Re: cloudstack on debian 10/11

[Nux]

Found some notes on Debian here, there could be others..
https://gist.github.com/rohityadavcloud/fc401a0fe8e8ea16b4b3a4e3d149ce0c

On 2024-04-15 09:54, Nux wrote:

Not as yet, no formal support for Debian.
That said, this could change in the future..
If you're a keen Debianista then it might be worth having a go 
nevertheless, it might just work or with minimum changes.



On 2024-04-13 10:49, Embedded wrote:
the install guide states Preferred: CentOS/RHEL 7.2+ or Ubuntu 
16.04(.2) or higher



would this include say debian 10/11 as a manager / and host/kvm 
hypervisor ???

Re: cloudstack on debian 10/11

[Nux]

Not as yet, no formal support for Debian.
That said, this could change in the future..
If you're a keen Debianista then it might be worth having a go 
nevertheless, it might just work or with minimum changes.



On 2024-04-13 10:49, Embedded wrote:
the install guide states Preferred: CentOS/RHEL 7.2+ or Ubuntu 
16.04(.2) or higher



would this include say debian 10/11 as a manager / and host/kvm 
hypervisor ???

Re: [VOTE] Apache CloudStack 4.18.2.0 RC2

[Nux]

+1 (binding) on basic VM/storage/network lifecycle ops.

Thanks Joao

On 2024-04-12 19:56, Bryan Lima wrote:

+1

I manually tested some basic functionalities with the KVM hypervisor 
and Ubuntu 20.04 LTS:


 * VM deploy;
 * Cold and live migration with and without storage migration, NFS to
   iSCSI (SharedMountPoint) and vice-versa;
 * Network management, firewall, egress/ingress rules, and operations
   with public IP addresses;
 * Checked connectivity and (lack of) between VMs considering the
   network rules applied;
 * Creating and reverting VM and volume snapshots.

Best regards,
Bryan

On 12/04/2024 08:52, Daan Hoogland wrote:

+1 binding
I checked the hashes alright and the log of commit/tag (Note this last
check is based on the recent TZ issues to make sure nothing slipped
through). Other than that trusting on the testing I was involved in
over the last month or so.

On Fri, Apr 12, 2024 at 1:37 PM João Jandre  wrote:

Hi All,

I've created a 4.18.2.0 release (RC2), with the following artifacts 
up

for a vote:

Git Branch and Commit SH:
https://github.com/apache/cloudstack/tree/4.18.2.0-RC20240412T0825
Commit: 154566f914c778d448d4ab07b47b2db874bbf982

Source release (checksums and signatures are available at the same
location):
https://dist.apache.org/repos/dist/dev/cloudstack/4.18.2.0/

PGP release keys (signed using 
488D90DA107445E3243D162606F3CEC65B335790):

https://dist.apache.org/repos/dist/release/cloudstack/KEYS

Vote will be open for 120 hours (due to the weekend).

For sanity in tallying the vote, can PMC members please be sure to
indicate "(binding)" with their vote?

[ ] +1  approve
[ ] +0  no opinion
[ ] -1  disapprove (and reason why)

Re: Build own debs

[Nux]

The dependencies would have changed, try to follow the build process, 
see what errors you are getting.



On 2024-03-28 10:25, Jimmy Huybrechts wrote:

Hi,

Is there maybe a more up to date version of the build your own debs? I 
see the one in the docs goes up to ubuntu 18 and java 8, while we are 
now at java 11. So I don’t know if the dependencies have changed and 
all.


--
Jimmy

Re: [VOTE] Release Apache CloudStack CloudMonkey 6.4.0 - RC1

[Nux]

+1 (binding) based on the usual operations.

On 2024-03-27 09:39, Harikrishna Patnala wrote:

+1 Binding

Verified the checksums of the binaries and tried my usual operations of 
adding host, templates, deploying instances and few more and those 
seems fine.


Thank you everyone involved here.

