nxsbi edited a comment on issue #4637:
URL: https://github.com/apache/cloudstack/issues/4637#issuecomment-773004938
@shwstppr Per your last comment - Management Server needs to be able to SSH
to VMs through VR.
That means Management Server needs to be able to connect to VR (and vice
versa).
FYI - I have limited understanding of how that communication needs to
happen, and I am trying to learn here, so excuse my silly question...
If the Management server sits on its own VLAN with a single NIC, the VR is
on its own VLAN (its created as an Isolated Network by default, which gets its
own VLAN) , Both have Internet connectivity, but the VR is not exposed (meaning
the Public IP assigned is just another VLAN), how would they ever be able to
communicate? Secondly, dosen't that introduce a huge security risk if the
network is accessible from the VR (and hence any VM on that VR) to Management
server?
Again, I do not know if my assumption here is completely off, so please
correct/explain as needed
EDIT ---- I Think I answered my own question after some more research... The
Management server connects to the Virtualization Host (XCP-ng in my case), and
uses the "ssh -i /root/.ssh/id_rsa.cloud -p 3922 root@LinkLocal" to get into
the VR....
NOTE #2 -- In #4639 I added more details of my testing with the new build
you provided. However it still failed. Here is a link for ease --
https://github.com/apache/cloudstack/pull/4639#issuecomment-773014094
----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
For queries about this service, please contact Infrastructure at:
[email protected]
