SUMMARY: trouble doing ypinit -s across router

From: joef@vfl.paramax.com
Date: Mon Jun 06 1994 - 11:35:15 CDT


SUMMARY: trouble doing ypinit -s across router

Thanks to all who responded so quickly and constructively.

The correct answer came from three folks:
david@srv.PacBell.COM (David St. Pierre)
Michael.Pavlov@toexpres.com (Michael Pavlov)
Katherine Hosch <kam@math.tulane.edu>

Thanks also to the following for good advice:
Dave Fetrow <fetrow@biostat.washington.edu>
kumeda@tds.com (Andy Kumeda)
eddy@telecomm.tadiran.co.il (Edward Resnick - Sys Adm Team (1723))
Mike Raffety <mike_raffety@il.us.swissbank.com>

The problem stemmed from the fact that there was no entry for the new
network in /var/yp/securenets.
This file is part of the ypserv, ypxfrd, and portmap security patch
100482-02.
Adding an entry for the new net in this file and then restarting ypserv
and ypxfrd on the NIS master fixed the problem.

The original post is included below.

> From sun-managers-relay@ra.mcs.anl.gov Sat Jun 4 01:30:24 1994
> Sender: sun-managers-relay@ra.mcs.anl.gov
> From: joef@vfl.paramax.com
> Reply-To: joef@vfl.paramax.com
> Date: Fri, 3 Jun 94 13:47:33 EDT
> To: sun-managers@eecs.nwu.edu
> Subject: trouble doing ypinit -s across router
>
>
> Having trouble doing ypinit -s across router.
>
> The situation is this.
>
> Master YP server Sun 4/490 running SunOS 4.1.1B (running NIS, NOT NIS+)
>
> Attempting to bring up slave YP server Sun 4/LX running SunOS 4.1.3_U1B.
>
> There is a Cisco AGS+ router between the two machines.
>
> In other situations, when trying to do ypinit -s across a router,
> I have used the following procedure successfully:
>
> 1- on YP master add new YP slave name to ypservers using makedbm
> 1- boot machine to be yp slave server up in single user
> 2- add YP master machine to /etc/hosts on yp slave
> 3- ifconfig, add default routes, etc on yp slave until can ping
> between machines
> 4- on machine to be slave yp server, do all of the following:
> 5- /usr/etc/portmap
> 6- set domainname with domainname <YP domain name>
> 7- /usr/etc/ypbind -ypsetme
> 8- /usr/etc/yp/ypset <IP address of YP master>
> 9- cd /var/yp
> 10- /usr/etc/yp/ypinit -s <YP master>
>
> After answering ypinit questions, the maps transfer and then I reboot
> multiuser and all is well.
>
> In this situation, however, after doing all of the above,
> the maps do not transfer. The following errors show on the
> YP slave machine:
>
> transfering netgroup.byhost . . .
> (info) can't get secure flag from ypserv at <YP master>
> Reason: no such map in server's domain
> (info) can't get interdomain flag from ypserv at <YP master>
> Reason: no such map in server's domain
>
> (lines like the above for each map on the YP master)
>
> and on YP master's console I get the following:
> syslog: ypserv: access denied for <IP address of YP slave>
>
> I can ping between the two machines in either direction.
> I can rlogin to the YP master from the YP slave.
> However, I can not login to the YP slave from the YP master
> (the slave's up in single user, so I assume this would be expected)
> Both machines are in DNS, and the master can resolve the slave's name.
>
> I have attempted rebooting the YP master, but that made no difference.
> Have also added entries in /.rhosts and hosts.equiv.
>
> Any ideas? Suggestions?
> What am I overlooking?
>
> Thanks, and I will summarize.
>

---
Joseph M. Fedock			joef@vfl.paramax.com
Unisys Corporation			voice  (610) 648-2573
Government Systems Group		voice (net2) 323-2573      
Electronic Systems			pager  (800) 502-6723 (SE PA only)
Valley Forge Engineering Center		pager  (610) 578-9513 (all others)
70 E. Swedesford Road			fax    (610) 648-2281
P.O. Box 517				
Paoli, PA 19301



This archive was generated by hypermail 2.1.2 : Fri Sep 28 2001 - 23:09:03 CDT