Regards,
Harikrishna

From: Boris Stoyanov 
Date: Wednesday, 27 March 2024 at 1:55 PM
To: d...@cloudstack.apache.org , users 


Subject: Re: [VOTE] Release Apache CloudStack CloudMonkey 6.4.0 - RC1
+1 Binding,

I’ve installed the client locally and did some ops around, listing 
creating and updating resources. I could not find any issues.


Bobby.

From: Rohit Yadav 
Date: Thursday, 21 March 2024 at 12:39
To: dev , users 


Subject: [VOTE] Release Apache CloudStack CloudMonkey 6.4.0 - RC1
Hi All,

I've created a v6.4.0 release of CloudMonkey, with the following
artifacts up for a vote:

Git Branch and commit SHA:
https://github.com/apache/cloudstack-cloudmonkey/commit/df65df7cfe331c5af5d39743717e3d58df921a48

Commit:
df65df7cfe331c5af5d39743717e3d58df921a48

GitHub pre-release (contains changelog,
artifacts/binaries to test, checksums/usage details):
https://github.com/apache/cloudstack-cloudmonkey/releases/tag/6.4.0

Source release (checksums and signatures are available at the same
location):
https://dist.apache.org/repos/dist/dev/cloudstack/cloudmonkey-6.4.0/

PGP release keys (signed using 
5ED1E1122DC5E8A4A45112C2484248210EE3D884)

https://dist.apache.org/repos/dist/release/cloudstack/KEYS

The vote will be open until 27th March, 2024.

For sanity in tallying the vote, can PMC members please be sure to
indicate "(binding)" with their vote?
[ ] +1 approve
[ ] +0 no opinion
[ ] -1 disapprove (and the reason why)

Convenience binaries are available from here:
https://github.com/apache/cloudstack-cloudmonkey/releases/tag/6.4.0

Regards.

Re: KVM Temple with multiple disk files

[Nux]

Hello Christian,

Unfortunately not, you'll have to automate your way around that somehow.

Regards

On 2024-03-25 07:07, Christian Reichert wrote:

Hello Community,

is it possible to upload an KVM Temple with multiple disk files to
CloudStack Version 4.18?

Thnaks

Best regards,

Christian

Re: [ANNOUNCE] New PMC Chair & VP Apache CloudStack Project - Daniel Salvador

[Nux]

Thanks Rohit for you work this year and congratulations, Daniel!!!


On 2024-03-21 13:41, Rohit Yadav wrote:

All,

It gives me great pleasure to announce that the ASF board has
accepted CloudStack PMC resolution of Daniel Augusto Veronezi Salvador 
as

the next PMC Chair / VP of the Apache CloudStack project.

I would like to thank everyone for the support I've received over the 
past

year.

Please join me in congratulating Daniel, the new CloudStack PMC Chair / 
VP.


Best Regards,
Rohit Yadav

Re: GPU discovery in the hypervisor

[Nux]

Thanks Pierre-Luc

On 2024-03-19 15:01, Pierre-Luc Dion wrote:

yes,



On Fri, Mar 15, 2024 at 5:34 AM Nux  wrote:


Pierre-Luc,

Thanks for that. So for my own clarification, you are saying that for
you, on XenServer Enterprise + drivers + licensing the vGPU feature
"just works" out of the box using the standard Cloudstack feature (the
same that supported NVidia Grid k1/k2 all those years ago) which we 
can

find in the UI/API when definning compute offerings, correct?

Regards

On 2024-03-11 20:06, Pierre-Luc Dion wrote:
> The way we've been delivering GPU offering with Cloudstack is by using
> host
> tags.
> So each host with a specific GPU has the host tags, example: a16,
> and the compute offering with the GPU definition also use the hosttag
> a16.
>
> We've been using this with XenServer Enterprise and so far , no issue
> for
> GPU and vGPU support.
>
>
> Nux: vGPU and GPU are more attractive than ever with AI inferencing
> workload, GPU for AI and desktop, vGPU for desktop mostly.
>
>
> On Tue, Feb 27, 2024 at 7:00 AM Nux  wrote:
>
>> This sounds foreign to me, afaik GPU support is limited to certain
>> (old)
>> NVIDIA Grid cards on Xenserver Enterprise.
>> Modern GPUs are not supported out of the box, although of course many
>> here do use them by means of custom xml/groovy scripts.
>>
>> How you detect them, no idea, let's see how other users do it, if they
>> care to share.
>>
>> On 2024-02-26 18:00, Douglas Oliveira wrote:
>> > Hello,
>> > How does the GPU discovery process work on the hypervisor with SC,
>> > something similar to what Opennebula does? (through lspci)
>> > I currently have a service offering created via API for an Nvidia A16
>> > GPU,
>> > which does not work because it is informed that there are no hosts
>> > available to serve the resource. So I'm unsure whether what doesn't
>> > work is
>> > the service offering or the non-detection of the GPU on the host.
>> >
>> > Regards
>>

