chchang
/
hugo_backup
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'f9bd72c653'
${ noResults }
hugo_backup/public/post/weird-client-server-connection/index.html

505 lines
16 KiB
Raw Blame History Escape

This file contains ambiguous Unicode characters!

This file contains ambiguous Unicode characters that may be confused with others in your current locale. If your use case is intentional and legitimate, you can safely ignore this warning. Use the Escape button to highlight these characters.

<!doctype html>
<html class="no-js" lang="tw">
<head>
<meta charset="utf-8">
<meta name="viewport" content="width=device-width, initial-scale=1">
<meta name="author" content="Eric Chang">
<meta name="description" content="Whats the Worst That Could Happen?">
<meta name="keywords" content="linux,blog,responsive,search,font awesome,pages,posts,multilingual,highlight.js,syntax highlighting,premium,shortcuts">
<meta name="generator" content="Hugo 0.50" />
<title> [筆記] 詭異的client&amp;server間連線的問題或許跟KVM有關係 | MCの飄狂山莊㊣</title>
<meta name="description" content="[筆記] 詭異的client&amp;server間連線的問題或許跟KVM有關係 - Whats the Worst That Could Happen?">
<meta itemprop="name" content="[筆記] 詭異的client&amp;server間連線的問題或許跟KVM有關係">
<meta itemprop="description" content="[筆記] 詭異的client&amp;server間連線的問題或許跟KVM有關係 - Whats the Worst That Could Happen?">
<meta property="og:title" content="[筆記] 詭異的client&amp;server間連線的問題或許跟KVM有關係">
<meta property="og:description" content="[筆記] 詭異的client&amp;server間連線的問題或許跟KVM有關係 - Whats the Worst That Could Happen?">
<meta property="og:image" content="https://h.cowbay.org/images/post-default-4.jpg">
<meta property="og:url" content="https://h.cowbay.org/post/weird-client-server-connection/">
<meta property="og:site_name" content="MCの飄狂山莊㊣">
<meta property="og:type" content="article">
<link rel="icon" type="image/png" href="https://h.cowbay.org/favicon-32x32.png" sizes="32x32">
<link rel="icon" type="image/png" href="https://h.cowbay.org/favicon-16x16.png" sizes="16x16">
<link rel="stylesheet" href="https://h.cowbay.org/sass/combined.min.a89dfa577f701bffe9659f476ef61241cb2a3452b913e793463b0074a10c0a59.css">
<link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css">
</head>
<body class="bilberry-hugo-theme">
<nav class="permanentTopNav">
<div class="container">
<ul class="topnav">
</ul>
<div id="search-box" class="search">
<i class="fa fa-search"></i>
<input id="search" type="text" placeholder="">
</div>
</div>
</nav>
<header>
<div class="container">
<div class="logo">
<a href="/" class="logo">
<img src="https://www.gravatar.com/avatar/e4eb1f8e016ffb73e9889f87d16e15f0?d=mm&size=200" alt="">
<span class="overlay"><i class="fa fa-home"></i></span>
</a>
</div>
<div class="titles">
<h3 class="title"><a href="/">MCの飄狂山莊㊣</a></h3>
<span class="subtitle">Whats the Worst That Could Happen?</span>
</div>
<div class="toggler permanentTopNav">
<i class="fa fa-bars" aria-hidden="true"></i>
</div>
</div>
</header>
<div class="main container">
<div class="article-wrapper u-cf single">
<a class="bubble" href="/post/weird-client-server-connection/">
<i class="fa fa-fw fa-pencil"></i>
</a>
<article class="default article">
<div class="featured-image">
<a href="/post/weird-client-server-connection/">
<img src="/images/post-default-4.jpg" alt="">
</a>
</div>
<div class="content">
<h3><a href="/post/weird-client-server-connection/">[筆記] 詭異的client&amp;server間連線的問題或許跟KVM有關係</a></h3>
<div class="meta">
<span class="date moment">2018-11-08</span>
<span class="categories">
<a href="/categories/%E7%AD%86%E8%A8%98">筆記</a>
</span>
<span class="author"><a href="/author/eric-chang">Eric Chang</a></span>
</div>
<p>這是發生在一個夜黑風高的寂寥深夜&hellip;.. ( What The FXXX &hellip; )</p>
<p>來到這個環境之後,有一個很詭異的狀況一直困擾著我</p>
<p>在每個分公司都會有一台伺服器作為KVM Host</p>
