3. Configuration
halon-clusterd loads the non-reloadable configuration from /etc/halon/clusterd.conf.
Below are some of the most important settings that can be configured.
3.1. Listener directives
- listen.port
Which TCP port to listen on. The default is
2530.
- listen.address
IPv4 or IPv6 address to listen on. The default is to listen to all IPv4 and IPv6 addresses.
3.2. Authentication directives
- pki.certificate
The X.509 certificate and private key to use for transport security. The private key and certificate should have either a
pathordataproperty.pki: certificate: data: |- -----BEGIN CERTIFICATE----- ... privatekey: data: |- -----BEGIN PRIVATE KEY----- ...
- pki.privatekey
The X.509 private key to use for transport security. The private key should have either a
pathordataproperty.
- pki.clientcerts[]
A list of X.509 certificate for client certificate authentication, either a
pathordataproperty. If this list is empty, no client certificate verification is done.pki: clientcerts: - data: |- -----BEGIN CERTIFICATE----- ...
3.3. General directives
- reservedtime
The number of seconds to keep a released slot reserved for the host which requested it. If this value is too long, it may reduce the responsiveness in the cluster in case the requesting host don’t claim the slot. The default is 1 second.
3.4. Environment directives
The default startup configuration that came with the installation package contains reasonable defaults for your platform. Some settings should however be revised.
3.4.1. Other environment
Those settings should normally be left unchanged. The default startup configuration in /opt/halon/examples that came with the installation package should contain correct parameters for your operating system or distribution. Those settings are described in the programs section.
- environment.privdrop.user
The user to run the process as.
- environment.privdrop.group
The group to run the process as.