We Keep Coding

SeaweedFS - Added new volume server but not able to add new files

I've one master(x.x.x.61), one volume(x.x.x.63) and one filer + s3API (x.x.x.62) setup on 3 separate machines.
I added a new volume server (x.x.x.64) because I've max out the storage space on the first volume server.
But I'm still not able to add new files on the filer UI(http://x.x.x.62:8888)
In my filer logs, I noticed that it's trying to connect to the first volume server IP address that's out of space. Am I missing a configuration for it to connect to the new volume server?
E1221 11:09:48.027930 upload_content.go:351 unmarshal http://x.x.x.63:8080/7,2bafadaa4666: {"error":"failed to write to local disk: write data/chrisDir_7.dat: no space left on device"}{"name":"app_progress4.apk","size":2353734,"eTag":"92b10892"}
W1221 11:09:48.027950 upload_content.go:168 uploading 2 to http://x.x.x.63:8080/7,2bafadaa4666: unmarshal http://x.x.x.63:8080/7,2bafadaa4666: invalid character '{' after top-level value
E1221 11:09:48.027965 filer_server_handlers_write_upload.go:209 upload error: unmarshal http://x.x.x.63:8080/7,2bafadaa4666: invalid character '{' after top-level value
I1221 11:09:48.028022 common.go:70 response method:POST URL:/buckets/chrisDir/ with httpStatus:500 and JSON:{"error":"unmarshal http://x.x.x.63:8080/2,2ba84b2894a7: invalid character '{' after top-level value"}
In the master log, I see that the second volume server was added successfully and master.toml file was executed to rebalance
I1221 11:36:09.522690 node.go:225 topo:DefaultDataCenter:DefaultRack adds child x.x.x.64:8080
I1221 11:36:09.522716 node.go:225 topo:DefaultDataCenter:DefaultRack:x.x.x.64:8080 adds child
I1221 11:36:09.522724 master_grpc_server.go:138 added volume server 0: x.x.x.64:8080 [3caad049-38a6-43f6-8192-d1082c5e838b]
I1221 11:36:09.522744 master_grpc_server.go:49 found new uuid:x.x.x.64:8080 [3caad049-38a6-43f6-8192-d1082c5e838b] , map[x.x.x.63:8080:[5005b287-c812-4dba-ba41-9b5a6a022f12] x.x.x.64:8080:[3caad049-38a6-43f6-8192-d1082c5e838b]]
I1221 11:36:09.522866 volume_layout.go:393 Volume 11 becomes writable
I1221 11:36:09.522880 master_grpc_server.go:199 master see new volume 11 from x.x.x.64:8080
I1221 11:38:33.481721 master_server.go:323 executing: lock []
I1221 11:38:33.482821 master_server.go:323 executing: ec.encode [-fullPercent=95 -quietFor=1h]
I1221 11:38:33.483925 master_server.go:323 executing: ec.rebuild [-force]
I1221 11:38:33.484372 master_server.go:323 executing: ec.balance [-force]
I1221 11:38:33.484777 master_server.go:323 executing: volume.balance [-force]
2022/12/21 11:38:48 copying volume 21 from x.x.x.63:8080 to x.x.x.64:8080
I1221 11:38:48.486778 volume_layout.go:407 Volume 21 has 0 replica, less than required 1
I1221 11:38:48.486798 volume_layout.go:380 Volume 21 becomes unwritable
I1221 11:38:48.494998 volume_layout.go:393 Volume 21 becomes writable
2022/12/21 11:38:48 tailing volume 21 from x.x.x.63:8080 to x.x.x.64:8080
2022/12/21 11:38:58 deleting volume 21 from x.x.x.63:8080
....
How I start master
./weed master -mdir='.'
How I start volume
./weed volume -max=100 -mserver="x.x.x.61:9333" -dir="$dataDir"
How I start filer and s3
./weed filer -master="x.x.x.61:9333" -s3
What's in $HOME/.seaweedfs
drwxrwxr-x 2 seaweedfs seaweedfs 4096 Dec 20 16:01 .
drwxr-xr-x 20 seaweedfs seaweedfs 4096 Dec 20 16:01 ..
-rw-r--r-- 1 seaweedfs seaweedfs 2234 Dec 20 15:57 master.toml
Content of master.toml file
# Put this file to one of the location, with descending priority
# ./master.toml
# $HOME/.seaweedfs/master.toml
# /etc/seaweedfs/master.toml
# this file is read by master
[master.maintenance]
# periodically run these scripts are the same as running them from 'weed shell'
scripts = """
lock
ec.encode -fullPercent=95 -quietFor=1h
ec.rebuild -force
ec.balance -force
volume.deleteEmpty -quietFor=24h -force
volume.balance -force
volume.fix.replication
s3.clean.uploads -timeAgo=24h
unlock
"""
sleep_minutes = 7 # sleep minutes between each script execution
[master.sequencer]
type = "raft" # Choose [raft|snowflake] type for storing the file id sequence
# when sequencer.type = snowflake, the snowflake id must be different from other masters
sequencer_snowflake_id = 0 # any number between 1~1023
# configurations for tiered cloud storage
# old volumes are transparently moved to cloud for cost efficiency
[storage.backend]
[storage.backend.s3.default]
enabled = false
aws_access_key_id = "" # if empty, loads from the shared credentials file (~/.aws/credentials).
aws_secret_access_key = "" # if empty, loads from the shared credentials file (~/.aws/credentials).
region = "us-east-2"
bucket = "your_bucket_name" # an existing bucket
endpoint = ""
storage_class = "STANDARD_IA"
