[Freeipa-users] multi-master replication

Craig White CWhite at skytouchtechnology.com
Fri Oct 24 23:15:22 UTC 2014

From: freeipa-users-bounces at redhat.com [mailto:freeipa-users-bounces at redhat.com] On Behalf Of Craig White
Sent: Friday, October 24, 2014 4:02 PM
To: freeipa-users at redhat.com
Subject: [Freeipa-users] multi-master replication

I would have thought that changes go from replica to master and not just master to replica.

Is there something I have to do to make the changes bi-directional?

Replying to my own post...
Logs are my friend  ;-)

[24/Oct/2014:23:08:17 +0000] NSMMReplicationPlugin - agmt="cn=meToipa001.domain.local " (ipa001:389): Replication bind with GSSAPI auth resumed
[24/Oct/2014:23:08:17 +0000] NSMMReplicationPlugin - agmt="cn=meToipa001.domain.local " (ipa001:389): Warning: unable to replicate schema: rc=2
[24/Oct/2014:23:08:17 +0000] NSMMReplicationPlugin - agmt="cn=meToipa001.domain.local " (ipa001:389): Failed to send update operation to consumer (uniqueid e018060f-5bb011e4-81078979-dc802980, CSN 544aa346000000030000): Can't contact LDAP server. Will retry later.
[24/Oct/2014:23:08:17 +0000] NSMMReplicationPlugin - agmt="cn=meToipa001.domain.local " (ipa001:389): Consumer failed to replay change (uniqueid (null), CSN (null)): Can't contact LDAP server(-1). Will retry later.
[24/Oct/2014:23:08:17 +0000] NSMMReplicationPlugin - agmt="cn=meToipa001.domain.local" (ipa001:389): Warning: unable to send endReplication extended operation (Can't contact LDAP server)

And on the master, I see a bunch of...
sasl_io_recv failed to decode packet for connection 4113

but dirsrv is running on both machines and firewalls aren't in the way because I managed to set up the initial replication from master to replica without a problem and the firewall rules are the same for both machines.

# rpm -qa | grep ipa

RHEL 6.5
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20141024/f8d00cab/attachment.htm>

More information about the Freeipa-users mailing list