SCIENTIFIC-LINUX-USERS Archives

May 2007

SCIENTIFIC-LINUX-USERS@LISTSERV.FNAL.GOV
Options: Use Monospaced Font
Show Text Part by Default
Show All Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
Subject:
Re: YP/NIS weirdness on 4.4
From:
Jon Peatfield <[log in to unmask]>
Reply To:
Jon Peatfield <[log in to unmask]>
Date:
Fri, 18 May 2007 19:31:01 +0100
Content-Type:
TEXT/PLAIN
Parts/Attachments:
TEXT/PLAIN (26 lines) 
> |Use sysctl to set sunrpc.min_resvport to 665
> |(IPMI cards use port 664 also)

That sysctl didn't used to be available -- well I can't find it on SL308 
systems.

We make xinetd listen on 623/664 (tcp + udp) which has the 'side effect' 
of causing those ports to be unavailable as local endpoints for sockets 
(we just drop trivial files into /etc/xinetd.d/) which means we only avoid 
*just* those ports.  It also prevents *anything* from using them rather 
than just sunrpc...

Since a port won't get re-used for at least TTL*2 having too few available 
to pick from is another way to run out if they are getting used at a high 
rate... :-(

> We tried this on 10 of the systems.  When I started
> the test loop, it went a little longer before failing,
> then started failing again.
>
> Also I forgot to note that this doesn't happen with ssh.

Another good reason to drop rsh... :-)

  -- Jon

ATOM RSS1 RSS2