# create this number of logical volumes if no more writable volumes
# count_x means how many copies of data.
# e.g.:
# 000 has only one copy, copy_1
# 010 and 001 has two copies, copy_2
# 011 has only 3 copies, copy_3
[master.volume_growth]
copy_1 = 7 # create 1 x 7 = 7 actual volumes
copy_2 = 6 # create 2 x 6 = 12 actual volumes
copy_3 = 3 # create 3 x 3 = 9 actual volumes
copy_other = 1 # create n x 1 = n actual volumes
# configuration flags for replication
[master.replication]
# any replication counts should be considered minimums. If you specify 010 and
# have 3 different racks, that's still considered writable. Writes will still
# try to replicate to all available volumes. You should only use this option
# if you are doing your own replication or periodic sync of volumes.
treat_replication_as_minimums = false
System status
curl http://localhost:9333/dir/assign?pretty=y
{
"fid": "9,2bb2fd75d706",
"url": "x.x.x.63:8080",
"publicUrl": "x.x.x.63:8080",
"count": 1
}
curl http://x.x.x.61:9333/cluster/status?pretty=y
{
"IsLeader": true,
"Leader": "x.x.x.61:9333",
"MaxVolumeId": 21
}
curl "http://x.x.x.61:9333/dir/status?pretty=y"
{
"Topology": {
"Max": 200,
"Free": 179,
"DataCenters": [
{
"Id": "DefaultDataCenter",
"Racks": [
{
"Id": "DefaultRack",
"DataNodes": [
{
"Url": "x.x.x.63:8080",
"PublicUrl": "x.x.x.63:8080",
"Volumes": 20,
"EcShards": 0,
"Max": 100,
"VolumeIds": " 1-10 12-21"
},
{
"Url": "x.x.x.64:8080",
"PublicUrl": "x.x.x.64:8080",
"Volumes": 1,
"EcShards": 0,
"Max": 100,
"VolumeIds": " 11"
}
]
}
]
}
],
"Layouts": [
{
"replication": "000",
"ttl": "",
"writables": [
6,
1,
2,
7,
3,
4,
5
],
"collection": "chrisDir"
},
{
"replication": "000",
"ttl": "",
"writables": [
16,
19,
17,
21,
15,
18,
20
],
"collection": "chrisDir2"
},
{
"replication": "000",
"ttl": "",
"writables": [
8,
12,
13,
9,
14,
10,
11
],
"collection": ""
}
]
},
"Version": "30GB 3.37 438146249f50bf36b4c46ece02a430f44152777f"
}

Kerberos SSO with weblogic

I have managed to configure the weblogic for the SSO with windows AD, however there are several questions on which I need clarity
1) When I access the application from my browser with the apache web server sitting in between, why is the weblogic requesting for a TGT with the SPN everytime(I can see that in weblogic console), even if it wants to get authenticated with the KDC this should have happened only once during start up and not with every request from same browser.
Theoretically Weblogic should never contact the KDC to validate the existing user's TGT.
2) If the same session key provided by the KDC is used between client and weblogic server for secure communication, they would never require to hit KDC in between unless the session key expires, in which case they also have an option to renew it, so a TGT is never required to be created for each request from browser to weblogic. Is it correct.
Weblogic console logs->
Found ticket for HTTP/APPDEV2011.domain.com#DOMAIN.COM to go to krbtgt/DOMAIN.COM#DOMAIN.COM expiring on Fri May 11 21:06:46 CDT 2018
Debug is true storeKey true useTicketCache true useKeyTab true doNotPrompt true ticketCache is null isInitiator true KeyTab is http_weblogic_test.keytab refreshKrb5Config is false principal is HTTP/APPDEV2011.domain.com#DOMAIN.COM tryFirstPass is false useFirstPass is false storePass is false clearPass is false
Acquire TGT from Cache
KinitOptions cache name is D:\Users\ayadav.DOMAIN.000\krb5cc_ayadav
Acquire default native Credentials
default etypes for default_tkt_enctypes: 17 23.
LSA contains TGT for ayadav#DOMAIN.COM not HTTP/APPDEV2011.domain.com#DOMAIN.COM
Principal is HTTP/APPDEV2011.domain.com#DOMAIN.COM
null credentials from Ticket Cache
Looking for keys for: HTTP/APPDEV2011.domain.com#DOMAIN.COM
Added key: 17version: 14
Added key: 18version: 14
Added key: 23version: 14
Found unsupported keytype (3) for HTTP/APPDEV2011.domain.com#DOMAIN.COM
Found unsupported keytype (1) for HTTP/APPDEV2011.domain.com#DOMAIN.COM
Looking for keys for: HTTP/APPDEV2011.domain.com#DOMAIN.COM
Added key: 17version: 14
Added key: 18version: 14
Added key: 23version: 14
Found unsupported keytype (3) for HTTP/APPDEV2011.domain.com#DOMAIN.COM
Found unsupported keytype (1) for HTTP/APPDEV2011.domain.com#DOMAIN.COM
default etypes for default_tkt_enctypes: 17 23.
KrbAsReq creating message
KrbKdcReq send: kdc=wcosp-dc01.domain.com UDP:88, timeout=30000, number of retries =3, #bytes=163
KDCCommunication: kdc=wcosp-dc01.domain.com UDP:88, timeout=30000,Attempt =1, #bytes=163
KrbKdcReq send: #bytes read=207
Pre-Authentication Data:
PA-DATA type = 19
PA-ETYPE-INFO2 etype = 17, salt = DOMAIN.COMHTTPAPPDEV2011.domain.com, s2kparams = null
PA-ETYPE-INFO2 etype = 23, salt = null, s2kparams = null
Pre-Authentication Data:
PA-DATA type = 2
PA-ENC-TIMESTAMP
Pre-Authentication Data:
PA-DATA type = 16
Pre-Authentication Data:
PA-DATA type = 15
KdcAccessibility: remove wcosp-dc01.domain.com
KDCRep: init() encoding tag is 126 req type is 11
KRBError:
sTime is Fri May 11 11:06:46 CDT 2018 1526054806000
suSec is 633784
error code is 25
error Message is Additional pre-authentication required
sname is krbtgt/DOMAIN.COM#DOMAIN.COM
eData provided.
msgType is 30
Pre-Authentication Data:
PA-DATA type = 19
PA-ETYPE-INFO2 etype = 17, salt = DOMAIN.COMHTTPAPPDEV2011.domain.com, s2kparams = null
PA-ETYPE-INFO2 etype = 23, salt = null, s2kparams = null
Pre-Authentication Data:
PA-DATA type = 2
PA-ENC-TIMESTAMP
Pre-Authentication Data:
PA-DATA type = 16
Pre-Authentication Data:
PA-DATA type = 15
KrbAsReqBuilder: PREAUTH FAILED/REQ, re-send AS-REQ
default etypes for default_tkt_enctypes: 17 23.
Looking for keys for: HTTP/APPDEV2011.domain.com#DOMAIN.COM
Added key: 17version: 14
Added key: 18version: 14
Added key: 23version: 14
Found unsupported keytype (3) for HTTP/APPDEV2011.domain.com#DOMAIN.COM
Found unsupported keytype (1) for HTTP/APPDEV2011.domain.com#DOMAIN.COM
Looking for keys for: HTTP/APPDEV2011.domain.com#DOMAIN.COM
Added key: 17version: 14
Added key: 18version: 14
Added key: 23version: 14
Found unsupported keytype (3) for HTTP/APPDEV2011.domain.com#DOMAIN.COM
Found unsupported keytype (1) for HTTP/APPDEV2011.domain.com#DOMAIN.COM
default etypes for default_tkt_enctypes: 17 23.
