Configuration Guide

4.7.2 Configuration Guide

To configure active standby and arbitration, use the following settings on each replication-manager.

4.7.2.1 Arbitration settings

arbitration-external (1.0)
Item Value
Description Enable external arbitration on split brain. When enabled, the instance starts in standby mode and contacts the arbitrator for election.
Type Boolean
Default Value false
arbitration-external-hosts (1.0)
Item Value
Description Address of the external arbitrator service. Supports https:// prefix for TLS.
Type String
Default Value "88.191.151.84:80"

When using a TLS reverse proxy in front of the arbitrator, prefix the address with https://:

arbitration-external-hosts = "https://arbitrator.signal18.io"

Without a scheme prefix, http:// is used by default — no breaking change for existing configurations.

arbitration-external-secret (1.0)
Item Value
Description Shared secret used by the arbitrator to identify your cluster. Should be unique across all users of the arbitrator. Use your organization name combined with random alphanumeric characters.
Type String
Default Value ""
arbitration-external-unique-id (1.0)
Item Value
Description Unique identifier for each replication-manager instance. Each instance in the pair must have a different value.
Type Integer
Default Value 0
arbitration-peer-hosts (1.0)
Item Value
Description Address of the peer replication-manager node. Points to the peer's API port.
Type String
Default Value "127.0.0.1:10001"

Peer communication typically stays on the local network or VPN, so HTTP is sufficient:

arbitration-peer-hosts = "192.168.1.20:10005"
arbitration-failed-master-script (2.1)
Item Value
Description External script executed when a master loses arbitration during split brain.
Type String
Default Value ""
arbitration-read-timeout (2.0)
Item Value
Description Read timeout for arbitrator responses in milliseconds. Should be shorter than monitoring-ticker (in seconds) to avoid overloading the monitoring loop.
Type Integer
Default Value 800

4.7.2.2 Setup example

Give each instance a different arbitration-external-unique-id and point each to its peer:

Instance A (192.168.1.10:10005):

arbitration-external = true
arbitration-external-hosts = "https://arbitrator.signal18.io"
arbitration-external-secret = "myorg-a7x9k2m"
arbitration-external-unique-id = 1
arbitration-peer-hosts = "192.168.1.20:10005"

Instance B (192.168.1.20:10005):

arbitration-external = true
arbitration-external-hosts = "https://arbitrator.signal18.io"
arbitration-external-secret = "myorg-a7x9k2m"
arbitration-external-unique-id = 2
arbitration-peer-hosts = "192.168.1.10:10005"

Both instances must use the same arbitration-external-secret and arbitration-external-hosts.

4.7.2.3 Active/standby toggle

The active/standby status can be toggled via the REST API or the dashboard.

API:

GET /api/clusters/{clusterName}/actions/set-active-status

This endpoint requires the cluster-settings ACL grant. It toggles the cluster between active and standby mode:

  • Without arbitration — the toggle is a local-only operation. Useful for testing.
  • With arbitration — the toggle forces an arbitrator election so the peer instance can take over as active.

Dashboard:

The active/standby status is displayed as a clickable pill in the cluster detail header. Clicking it opens a confirmation dialog before toggling. The pill is only clickable for users with the cluster-settings grant.

4.7.2.4 Running a private arbitrator

The arbitrator is a separate binary (replication-manager-arb) that can be deployed independently.

arbitrator-bind-address (2.0 arb)
Item Value
Description Arbitrator listen address and port.
Type String
Default Value "0.0.0.0:10001"
arbitrator-driver (2.0 arb)
Item Value
Description Arbitrator backend storage type.
Type Enum
List Values sqlite, mysql
Default Value "sqlite"

SQLite backend (default, simplest):

[arbitrator]
title = "arbitrator"
arbitrator-bind-address = "0.0.0.0:10001"
arbitrator-driver = "sqlite"

[default]
monitoring-datadir = "/var/lib/replication-manager"

Start:

replication-manager-arb arbitrator

MySQL backend:

[arbitrator]
title = "arbitrator"
arbitrator-bind-address = "0.0.0.0:10001"
arbitrator-driver = "mysql"
db-servers-hosts = "192.168.0.201:3306"
db-servers-credential = "user:password"

[default]
Health check

The arbitrator exposes a GET /health endpoint that returns HTTP 200 with {"status":"ok"} when the backend database is reachable, or HTTP 503 with {"status":"failed"} otherwise. Use this for load balancer health checks when running behind a reverse proxy.

Multi-tenant

A single arbitrator can serve multiple replication-manager pairs. Each pair is identified by its arbitration-external-secret and cluster name. There is no configuration needed on the arbitrator side — it stores heartbeats and arbitration decisions keyed by these identifiers.

TLS reverse proxy

The arbitrator itself listens on plain HTTP. To expose it securely over the internet, place it behind a TLS reverse proxy (nginx, HAProxy, Caddy, etc.). The replication-manager instances then use https:// in arbitration-external-hosts to reach it.