[tahoe-dev] Troubleshooting node connectivity
Shawn Willden
shawn at willden.org
Wed Sep 9 06:05:55 PDT 2009
On Wednesday 09 September 2009 01:17:18 am Brian Warner wrote:
> Remember that Tahoe nodes establish connections bidirectionally, and
> that once the A->B connection is made, it can also be used B->A. So if
> your two Ubuntu boxes are behind firewalls, then in fact maybe nobody
> can establish a connection *to* them, but they can make outbound
> connections to anyone else that isn't behind a firewall (i.e. everyone
> but the other Ubuntu box).
That makes perfect sense. So perhaps I forwarded the wrong port? I forwarded
both the web API port (web.port), because I wanted to be able to see the web
pages, and the port identified in the client.port file.
According to configuration.txt, the client.port file contains the tub.port
value, so that's what should be accessible, right?
> I think that 'flogtool tail' will tell you when connections are
> initiated and established.. there's a lot of debug-level logging noise
> emitted during protocol negotiation. But what you might just try is to
> telnet into the host/port that's advertised in the introducer. If you
> can't make a connection, then neither will the tahoe node.
I can connect to both the webapi port (which I know isn't useful here) and the
client.port, which according to configuration.txt is tub.port.
Rather than 'telnet', I find 'nc -z' to be the nicest way to test such
connectivity, BTW. Adding a timeout parameter makes it very nice for use in
scripts, too.
I'll take a look at the flogtool output and see if that helps. If not, I'll
start grabbing packets with tcpdump.
> > The routers for both have them have been configured to forward the web
> > interface port and the client port to the machines. I've verified
> > connectivity to both of those ports in both cases, and the Lenny
> > machines can connect to both nodes.
>
> But that suggests that you've already tried that test, and succeeded in
> getting through in the direction that's in question. Hrm.
Indeed. If you'd like to verify it as well, I'll send you the host/port pairs
via private e-mail.
Shawn.
More information about the tahoe-dev
mailing list