[OpenAFS] NetRestrict ignored

Ian Crowther i.crowther@gmail.com
Sun, 17 Jun 2012 22:07:17 +0100 

Hi,

I've got two 'practice' AFS servers that refuse to stop using
10.1.2.0/24. I'm running 1.4.12.1+dfsg-4 on Debian. OpenAfs works
quite happily apart from this.

vos listaddrs shows:
  vos listaddrs
  xantheose.example.com
  b.ns.example.com
  10.1.2.17
  caffeine.example.com
  a.ns.example.com
  10.1.2.16

(each of the 2 servers has 3 IPs; IPs with PTRs are on 10.1.0.0/24)

My volumes look like:

#vos listvol 10.1.0.144
Total number of volumes on server 10.1.0.144 partition /vicepa: 5
root.afs                          536870915 RW          2 K On-line
root.cell                         536870921 RW          4 K On-line
root.public                       536870930 RW          3 K On-line
root.user                         536870924 RW          3 K On-line
user.ian                          536870933 RW    7323050 K On-line

Total volumes onLine 5 ; Total volumes offLine 0 ; Total busy 0

#vos listvol 10.1.0.145
Total number of volumes on server 10.1.0.145 partition /vicepa: 6
root.afs.readonly                 536870916 RO          2 K On-line
root.cell.readonly                536870922 RO          4 K On-line
root.public.readonly              536870931 RO          2 K On-line
root.public.readonly              536870928 RO          2 K On-line
root.user.readonly                536870925 RO          3 K On-line
user.ian.readonly                 536870934 RO         10 K On-line

Total volumes onLine 6 ; Total volumes offLine 0 ; Total busy 0

(not entirely sure why root.public.readonly appears twice)

/var/lib/openafs/local/NetRestrict (/etc/openafs/ too, but at the
moment I'm concerned about the servers) contains a single line on both
servers: 10.1.2.255

I don't think I can enumerate everything I've tried, but in particular:

  #vos changeaddr -oldaddr 10.1.2.16 -remove
  Could not remove server 10.1.2.16 from the VLDB
  VLDB: volume Id exists in the vldb

  #vos listvldb
  VLDB entries for all servers

  root.afs
      RWrite: 536870915
      number of sites -> 1
        server caffeine.example.com partition /vicepa RW Site

  root.cell
      RWrite: 536870921
      number of sites -> 1
         server caffeine.example.com partition /vicepa RW Site

  root.public
      RWrite: 536870930
      number of sites -> 1
         server caffeine.example.com partition /vicepa RW Site

  root.user
      RWrite: 536870924
      number of sites -> 1
         server caffeine.example.com partition /vicepa RW Site

  user.ian
      RWrite: 536870933
      number of sites -> 1
         server caffeine.example.com partition /vicepa RW Site

  Total entries: 5

On the other hand

  #vos changeaddr -oldaddr 10.1.2.17 -remove
  Removed server 10.1.2.17 from the VLDB
  #vos listaddrs
  caffeine.example.com
  a.ns.example.com
  10.1.2.16

I only wanted the 10.1.2.17 entry to go, though! I reboot xantheose
and all 3 addresses come back...

Can somebody tell me what I'm doing wrong?

Thanks,

Ian