메뉴 건너뛰기

검색창 닫기

Korea Oracle User Group

Storage

openfiler를 통해 스토리지 구성시 no portals found 에러 발생시

명품관 2020.10.15 09:20 조회 수 : 355

openfiler를 통해 스토리지 구성시 no portals found 에러 발생시

 

1. 현상

openfiler 설치 후 iscsi 서버로 할 수 있는 모든 설정을 다 해줌

ACL 관련도 작업을 다 해주었지만 iscsiadm 명령어를 통해 discovery 해도 찾질 못하고

no potals found 메세지만 반복함

 

[root@mpkwan ~]# iscsiadm -m discovery -t st -p 192.168.45.103
iscsiadm: No portals found

 

iscsiadm 명령어의 -d 8 옵션(debug)을 통해 확인을 해 보니 접근 및 접속이 잘 되는데 최종적으로는 접속이 종료되고 no portals found란 메세지가 나옴

 

[root@mpkwan ~]# iscsiadm -m discovery -t st -p 192.168.45.103 -d 8
iscsiadm: Max file limits 1024 262144
iscsiadm: updating defaults from '/etc/iscsi/iscsid.conf'
iscsiadm: updated 'node.session.auth.chap_algs', 'MD5' => 'SHA3-256,SHA256,SHA1,MD5'
iscsiadm: updated 'discovery.sendtargets.auth.authmethod', 'None' => 'CHAP'
iscsiadm: updated 'discovery.sendtargets.auth.username', '' => '*****'
iscsiadm: updated 'discovery.sendtargets.auth.password', '' => '*****'
iscsiadm: updated 'discovery.sendtargets.auth.password_length', '0' => '0000005'
iscsiadm: updated 'discovery.sendtargets.iscsi.MaxRecvDataSegmentLength', '32768' => '32768'
iscsiadm: updated 'node.startup', 'manual' => 'automatic'
iscsiadm: updated 'node.leading_login', 'No' => 'Yes'
iscsiadm: updated 'node.session.auth.authmethod', 'None' => 'CHAP'
iscsiadm: updated 'node.session.auth.chap_algs', 'MD5' => 'SHA3-256,SHA256,SHA1,MD5'
iscsiadm: updated 'node.session.auth.username', '' => '*****'
iscsiadm: updated 'node.session.auth.password', '' => '*****'
iscsiadm: updated 'node.session.auth.password_length', '0' => '0000005'
iscsiadm: updated 'node.session.timeo.replacement_timeout', '120' => '120'
iscsiadm: updated 'node.conn[0].timeo.login_timeout', '30' => '15'
iscsiadm: updated 'node.conn[0].timeo.logout_timeout', '15' => '15'
iscsiadm: updated 'node.conn[0].timeo.noop_out_interval', '5' => '5'
iscsiadm: updated 'node.conn[0].timeo.noop_out_timeout', '5' => '5'
iscsiadm: updated 'node.session.err_timeo.abort_timeout', '15' => '15'
iscsiadm: updated 'node.session.err_timeo.lu_reset_timeout', '30' => '30'
iscsiadm: updated 'node.session.err_timeo.tgt_reset_timeout', '30' => '30'
iscsiadm: updated 'node.session.initial_login_retry_max', '4' => '8'
iscsiadm: updated 'node.session.cmds_max', '128' => '128'
iscsiadm: updated 'node.session.queue_depth', '32' => '32'
iscsiadm: updated 'node.session.xmit_thread_priority', '-20' => '-20'
iscsiadm: updated 'node.session.iscsi.InitialR2T', 'No' => 'No'
iscsiadm: updated 'node.session.iscsi.ImmediateData', 'Yes' => 'Yes'
iscsiadm: updated 'node.session.iscsi.FirstBurstLength', '262144' => '262144'
iscsiadm: updated 'node.session.iscsi.MaxBurstLength', '16776192' => '16776192'
iscsiadm: updated 'node.conn[0].iscsi.MaxRecvDataSegmentLength', '262144' => '262144'
iscsiadm: updated 'node.conn[0].iscsi.MaxXmitDataSegmentLength', '0' => '0'
iscsiadm: updated 'node.conn[0].iscsi.HeaderDigest', 'None' => 'None'
iscsiadm: updated 'node.session.nr_sessions', '1' => '1'
iscsiadm: updated 'node.session.reopen_max', '0' => '0'
iscsiadm: updated 'node.session.iscsi.FastAbort', 'Yes' => 'Yes'
iscsiadm: updated 'node.session.scan', 'auto' => 'auto'
iscsiadm: Looking for config file /var/lib/iscsi/send_targets/192.168.45.103,3260
iscsiadm: Looking for config file /var/lib/iscsi/send_targets/192.168.45.103,3260 config st_config.
iscsiadm: updated 'discovery.startup', 'manual' => 'manual'
iscsiadm: updated 'discovery.type', 'sendtargets' => 'sendtargets'
iscsiadm: updated 'discovery.sendtargets.address', '' => '192.168.45.103'
iscsiadm: updated 'discovery.sendtargets.port', '0' => '3260'
iscsiadm: updated 'discovery.sendtargets.auth.authmethod', 'None' => 'CHAP'
iscsiadm: updated 'discovery.sendtargets.auth.username', '' => '*****'
iscsiadm: updated 'discovery.sendtargets.auth.password', '' => '*****'
iscsiadm: updated 'discovery.sendtargets.auth.password_length', '0' => '0000005'
iscsiadm: updated 'node.session.auth.chap_algs', 'MD5' => 'SHA3-256,SHA256,SHA1,MD5'
iscsiadm: updated 'discovery.sendtargets.timeo.login_timeout', '15' => '15'
