Re: [ldm-users] [EXTERNAL] Re: Strange LDM connectivity issue

To: Evan Breznyik <evan@xxxxxxxxxxxx>, "Herzmann, Daryl E [AGRON]" <akrherz@xxxxxxxxxxx>
Subject: Re: [ldm-users] [EXTERNAL] Re: Strange LDM connectivity issue
From: "Mullenax, Robert R. (WFF-820.0)[ORBITAL SCIENCES CORPORATION]" <robert.r.mullenax@xxxxxxxx>
Date: Tue, 19 Jan 2021 23:19:21 +0000
Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=nasa.gov; dmarc=pass action=none header.from=nasa.gov; dkim=pass header.d=nasa.gov; arc=none
Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=y1ZP+Rsc8YgNunKecDlzee+lFwx6KgItGVgqmo+j1ZU=; b=fWmbGGPNHN0GmZABHjPeF7ztNb4/nfDN+nqRwOOw98Y/zLiyBzsxX3BdndCU5LfaED6qNDS59S1IFTUW3eje2rvL4BSFSxzw4jPeGEv9iL+lw9wvpWrVUFTP7308CJvt61Sgq/bO67zKhOoZraA5/S5XCdjiOrIb0+0Ad0Q0R2b05KC+JaJ4dzkWsf9HCSII/NdTsBLKI/1s9dst8+UB+8J6Ly7ArIs+ThsmzpLtj5wagpI/ZJG1zz8lCJhuo6o0Td49U1tYtMgVbceN6ivST5jIKIDgYhaCjaTD+rR6dDctovhQSOwGuzSiHEw+ht4zFvK1aTS5LJYIb/3qLOyxbg==
Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=FlZ5Ousjg2JmVIQddMSVGjD6MSWvQMFXNXTjSq0YXtUITXXyxnFb371SX8lsGD5/QPpmV/fdNWFzpSgQ63J5CFBkv/p9BmwHYLoPQ6VO7116QFZxA+K0Scr5U0upAwf1rRwhV2XdTvTCwptz/0fC13Hi7fe0d0mFMNViLQ4K3mBlJLST7SmBkooERtwErbjrpOkLLybHm5MiLTB1oWKtix/XPWE7mefkoC+8IXEVyhRlhIpZSkOKa4gCCn2Iapr/HGJgwZeVc2hvrxys4SNm304dLXagD1rgLCZ0bsUfn8E5pL8/2VBJ1b+JS2zMvAGTH8fpJmUP0qJDPSyfTewSUg==
Authentication-results: breznyik.com; dkim=none (message not signed) header.d=none; breznyik.com; dmarc=none action=none header.from=nasa.gov;

Turned out to be firewalld was running on the server and shouldn't be (behind a 
major firewall that I don't manage).

Thanks!

From: Evan Breznyik <evan@xxxxxxxxxxxx>
Sent: Tuesday, January 19, 2021 4:55 PM
To: Herzmann, Daryl E [AGRON] <akrherz@xxxxxxxxxxx>
Cc: ldm-users <ldm-users@xxxxxxxxxxxxxxxx>; Mullenax, Robert R. 
(WFF-820.0)[ORBITAL SCIENCES CORPORATION] <robert.r.mullenax@xxxxxxxx>
Subject: [EXTERNAL] Re: [ldm-users] Strange LDM connectivity issue

I agree but will add:  we see problems with ldmping even when there is no 
firewall and our servers are actively connected, so YMMV.

My fallback is to netcat or telnet to the LDM port (388) to test.   With 
ldmping, it rarely works as described for me.  Of the 15 or so servers we 
connect to, I can only ldmping one of them, and of those 15 I run 4 of them and 
fully control the network plane which is wide open, so...I would try the netcat 
or telnet trick...or, if possible, ping or traceroute to the IP/host from LDM 
user or with sudo powers as well.  That can rule in or out network/firewall 
issues...or it can also tell you (like I often experience):  "the connection 
works fine but ldmping is confused for some other reason".

On Tue, Jan 19, 2021 at 9:26 AM Herzmann, Daryl E [AGRON] 
<akrherz@xxxxxxxxxxx<mailto:akrherz@xxxxxxxxxxx>> wrote:
Hi Robert,

This certainly looks like a firewall/routing issue. Some things I would suggest 
checking.

