unable to ssh to an instance (seems to hang)
Hello all,
I am very new to openstack ... and I am trying to install icehouse in a 3-nodes model (1 controller, 1 network, 1 compute). The 3 nodes are implemented as VM on a single host.
The host is running fedora 20 + KVM & libvirt (with nested virtualization enabled).
The 3 cloudstack nodes are running fedora 20 basic install.
3 virtual networks are defined with libvirt as follows:
- "default" network --> providing NAT to the host (CIDR is 192.168.122.0.24)
- "management" network --> network dedicated for management activities (CIDR is 192.168.10.0/24)
- "data" network --> network dedicated for cloudstack VMs communications and access to 'outside' world though the network node (CIDR is 192.168.20.0/24).
The controller node is connected to the "default" & "management" networks
The network node is connected to the "default", "management" & "data" networks
The compute node is connected to the "management" & "data" networks
All installation steps are done and all components seem to run properly (openstack-status reports that all services are ok).
Then I updated the default security-group to allow all ingress & egress traffic for protocols ICMP, TCP, UDP ... Yes I know this is not that secure ;-) but just for testing purposes for now.
As the admin user, I have defined an external network (192.168.122.0/24), a new tenant (tenantA) as well as a user being a member of tenantA.
As the new user (member of tenantA), I have defined a private network & subnet (10.0.0.0/24) as well as a router which is connected to the private network and the external one.
I have also downloaded and registered into glance, the PoC CirrOS image and a fedora20 one. And I have generated and registered an ssh keypair (RSA)
Then, using the openstack dashboard, I spawned 2 VMs: one out of CirrOS image (private IP is 10.0.0.5) and a second one out of the fedora-20 image (private IP is 10.0.0.6).
When connected to the network node (using ssh),:
- I can see 2 net namespaces (one qrouter and one qdhcp)
- from the qrouter namespace as well as from the qdhcp one, I can successfully ping the private interface of the tenantA's virtual router (10.0.0.1), the gateway to the public network (192.168.122.100), my home internet "box" gateway (192.168.1.1) and the public google DNS server (8.8.8.8)
- from the qdhcp namespace, I can also ping the 2 VMs that I started (10.0.0.5 & 10.0.0.6)
- lastly, still from the qdhcp namespace, when I issue a telnet on port 22 to the 2 VMs I get a connection. Here is what I get:
[root@network ssh]# ip netns exec qdhcp-d66ccdd6-c0e1-48e0-a6b4-c90e1e816fde telnet 10.0.0.6 22
Trying 10.0.0.6...
Connected to 10.0.0.6.
Escape character is '^]'.
SSH-2.0-OpenSSH_6.3
My problem:
from the qdhcp namespace, when I try to ssh to both VMs, the connection seems ...
try adding
-vvvto your ssh to get more information