"no suitable server found" on hub

[Christian Linden]

Hi,

getting those in logs running on hub with 3.7.2:

Mar  8 16:20:44 hostname[1046]: CFEngine(agent)  No suitable server found

What is it looking for?

Cheers,

Chris

[Neil Watson]

Cf-agent can't find the server it's trying to connect to. Run in verbose
to figure out which promise is the issue, or try to rebootstrap.

--
Neil H Watson
Sr. Partner, Architecture and Infrastructure
CFEngine reporting: https://github.com/evolvethinking/delta_reporting
CFEngine policy: https://github.com/evolvethinking/evolve_cfengine_freelib
CFEngine and vim: https://github.com/neilhwatson/vim_cf3
CFEngine support: http://evolvethinking.com

[Christian Linden]

It’s every five minutes in the syslog but cf-agent -v doesn’t show it.
I don’t want to re-bootstrap now.. it’s a hub..

> --
> You received this message because you are subscribed to a topic in the Google Groups "help-cfengine" group.
> To unsubscribe from this topic, visit https://groups.google.com/d/topic/help-cfengine/2cRBp9BXcqg/unsubscribe.
> To unsubscribe from this group and all its topics, send an email to help-cfengin...@googlegroups.com.
> To post to this group, send email to help-c...@googlegroups.com.
> Visit this group at https://groups.google.com/group/help-cfengine.
> For more options, visit https://groups.google.com/d/optout.

[Christian Linden]

even after a successfully re-bootstrapping it continues not to find a suitable server =(

> On 08 Mar 2016, at 16:54, Neil Watson <cfen...@watson-wilson.ca> wrote:
>

[Neil Watson]

Run the cf-agent in verbose to find what part of the policy produces
this output.

[Christian Linden]

found it!!! Bless you! =)

c

[Dimitrios Apostolou]

It's fishy for the hub to output this message, since it's copying
policy from itself. What's the address you used when bootstrapping? Is
it the proper one, try "telnet IPADDR 5308" with that specific address
and see if it's connecting.

> You received this message because you are subscribed to the Google Groups "help-cfengine" group.
> To unsubscribe from this group and stop receiving emails from it, send an email to help-cfengin...@googlegroups.com.

[Christian Linden]

Hi Dimitrios,

this was a promise which should secure_cp files from the nodes to the hub.

Unfortunately this doesn't work because 5308 is blocked in this direction by company policy =(

This takes me all reporting capabilities =(

.. and makes Martin's messaging more interesting.. 

Chris

[Dimitrios Apostolou]

Christian, if you want reporting without open ports, you can use
"call-collect" capability of CFEngine Enterprise. Call-collect is
re-using on the hub the connections initiated by the clients that are
fetching policy, in order for the hub to ask for reports.

In particular you need to add "call collect interval" in "body server
control" for all hosts, and you need to enable "collect_calls" in the
ACL of the hub. Check the examples here:

https://docs.cfengine.com/lts/reference-components-cf-serverd.html


Dimitris

[Nick Anderson]

On 03/09/2016 03:02 AM, Christian Linden wrote:
> Hi Dimitrios,
>
> this was a promise which should secure_cp files from the nodes to the hub.
> Unfortunately this doesn't work because 5308 is blocked in this
> direction by company policy =(
> This takes me all reporting capabilities =(
> .. and makes Martin's messaging more interesting..

There are *many* different ways to report.

One time I had remote agents post a report they generated about
themselves to a webdav server.

And don't forget about `cf-agent -b host_info_report`

[Christian Linden]

Useful hints.. Enterprise is still not running here.. but good to know about the call-collect.

Bundle host_info_report is lovely but makes no difference in my case as I just get the info in another file that I need to collect..

Webdav seems a cool choice =)

c