1) Is there a routable network path between the LDM client and server and back 
to the client?  Perhaps these devices are behind NATs which have their own 
firewalls?  Are you able to connect from the client to the server on other 
ports, like SSH, HTTP, etc?

2) On the server, double check your firewall settings.  If you can, temporally 
drop the server firewall and see if the LDM client can ping.  Ensure that you 
don't have both iptables and firewalld running at the same time.

3) Can any other LDM client connect to this server?

4) On the client, ensure the server's FQDN doesn't exist in /etc/hosts with a 
different IP as you mentioned DNS already has it.

daryl

--
/**
 * daryl herzmann
 * Systems Analyst III -- Iowa Environmental Mesonet
 * 
https://mesonet.agron.iastate.edu<https://gcc02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fmesonet.agron.iastate.edu%2F&data=04%7C01%7Crobert.r.mullenax%40nasa.gov%7C467ceb25fa07452dfe4908d8bccd62b0%7C7005d45845be48ae8140d43da96dd17b%7C0%7C0%7C637466937610835848%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000&sdata=Tj9rAh5yV4zjEQ4VHGz443IUBQsjcN5zW4Rl6iQT54g%3D&reserved=0>
 */

________________________________________
From: ldm-users 
<ldm-users-bounces@xxxxxxxxxxxxxxxx<mailto:ldm-users-bounces@xxxxxxxxxxxxxxxx>> 
on behalf of Mullenax,     Robert R. (WFF-820.0)[ORBITAL SCIENCES CORPORATION] 
via ldm-users <ldm-users@xxxxxxxxxxxxxxxx<mailto:ldm-users@xxxxxxxxxxxxxxxx>>
Sent: Tuesday, January 19, 2021 11:14 AM
To: ldm-users
Subject: [ldm-users] Strange LDM connectivity issue

Good morning,

I rarely have LDM connectivity issues, but am having a weird one this morning. 
I have two systems, at our facilities in different states that I manage. Our 
NOAAport ingest machine is down at one location, so I want to feed from the LDM 
server at the other location that is being fed by another dish/NOAAport ingest 
machine. I have proper allows/request on both ends, DNS resolves correctly, 
SELinux (CENTOS 7) is disabled on both machines, and port 388 is allowed 
through firewall. Each machine is getting a non-NOAAPort data feed from another 
out-of-state LDM just fine.

Ldmping results in:

20210119T171056.791467Z ldmping[11619] ERROR ldmping.c:75:print_hstat() 
SVC_UNAVAIL  10.097094    0  XXXXXXXXXXXX.com  
h_clnt_create(XXXXXXXXXXXXX.com): Timed out while creating connection

Yet the server on the other end is running and all is nominal.

Any ideas on what to check?

Thanks,
Robert Mullenax

Robert Mullenax
Staff Meteorologist
CSBF/Northrop Grumman
Palestine, Texas
903-729-0271

_______________________________________________
NOTE: All exchanges posted to Unidata maintained email lists are
recorded in the Unidata inquiry tracking system and made publicly
available through the web.  Users who post to any of the lists we
maintain are reminded to remove any personal information that they
do not want to be made public.

ldm-users mailing list
ldm-users@xxxxxxxxxxxxxxxx<mailto:ldm-users@xxxxxxxxxxxxxxxx>
For list information or to unsubscribe,  visit: 
https://www.unidata.ucar.edu/mailing_lists/<https://gcc02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.unidata.ucar.edu%2Fmailing_lists%2F&data=04%7C01%7Crobert.r.mullenax%40nasa.gov%7C467ceb25fa07452dfe4908d8bccd62b0%7C7005d45845be48ae8140d43da96dd17b%7C0%7C0%7C637466937610835848%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000&sdata=nY8OHP8X9dNqzN8p0tfR39LkbFMjA38ND8h1nMSTJXA%3D&reserved=0>

References:
- [ldm-users] Strange LDM connectivity issue
  - From: Mullenax, Robert R. (WFF-820.0)[ORBITAL SCIENCES CORPORATION]
- Re: [ldm-users] Strange LDM connectivity issue
  - From: Herzmann, Daryl E [AGRON]
- Re: [ldm-users] Strange LDM connectivity issue
  - From: Evan Breznyik

2021 messages navigation, sorted by:
1. Thread
2. Subject
3. Author
4. Date
5. ↑ Table Of Contents
Search the ldm-users archives: