Attachment 601905 Details for Bug 722245 – Disproving screen log

Disproving screen log

log (text/plain), 13.25 KB, created by mkovacik on 2012-08-02 09:06:06 UTC

(hide)

Description:

Filename:

MIME Type:

Creator: mkovacik

Created: 2012-08-02 09:06:06 UTC

Size: 13.25 KB

patch

obsolete

>[root@ip-10-190-237-226 ~]# mount
>/dev/xvde1 on / type ext4 (rw)
>none on /proc type proc (rw)
>none on /sys type sysfs (rw)
>none on /dev/pts type devpts (rw,gid=5,mode=620)
>none on /dev/shm type tmpfs (rw,rootcontext="system_u:object_r:tmpfs_t:s0")
>none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)
>/dev/xvdj1 on /var/lib/pulp type ext4 (rw)
>/root/RHEL-6.3-RHUI-2.1-20120705.0-Server-x86_64-DVD1.iso on /tmp/mnt type iso9660 (rw,loop=/dev/loop0)
>(reverse-i-search)`grep -': ^Cep -C1 proxy /etc/rhui/rhui-tools.conf
>[root@ip-10-190-237-226 ~]# grep -C1 proxy /etc/rhui/rhui-tools.conf
>[yum]
># Uncomment and set the following attributes to use a proxy to connect to Red Hat.
>#proxy_url: http://10.36.29.87
>#proxy_port: 3128
># proxy_user:
># proxy_pass:
>
>[root@ip-10-190-237-226 ~]# grep -C1 proxy /etc/pulp/pulp.conf
># limit_in_KB: 500
># Uncomment the below section with appropriate values for proxy configuration
>proxy_url: http://10.36.29.87
>proxy_port: 3128
># proxy_user:
># proxy_pass:
># Verify existing package options
>[root@ip-10-190-237-226 ~]# vim /etc/pulp/pulp.conf
>[root@ip-10-190-237-226 ~]# grep -C1 proxy /etc/pulp/pulp.conf
># limit_in_KB: 500
># Uncomment the below section with appropriate values for proxy configuration
># proxy_url: http://10.36.29.87
># proxy_port: 3128
># proxy_user:
># proxy_pass:
># Verify existing package options
>[root@ip-10-190-237-226 ~]# service pulp-server restart
>Stopping httpd:                                            [  OK  ]
>Stopping Qpid AMQP daemon:                                 [  OK  ]
>Stopping mongod:                                           [  OK  ]
>Starting mongod:                                           [  OK  ]
>Starting Qpid AMQP daemon:                                 [  OK  ]
>Starting httpd:                                            [  OK  ]
>[root@ip-10-190-237-226 ~]#
>
>### PROXY SETUP
>[root@ip-10-36-29-87 ~]# grep -C 1 CDN /etc/squid/squid.conf
>### Testing: https://bugzilla.redhat.com/show_bug.cgi?id=819886
>acl CDN dst cdn.redhat.com
># http_access allow SSL_ports CDN
>
>[root@ip-10-36-29-87 ~]# vim /etc/squid/squid.conf
>[root@ip-10-36-29-87 ~]# tail -f /var/log/squid/access.log
>1343890643.968      0 10.190.237.226 TCP_DENIED/403 3540 CONNECT cdn.redhat.com:443 - NONE/- text/html
>1343890644.040      0 10.190.237.226 TCP_DENIED/403 3540 CONNECT cdn.redhat.com:443 - NONE/- text/html
>1343890653.985      0 10.190.237.226 TCP_DENIED/403 3540 CONNECT cdn.redhat.com:443 - NONE/- text/html
>1343890654.051      0 10.190.237.226 TCP_DENIED/403 3540 CONNECT cdn.redhat.com:443 - NONE/- text/html
>1343890669.007      0 10.190.237.226 TCP_DENIED/403 3540 CONNECT cdn.redhat.com:443 - NONE/- text/html
>1343890669.061      0 10.190.237.226 TCP_DENIED/403 3540 CONNECT cdn.redhat.com:443 - NONE/- text/html
>1343890689.015      0 10.190.237.226 TCP_DENIED/403 3540 CONNECT cdn.redhat.com:443 - NONE/- text/html
>1343890689.088      0 10.190.237.226 TCP_DENIED/403 3540 CONNECT cdn.redhat.com:443 - NONE/- text/html
>1343890714.052      0 10.190.237.226 TCP_DENIED/403 3540 CONNECT cdn.redhat.com:443 - NONE/- text/html
>1343890714.121      0 10.190.237.226 TCP_DENIED/403 3540 CONNECT cdn.redhat.com:443 - NONE/- text/html
>^C