EType: sun.security.krb5.internal.crypto.Aes128CtsHmacSha1EType
KrbAsReq creating message
KrbKdcReq send: kdc=wcosp-dc01.domain.com UDP:88, timeout=30000, number of retries =3, #bytes=250
KDCCommunication: kdc=wcosp-dc01.domain.com UDP:88, timeout=30000,Attempt =1, #bytes=250
KrbKdcReq send: #bytes read=96
KrbKdcReq send: kdc=wcosp-dc01.domain.com TCP:88, timeout=30000, number of retries =3, #bytes=250
KDCCommunication: kdc=wcosp-dc01.domain.com TCP:88, timeout=30000,Attempt =1, #bytes=250
DEBUG: TCPClient reading 1602 bytes
KrbKdcReq send: #bytes read=1602
KdcAccessibility: remove wcosp-dc01.domain.com
Looking for keys for: HTTP/APPDEV2011.domain.com#DOMAIN.COM
Added key: 17version: 14
Added key: 18version: 14
Added key: 23version: 14
Found unsupported keytype (3) for HTTP/APPDEV2011.domain.com#DOMAIN.COM
Found unsupported keytype (1) for HTTP/APPDEV2011.domain.com#DOMAIN.COM
EType: sun.security.krb5.internal.crypto.Aes128CtsHmacSha1EType
KrbAsRep cons in KrbAsReq.getReply HTTP/APPDEV2011.domain.com
principal is HTTP/APPDEV2011.domain.com#DOMAIN.COM
Will use keytab
Commit Succeeded
>
Thanks

MobileFirst 7.1.0.00.20170505-1403 - Intermittent connectivity issue to MobileFirst server from Android and iPhone

We have build an hybrid application and we have noticed an intermittent issue with connectivity to the mobile-first server from Android and iPhone. And it resolves once we kill the app and start again. This happens in following scenarios
1) when the direct update is requested and once the direct update is done immediately after that it stops working.
2) when the app is open and kept ideal in the background for some time like 30 min and then if try to access it does not connect to the server.
iPhone Logs
Jan 17 21:37:42 Owners-iPhone-3 MyMobileApp(CFNetwork)[5966] <Error>: NSURLConnection finished with error - code -1100
Jan 17 21:37:42 Owners-iPhone-3 locationd[71] <Notice>: {"msg":"CLWifiPositioningSystemLogic::apply", "event":"elapsed", "begin_mach":6677143475613, "end_mach":6677143529851, "elapsed_s":"0.002259917", "event":"Motion::CoarseMovement", "now_s":"537935862.468443036"}
Jan 17 21:37:43 Owners-iPhone-3 locationd[71] <Notice>: {"msg":"CLWifiPositioningSystemLogic::apply", "event":"elapsed", "begin_mach":6677159234428, "end_mach":6677159257208, "elapsed_s":"0.000949167", "event":"Motion::CoarseMovement", "now_s":"537935863.124722004"}
Jan 17 21:37:43 Owners-iPhone-3 MyMobileApp[5966] <Notice>: [DEBUG] [WORKLIGHT] +[WLClient sharedInstance] in WLClient.m:165 :: IBMMobilieFirstFoundation.framework version = 7.1-2016/09/19 17:15:50
Jan 17 21:37:43 Owners-iPhone-3 MyMobileApp[5966] <Notice>: [DEBUG] [My.SessionTimeoutServiceFactory] SessionTimeoutService elapsedTime : NaN
Jan 17 21:37:43 Owners-iPhone-3 MyMobileApp[5966] <Notice>: [DEBUG] [My.services] {"wifiName":"Not Available","networkConnectionType":"WIFI","ipv4Addresses":{"3GAddress":"10.192.82.165","wifiAddress":"10.0.1.5"},"ipv6Addresses":{"3GAddress":"::2600:380:a32b:513d:40ac:e5f3","wifiAddress":"::fe80:8:0:0:1c1a:a8cf"},"isNetworkConnected":"true","carrierName":"Not Available","isRoaming":"Not Available","isAirplaneMode":"Not Available","telephonyNetworkType":"Not Available","ipAddress":"10.0.1.5"}
Jan 17 21:37:43 Owners-iPhone-3 MyMobileApp[5966] <Notice>: [DEBUG] [WL_AFHTTPRequestOperationManagerWrapper_PACKAGE] +[WLAFHTTPRequestOperationManagerWrapper requestWithURL:] in WLAFHTTPRequestOperationManagerWrapper.m:51 :: Request url is https://myServerIp:443/MyProject/adapters/AnnouncementsAdapter/announcements/fetchannouncements
Jan 17 21:37:43 Owners-iPhone-3 MyMobileApp[5966] <Notice>: [DEBUG] [WL_AFHTTPRequestOperationManagerWrapper_PACKAGE] -[WLAFHTTPRequestOperationManagerWrapper start] in WLAFHTTPRequestOperationManagerWrapper.m:356 :: Starting the request with URL https://myServerIp:443/MyProject/adapters/AnnouncementsAdapter/announcements/fetchannouncements
Jan 17 21:37:43 Owners-iPhone-3 MyMobileApp(CFNetwork)[5966] <Error>: NSURLConnection finished with error - code -1001
Jan 17 21:37:43 Owners-iPhone-3 MyMobileApp(CFNetwork)[5966] <Error>: NSURLConnection finished with error - code -1001
Jan 17 21:37:43 Owners-iPhone-3 MyMobileApp[5966] <Notice>: [DEBUG] [WL_AFHTTPRequestOperationManagerWrapper_PACKAGE] -[WLAFHTTPRequestOperationManagerWrapper requestFailed:error:] in WLAFHTTPRequestOperationManagerWrapper.m:388 :: Request Failed
Jan 17 21:37:43 Owners-iPhone-3 MyMobileApp[5966] <Notice>: [DEBUG] [WL_AFHTTPRequestOperationManagerWrapper_PACKAGE] -[WLAFHTTPRequestOperationManagerWrapper requestFailed:error:] in WLAFHTTPRequestOperationManagerWrapper.m:389 :: Response Status Code : 0
Jan 17 21:37:43 Owners-iPhone-3 MyMobileApp[5966] <Notice>: [DEBUG] [WL_AFHTTPRequestOperationManagerWrapper_PACKAGE] -[WLAFHTTPRequestOperationManagerWrapper requestFailed:error:] in WLAFHTTPRequestOperationManagerWrapper.m:390 :: Response Error : The request timed out.
