Synchronisation two cyrus-imapd servers

Alexander Demin support at spectrum.ru
Thu Sep 17 08:42:10 EDT 2009 

Hello.

I have problem with synchronisation two cyrus-imapd servers.

******* Start "Replica" host configuration *******
OS: FreeBSD 7.2-STABLE i386
cyrus-imapd-2.3.15 WITH_BDB=true WITH_REPLICATION=true
cyrus-sasl-2.1.23 WITH_AUTHDAEMOND=true WITH_LOGIN=true WITH_PLAIN=true
WITH_CRAM=true WITH_DIGEST=true
cyrus-sasl-saslauthd-2.1.23
All soft installed from ports.

Cyrus configuration:
/usr/local/etc/cyrus.conf
START {
	recover		cmd="ctl_cyrusdb -r"
}

SERVICES {
	imap		cmd="imapd" listen="imap" prefork=0
	imaps		cmd="imapd -s" listen="imaps" prefork=0
	pop3		cmd="pop3d" listen="pop3" prefork=0
	pop3s		cmd="pop3d -s" listen="pop3s" prefork=0
	sieve		cmd="timsieved" listen="sieve" prefork=0
	lmtpunix	cmd="lmtpd" listen="/data/imap/socket/lmtp" prefork=0
	smmap		cmd="smmapd" listen="/data/imap/socket/smmap" prefork=1
	syncserver      cmd="sync_server" listen="csync" prefork=1
}

EVENTS {
	checkpoint	cmd="ctl_cyrusdb -c" period=30
	delprune	cmd="cyr_expire -E 3" at=0400
	tlsprune	cmd="tls_prune" at=0400
}

/usr/local/etc/imapd.conf
configdirectory: /backup/imap
partition-default: /backup/spool/imap
unixhierarchysep: no
altnamespace: yes
allowanonymouslogin: no
allowplaintext: yes
imapidresponse: yes
admins: cyrus
munge8bit: 0
rfc2046_strict: 0
sievedir: /backup/imap/sieve
sendmail: /usr/sbin/sendmail
postmaster: postmaster
annotation_db: skiplist
duplicate_db: berkeley-nosync
mboxlist_db: skiplist
ptscache_db: berkeley
seenstate_db: skiplist
subscription_db: flat
sasl_pwcheck_method: auxprop
sasl_auxprop_plugin: sasldb
sasl_log_level: 7
sasl_mech_list: plain cram-md5 digest-md5 login
lmtpsocket: /backup/imap/socket/lmtp
virtdomains: userid
lmtp_downcase_rcpt: 1

#
# EOF

/etc/services
csync		2005/tcp

/etc/rc.conf (show only cyrus/sasl params)
cyrus_imapd_enable="YES"
saslauthd_enable="YES"
saslauthd_flags="-a sasldb"
******* End "Replica" host configuration *******

******* Start "Master" host configuration *******
OS: FreeBSD 7.2-STABLE amd64
cyrus-imapd-2.3.15 WITH_BDB=true WITH_REPLICATION=true
cyrus-sasl-2.1.23 WITH_AUTHDAEMOND=true WITH_LOGIN=true WITH_PLAIN=true
WITH_CRAM=true WITH_DIGEST=true
cyrus-sasl-saslauthd-2.1.23
All soft installed from ports.

Cyrus configuration:
/usr/local/etc/cyrus.conf
START {
	recover		cmd="ctl_cyrusdb -r"
}

SERVICES {
	imap		cmd="imapd" listen="imap" prefork=0
	imaps		cmd="imapd -s" listen="imaps" prefork=0
	pop3		cmd="pop3d" listen="pop3" prefork=0
	pop3s		cmd="pop3d -s" listen="pop3s" prefork=0
	sieve		cmd="timsieved" listen="sieve" prefork=0
	lmtpunix	cmd="lmtpd" listen="/data/imap/socket/lmtp" prefork=0
	smmap		cmd="smmapd" listen="/data/imap/socket/smmap" prefork=1
	syncclient	cmd="sync_client -r" listen="csync" prefork=1
}

EVENTS {
	checkpoint	cmd="ctl_cyrusdb -c" period=30
	delprune	cmd="cyr_expire -E 3" at=0400
	tlsprune	cmd="tls_prune" at=0400
}