<p>上面跑兩台VM一台作為ansible controller (目前沒作用)</p>
<p>另一台作為這邊所謂的 &ldquo;Build Server&rdquo;</p>
<p>用途包含了DHCP Server / Proxy Server (squid3) / APT Proxy (squid-deb-proxy)</p>
<p>問題就發生在這台 Build Server 上&hellip;</p>
<p></p>
<p>有陣子花了點時間去檢查各個分公司的網路環境確保每一台Build Server都能夠連接Internet</p>
<p>然後找了一個離總部最近的據點把這些電腦連接Internet 的方式改為用 proxy 來控制</p>
<p>在proxy內加入了 allowhost 的設定然後把user電腦上的瀏覽器都代入 proxy server (firefox/chrome 的設定方式不同)</p>
<pre><code>acl localnet src 192.168.28.0/24
acl allowhost src &quot;/etc/squid3/allowhost.txt&quot;
acl localdomain dstdomain &quot;/etc/squid3/localdomain.txt&quot;
acl SSL_ports port 443
acl Safe_ports port 80 # http
acl Safe_ports port 21 # ftp
acl Safe_ports port 443 # https
acl Safe_ports port 70 # gopher
acl Safe_ports port 210 # wais
acl Safe_ports port 1025-65535 # unregistered ports
acl Safe_ports port 280 # http-mgmt
acl Safe_ports port 488 # gss-http
acl Safe_ports port 591 # filemaker
acl Safe_ports port 777 # multiling http
acl CONNECT method CONNECT
</code></pre>
<p>一開始這樣作還相安無事但是呢慢慢的時不時會有USER反應說無法連接 Internet</p>
<p>照理來說因為都是透過proxy上網所以如果是proxy server出問題那其他電腦應該也不行上Internet</p>
<p>但如果這樣的話,那就一點也不詭異了呀(攤手)</p>
<p>實際上的狀況是只有反應的USER的電腦無法連接Internet</p>
<p>然後真的詭異的來了</p>
<p>用USER電腦去 ping proxy server ,有時候會通,有時候不通..</p>
<p>從Proxy Server去 ping USER電腦也是類似的狀況</p>
<p>可是我卻可以透過IPSEC VPN分別SSH連接到這兩台機器上</p>
<p>這代表兩台的網路都OK呀..</p>
<p>正當我百思不得其解的時候,突然 USER電腦那邊的 ping 有反應了</p>
<p>變成可以 ping proxy Server 了! (What the FXXX !!!!)</p>
<p>我什麼都沒改呀&hellip;</p>
<p>update: 2018/11/19</p>
<p>剛剛在測試一台機器,又發生這個問題</p>
<p>兩台都ping不到對方</p>
<p><img src="https://i.imgur.com/gSD086o.png" alt="ping不到" /></p>
<p>什麼事也沒做就是把ping中斷然後再ping 一次,居然就可以了</p>
<p><img src="https://i.imgur.com/rvtw0hh.png" alt="又ping到了" /></p>
<p>##真他X的詭異啊</p>
<hr>
<p>反正呢&hellip;</p>
<p>這種狀況三不五時就會出現一次,會出現在哪一台電腦也不一定</p>
<p>不過,依照觀察到的狀況來說,似乎都是發生在很少開機的電腦上</p>
<p>然後呢,因為底層是 KVM</p>
<p>我也嘗試過用virsh 去restart VM 或者是 restart network</p>
<p>有時候可以解決,有時候又還是不能連接</p>
<p>於是另外測試安裝了 proxmox VE 的虛擬平台</p>
<p>在上面起一台新的Server再用 ansible 做成 build server的角色</p>
<p>這樣子作的機器,就不會發生這種狀況</p>
<p>所以我在猜是不是跟底層是KVM有關係..</p>
<p>不過要動這個的話,工程有點大,手邊也沒那麼多機器可以替換(很慘)</p>
<p>暫時先保留這個作法,等到下次再發生這狀況</p>
<p>再來找老闆看這情形然後來討論要不要換掉各分公司的VM Host&hellip;</p>
</div>
<div class="footer">
<div class="tags">
<i class="fa fa-tags"></i>
<div class="links">
<a href="/tags/ubuntu">ubuntu</a>
<a href="/tags/%E7%AD%86%E8%A8%98">筆記</a>
</div>
</div>
</div>
</article>
</div>
<div id="disqus_thread"></div>
<script type="application/javascript">
var disqus_config = function () {
};
(function() {
if (["localhost", "127.0.0.1"].indexOf(window.location.hostname) != -1) {
document.getElementById('disqus_thread').innerHTML = 'Disqus comments not available by default when the website is previewed locally.';
return;
}
var d = document, s = d.createElement('script'); s.async = true;
s.src = '//' + "h-cowbay-org-1" + '.disqus.com/embed.js';
s.setAttribute('data-timestamp', +new Date());
(d.head || d.body).appendChild(s);
})();
</script>
<noscript>Please enable JavaScript to view the <a href="https://disqus.com/?ref_noscript">comments powered by Disqus.</a></noscript>
<a href="https://disqus.com" class="dsq-brlink">comments powered by <span class="logo-disqus">Disqus</span></a>
</div>
<footer>
<div class="container">
<div class="recent-posts">
<strong></strong>
<ul>
<li>
<a href="/post/ansible-selectattr-from-list-in-dictionary/">[ansible] 引用事先定義好的yaml檔裡面的變數 - Ansible Selectattr From List in Dictionary file</a>
</li>
<li>
<a href="/post/remote-management-system-meshcentral/">linux底下遠端遙控&amp;管理的好用系統 Meshcentral / Remote Management &amp; control system Meshcentral</a>
</li>
<li>
<a href="/post/install-asus-10g-nic-in-proxmox/">Install Asus 10G NIC XG-C100C in Proxmox</a>
</li>
<li>
<a href="/post/change-timezone-in-docker/">[筆記] 修改 docker 容器內的時區 - Change Timezone in Docker</a>
