TWiki> UCSDTier2 Web>CrossOSGCE>CrossOSGCEInstColl (2014/07/29, IgorSfiligoi)EditAttach

Installation instructions for the CrossOSG CE Collector node

Note: This page is deprecated!

Location

osg-glidein-collector.t2.ucsd.edu

Node type

CentOS? 6

Maintenance

Start/stop Condor

Use the standard 

service condor
commands.

Detailed instructions 

# Node came pre-installed with the osg-ca-certs
# If not, follow the instructions at
# https://twiki.grid.iu.edu/bin/view/Documentation/Release3/InstallOSGClient#Install_the_CA_Certificates_A_qu

# Basic OSG client installation
# Note: Not essential, but I like to have it
yum install osg-client

# Create condor user
useradd condor

# Install basic condor
yum install condor

# Install glideinWMS RPM
# Note: Not fully ready yet, so I had to hack around it a bit
yum install --enablerepo=osg-development glideinwms-usercollector

yum install git
cd /root
# had to use a dev branch since the needed tools were not yet merged into the v2_7_1 series
# but they are supposed to be
git clone -b branch_v2plus_igor_3777 http://cdcvs.fnal.gov/projects/glideinwms
cd /root/glideinwms/install/templates
cp 00_gwms_general.config  01_gwms_collectors.config 03_gwms_local.config 11_gwms_secondary_collectors.config 90_gwms_dns.config /etc/condor/config.d/
echo "DAEMON_LIST=MASTER" >/etc/condor/config.d/01_aa_fixdaemonlist.config

# put in place the common files 
wget http://www.t2.ucsd.edu/twiki2/pub/UCSDTier2/CrossOSGCE/80_crossosgce_domain.config -O /etc/condor/config.d/80_crossosgce_domain.config 
wget http://www.t2.ucsd.edu/twiki2/pub/UCSDTier2/CrossOSGCEInstColl/21_cms_ports.config -O /etc/condor/config.d/21_cms_ports.config


# set the number of sec collectors
cd /root/glideinwms/install
./glidecondor_createSecCol -useportasname -commonlog 9620-9819

# Add the DNs

# Get the list of DNs
wget http://www.t2.ucsd.edu/twiki2/pub/UCSDTier2/CrossOSGCEInstColl/dns.collector.list -O /root/dns.list

# now create the necessary files
cd /root/glideinwms/install
./glidecondor_addDN -recreate -disable-checks -import /root/dns.list

#
# Condor is fully configured now
#


# open the firewall

# The following patch worked on my system, but you likely want to add the rules by hand
cat >/root/iptable.patch 
*** etc.org/sysconfig/iptables   2013-05-03 14:42:28.158285499 -0700
--- etc/sysconfig/iptables   2013-05-03 14:36:57.086472862 -0700
***************
*** 9,12 ****
--- 9,14 ----
  -A INPUT -i lo -j ACCEPT
  -A INPUT -m state --state NEW -m tcp -p tcp --dport 22 -j ACCEPT
+ -A INPUT  -m state --state NEW -p tcp -m tcp --dport 9618:9819 -j ACCEPT
+ -A INPUT  -m state --state NEW -p udp -m udp --dport 9618:9819 -j ACCEPT
  -A INPUT -j REJECT --reject-with icmp-host-prohibited
  -A FORWARD -j REJECT --reject-with icmp-host-prohibited

patch /etc/sysconfig/iptables /root/iptable.patch 

service iptables restart


# Start Condor
service condor start

# Start Condor on reboot
chkconfig condor on

-- IgorSfiligoi - 2013/05/02

Attachments Attachments
Topic attachments
I Attachment Action Size Date Who Comment
elseconfig 21_cms_ports.config manage 0.2 K 2013/05/13 - 20:28 IgorSfiligoi Set ports used in a firewall friendly way
elselist dns.collector.list manage 0.4 K 2013/05/03 - 16:51 IgorSfiligoi List of all the DNs used in the CrossOSGCE pool
Edit | Attach | Print version | History: r8 < r7 < r6 < r5 < r4 | Backlinks | Raw View | Raw edit | More topic actions
Topic revision: r8 - 2014/07/29 - 22:32:43 - IgorSfiligoi
 
This site is powered by the TWiki collaboration platformCopyright © by the contributing authors. All material on this collaboration platform is the property of the contributing authors.
Ideas, requests, problems regarding TWiki? Send feedback