iscsiadm: updated 'discovery.sendtargets.use_discoveryd', 'No' => 'No'
iscsiadm: updated 'discovery.sendtargets.discoveryd_poll_inval', '30' => '30'
iscsiadm: updated 'discovery.sendtargets.reopen_max', '5' => '5'
iscsiadm: updated 'discovery.sendtargets.timeo.auth_timeout', '45' => '45'
iscsiadm: updated 'discovery.sendtargets.timeo.active_timeout', '30' => '30'
iscsiadm: updated 'discovery.sendtargets.iscsi.MaxRecvDataSegmentLength', '32768' => '32768'
iscsiadm: disc rec already exists
iscsiadm: Looking for config file /var/lib/iscsi/send_targets/192.168.45.103,3260
iscsiadm: starting sendtargets discovery, address 192.168.45.103:3260, 
iscsiadm: in read_transports
iscsiadm: Adding new transport tcp
iscsiadm: Matched transport tcp
iscsiadm: sysfs_attr_get_value: open '/class/iscsi_transport/tcp'/'handle'
iscsiadm: sysfs_attr_get_value: open '/class/iscsi_transport/tcp'/'caps'
iscsiadm: authentication setup complete...
iscsiadm: sendtargets discovery to 192.168.45.103:3260 using isid 0x00023d000000
iscsiadm: resolved 192.168.45.103 to 192.168.45.103
iscsiadm: discovery timeouts: login 15, reopen_cnt 6, auth 45.
iscsiadm: connecting to 192.168.45.103:3260
iscsiadm: connected local port 35790 to 192.168.45.103:3260
iscsiadm: connected to discovery address 192.168.45.103
iscsiadm: discovery session to 192.168.45.103:3260 starting iSCSI login
iscsiadm: sending login PDU with current stage 0, next stage 1, transit 0x80, isid 0x00023d000000 exp_statsn 0
iscsiadm: >    InitiatorName=iqn.2006-01.com.openfiler:tsn.c1852daff622
iscsiadm: >    InitiatorAlias=mpkwan
iscsiadm: >    SessionType=Discovery
iscsiadm: >    AuthMethod=CHAP,None
iscsiadm: wrote 48 bytes of PDU header
iscsiadm: wrote 124 bytes of PDU data
iscsiadm: iscsi_login: Poll return 1
iscsiadm: read 48 bytes of PDU header
iscsiadm: read 48 PDU header bytes, opcode 0x23, dlength 39, data 0x561020853100, max 32768
iscsiadm: read 39 bytes of PDU data
iscsiadm: read 1 pad bytes
iscsiadm: finished reading login PDU, 48 hdr, 0 ah, 39 data, 1 pad
iscsiadm: login current stage 0, next stage 1, transit 0x80
iscsiadm: >    TargetPortalGroupTag=1
iscsiadm: >    AuthMethod=None
iscsiadm: login response status 0000
iscsiadm: sending login PDU with current stage 1, next stage 3, transit 0x80, isid 0x00023d000000 exp_statsn 1
iscsiadm: >    HeaderDigest=None
iscsiadm: >    DataDigest=None
iscsiadm: >    DefaultTime2Wait=2
iscsiadm: >    DefaultTime2Retain=0
iscsiadm: >    IFMarker=No
iscsiadm: >    OFMarker=No
iscsiadm: >    ErrorRecoveryLevel=0
iscsiadm: >    MaxRecvDataSegmentLength=32768
iscsiadm: wrote 48 bytes of PDU header
iscsiadm: wrote 152 bytes of PDU data
iscsiadm: iscsi_login: Poll return 1
iscsiadm: read 48 bytes of PDU header
iscsiadm: read 48 PDU header bytes, opcode 0x23, dlength 119, data 0x561020853100, max 32768
iscsiadm: read 119 bytes of PDU data
iscsiadm: read 1 pad bytes
iscsiadm: finished reading login PDU, 48 hdr, 0 ah, 119 data, 1 pad
iscsiadm: login current stage 1, next stage 3, transit 0x80
iscsiadm: >    HeaderDigest=None
iscsiadm: >    DataDigest=None
iscsiadm: >    DefaultTime2Wait=2
iscsiadm: >    DefaultTime2Retain=0
iscsiadm: >    IFMarker=No
iscsiadm: >    OFMarker=No
iscsiadm: >    ErrorRecoveryLevel=0
iscsiadm: login response status 0000
iscsiadm: discovery login success to 192.168.45.103
iscsiadm: sending text pdu with CmdSN 1, exp_statsn 1
iscsiadm: >    SendTargets=All
iscsiadm: wrote 48 bytes of PDU header
iscsiadm: wrote 16 bytes of PDU data
iscsiadm: discovery process  192.168.45.103:3260 polling fd 3, timeout in 30.000000 seconds
iscsiadm: discovery process to 192.168.45.103:3260 returned from poll, rc 1
iscsiadm: read 48 bytes of PDU header
iscsiadm: read 48 PDU header bytes, opcode 0x24, dlength 0, data 0x561020853100, max 32768
iscsiadm: discovery session to 192.168.45.103:3260 received text response, 0 data bytes, ttt 0xffffffff, final 0x80
iscsiadm: discovery process to 192.168.45.103:3260 exiting
iscsiadm: disconnecting conn 0x56102084c0a0, fd 3
iscsiadm: No portals found