</li>
<li>
<a href="/post/transfer-file-content-using-xclip-in-terminal/">Transfer File Content Using Xclip in Terminal</a>
</li>
<li>
<a href="/post/inx-collect-detail-hardware-info/">[筆記] inxi 蒐集詳盡的硬體資訊 / inxi Collect Detail Hardware Info</a>
</li>
<li>
<a href="/post/log-all-bash-commands/">[筆記] 紀錄所有下過的指令、時間 / Log All commands with timestamp</a>
</li>
</ul>
</div>
<div class="categories">
<a href="/categories/"><strong></strong></a>
<ul>
<li>
<a href="/categories/%E7%AD%86%E8%A8%98">筆記 (20)</a>
</li>
<li>
<a href="/categories/ansible">Ansible (1)</a>
</li>
<li>
<a href="/categories/linux">Linux (1)</a>
</li>
<li>
<a href="/categories/proxmox">Proxmox (1)</a>
</li>
<li>
<a href="/categories/ps">Ps (1)</a>
</li>
<li>
<a href="/categories/%E7%A2%8E%E5%BF%B5">碎念 (1)</a>
</li>
<li>
<a href="/categories/%E7%BE%A4%E6%9A%89">群暉 (1)</a>
</li>
</ul>
</div>
<div class="right">
<div class="external-profiles">
<strong></strong>
<a href="https://www.facebook.com/mariahchang" target="_blank"><i class="fa fa-facebook-adblock-proof"></i></a>
<a href="https://twitter.com/changchichung" target="_blank"><i class="fa fa-twitter-adblock-proof"></i></a>
<a href="https://github.com/changchichung" target="_blank"><i class="fa fa-github"></i></a>
<a href="https://www.yapee.tw/mvc/onlinePay/webLink?key=lMC74kucH21JChCR77-wJ80ZZ-Poh11amP24BwiDdHw" target="_blank"><img border="0" src="https://www.yapee.tw/mvc/file/publicFile?pathType=data/linkLogo/B0S0F0002585.jpg"></img></a>
</div>
</div>
</div>
</footer>
<div class="credits">
<div class="container">
<div class="copyright">
<a href="https://github.com/Lednerb" target="_blank">
&copy;
2017
by Lednerb
</a>
</div>
<div class="author">
<a href="https://www.yapee.tw/mvc/onlinePay/webLink?key=lMC74kucH21JChCR77-wJ80ZZ-Poh11amP24BwiDdHw" target="_blank">Bilberry Hugo Theme</a>
</div>
</div>
</div>
<script type="application/javascript">
var doNotTrack = false;
if (!doNotTrack) {
window.ga=window.ga||function(){(ga.q=ga.q||[]).push(arguments)};ga.l=+new Date;
ga('create', 'UA-138954876-1', 'auto');
ga('send', 'pageview');
}
</script>
<script async src='https://www.google-analytics.com/analytics.js'></script>
<script type="text/javascript" src="https://h.cowbay.org/js/externalDependencies.39c47e10e241eae2947b3fe21809c572.js" integrity="md5-OcR&#43;EOJB6uKUez/iGAnFcg=="></script>
<script type="text/javascript" src="https://h.cowbay.org/js/theme.ff50ae6dc1bfc220b23bf69dbb41b54e.js" integrity="md5-/1CubcG/wiCyO/adu0G1Tg=="></script>
<script>
$(".moment").each(function() {
$(this).text(
moment( $(this).text() )
.locale( "tw" )
.format('LL')
);
});
$(".footnote-return sup").html("");
</script>
<script>
var client = algoliasearch("2XL0P8XDCY", "4ef65b37b627bb886b46c34a10e63aa6");
var index = client.initIndex("h_cowbay_org");
$('#search').autocomplete({ hint: false, autoselect: true, debug: false },
[
{
source: $.fn.autocomplete.sources.hits(index, { hitsPerPage: 10 }),
displayKey: function(suggestion) {
return suggestion.title || suggestion.author
},
templates: {
suggestion: function(suggestion) {
return "<span class='entry " + suggestion.type + "'>"
+ "<span class='title'>" + suggestion.title + "</span>"
+ "<span class='fa fa-fw " + suggestion.iconClass + "'></span>"
+ "</span>"
;
},
empty: function() {
return "<span class='empty'></span>"
},
footer: function() {
return '<div class="branding">Powered by <img src="https:\/\/h.cowbay.org\/dist\/algolia-logo-light.svg" /></div>'
}
},
}
])
.on('autocomplete:selected', function(event, suggestion, dataset) {
window.location = (suggestion.url);
})
.keypress(function (event, suggestion) {
if (event.which == 13) {
window.location = (suggestion.url);
}
});
</script>
</body>
</html>
Reference in new issue View Git Blame Copy Permalink