Jan 17 21:37:43 Owners-iPhone-3 MyMobileApp[5966] <Notice>: [DEBUG] [WL_AFHTTPRequestOperationManagerWrapper_PACKAGE] -[WLAFHTTPRequestOperationManagerWrapper requestFailed:error:] in WLAFHTTPRequestOperationManagerWrapper.m:388 :: Request Failed
Jan 17 21:37:43 Owners-iPhone-3 MyMobileApp[5966] <Notice>: [DEBUG] [WL_AFHTTPRequestOperationManagerWrapper_PACKAGE] -[WLAFHTTPRequestOperationManagerWrapper requestFailed:error:] in WLAFHTTPRequestOperationManagerWrapper.m:389 :: Response Status Code : 0
Jan 17 21:37:43 Owners-iPhone-3 MyMobileApp[5966] <Notice>: [DEBUG] [WL_AFHTTPRequestOperationManagerWrapper_PACKAGE] -[WLAFHTTPRequestOperationManagerWrapper requestFailed:error:] in WLAFHTTPRequestOperationManagerWrapper.m:390 :: Response Error : The request timed out.
Jan 17 21:37:43 Owners-iPhone-3 MyMobileApp(CFNetwork)[5966] <Notice>: TIC TCP Conn Cancel [39:0x1c4362700]
Jan 17 21:37:43 Owners-iPhone-3 MyMobileApp(CFNetwork)[5966] <Notice>: TIC TCP Conn Cancel [41:0x1c0365400]
Jan 17 21:37:43 Owners-iPhone-3 MyMobileApp(CFNetwork)[5966] <Notice>: TIC Enabling TLS [45:0x1c0368f40]
Jan 17 21:37:43 Owners-iPhone-3 MyMobileApp(CFNetwork)[5966] <Notice>: TIC TCP Conn Start [45:0x1c0368f40]
Jan 17 21:37:43 Owners-iPhone-3 MyMobileApp(CFNetwork)[5966] <Notice>: Task <8A3D00F0-37B8-4A43-BA2E-2C96EAE6AA9F>.<0> setting up Connection 45
Jan 17 21:37:44 Owners-iPhone-3 MyMobileApp(CFNetwork)[5966] <Notice>: TIC TLS Event [45:0x1c0368f40]: 1, Pending(0)
Jan 17 21:37:44 Owners-iPhone-3 locationd[71] <Notice>: {"msg":"CLWifiPositioningSystemLogic::apply", "event":"elapsed", "begin_mach":6677182200912, "end_mach":6677182224304, "elapsed_s":"0.000974667", "event":"Motion::CoarseMovement", "now_s":"537935864.081508040"}
Jan 17 21:37:44 Owners-iPhone-3 MyMobileApp(CFNetwork)[5966] <Notice>: TIC TLS Event [45:0x1c0368f40]: 2, Pending(0)
Jan 17 21:37:44 Owners-iPhone-3 MyMobileApp(CFNetwork)[5966] <Notice>: TIC TLS Event [45:0x1c0368f40]: 20, Pending(0)
Jan 17 21:37:44 Owners-iPhone-3 MyMobileApp(CFNetwork)[5966] <Notice>: TIC TCP Conn Connected [45:0x1c0368f40]: Err(16)
Jan 17 21:37:44 Owners-iPhone-3 MyMobileApp(CFNetwork)[5966] <Notice>: TIC TCP Conn Event [45:0x1c0368f40]: 1
Jan 17 21:37:44 Owners-iPhone-3 MyMobileApp(CFNetwork)[5966] <Notice>: TIC TCP Conn Event [45:0x1c0368f40]: 8
Jan 17 21:37:44 Owners-iPhone-3 MyMobileApp(CFNetwork)[5966] <Notice>: TIC TLS Handshake Complete [45:0x1c0368f40]
Jan 17 21:37:44 Owners-iPhone-3 MyMobileApp(CFNetwork)[5966] <Notice>: Task <8A3D00F0-37B8-4A43-BA2E-2C96EAE6AA9F>.<0> now using Connection 45
Jan 17 21:37:44 Owners-iPhone-3 MyMobileApp(CFNetwork)[5966] <Notice>: Task <8A3D00F0-37B8-4A43-BA2E-2C96EAE6AA9F>.<0> sent request, body N
Jan 17 21:37:44 Owners-iPhone-3 MyMobileApp(CFNetwork)[5966] <Notice>: Task <8A3D00F0-37B8-4A43-BA2E-2C96EAE6AA9F>.<0> received response, status 401 content K
Jan 17 21:37:44 Owners-iPhone-3 MyMobileApp(CFNetwork)[5966] <Notice>: Task <8A3D00F0-37B8-4A43-BA2E-2C96EAE6AA9F>.<0> response ended
Jan 17 21:37:44 Owners-iPhone-3 MyMobileApp[5966] <Notice>: [DEBUG] [WL_AFHTTPRequestOperationManagerWrapper_PACKAGE] -[WLAFHTTPRequestOperationManagerWrapper requestFailed:error:] in WLAFHTTPRequestOperationManagerWrapper.m:388 :: Request Failed
Jan 17 21:37:44 Owners-iPhone-3 MyMobileApp[5966] <Notice>: [DEBUG] [WL_AFHTTPRequestOperationManagerWrapper_PACKAGE] -[WLAFHTTPRequestOperationManagerWrapper requestFailed:error:] in WLAFHTTPRequestOperationManagerWrapper.m:389 :: Response Status Code : 401
Jan 17 21:37:44 Owners-iPhone-3 MyMobileApp[5966] <Notice>: [DEBUG] [WL_AFHTTPRequestOperationManagerWrapper_PACKAGE] -[WLAFHTTPRequestOperationManagerWrapper requestFailed:error:] in WLAFHTTPRequestOperationManagerWrapper.m:390 :: Response Error : Request failed: unauthorized (401)
Jan 17 21:37:44 Owners-iPhone-3 MyMobileApp[5966] <Notice>: [DEBUG] [WORKLIGHT] +[WLClient sharedInstance] in WLClient.m:165 :: IBMMobilieFirstFoundation.framework version = 7.1-2016/09/19 17:15:50
Jan 17 21:37:44 Owners-iPhone-3 MyMobileApp[5966] <Notice>: [DEBUG] [NONE] Request [https://myServerIp:443/MyProject/authorization/v1/authorization]
Jan 17 21:37:44 Owners-iPhone-3 trustd[5056] <Notice>: could not disable pinning: not an internal release
Jan 17 21:37:44 Owners-iPhone-3 MyMobileApp[5966] <Notice>: THREAD WARNING: ['WLAuthorizationManagerPlugin'] took '22.705078' ms. Plugin should use a background thread.
