Description of problem: memcached port 11211 is not opened by default on controllers in HA environments. This in turn leads to vnc proxy token authentication errors, slow horizon access times etc. Version-Release number of selected component (if applicable): # egrep '(osp-installer|puppet)' installed-rpms openstack-puppet-modules-2014.1-21.8.el6ost.noarch Mon Oct 13 16:26:35 2014 puppet-3.6.2-1.1.el6.noarch Mon Oct 13 16:26:42 2014 puppet-server-3.6.2-1.1.el6.noarch Mon Oct 13 15:40:08 2014 rhel-osp-installer-0.3.6-1.el6ost.noarch Mon Oct 13 16:27:09 2014 How reproducible: Always. Steps to Reproduce: 1. Deploy multiple HA controllers. Actual results: Port 11211 is not opened by default. Expected results: Port 11211 is opened by default. Additional info:
firewall rule added, undergoing testing now: https://github.com/redhat-openstack/astapor/pull/397
Verified: openstack-puppet-modules-2014.1-24.2.el6ost.noarch rhel-osp-installer-0.4.5-2.el6ost.noarch ruby193-rubygem-foreman_openstack_simplify-0.0.6-8.el6ost.noarch openstack-foreman-installer-2.0.32-1.el6ost.noarch ruby193-rubygem-staypuft-0.4.10-1.el6ost.noarch On all controllers get the following: iptables -L -n|grep 11211 ACCEPT tcp -- 0.0.0.0/0 0.0.0.0/0 multiport dports 11211 /* 010 memcached incoming */
ack on doc text
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://rhn.redhat.com/errata/RHBA-2014-1800.html