>[root@ip-10-36-29-87 ~]# grep -C 1 CDN /etc/squid/squid.conf
>### Testing: https://bugzilla.redhat.com/show_bug.cgi?id=819886
>acl CDN dst cdn.redhat.com
>http_access allow SSL_ports CDN
>
>[root@ip-10-36-29-87 ~]# service squid reload
>[root@ip-10-36-29-87 ~]#
>
>### GENERATE NEW RHUI CONFIG RPM
>[root@ip-10-190-237-226 ~]# vim answers.txt
>[root@ip-10-190-237-226 ~]# cat answers.txt
>[general]
>version: 2.0
>dest_dir: /tmp/rhui
>qpid_ca: /etc/rhui/qpid/ca.crt
>qpid_client: /etc/rhui/qpid/client.crt
>qpid_nss_db: /etc/rhui/qpid/nss
>
>[rhua]
>rpm_name: rh-rhua-config
>hostname: ip-10-190-237-226.ec2.internal
>ssl_cert: /root/pem/ip-10-190-237-226.ec2.internal.crt
>ssl_key: /root/pem/server.key
>ca_cert: /root/pem/ca.crt
>
>proxy_server_host: ip-10-36-29-87.ec2.internal
>proxy_server_port: 443
># proxy_server_username: admin
># proxy_server_password: password
>
>[cds-1]
>rpm_name: rh-cds1-config
>hostname: ip-10-2-118-184.ec2.internal
>ssl_cert: /root/pem/ip-10-2-118-184.ec2.internal.crt
>ssl_key: /root/pem/server.key
>
>[cds-2]
>rpm_name: rh-cds2-config
>hostname: ip-10-64-47-182.ec2.internal
>ssl_cert: /root/pem/ip-10-64-47-182.ec2.internal.crt
>ssl_key: /root/pem/server.key
>
>[cds-3]
>rpm_name: rh-cds3-config
>hostname: ip-10-70-89-50.ec2.internal
>ssl_cert: /root/pem/ip-10-70-89-50.ec2.internal.crt
>ssl_key: /root/pem/server.key
>
>
>[root@ip-10-190-237-226 ~]# rhui-installer answers.txt
>Generating RHUA configuration RPM
>RHUA RPM can be found at [/tmp/rhui]
>Generating CDS bundle for CDS [ip-10-2-118-184.ec2.internal]
>CDS RPM can be found at [/tmp/rhui]
>Generating CDS bundle for CDS [ip-10-64-47-182.ec2.internal]
>CDS RPM can be found at [/tmp/rhui]
>Generating CDS bundle for CDS [ip-10-70-89-50.ec2.internal]
>CDS RPM can be found at [/tmp/rhui]
>[root@ip-10-190-237-226 ~]# rpm -Uvh /tmp/rhui/rh-rhua-config-2.0-2.el6.noarch.rpm
>Preparing...                ########################################### [100%]
>   1:rh-rhua-config         ########################################### [100%]
>Updating RHUA Server Configuration
>Updating RHUA Repository Authentication Configuration
>Updating Apache SSL Configuration
>removing persisted tasks
>data model in use matches the current version
>database migration to version 41 complete
>Stopping httpd: [  OK  ]
>Stopping Qpid AMQP daemon: [  OK  ]
>Stopping mongod: [  OK  ]
>Starting mongod: [  OK  ]
>Starting Qpid AMQP daemon: [  OK  ]
>Starting httpd: [  OK  ]
>[root@ip-10-190-237-226 ~]# date
>Thu Aug  2 04:52:19 EDT 2012
>(reverse-i-search)`s': rhui-installer answer^Ctxt
>[root@ip-10-190-237-226 ~]# grep -C1 -i proxy /etc/rhui/rhui-tools.conf
>[yum]
># Uncomment and set the following attributes to use a proxy to connect to Red Hat.
>#proxy_url: http://10.36.29.87
>#proxy_port: 3128
># proxy_user:
># proxy_pass:
>
>[root@ip-10-190-237-226 ~]# grep -C1 -i proxy /etc/pulp/pulp.conf
># limit_in_KB: 500
># Uncomment the below section with appropriate values for proxy configuration
># proxy_url: http://10.36.29.87
># proxy_port: 3128
># proxy_user:
># proxy_pass:
># Verify existing package options
>--
>verify_size: false
>proxy_url = http://ip-10-36-29-87.ec2.internal
>proxy_port = 443
>
>[root@ip-10-190-237-226 ~]# rpm -ql rh-rhua-config
>/etc/pki/rhua/qpid-ca.crt
>/etc/pki/rhua/qpid-client.crt
>/etc/pki/rhua/qpid-nss/cert8.db
>/etc/pki/rhua/qpid-nss/key3.db
>/etc/pki/rhua/qpid-nss/password
>/etc/pki/rhua/qpid-nss/secmod.db
>/etc/pki/rhua/rhua-ssl-ca-cert.crt
>/etc/pki/rhua/rhua-ssl-cert.crt
>/etc/pki/rhua/rhua-ssl-key.pem
>/etc/pki/rhua/user-ca-cert.crt
>/etc/pki/rhua/user-ca-key.pem