Jan 17 21:37:44 Owners-iPhone-3 MyMobileApp[5966] <Notice>: [DEBUG] [WL_AFHTTPRequestOperationManagerWrapper_PACKAGE] +[WLAFHTTPRequestOperationManagerWrapper requestWithURL:] in WLAFHTTPRequestOperationManagerWrapper.m:51 :: Request url is https://myServerIp:443/MyProject/authorization/v1/authorization?response_type=code&client_id=4bd3c60d412b36d16f4da069658c0c7fa226cad1&redirect_uri=http%3A%2F%2Fmfpredirecturi&isAjaxRequest=true&x=0.15013111462581286
Jan 17 21:37:44 Owners-iPhone-3 assertiond[74] <Notice>: Client relinquished <BKProcessAssertion: 0x100f8a9f0; "Called by UIKit, from <redacted>" (finishTask:180s); id:\M-b\M^#\M-&0B8CA7216A0C>
Jan 17 21:37:44 Owners-iPhone-3 assertiond[74] <Notice>: [MyMobileApp:5966] Deactivate assertion: <BKProcessAssertion: 0x100f8a9f0; "Called by UIKit, from <redacted>" (finishTask:180s); id:\M-b\M^#\M-&0B8CA7216A0C>
Jan 17 21:37:44 Owners-iPhone-3 assertiond[74] <Notice>: [MyMobileApp:5966] dump all assertions HWM:4 (deactivateAssertion): {
<BKProcessAssertion: 0x101884d90; "Resume" (activation:inf); id:\M-b\M^#\M-&9D6AF759764B> [active]
}
Jan 17 21:37:44 Owners-iPhone-3 assertiond[74] <Notice>: [MyMobileApp:5966] New process assertion state; preventSuspend, preventThrottleDownUI, preventThrottleDownCPU, preventSuspendOnSleep (assertion 0x100f8a9f0 added: (none); removed: preventIdleSleep)
Jan 17 21:37:44 Owners-iPhone-3 assertiond[74] <Notice>: [MyMobileApp:5966] Setting jetsam priority to 10 [0x10100]
Jan 17 21:37:44 Owners-iPhone-3 assertiond[74] <Notice>: [MyMobileApp:5966] dump all assertions HWM:4 (CPUMON check): {
<BKProcessAssertion: 0x101884d90; "Resume" (activation:inf); id:\M-b\M^#\M-&9D6AF759764B> [active]
}
Jan 17 21:37:44 Owners-iPhone-3 assertiond[74] <Notice>: Releasing PowerAssertion on MyMobileApp:5966 from update
Jan 17 21:37:44 Owners-iPhone-3 assertiond[74] <Notice>: [MyMobileApp:5966] Remove assertion: <BKProcessAssertion: 0x100f8a9f0; "Called by UIKit, from <redacted>" (finishTask:180s); id:\M-b\M^#\M-&0B8CA7216A0C>
Jan 17 21:37:44 Owners-iPhone-3 assertiond[74] <Notice>: [MyMobileApp:5966] dump all assertions HWM:4 (CPUMON check): {
<BKProcessAssertion: 0x101884d90; "Resume" (activation:inf); id:\M-b\M^#\M-&9D6AF759764B> [active]
}
Jan 17 21:37:44 Owners-iPhone-3 assertiond[74] <Notice>: -[BKAssertion dealloc] - <0x100f8a9f0>
Jan 17 21:37:44 Owners-iPhone-3 powerd[40] <Notice>: Process assertiond.74 Released SystemIsActive "MyMobileApp:5966:5966-C6CEB4F5-9DCC-4E15-8BB6-0B8CA7216A0C [Called by UIKit, from <redacted>] [0x100f8a9f0]" age:00:00:02 id:51539648155 [System: PrevIdle SysAct]
Jan 17 21:37:44 Owners-iPhone-3 MyMobileApp[5966] <Notice>: [DEBUG] [WL_AFHTTPRequestOperationManagerWrapper_PACKAGE] -[WLAFHTTPRequestOperationManagerWrapper start] in WLAFHTTPRequestOperationManagerWrapper.m:356 :: Starting the request with URL https://myServerIp:443/MyProject/authorization/v1/authorization?response_type=code&client_id=4bd3c60d412b36d16f4da069658c0c7fa226cad1&redirect_uri=http%3A%2F%2Fmfpredirecturi&isAjaxRequest=true&x=0.15013111462581286
Jan 17 21:37:44 Owners-iPhone-3 MyMobileApp(CFNetwork)[5966] <Notice>: Task <D0C8DF5A-65FD-4BE0-82C9-21579B9947D1>.<0> now using Connection 45
Jan 17 21:37:44 Owners-iPhone-3 MyMobileApp(CFNetwork)[5966] <Notice>: Task <D0C8DF5A-65FD-4BE0-82C9-21579B9947D1>.<0> sent request, body N
Jan 17 21:37:44 Owners-iPhone-3 CommCenter(libATCommandStudioDynamic.dylib)[88] <Notice>: QMI: Svc=0x03(NAS) Ind MsgId=0x0051 Bin=['01 1F 00 80 03 02 04 EB 71 51 00 13 00 14 06 00 C1 F3 A2 FF D4 00 A2 01 00 64 A4 03 00 01 64 00']
Jan 17 21:37:44 Owners-iPhone-3 locationd[71] <Notice>: {"msg":"CLWifiPositioningSystemLogic::apply", "event":"elapsed", "begin_mach":6677197559866, "end_mach":6677197584343, "elapsed_s":"0.001019875", "event":"Motion::CoarseMovement", "now_s":"537935864.721438050"}
