.mydom
bootf=/386/9pxeload
ip=10.1.18.192 ether=<whatever>
Here are some commands I've tried, and the results I've seen:
term% cpu -h gozer
cpu: can't dial: gozer: port unreachable
term% cpu -h go # an outside system
cpu%
term% 9fs gozer
srv: dial net!gozer!9fs: port unreachable
term% 9fs sources
term% cpu -h zuul
cpu: can't authenticate: zuul: auth_proxy rpc write: bootes: port unreachable
term% auth/debug
p9sk1 key: proto=p9sk1 dom=mydom user=john !password?
dialing auth server net!gozer!ticket
cannot dial auth server: port unreachable
csquery authdom=mydom auth=gozer
term%
I think something is screwed up with auth, but I'm not sure what. I'm
able to initially boot the terminal using gozer's root, and there
isn't an error after I give gozer's IP as authentication server and
give it my username + password... But I'm not too familiar with auth,
so I'm asking if this makes sense to anyone.
Thanks
John Floren
next reply other threads:[~2011-07-12 18:11 UTC|newest]
Thread overview: 4+ messages / expand[flat|nested] mbox.gz Atom feed top
2011-07-12 18:11 John Floren [this message]
[not found] <CAL4LZyi3V0jf3u1HAEJPD0yxss7mYkD_AvYoMA2z5sZb0L6+Yw@mail.gmail.c>
2011-07-12 18:16 ` erik quanstrom
2011-07-12 18:36 ` John Floren
2011-07-12 19:24 ` John Floren
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=CAL4LZyi3V0jf3u1HAEJPD0yxss7mYkD_AvYoMA2z5sZb0L6+Yw@mail.gmail.com \
--to=john@jfloren.net \
--cc=9fans@9fans.net \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).