Can ping but cannot SSh to a floating IP from external host

asked 2015-08-21 11:45:33 -0600

RARYA gravatar image

Hi All,

I have a small openstack cluster setup : 1 Controller/network node ; 1 Compute node. Also, I am using Arista ML2 plugin but neutron L3 plugin. Everything seems to be working just fine. I can create networks, launch VMs. VMs can talk to each other on same subnet or on different subnet. I can create projects, shared networks etc. I can assign floating IPs to the instances. I have security group enabled. I can ping to the floating IP from internal as well as external network. I can SSH to the floating IP of the VM from my internal network (like a test machine which has a public IP in same network as my floating IP) BUT I cannot SSH into it from any external network (which is not in the same subnet range as floating IP), again I can just ping fine though. The SSH hangs on the very same point from all the tries I did from the external host. It appears that the SSH connection did establishes but then nothing. I have tried this from multiple external hosts, seeing same thing.

Also note, I am using the default cirros image with default username/password. I do not have ssh-key etc configured.

For security reasons, I have replace the pub IPs with x.x.x.x

Renukas-MacBook-Pro-2:.ssh renukarya$ ssh -vvv cirros@x.x.x.x OpenSSH_5.9p1, OpenSSL 0.9.8y 5 Feb 2013 debug1: Reading configuration data /Users/renukarya/.ssh/config debug1: /Users/renukarya/.ssh/config line 4: Applying options for * debug1: Reading configuration data /etc/ssh_config debug1: /etc/ssh_config line 20: Applying options for * debug1: /etc/ssh_config line 53: Applying options for * debug2: ssh_connect: needpriv 0 debug1: Connecting to x.x.x.x [x.x.x.x] port 22. debug1: Connection established. debug3: Incorrect RSA1 identifier debug3: Could not load "/Users/renukarya/.ssh/id_rsa" as a RSA1 public key debug1: identity file /Users/renukarya/.ssh/id_rsa type 1 debug1: identity file /Users/renukarya/.ssh/id_rsa-cert type -1 debug3: Incorrect RSA1 identifier debug3: Could not load "/Users/renukarya/.ssh/id_dsa" as a RSA1 public key debug1: identity file /Users/renukarya/.ssh/id_dsa type 2 debug1: identity file /Users/renukarya/.ssh/id_dsa-cert type -1

Thanks!

edit retag flag offensive close merge delete