>/usr/bin/rhui_configurator.py
>[root@ip-10-190-237-226 ~]# ls -l /etc/rhui/rhui-tools.conf
>-rw-r--r--. 1 root root 978 Aug  2 04:51 /etc/rhui/rhui-tools.conf
>[root@ip-10-190-237-226 ~]# rpm -qi rh-rhui-config
>package rh-rhui-config is not installed
>[root@ip-10-190-237-226 ~]# rpm -qi rh-rhua-config
>Name        : rh-rhua-config               Relocations: (not relocatable)
>Version     : 2.0                               Vendor: (none)
>Release     : 2.el6                         Build Date: Thu 02 Aug 2012 04:51:31 AM EDT
>Install Date: Thu 02 Aug 2012 04:51:52 AM EDT      Build Host: ip-10-190-237-226.ec2.internal
>Group       : Applications/Internet         Source RPM: rh-rhua-config-2.0-2.el6.src.rpm
>Size        : 110748                           License: GPLv2
>Signature   : (none)
>URL         : http://redhat.com
>Summary     : Custom configuration for a RHUA instance
>Description :
>Configuration files for a RHUA instance
>[root@ip-10-190-237-226 ~]# cat /etc/rhui/rhui-tools.conf
>[rhua]
>hostname: ip-10-190-237-226.ec2.internal
>ssl_ca_cert: /etc/pki/rhua/rhua-ssl-ca-cert.crt
>
>[security]
>
># CA certificate that is used to sign and verify client entitlement certificates
>entitlement_ca: /etc/pki/rhui/entitlement-ca.crt
>entitlement_ca_key: /etc/pki/rhui/entitlement-ca-key.pem
>
>identity_cert: /etc/pki/rhui/identity.crt
>identity_key:  /etc/pki/rhui/identity.key
>
>[redhat]
>content_ca:   /etc/rhui/cdn.redhat.com-chain.crt
>server_url: https://cdn.redhat.com
>
>[yum]
># Uncomment and set the following attributes to use a proxy to connect to Red Hat.
>#proxy_url: http://10.36.29.87
>#proxy_port: 3128
># proxy_user:
># proxy_pass:
>
>[rhui]
>config_rpm_files: /etc/rhui
>cert_dir: /etc/pki/rhui/redhat
>
># Time, in hours, between recurring syncs
>repo_sync_frequency: 6
>cds_sync_frequency: 6
>
># Time, in seconds, between CDS/repo screen refresh
>sync_status_refresh: 5
>
># Warnings will be issued if certificates expire within the set number of
># days
>expiration_warning: 30
>[root@ip-10-190-237-226 ~]#
>[root@ip-10-190-237-226 ~]# cat /etc/pulp/pulp.conf
># Server options
>#
># server_name: server hostname(protocol defaults to https)
># relative_url: the relative url at which repos are exposed to the clients
># key_url: the relative url at which gpg keys are exposed to clients
># default_login: default admin username for your pulp server
># default_password: default password for admin
># Highly recommend changing the default_password with "pulp-admin user update"
>#
>[server]
>server_name: ip-10-190-237-226.ec2.internal
>relative_url: /pulp/repos
>key_url: /pulp/gpg
>ks_url: /pulp/ks
>default_login: admin
>default_password: admin
>
># Messaging options.
>#
># url:        the broker url.
># cacert:     path to PEM encoded CA certificate file
># clientcert: path to PEM encoded file containing both
>#             the private key and certificate.
>#
># The url has form: <transport>://<host>:<port> where
># transport can be (tcp|ssl).  When ssl is specified,
># cacert and clientcert must be specified.
>
>[messaging]
>url:        ssl://ip-10-190-237-226.ec2.internal:5674
>cacert:     /etc/pki/rhua/qpid-ca.crt
>clientcert: /etc/pki/rhua/qpid-client.crt
>
>#
># AMQP event processing
>#
>[events]
>send_enabled: false
>recv_enabled: false
>
># Configures aspects of the pulp web server security.
>#
># cacert:    full path to the CA certificate that will be used to sign
>#            consumer and admin identification certificates.  This MUST match
>#            the value of SSLCACertificateFile in /etc/httpd/conf.d/pulp.conf.