Jan 17 21:37:45 Owners-iPhone-3 locationd[71] <Notice>: {"msg":"CLWifiPositioningSystemLogic::apply", "event":"elapsed", "begin_mach":6677205218631, "end_mach":6677205243804, "elapsed_s":"0.001048875", "event":"Motion::CoarseMovement", "now_s":"537935865.040650964"}
Jan 17 21:37:45 Owners-iPhone-3 locationd[71] <Notice>: {"msg":"CLWifiPositioningSystemLogic::apply", "event":"elapsed", "begin_mach":6677220543131, "end_mach":6677220575096, "elapsed_s":"0.001331875", "event":"Motion::CoarseMovement", "now_s":"537935865.679077029"}
Jan 17 21:37:47 Owners-iPhone-3 destinationd(DuetExpertCenter)[5082] <Notice>: predictionForCategories returned error: <private>
Jan 17 21:37:47 Owners-iPhone-3 destinationd(DuetExpertCenter)[5082] <Error>: Error: <private>
Jan 17 21:37:47 Owners-iPhone-3 destinationd[5082] <Error>: <private> received error: <private>
Jan 17 21:37:48 Owners-iPhone-3 symptomsd(SymptomEvaluator)[5571] <Error>: AWD direct: received libnetcore symptom w/ non conforming layout, dropping
Jan 17 21:37:49 Owners-iPhone-3 CommCenter(libATCommandStudioDynamic.dylib)[88] <Notice>: QMI: Svc=0x03(NAS) Ind MsgId=0x0051 Bin=['01 1F 00 80 03 02 04 EC 71 51 00 13 00 14 06 00 C1 F2 A2 FF 8A 00 A2 01 00 64 A4 03 00 01 64 00']
Jan 17 21:37:49 Owners-iPhone-3 locationd[71] <Notice>: {"msg":"CLWifiPositioningSystemLogic::apply", "event":"elapsed", "begin_mach":6677320175459, "end_mach":6677320223146, "elapsed_s":"0.001986958", "event":"Motion::CoarseMovement", "now_s":"537935869.830474019"}
Jan 17 21:37:50 Owners-iPhone-3 locationd[71] <Notice>: {"msg":"CLWifiPositioningSystemLogic::apply", "event":"elapsed", "begin_mach":6677343176271, "end_mach":6677343215897, "elapsed_s":"0.001651083", "event":"Motion::CoarseMovement", "now_s":"537935870.788828015"}
Jan 17 21:37:50 Owners-iPhone-3 backboardd(IOKit)[66] <Error>: iohideventsystem_client_dispatch_properties_changed:0x10004003
Jan 17 21:37:51 Owners-iPhone-3 locationd[71] <Notice>: {"msg":"CLWifiPositioningSystemLogic::apply", "event":"elapsed", "begin_mach":6677350805334, "end_mach":6677350831802, "elapsed_s":"0.001102833", "event":"Motion::CoarseMovement", "now_s":"537935871.106637001"}
Jan 17 21:37:51 Owners-iPhone-3 dataaccessd(PersistentConnection)[574] <Notice>: SimpleTimer <PCSimpleTimer: 0x105abd500> has fired
Jan 17 21:37:51 Owners-iPhone-3 dataaccessd(PersistentConnection)[574] <Notice>: Invalidating simple timer <PCSimpleTimer: 0x105abd500>
Jan 17 21:37:51 Owners-iPhone-3 dataaccessd(PersistentConnection)[574] <Notice>: Disabling power monitoring for <PCSimpleTimer: 0x105abd500> - 2 timers
Jan 17 21:37:51 Owners-iPhone-3 dataaccessd(PersistentConnection)[574] <Notice>: SimpleTimer <PCSimpleTimer: 0x106356790> has fired
Jan 17 21:37:51 Owners-iPhone-3 dataaccessd(PersistentConnection)[574] <Notice>: Invalidating simple timer <PCSimpleTimer: 0x106356790>
Jan 17 21:37:51 Owners-iPhone-3 dataaccessd(PersistentConnection)[574] <Notice>: Disabling power monitoring for <PCSimpleTimer: 0x106356790> - 1 timers
Jan 17 21:37:51 Owners-iPhone-3 MyMobileApp(WebCore)[5966] <Notice>: 0x103313d00 - PerformanceMonitor::measurePostLoadMemoryUsage: Process was using 158139272 bytes of memory after the page load.
Jan 17 21:37:53 Owners-iPhone-3 locationd[71] <Notice>: {"msg":"CLWifiPositioningSystemLogic::apply", "event":"elapsed", "begin_mach":6677396859076, "end_mach":6677396897944, "elapsed_s":"0.001619500", "event":"Motion::CoarseMovement", "now_s":"537935873.025398970"}
Jan 17 21:37:53 Owners-iPhone-3 locationd[71] <Notice>: {"msg":"CLWifiPositioningSystemLogic::apply", "event":"elapsed", "begin_mach":6677404480228, "end_mach":6677404523844, "elapsed_s":"0.001817333", "event":"Motion::CoarseMovement", "now_s":"537935873.342646003"}
Jan 17 21:37:54 Owners-iPhone-3 CommCenter(libATCommandStudioDynamic.dylib)[88] <Notice>: QMI: Svc=0x03(NAS) Ind MsgId=0x0051 Bin=['01 1F 00 80 03 02 04 ED 71 51 00 13 00 14 06 00 BF F5 A3 FF 8C 00 A2 01 00 64 A4 03 00 01 64 00']
The request just reaches the web server but it returned with 401 error. Once app is killed and restarted it starts working again.