Re: Still struggling for steps to build pls help

[Nux]

Pearl has replied to you, have you not seen her reply?

https://lists.apache.org/thread/r2onjk6xvoddw20fkrjm29bhn3xzozym

On 2024-03-20 20:26, Wingrunt Platform wrote:

Any help with this please ? Documentation could be much better I think.
Please let me know how to go about this. OR a source compile is 
currently

not supported ? Thank you Regards, RSK

On Tue, Mar 19, 2024 at 3:19 PM Wingrunt Platform 
wrote:


Hi Team,
I am tasked with evaluation of cloudstack and others such as 
openstack. I
was able to get through with openstack but not cloudstack. I tried all 
that

is in README . My versions
a. cloudstack 4.19
b. Java (tried 1.8 as per readme and also Java 11 and 17)
c. It breaks at gmaven in package cloud-engine-schma
d. Changed it to gmavenplus as there is no support for gmaven as of 
now.

e. Groovy included in the pom
f. Maven version 3.6.3

I was able to install mysql appropriate version specified in README 
and in

the online apache cloudstack docs. DBs are in good condition.
It wouldn't build successfully with
maven -P deps (This as per online somebody has said you have moved 
away

from this since 4.11 ?
also tried that in README including -DskipTests

Any latest documents that can help me build. Any help appreciated.

Thank you,
Regards,
RSK

Re: GPU discovery in the hypervisor

[Nux]

Pierre-Luc,

Thanks for that. So for my own clarification, you are saying that for 
you, on XenServer Enterprise + drivers + licensing the vGPU feature 
"just works" out of the box using the standard Cloudstack feature (the 
same that supported NVidia Grid k1/k2 all those years ago) which we can 
find in the UI/API when definning compute offerings, correct?


Regards

On 2024-03-11 20:06, Pierre-Luc Dion wrote:
The way we've been delivering GPU offering with Cloudstack is by using 
host

tags.
So each host with a specific GPU has the host tags, example: a16,
and the compute offering with the GPU definition also use the hosttag 
a16.


We've been using this with XenServer Enterprise and so far , no issue 
for

GPU and vGPU support.


Nux: vGPU and GPU are more attractive than ever with AI inferencing
workload, GPU for AI and desktop, vGPU for desktop mostly.


On Tue, Feb 27, 2024 at 7:00 AM Nux  wrote:

This sounds foreign to me, afaik GPU support is limited to certain 
(old)

NVIDIA Grid cards on Xenserver Enterprise.
Modern GPUs are not supported out of the box, although of course many
here do use them by means of custom xml/groovy scripts.

How you detect them, no idea, let's see how other users do it, if they
care to share.

On 2024-02-26 18:00, Douglas Oliveira wrote:
> Hello,
> How does the GPU discovery process work on the hypervisor with SC,
> something similar to what Opennebula does? (through lspci)
> I currently have a service offering created via API for an Nvidia A16
> GPU,
> which does not work because it is informed that there are no hosts
> available to serve the resource. So I'm unsure whether what doesn't
> work is
> the service offering or the non-detection of the GPU on the host.
>
> Regards

Re: DDOS Attacks from my virtual Router

[Nux]

I have seen this in the past where port 53 was open on these public IPs 
on the VR and was indeed leading to amplification attack.


