Port knock of 445 prevents smbd from starting

Christopher O Cowan - Christopher.O.Cowan@ibm.com Christopher.O.Cowan at ibm.com
Tue Jan 14 22:13:28 UTC 2020 

Sorry, that's my commit of Amitay's patch.

Here's the compile I did:
So it should say de768710e16

------------------------------------------------------------------------------------------------------------------------------

commit 375ee2d8fee (HEAD -> J2020-01-14, dev-gsa-I)
Author: Christopher Cowan <christopher.o.cowan at ibm.com>
Date:   Fri Sep 6 10:50:16 2019 -0500

    Amitay's ctdb_recovery_helper.c debugging changes

 ctdb/server/ctdb_recovery_helper.c | 12 ++++++++++++
 1 file changed, 12 insertions(+)

commit cebb451491a
Author: Christopher Cowan <christopher.o.cowan at ibm.com>
Date:   Fri Jul 26 10:09:44 2019 -0500

    Call out GNU/freeware timeout utility explicitly

 ctdb/config/events/legacy/00.ctdb.script | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

commit de768710e16 (upstream/master, upstream/HEAD, master, develop)
Author: Björn Jacke <bj at sernet.de>
Date:   Mon Jan 13 13:02:29 2020 +0100

    tests/DNS: add MX/SRV record tests with multiple spaces

    BUG: https://bugzilla.samba.org/show_bug.cgi?id=13788

    Signed-off-by: Bjoern Jacke <bjacke at samba.org>
    Reviewed-by: Björn Baumbach <bb at samba.org>

    Autobuild-User(master): Björn Baumbach <bb at sernet.de>
    Autobuild-Date(master): Tue Jan 14 11:58:20 UTC 2020 on sn-devel-184

 python/samba/tests/samba_tool/dnscmd.py | 8 +++++---
 1 file changed, 5 insertions(+), 3 deletions(-)

commit af7a0e3371e
Author: Björn Jacke <bj at sernet.de>
Date:   Mon Jan 13 00:21:41 2020 +0100

    samba-tool: fix adding of dns SRV/MX/SOA records

    Thanks to Denis Cardon for finding

    BUG: https://bugzilla.samba.org/show_bug.cgi?id=13788

    Signed-off-by: Bjoern Jacke <bjacke at samba.org>
    Reviewed-by: Andreas Schneider <asn at samba.org>
    Reviewed-by: Björn Baumbach <bb at samba.org>

 python/samba/netcmd/dns.py | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)



________________________________
From: Jeremy Allison <jra at samba.org>
Sent: Tuesday, January 14, 2020 3:56:23 PM
To: Christopher O Cowan - Christopher.O.Cowan at ibm.com
Cc: samba-technical at lists.samba.org
Subject: [EXTERNAL] Re: Port knock of 445 prevents smbd from starting

On Tue, Jan 14, 2020 at 09:26:24PM +0000, Christopher O Cowan - Christopher.O.Cowan--- via samba-technical wrote:
> In our cluster setup here, we use a load-balancer in front of our ctdb cluster to steer the SMB traffic.
> We've been doing this for years.    It does a simple TCP connect on 445 to verify that each node's smbd is still alive.
>
> This is all on AIX, and some time, in the past few weeks these knocks started causing smbd to exit.   Here's the output from an smbd -i -d10.
>
> First I see this (x.y.z.219 is the address of the LB.  202 is the server).    I changed the addresses
>
> -----------------------------------------------------------------------------------------------------------------------------------------
>
> Allowed connection from x.y.z.219 (x.y.z.219)
> Connection allowed from ipv4:x.y.z.219:49463 to ipv4:x.y.z.202:445
> ctdbd_control: Sending ctdb packet reqid=7, vnn=4026531841, opcode=23, srvid=17509995351216488448
> ctdbd_control: Sending ctdb packet reqid=8, vnn=4026531841, opcode=44, srvid=0
> INFO: Current debug levels:
> -----------------------------------------------------------------------------------------------------------------------------------------
> Then after the debug settings, I see:
> -----------------------------------------------------------------------------------------------------------------------------------------
> init_oplocks: initializing messages.
> Registering messaging pointer for type 774 - private_data=20141c48
> Registering messaging pointer for type 778 - private_data=20141c48
> Registering messaging pointer for type 770 - private_data=20141c48
> Registering messaging pointer for type 787 - private_data=20141c48
> Registering messaging pointer for type 779 - private_data=20141c48
> Registering messaging pointer for type 15 - private_data=0
> Overriding messaging pointer for type 15 - private_data=0
> Deregistering messaging pointer for type 16 - private_data=0
> Registering messaging pointer for type 16 - private_data=20141c48
> Deregistering messaging pointer for type 33 - private_data=2011cf18
> Registering messaging pointer for type 33 - private_data=20141c48
> Deregistering messaging pointer for type 790 - private_data=0
> Registering messaging pointer for type 790 - private_data=20141c48
> Deregistering messaging pointer for type 791 - private_data=0
> Deregistering messaging pointer for type 1 - private_data=0
> Registering messaging pointer for type 1 - private_data=0
> event_add_idle: idle_evt(keepalive) 20203538
> event_add_idle: idle_evt(deadtime) 202040b8
> event_add_idle: idle_evt(housekeeping) 202041c8
> read_fd_with_timeout: blocking read. EOF from client.
> receive_smb_raw_talloc failed for client ipv4:x.y.z.219:49463 read error = NT_STATUS_END_OF_FILE.

What version of Samba. These debug messages don't
quite match current master code.

More information about the samba-technical mailing list