More data. I have 4 virtual servers at this ISP.
cfengine00 (3.1.4) can pull files from cfengine03 (3.1.0) just fine. cfengine00 (3.1.4) cannot pull files from cfengine02 (3.1.4). I tried copying the site.cf and promises.cf from the 3.1.0 box to the 3.1.4 box, but it does not help, I still can't pull files from the 3.1.4 server. When I run cf-serverd -d1 on cfengine 02 (3.1.4), I see: Summarize control promises Granted access to paths : Path: /var/cfengine/masterfiles (encrypt=0) Admit: 205.186.156.208 root= Admit: 127.0.0.1 root= Denied access to paths : Path: /var/cfengine/masterfiles -> Host IPs allowed connection access : .... IP: 127.0.0.1 .... IP: ::1 .... IP: 205.186.156.208 Host IPs denied connection access : Host IPs allowed multiple connection access : .... IP: 127.0.0.1 .... IP: ::1 .... IP: 205.186.156.208 Host IPs from whom we shall accept public keys on trust : .... IP: 127.0.0.1 .... IP: ::1 .... IP: 205.186.156.208 Users from whom we accept connections : .... USERS: root Host IPs from NAT which we don't verify : .... IP: 127.0.0.1 .... IP: ::1 .... IP: 205.186.156.208 .... Received: [GET 2048 /var/cfengine/masterfiles/DATE] on socket 5 AccessControl(/var/cfengine/masterfiles/DATE) AccessControl, match(/var/cfengine/masterfiles/DATE,ve.cfengine.com) encrypt request=0 cf-serverd access list is empty, no files are visible Access denied to get object Transaction Send[t 59][Packed text] Attempting to send 67 bytes SendSocketStream, sent 67 >From (host=ve.cfengine.com,user=root,ip=::ffff:205.186.156.208) REFUSAL of request from connecting host: (GET 2048 /var/cfengine/masterfiles/DATE) Why does cf-serverd say the access list is empty? Just earlier it printed the access list. Didn't it? When it said "granted access to paths" ? Isn't that the access list? Aleksey _______________________________________________ Help-cfengine mailing list Help-cfengine@cfengine.org https://cfengine.org/mailman/listinfo/help-cfengine