It's super easy to verify, from some 3rd party IP that you know is not 
whitelisted anywhere in your firewall or cloudstack, run a host or dig 
command that unallocated IP. If it replies, there is a problem.


dig @IP apache.org a
host apache.org IP



On 2024-03-11 07:43, Granwille Strauss wrote:

Hi Guys

I ended updating to 4.19 and updated all SystemVMs and routers
accordingly. DC has just informed me again that there is amplified
DDOS attacks originating from my virtual router and from an IP address
that's assigned to no instance or systemvm but shows via UI its
assigned.

Any ideas what I can try to stop this?
On 2/12/24 21:30, Wei ZHOU wrote:


cloudstack 4.19.0.0 has been released recently, which contains a new
systemvm template. You can upgrade.

-Wei

在 2024年2月12日星期一，Granwille Strauss
 写道：


Update:

So since I ran updates for dnsmasq in all system vms, the issue
seems to
be solved. Our DC hasn't complained again. So it seems the vm
templates
need an update?
On 2/9/24 10:29, Jayanth Reddy wrote:

Please capture on 53/UDP as most of the DNS stack uses UDP by
default.

I looked the screenshot, No NAME means that the IP hasn't
undergone STATIC NAT to a VM, which is okay wherein perhaps there
could be port forwards or Load Balancer instead. The VR should
assign the IP on its interface if it is acquired in the network.
If I may ask, how are you concluding that IPs are unassigned
elsewhere, have you performed basic reachability tests? Your case
could be one of the below

1. That IP could be SNAT for that network.
2. Or there was an assignment to one of the VMs previously as
STATIC NAT and later released. Please check your events.

Get Outlook for Android [1]
 [1]


From: Granwille Strauss 

Sent: Friday, February 9, 2024 1:40:05 pm
To: users@cloudstack.apache.org 

Cc: Jayanth Reddy 
; Wei ZHOU 

Subject: Re: DDOS Attacks from my virtual Router

I run version 4.18.1.0  currently, oddly there was an update for
dnsmasq so I applied them to all systemvms. I clean restarted the
guest networks and so far everything seems to be running fine. If
I pick up issues, I will destroy the routers so that cloudstack
can recreate them again.

In the meantime, I am running the tcpdump as recommended in the
vritual router and will keep an eye on it, as mentioned there
seems to be no movement on port 53 so far and I also asked the DC
to provide an update on this after the changes I have applied.

In any case, attached is a screenshot of the IP address that are
allocated but zero VM associated, I checked all of them and these
IPs show up no where. I have no loadbalancers, proxies nothing.
Just simple setup, with two virtual routers, one SSVM and one
Consolevm. The rest are VM instances. I am going to check the git
url you provided and query the DB to see what these are.

On 2/9/24 09:53, Jayanth Reddy wrote:

Hi,
Allocated means that it is assigned somewhere. You'll need to
check the Public IP Address tab. Use the shared GH issue for
exceptional case.

The VR does bind only on the internal network. No, manually
updating packages on VRs and System VMs might produce strange
results. Please provision them again.

Thanks

Get Outlook for Android [1]
 [1] [1]
 [1]


From: Granwille Strauss 


Sent: Friday, February 9, 2024 1:10:32 pm
To:
users@cloudstack.apache.org
 


Cc: Wei ZHOU 

;
jayanthreddy5...@gmail.com
 


Subject: Re: DDOS Attacks from my virtual Router

Hi

Yes, I have Advanced network set up. I am going to check for the
allocated IPs that have zero VMs associated via the DB and see
what I can find. I see more than one that is "allocated" in
different guest networks. However, I would appreciate any clues or
tips, as I have barely touched CS database in my life.

Then, the rvm does not seem to listen on a DNS server via port 53
only dnsmaq, could this not be the issue too? As explained in the
blog I linked earlier? I am currently running a tcpdump for the
day to see what happens so far the dump is not providing any hits,
but keep in mind I did run apt-get update dnsmaq prior and
rebooted the systemvms including router vms.

On 2/9/24 09:23, Wei ZHOU wrote:

+1
it looks like one of the VMs in the isolated network is
compromised.
try to capture the packets of port 53 (tcp/udp) by tcpdump in the
virtual
router, and see what is the source IP of the packets.

