Ask Your Question
1

Able to ping but not ssh [closed]

asked 2014-09-22 10:36:43 -0500

AmitA gravatar image

Hi all,

I have a weird problem hoping someone could help me out - I cannot ping/ssh to my VMs from the compute/controller/network nodes. I CAN ping them at least from my desktop (10.7.2.76) and other hosts on the net but cannot ssh into them. ssh returns "connection timed out". I can ssh from VM to VM just fine. My security group settings look to be fine (I used the setup in the Openstack configuration to open ssh up). Here are some troubleshooting/configurations I have I would appreciate any help. Thanks!!

Security group:

Egress IPv6 Any - ::/0 (CIDR)

Ingress IPv4 ICMP - 0.0.0.0/0 (CIDR)

Egress IPv4 Any - 0.0.0.0/0 (CIDR)

Ingress IPv6 Any - default

Ingress IPv4 TCP 22 (SSH) 0.0.0.0/0 (CIDR)

Ingress IPv4 Any - default

Network node: [root@network ~]# ip netns list qrouter-8a29f0cf-34ef-42bb-a16f-d849402b386f qdhcp-a94024e7-6749-481b-a8e6-511c95fb22e6

ip netns exec qrouter-8a29f0cf-34ef-42bb-a16f-d849402b386f route -n

Kernel IP routing table

Destination Gateway Genmask Flags Metric Ref Use Iface

0.0.0.0 10.7.0.1 0.0.0.0 UG 0 0 0 qg-8a50284b-db

10.7.0.1 0.0.0.0 255.255.255.255 UH 0 0 0 qg-8a50284b-db

10.7.5.0 0.0.0.0 255.255.255.0 U 0 0 0 qg-8a50284b-db

192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0 qr-f77d4953-1a

[root@network ~]# ip netns exec qrouter-8a29f0cf-34ef-42bb-a16f-d849402b386f ifconfig

lo: flags=73<up,loopback,running> mtu 65536

    inet 127.0.0.1  netmask 255.0.0.0

    inet6 ::1  prefixlen 128  scopeid 0x10<host>

    loop  txqueuelen 0  (Local Loopback)

    RX packets 23  bytes 2576 (2.5 KiB)

    RX errors 0  dropped 0  overruns 0  frame 0

    TX packets 23  bytes 2576 (2.5 KiB)

    TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

qg-8a50284b-db: flags=67<up,broadcast,running> mtu 1500

    inet 10.7.5.101  netmask 255.255.255.0  broadcast 10.7.5.255

    inet6 fe80::f816:3eff:fe2b:dc0d  prefixlen 64  scopeid 0x20<link>

    ether fa:16:3e:2b:dc:0d  txqueuelen 0  (Ethernet)

    RX packets 2903652  bytes 362976925 (346.1 MiB)

    RX errors 0  dropped 1640318  overruns 0  frame 0

    TX packets 8509  bytes 621995 (607.4 KiB)

    TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

qr-f77d4953-1a: flags=67<up,broadcast,running> mtu 1500

    inet 192.168.1.1  netmask 255.255.255.0  broadcast 192.168.1.255

    inet6 fe80::f816:3eff:feca:d275  prefixlen 64  scopeid 0x20<link>

    ether fa:16:3e:ca:d2:75  txqueuelen 0  (Ethernet)

    RX packets 10637  bytes 834966 (815.3 KiB)

    RX errors 0  dropped 0  overruns 0  frame 0

    TX packets 11778  bytes 14377820 (13.7 MiB)

    TX errors 0  dropped 0 overruns 0  carrier 0  collisions 0

SSH from the namespace (with both qrouter and qdhcp) works fine:

[root@network ~]#ip netns exec qdhcp-a94024e7-6749-481b-a8e6-511c95fb22e6 ssh root@192.168.1.12 (<- PrivateIP)

The authenticity of host '192.168.1 ... (more)

edit retag flag offensive reopen merge delete

Closed for the following reason the question is answered, right answer was accepted by Syed Awais Ali
close date 2014-10-08 01:32:23.098154

Comments

I can actually ssh FROM the VM to my laptop (I have ssh server running on it) no problem. But still cant ssh from my laptop to the VMs! Nor can I ping/ssh either direction between my controller/compute/network nodes and the VMs. Very strange

AmitA gravatar imageAmitA ( 2014-09-24 12:11:04 -0500 )edit

2 answers

Sort by ยป oldest newest most voted
0

answered 2014-09-24 23:42:38 -0500

Vinoth gravatar image

updated 2014-09-24 23:43:44 -0500

Adding / uncommenting the following parameters in /etc/sh/ssh_conf file of client side OS solved the issue.

MACs hmac-md5,hmac-sha1,umac-64@openssh.co...

Add the above parameter in client OS( from where you gonna take ssh of openstack VMs) and also add it to VMs, if you wanna take ssh of other machines from your VM.

edit flag offensive delete link more

Comments

Thanks Vinoth tried that already (saw this on another answer for same prob) still doesnt work. Keep getting timed out. Interesting when I ssh from the VMs to my laptop I get dropped after about a minute with Write Failed: Broken Pipe. I think something is happening in the network node

AmitA gravatar imageAmitA ( 2014-09-25 09:45:54 -0500 )edit
0

answered 2014-10-07 16:19:44 -0500

AmitA gravatar image

You may close this _ I got it working by first fixing a networking problem on my end and then also the MTU settings as recommended in other OpenStack answers.

edit flag offensive delete link more

Get to know Ask OpenStack

Resources for moderators

Question Tools

1 follower

Stats

Asked: 2014-09-22 10:36:43 -0500

Seen: 607 times

Last updated: Oct 07 '14