IBM Http Server logs
- - [17/Jan/2018:21:01:12 -0500] "GET /worklightconsole/201704051514/css/images/IBM_logo.png HTTP/1.1" 200 720
- - [17/Jan/2018:21:01:12 -0500] "GET /worklightconsole/201704051514/css/fonts/bold/helvetica-neue-bold.woff2 HTTP/1.1" 200 30804
- - [17/Jan/2018:21:11:48 -0500] "GET / HTTP/1.1" 302 283
- - [17/Jan/2018:21:34:20 -0500] "GET /MYProject/authorization/v1/authorization?client_id=4bd3c60d412b36d16f4da069658c0c7fa226cad1&scope=-MYRealm&isAjaxRequest=true&x=0.275786186755855 HTTP/1.1" 200 -
- - [17/Jan/2018:21:34:20 -0500] "GET /MyProject/adapters/SecurityAdapter/security/login HTTP/1.1" 401 41
- - [17/Jan/2018:21:34:21 -0500] "GET /MyProject/authorization/v1/authorization?response_type=code&client_id=4bd3c60d412b36d16f4da069658c0c7fa226cad1&redirect_uri=http%3A%2F%2Fmfpredirecturi&scope=MYRealm&isAjaxRequest=true&x=0.6627940373520301 HTTP/1.1" 200 25
- - [17/Jan/2018:21:34:22 -0500] "POST /analytics-service/data HTTP/1.1" 201 -
- - [17/Jan/2018:21:34:22 -0500] "GET /analytics-service/data/administration/apps/worklight/getSettings HTTP/1.1" 200 1407
- - [17/Jan/2018:21:34:25 -0500] "POST /MyProject/apps/services/api/MYMobileApp/iphone/login HTTP/1.1" 401 166
- - [17/Jan/2018:21:34:26 -0500] "POST /analytics-service/data HTTP/1.1" 201 -
- - [17/Jan/2018:21:36:38 -0500] "GET /MyProject/adapters/AnnouncementsAdapter/announcements/fetchannouncements HTTP/1.1" 401 41
- - [17/Jan/2018:21:36:40 -0500] "POST /analytics-service/data HTTP/1.1" 201 -
- - [17/Jan/2018:21:36:40 -0500] "GET /analytics-service/data/administration/apps/worklight/getSettings HTTP/1.1" 200 1407
- - [17/Jan/2018:21:37:06 -0500] "GET /MyProject/authorization/v1/authorization?client_id=4bd3c60d412b36d16f4da069658c0c7fa226cad1&scope=-MYRealm&isAjaxRequest=true&x=0.410883442826542 HTTP/1.1" 403 19
- - [17/Jan/2018:21:37:07 -0500] "GET /MyProject/adapters/SecurityAdapter/security/login HTTP/1.1" 401 41
- - [17/Jan/2018:21:37:08 -0500] "POST /analytics-service/data HTTP/1.1" 201 -
- - [17/Jan/2018:21:37:44 -0500] "GET /MyProject/adapters/AnnouncementsAdapter/announcements/fetchannouncements HTTP/1.1" 401 41
- - [17/Jan/2018:21:37:44 -0500] "POST /analytics-service/data HTTP/1.1" 201 -
- - [17/Jan/2018:21:37:44 -0500] "GET /analytics-service/data/administration/apps/worklight/getSettings HTTP/1.1" 200 1407
- - [17/Jan/2018:21:34:25 -0500] "POST /MyProject/apps/services/api/MYMobileApp/iphone/login HTTP/1.1" 504 315
- - [17/Jan/2018:21:34:25 -0500] "POST /MyProject/apps/services/my_custom_auth_request_url HTTP/1.1" 504 315
- - [17/Jan/2018:21:34:38 -0500] "POST /MyProject/apps/services/api/MYMobileApp/iphone/login HTTP/1.1" 504 315
- - [17/Jan/2018:21:34:38 -0500] "POST /MyProject/apps/services/my_custom_auth_request_url HTTP/1.1" 504 315
- - [17/Jan/2018:21:34:53 -0500] "POST /MyProject/apps/services/my_custom_auth_request_url HTTP/1.1" 504 315
- - [17/Jan/2018:21:34:53 -0500] "POST /MyProject/apps/services/api/MYMobileApp/iphone/login HTTP/1.1" 504 315
- - [17/Jan/2018:21:34:56 -0500] "GET /MyProject/authorization/v1/authorization?response_type=code&client_id=4bd3c60d412b36d16f4da069658c0c7fa226cad1&redirect_uri=http%3A%2F%2Fmfpredirecturi&scope=MYRealm&isAjaxRequest=true&x=0.1482186844277551 HTTP/1.1" 504 315
- - [17/Jan/2018:21:40:04 -0500] "GET /MyProject/authorization/v1/authorization?client_id=4bd3c60d412b36d16f4da069658c0c7fa226cad1&scope=-MYRealm&isAjaxRequest=true&x=0.5411687142084214 HTTP/1.1" 200 -
- - [17/Jan/2018:21:40:04 -0500] "GET /MyProject/adapters/SecurityAdapter/security/login HTTP/1.1" 401 41
- - [17/Jan/2018:21:40:06 -0500] "POST /analytics-service/data HTTP/1.1" 201 -
- - [17/Jan/2018:21:40:06 -0500] "GET /analytics-service/data/administration/apps/worklight/getSettings HTTP/1.1" 200 1407
- - [17/Jan/2018:21:35:12 -0500] "POST /MyProject/apps/services/api/MYMobileApp/iphone/login HTTP/1.1" 504 315
- - [17/Jan/2018:21:35:24 -0500] "POST /MyProject/apps/services/my_custom_auth_request_url HTTP/1.1" 504 315
- - [17/Jan/2018:21:40:33 -0500] "GET /MyProject/adapters/AnnouncementsAdapter/announcements/fetchannouncements HTTP/1.1" 401 41
- - [17/Jan/2018:21:40:34 -0500] "POST /analytics-service/data HTTP/1.1" 201 -
- - [17/Jan/2018:21:40:40 -0500] "GET /MyProject/adapters/AnnouncementsAdapter/announcements/fetchannouncements HTTP/1.1" 401 41
- - [17/Jan/2018:21:40:40 -0500] "POST /analytics-service/data HTTP/1.1" 201 -
- - [17/Jan/2018:21:40:44 -0500] "GET /MyProject/authorization/v1/authorization?client_id=4bd3c60d412b36d16f4da069658c0c7fa226cad1&scope=-MYRealm&isAjaxRequest=true&x=0.9602466115384183 HTTP/1.1" 200 -
- - [17/Jan/2018:21:40:45 -0500] "GET /MyProject/adapters/SecurityAdapter/security/login HTTP/1.1" 401 41
- - [17/Jan/2018:21:40:46 -0500] "POST /analytics-service/data HTTP/1.1" 201 -

Weblogic + Kerberos + SSO

I’m trying to configure Single Sign On with weblogic and Kerberos.
So, but I still get login page, may be you can tell me what is wrong by this log:
Debug is true storeKey true useTicketCache false useKeyTab true doNotPrompt false ticketCache is null isInitiator true KeyTab is /oracle/product12/user_projects/domains/test/krb/test.keytab refreshKrb5Config is false principal is kinp#TEST.ORG tryFirstPass is false useFirstPass is false storePass is false clearPass is false
KeyTab instance already exists
Added key: 23version: 19
Ordering keys wrt default_tkt_enctypes list
default etypes for default_tkt_enctypes: 23 3.
0: EncryptionKey: keyType=23 kvno=19 keyValue (hex dump)=
0000: C3 CB 19 1C 64 6E F9 7F 6A C9 31 FB EE 69 E7 35 ....dn..j.1..i.5
principal's key obtained from the keytab
Acquire TGT using AS Exchange
default etypes for default_tkt_enctypes: 23 3.