-Wei

On Fri, 9 Feb 2024 at 08:18, Jayanth Reddy

Re: Enable uefi on Ubuntu 22.04 KVM

[Nux]

Sorry Jimmy,

I'm not up to date with the subject and need more context.
Can you link to this documentation, to the bit that is incorrect? And 
what is the "4ms piece"?



On 2024-03-08 13:12, Jimmy Huybrechts wrote:

Hi,

It misses a lot of things and the documentation doesn’t mention the 4ms 
piece.


I meant guest or VM instance indeed, all hosts already are in uefi 
mode. 


--
Jimmy

Van: Nux 
Datum: vrijdag, 8 maart 2024 om 13:57
Aan: users@cloudstack.apache.org 
CC: Jimmy Huybrechts 
Onderwerp: Re: Enable uefi on Ubuntu 22.04 KVM
Hello,

Can you point to which documentation is wrong?

Also, enabling UEFI on the _host_ means switching to it in the "BIOS".
This will probably require a reinstall of the host, btw.

Or do you mean "guest" or "VM instance"?



On 2024-03-07 11:16, Jimmy Huybrechts wrote:

Hi,

So I also want to enable UEFI on my current KVM hosts but the
documentation is pretty sparse and at some points incorrect.

I there someone here who has the correct steps for enabling it on 
hosts

already being in Cloudstack with Ubuntu 22?

--
Jimmy

Re: Enable uefi on Ubuntu 22.04 KVM

[Nux]

Hello,

Can you point to which documentation is wrong?

Also, enabling UEFI on the _host_ means switching to it in the "BIOS". 
This will probably require a reinstall of the host, btw.


Or do you mean "guest" or "VM instance"?



On 2024-03-07 11:16, Jimmy Huybrechts wrote:

Hi,

So I also want to enable UEFI on my current KVM hosts but the 
documentation is pretty sparse and at some points incorrect.


I there someone here who has the correct steps for enabling it on hosts 
already being in Cloudstack with Ubuntu 22?


--
Jimmy

Re: Cloudstack management login

[Nux]

DEBUG logs from management server?
Is the api working (eg can you use cmk/cloudmonkey), is the DB reachable 
and working, not tables crashed etc?




On 2024-02-29 19:06, Jimmy Huybrechts wrote:
So we had an issue at the datacenter where our management was cut out 
without clean reboot.
Now it’s back online but when trying to login to our management panel, 
after I fill in the correct login it keeps spinning but does not login.


Any way I can debug this?

--
Jimmy

Re: GPU discovery in the hypervisor

[Nux]

This sounds foreign to me, afaik GPU support is limited to certain (old) 
NVIDIA Grid cards on Xenserver Enterprise.
Modern GPUs are not supported out of the box, although of course many 
here do use them by means of custom xml/groovy scripts.


How you detect them, no idea, let's see how other users do it, if they 
care to share.


On 2024-02-26 18:00, Douglas Oliveira wrote:

Hello,
How does the GPU discovery process work on the hypervisor with SC,
something similar to what Opennebula does? (through lspci)
I currently have a service offering created via API for an Nvidia A16 
GPU,

which does not work because it is informed that there are no hosts
available to serve the resource. So I'm unsure whether what doesn't 
work is

the service offering or the non-detection of the GPU on the host.

Regards

Re: new committer: Vishesh Jindal (vishesh)

[Nux]

Congrats & well deserved!

On 2024-02-26 14:05, Daan Hoogland wrote:

users and devs,

The Project Management Committee (PMC) for Apache CloudStack
has invited Vishesh Jindal to become a committer and we are pleased
to announce that they have accepted.

Being a committer enables easier contribution to the
project since there is no need to go via the patch
submission process. This should enable better productivity.

Please join me in congratulating Vishesh.

Re: VMware Import Timeout

[Nux]

I think the setting you tried to change is 
convert.vmware.instance.to.kvm.timeout, but that has to do with the 
conversion process itself.
If you try with telnet or curl from the shell of the Cloudstack 
management server, can you reach the VCenter?