 

2. 문제 원인 확인

적절한 설정과 로그인 관련 부분을 해도 아래의 설정 파일에 아래와 같이 설정되어 접근이 거부되는 현상이 발생함

 

[root@mpfiler etc]# ls -al initiator*
-rw-r--r-- 1 root root 309 Oct 13 07:49 initiators.allow
-rw-r--r-- 1 root root 276 Oct 13 07:49 initiators.deny

 

해당 파일의 내용은 아래와 같습니다.

 

[root@mpfiler etc]# cat initiators.allow

# PLEASE DO NOT MODIFY THIS CONFIGURATION FILE!
#       This configuration file was autogenerated
#       by Openfiler. Any manual changes will be overwritten
#       Generated at: Tue Oct 13 7:49:34 KST 2020

iqn.2006-01.com.openfiler:tsn.c1852daff622  192.168.45.104/16, 192.168.45.101/16

# End of Openfiler configuration

[root@mpfiler etc]# cat initiators.deny

# PLEASE DO NOT MODIFY THIS CONFIGURATION FILE!
#       This configuration file was autogenerated
#       by Openfiler. Any manual changes will be overwritten
#       Generated at: Tue Oct 13 7:49:34 KST 2020

iqn.2006-01.com.openfiler:tsn.c1852daff622 ALL


# End of Openfiler configuration

 

initiators.deny 파일의 iqn.2006-01.com.openfiler:tsn.c1852daff622 ALL 이부분을 주석 처리해도 그때만 되고 내용이 다시 원복이 됨

 

3. 솔루션

 

initiators.deny 파일의 iqn.2006-01.com.openfiler:tsn.c1852daff622 ALL 부분을 주석 처리하고 파일의 권한 설정을 아래와 같이 변경

 

 

[root@mpfiler etc]# ls -al initiators.deny 
-rw-r--r-- 1 root root 277 Oct 15 01:25 initiators.deny
[root@mpfiler etc]# chmod 444 initiators.deny 
[root@mpfiler etc]# ls -al initiators.deny    
-r--r--r-- 1 root root 277 Oct 15 01:25 initiators.deny
[root@mpfiler etc]# cat initiators.deny       

# PLEASE DO NOT MODIFY THIS CONFIGURATION FILE!
#       This configuration file was autogenerated
#       by Openfiler. Any manual changes will be overwritten
#       Generated at: Tue Oct 13 7:49:34 KST 2020

#iqn.2006-01.com.openfiler:tsn.c1852daff622 ALL


# End of Openfiler configuration

 

 

 

, , , , , 이 게시물을
목록
쓰기 태그
위로