>>> KrbAsReq calling createMessage
>>> KrbAsReq in createMessage
>>> KrbKdcReq send: kdc=192.168.0.100 UDP:88, timeout=30000, number of retries =3, #bytes=137
>>> KDCCommunication: kdc=192.168.0.100 UDP:88, timeout=30000,Attempt =1, #bytes=137
>>> KrbKdcReq send: #bytes read=181
>>> KrbKdcReq send: #bytes read=181
>>> KdcAccessibility: remove 192.168.0.100
>>> KDCRep: init() encoding tag is 126 req type is 11
>>>KRBError:
sTime is Tue Jan 20 10:46:05 EET 2015 1421743565000
suSec is 576578
error code is 25
error Message is Additional pre-authentication required
realm is TEST.ORG
sname is krbtgt/TEST.ORG
eData provided.
msgType is 30
>>>Pre-Authentication Data:
PA-DATA type = 11
PA-ETYPE-INFO etype = 23
PA-ETYPE-INFO salt =
>>>Pre-Authentication Data:
PA-DATA type = 19
PA-ETYPE-INFO2 etype = 23
PA-ETYPE-INFO2 salt = null
>>>Pre-Authentication Data:
PA-DATA type = 2
PA-ENC-TIMESTAMP
>>>Pre-Authentication Data:
PA-DATA type = 16
>>>Pre-Authentication Data:
PA-DATA type = 15
AcquireTGT: PREAUTH FAILED/REQUIRED, re-send AS-REQ
>>>KrbAsReq salt is TEST.ORGdev
default etypes for default_tkt_enctypes: 23 3.
Pre-Authenticaton: find key for etype = 23
AS-REQ: Add PA_ENC_TIMESTAMP now
>>> EType: sun.security.krb5.internal.crypto.ArcFourHmacEType
>>> KrbAsReq calling createMessage
>>> KrbAsReq in createMessage
>>> KrbKdcReq send: kdc=192.168.0.100 UDP:88, timeout=30000, number of retries =3, #bytes=220
>>> KDCCommunication: kdc=192.168.0.100 UDP:88, timeout=30000,Attempt =1, #bytes=220
>>> KrbKdcReq send: #bytes read=1408
>>> KrbKdcReq send: #bytes read=1408
>>> KdcAccessibility: remove 192.168.0.100
>>> EType: sun.security.krb5.internal.crypto.ArcFourHmacEType
>>> KrbAsRep cons in KrbAsReq.getReply dev
principal is dev#TEST.ORG
EncryptionKey: keyType=23 keyBytes (hex dump)=0000: C3 CB 19 1C 64 6E F9 7F 6A C9 31 FB EE 69 E7 35 ....dn..j.1..i.5
Added server's keyKerberos Principal dev#TEST.ORGKey Version 19key EncryptionKey: keyType=23 keyBytes (hex dump)=
0000: C3 CB 19 1C 64 6E F9 7F 6A C9 31 FB EE 69 E7 35 ....dn..j.1..i.5
[Krb5LoginModule] added Krb5Principal dev#TEST.ORG to Subject
Commit Succeeded
Found key for dev#TEST.ORG(23)
Entered Krb5Context.acceptSecContext with state=STATE_NEW
I get this log, when I’m trying to access login page.
Error exception:
com.bea.security.utils.kerberos.KerberosException: Failure unspecified at GSS-API level (Mechanism level: Specified version of key is not available (44))
at com.bea.security.utils.kerberos.KerberosTokenHandler.acceptGssInitContextTokenInDoAs(KerberosTokenHandler.java:334)
at com.bea.security.utils.kerberos.KerberosTokenHandler.access$000(KerberosTokenHandler.java:41)
at com.bea.security.utils.kerberos.KerberosTokenHandler$1.run(KerberosTokenHandler.java:226)
...
Caused By: GSSException: Failure unspecified at GSS-API level (Mechanism level: Specified version of key is not available (44))
at sun.security.jgss.krb5.Krb5Context.acceptSecContext(Krb5Context.java:741)
at sun.security.jgss.GSSContextImpl.acceptSecContext(GSSContextImpl.java:323)
at sun.security.jgss.GSSContextImpl.acceptSecContext(GSSContextImpl.java:267)
...
Caused By: KrbException: Specified version of key is not available (44)
at sun.security.krb5.EncryptionKey.findKey(EncryptionKey.java:516)
at sun.security.krb5.KrbApReq.authenticate(KrbApReq.java:260)
at sun.security.krb5.KrbApReq.<init>(KrbApReq.java:134)
...
Thanks!

Can't post comment, posting this as an answer. You need to enable Weblogic's authentication logging:
In Weblogic console click the “Lock & Edit” button in the top left corner.
Select Environment – Servers in the Domain Structure portlet on the left.
Select your server on the Summary of Servers page.
Select the “Debug” tab.
Drill down to weblogic – security – atn.
Select the checkbox to the left of word DebugSecurityAtn.
Click the “Enable” button at the top or bottom of the page.
Go to your server again, click on Logging tab,
Scroll down and click on Advanced
In "Message destination(s) - Log file" change the severity level to Debug
Click the “Save” button at the top or bottom of the page.
Click “Activate changes” in the top-left corner.
After that try logging in again, you will have much more info in your log.

Printing a string value in awk results in error

fatal: not enough arguments to satisfy format string
`%s SPT=80'
^ ran out for this one
This my code
for ((h = 1 ; h < 4 ; h++ )); do
x=$(awk -v i=h -v j=17 'FNR == 2 {printf "%s " $j}' newiptables.log)
echo $x
This is my file
Dec 26 09:17:51 localhost kernel: IN=eth0 OUT= MAC=00:10:c6:a8:da:68:00:90:7f:9c:50:5a:08:00 SRC=198.252.206.16 DST=10.128.1.225 LEN=313 TOS=0x00 PREC=0x00 TTL=64 ID=59334 PROTO=TCP SPT=80 DPT=56506 WINDOW=46535 RES=0x00 ACK PSH URGP=0
Dec 26 09:17:52 localhost kernel: IN=eth0 OUT= MAC=00:10:c6:a8:da:68:00:90:7f:9c:50:5a:08:00 SRC=198.252.206.16 DST=10.128.1.225 LEN=1440 TOS=0x00 PREC=0x00 TTL=64 ID=47303 PROTO=TCP SPT=80 DPT=56506 WINDOW=46535 RES=0x00 ACK URGP=0
Dec 26 09:17:52 localhost kernel: IN=eth0 OUT= MAC=00:10:c6:a8:da:68:00:90:7f:9c:50:5a:08:00 SRC=198.252.206.16 DST=10.128.1.225 LEN=1440 TOS=0x00 PREC=0x00 TTL=64 ID=47559 PROTO=TCP SPT=80 DPT=56506 WINDOW=46535 RES=0x00 ACK URGP=0

The problem is a missing comma in the printf command for awk:
awk -v i=h -v j=17 'FNR == 2 {printf "%s ", $j}' newiptables.log
^
|== This is needed
Quoting from the manual:
A simple printf statement looks like this:
printf format, item1, item2, ...