[cisco-voip] Second Node in Cluster[Scanned]

Ryan Ratliff rratliff at cisco.com
Tue Nov 3 11:29:11 EST 2009 

There's a good possibility of that being the case to be honest.  The  
same certificate exchange that happens during install has to happen  
when the servers boot up and if it's breaking during install it'll  
likely break then too.

You can try getting a packet capture at both servers during the  
install to see what is going on with the UDP 8500 traffic.

-Ryan

On Nov 3, 2009, at 11:04 AM, Martin Bufton wrote:

I have set the Firewalls to allow all traffic to pass between the  
Callmanagers.

I have thought about connecting the SUB to the same switch but on a  
separate VLAN, means I won’t have to change the IP addresses, also  
nothing is interfering.

My PUB is 172.16.74.10
My Sub is 172.16.10.10


My worry is if it does work, when connected to the same switch, and  
then I try connecting back to where it should be located what if it  
then doesn’t work


Martin Bufton BSc (Hons), CCNA - Systems Engineer


From: Ryan Ratliff [mailto:rratliff at cisco.com]
Sent: 03 November 2009 15:58
To: Martin Bufton
Cc: cisco-voip at puck.nether.net
Subject: Re: [cisco-voip] Second Node in Cluster[Scanned]

The error you are getting is clustermanager on the new sub trying to  
communicate with the same service on the publisher.  This is necessary  
so that the publisher will open up the iptables firewall to allow the  
sub to communicate for the installation.  This is done via UDP port  
8500 and the certificate exchange is typically large packets that will  
get fragmented/segmented.

If you move the server so it's not over the VPN from the pub will the  
install proceed?
Are you blocking any traffic over the vpn?

-Ryan

On Nov 3, 2009, at 10:27 AM, Martin Bufton wrote:


I’m tryin to add a second Node to my CCM 7 environment.

I have added the second server via the web interface setting the IP  
address and description.

I have even restarted the 1st server

When I try and add the second server I get the following error
“could not contact server using UDP 8500”

Or words to similar effect.

My MTU is set to 1400 on bother servers, so should be allowed across  
my VPN, I can ping ok and also got past the stage of confirming  
security password so connectivity should be good.

Other forums suggested a possible DNS issue so I have removed all  
reference to DNS on both server.

and still it’s not working.

Can anyone point me in the best direction to continue troubleshooting?

Thanks in advance

Martin

_______________________________________________
cisco-voip mailing list
cisco-voip at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-voip


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://puck.nether.net/pipermail/cisco-voip/attachments/20091103/03e31396/attachment.html>

More information about the cisco-voip mailing list