/usr/local/etc/imapd.conf
configdirectory: /data/imap
partition-default: /data/spool/imap
unixhierarchysep: no
altnamespace: yes
allowanonymouslogin: no
allowplaintext: yes
imapidresponse: yes
admins: cyrus cyrus at spectrum.ru
munge8bit: 0
rfc2046_strict: 0
sievedir: /data/imap/sieve
sendmail: /usr/sbin/sendmail
postmaster: postmaster
annotation_db: skiplist
duplicate_db: berkeley-nosync
mboxlist_db: skiplist
ptscache_db: berkeley
seenstate_db: skiplist
subscription_db: flat
sasl_pwcheck_method: auxprop
sasl_auxprop_plugin: sasldb
sasl_log_level: 7
sasl_mech_list: plain cram-md5 digest-md5 login
tls_cert_file: /etc/ssl/imapserver.pem
tls_key_file: /etc/ssl/imapserver.pem
tls_ca_file: /etc/ssl/imapserver.pem
tls_session_timeout: 0
lmtpsocket: /data/imap/socket/lmtp
virtdomains: userid
lmtp_downcase_rcpt: 1
sync_repeat_interval: 10
sync_host: support.spectrum.ru
sync_authname: cyrus
sync_password: ***********
sync_log: 1

#
# EOF

/etc/services
csync		2005/tcp

/etc/rc.conf (show only cyrus/sasl params)
cyrus_imapd_enable="YES"
saslauthd_enable="YES"
saslauthd_flags="-a sasldb"

"Master" - it's production mail server of my company. All services
worked is fine.
******* End "Master" host configuration *******

Step-by-step:
"Replica" host
1. /usr/local/etc/rc.d/imapd start
2. imtest -a cyrus localhost - has passed successfully
3. synctest -u cyrus localhost - failed
S: * SASL LOGIN PLAIN DIGEST-MD5 CRAM-MD5
S: * OK support.spectrum.ru Cyrus sync server v2.3.15
C: AUTHENTICATE DIGEST-MD5
failure: prot layer failure
4. ps -ax | grep sync_server
65257  ??  I      0:00,00 sync_server
65617  ??  I      0:00,00 sync_server
5. grep sync /var/log/all.log
Sep 17 15:59:24 support syncserver[65589]: accepted connection
Sep 17 15:59:24 support master[65616]: about to
exec /usr/local/cyrus/bin/sync_server
Sep 17 15:59:24 support kernel: pid 65589 (sync_server), uid 60: exited
on signal 11
Sep 17 15:59:24 support syncserver[65589]: cmdloop(): startup
Sep 17 15:59:24 support syncserver[65616]: executed
Sep 17 15:59:24 support master[65253]: service syncserver pid 65589 in
BUSY state: terminated abnormally
Sep 17 15:59:24 support syncserver[65616]: accepted connection
Sep 17 15:59:24 support master[65617]: about to
exec /usr/local/cyrus/bin/sync_server
Sep 17 15:59:24 support kernel: pid 65616 (sync_server), uid 60: exited
on signal 11
Sep 17 15:59:24 support syncserver[65616]: cmdloop(): startup
Sep 17 15:59:24 support syncserver[65617]: executed
Sep 17 15:59:24 support master[65253]: service syncserver pid 65616 in
BUSY state: terminated abnormally

"Master" host
1. /usr/local/etc/rc.d/imapd restart
2. imtest -a cyrus localhost - has passed successfully
3. ps -ax | grep sync_client
63196  ??  S      0:00,01 sync_client -r
63197  ??  S      0:00,01 sync_client -r
4. grep sync /var/log/all.log
Sep 17 16:24:18 mail sync_client[63196]: couldn't authenticate to
backend server: generic failure
Sep 17 16:24:18 mail sync_client[63197]: couldn't authenticate to
backend server: generic failure
Sep 17 16:25:18 mail sync_client[63196]: couldn't authenticate to
backend server: generic failure
Sep 17 16:25:18 mail sync_client[63197]: couldn't authenticate to
backend server: generic failure

Did i make something not correctly?
Help me, please, to find the mistake and understand this problem.

Thanks.

-- 
Demin Alexander / Network Administrator
Group of companies Spectrum / tel. (+7 495) 995-8999
Russia, Moscow, 103009, Strastnoy blvr. 8
Web: http://www.spectrum.ru/

More information about the Info-cyrus mailing list