># cakey:     full path to the private key for the CA certificate
># user_cert_expiration: number of days a user certificate is valid
># consumer_cert_expiration: number of days a consumer certificate is valid
>
>[security]
>cacert:  /etc/pki/rhua/user-ca-cert.crt
>cakey:   /etc/pki/rhua/user-ca-key.pem
>user_cert_expiration: 7
>consumer_cert_expiration: 3650
>ssl_ca_certificate = /etc/pki/rhua/rhua-ssl-ca-cert.crt
>
># Full path to the CA certificate used to sign the Pulp server's SSL certificate.
># Consumers and CDS instances will use this to verify the Pulp server's SSL
># certificate during the SSL handshake.
># ssl_ca_certificate:
>
># oauth_key:    string key to enable OAuth style authentication
># oauth_secret: string shared secret that can be used for OAuth style authentication
># For more info see:  https://fedorahosted.org/pulp/wiki/Authentication
>
>[auditing]
>audit_events: false
>events_file: /var/log/pulp/events.log
>lifetime:    90
>backups:     4
>
># Configuration for storage of consumer history
>#
># lifetime: length in days - consumer history entries older than this
>#           will be purged; setting this to -1 will disable history purging
>[consumer_history]
>lifetime: 180
>
>[logs]
>config: /etc/pulp/logging/basic.cfg
>
>[yum]
>threads: 4
># True/False to flag if we should remove older rpms
>remove_old_versions: false
># Integer to specify how many old packages to keep.
># Only used if 'removeold' is set to True
>num_old_pkgs_keep: 2
># Uncomment below to set a bandwidth limit in KB/sec for downloading
># 0 represents unlimited
># limit_in_KB: 500
># Uncomment the below section with appropriate values for proxy configuration
># proxy_url: http://10.36.29.87
># proxy_port: 3128
># proxy_user:
># proxy_pass:
># Verify existing package options
>verify_checksum: false
>verify_size: false
>proxy_url = http://ip-10-36-29-87.ec2.internal
>proxy_port = 443
>
>[repos]
>content_url: https://cdn.redhat.com/
>use_entitlement_certs = false
>default_to_published: true
>
>[database]
># automatically upgrade the database when the data model changes
>name: pulp_database
># comma separated list of URIs to pass to pymongo
>seeds: localhost
>
># Uncomment the below section with appropriate values, to use an
># external ldap for user authentication instead of pulp.
>#[ldap]
>#uri: ldap://localhost
>#base: dc=localhost
>#tls: no
>#default_role: consumer-users
># Uncomment the "filter" directive to set a more restrictive LDAP
># filter to limit the LDAP users who can authenticate to pulp.
>#filter: (gidNumber=200)
>
>[cds]
># messaging timeout for sync.  <initial>:<duration>
>sync_timeout = 10:7200
>[root@ip-10-190-237-226 ~]#
>[root@ip-10-190-237-226 ~]# rpm -qi rh-rhui-tools
>Name        : rh-rhui-tools                Relocations: (not relocatable)
>Version     : 2.0.68                            Vendor: Red Hat, Inc.
>Release     : 1.el6_3                       Build Date: Tue 03 Jul 2012 02:26:11 PM EDT
>Install Date: Mon 23 Jul 2012 08:06:16 AM EDT      Build Host: x86-003.build.bos.redhat.com
>Group       : Applications/Internet         Source RPM: rh-rhui-tools-2.0.68-1.el6_3.src.rpm
>Size        : 711236                           License: GPLv2
>Signature   : (none)
>Packager    : Red Hat, Inc. <http://bugzilla.redhat.com/bugzilla>
>URL         : http://redhat.com
>Summary     : Tools for installing and configuring the Red Hat Update Infrastructure
>Description :
>Tools necessary to configure the Red Hat Update Infrastructure

Actions: View

Attachments on bug 722245: 601905