On 2024-02-22 15:35, Kevin Seales wrote:
We are trying to use the "Import-Export Instances" tool in ACS to test 
migration from VMware to ACS.  After selecting "List VMware Instances", 
it hangs for 10 minutes, then ACS gives a very detailed error saying 
"Request Failed."  The management logs show ACS is still receiving data 
from vCenter for another 2 or 3 minutes after the failure message.  I'm 
assuming we are hitting a time out somewhere.  I tried adjusting what I 
could find under global settings that may be related but the error 
still occurs.Does anyone know how we can resolve this issue?

Re: [VOTE] next version 20 instead of 4.20

[Nux]

+1

On 2024-02-19 15:09, Andrija Panic wrote:

+1

On Mon, 19 Feb 2024 at 13:50, Daan Hoogland  
wrote:



LS,

This is a vote on dev@c.a.o with cc to users@c.a.o. If you want to be
counted please reply to dev@.

As discussed in [1] we are deciding to drop the 4 from our versioning
scheme. The result would be that the next major version will be 20
instead of 4.20, as it would be in a traditional upgrade. As 20 > 4
and the versions are processed numerically there are no technical
impediments.

+1 agree (next major version as 20
0 (no opinion)
-1 disagree (keep 4.20 as the next version, give a reason)

As this is a lazy consensus vote any -1 should be accompanied with a
reason.

[1] https://lists.apache.org/thread/lh45w55c3jmhm7w2w0xgdvlw78pd4p87

--
Daan

Re: Site-to-Site VPN to Opnsense

[Nux]

Thanks for solving this and sharing the solution!

BTW, the pictures were not sent, perhaps try to "paste" them in rather 
than "attach" them to the email.



On 2024-02-19 20:42, Wally B wrote:

Got this resolved!

The issue is the way StrongSwan (OPNSense IPSec Provider) manages
Phase 2 selectors. For the future if anyone runs into this. Just add
your networks into CloudStack like the documentation says to do. Then
in your OPNSense config add additional networks to Manual SPD entries
under Advanced options on the Phase 2 Settings.

CloudStack VPN Customer Gateway

OPNSense Phase 2:

Thanks!
Wally

On Mon, Feb 19, 2024 at 1:27 PM Wally B 
wrote:


Tried to change the phase 2 selector at 172.16.192.0/16 [5] to a
network on the firewall directly (not just a route the firewall
knows). Getting the same error.

 cat /var/log/daemon.log | grep 10.2.200.0/23 [6]
===

Feb 19 03:45:10 r-407-VM ipsec[174957]: 07[CFG] unable to install
policy 10.2.200.0/23 [6] === 10.241.0.0/16 [4] in for reqid 4, the
same policy for reqid 3 exists
Feb 19 03:45:10 r-407-VM ipsec[174957]: 07[CFG] unable to install
policy 10.2.200.0/23 [6] === 10.241.0.0/16 [4] fwd for reqid 4, the
same policy for reqid 3 exists
Feb 19 03:45:10 r-407-VM ipsec[174957]: 07[CFG] unable to install
policy 10.241.0.0/16 [4] === 10.2.200.0/23 [6] out for reqid 4, the
same policy for reqid 3 exists

=== ipsec statusall =

vpn-xxx.xxx.xxx.171:  xxx.xxx.xxx.154...xxx.xxx.xxx.171  IKEv1,
dpddelay=30s
vpn-xxx.xxx.xxx.171:   local:  [xxx.xxx.xxx.154] uses pre-shared key
authentication
vpn-xxx.xxx.xxx.171:   remote: [xxx.xxx.xxx.171] uses pre-shared key
authentication
vpn-xxx.xxx.xxx.171:   child:  10.241.0.0/16 [4] ===
192.168.251.0/26 [2] 10.2.200.0/23 [6] TUNNEL, dpdaction=restart
L2TP-PSK:  172.26.0.151...%any  IKEv1/2
L2TP-PSK:   local:  [172.26.0.151] uses pre-shared key
authentication
L2TP-PSK:   remote: uses pre-shared key authentication
L2TP-PSK:   child:  dynamic[udp/l2f] === 0.0.0.0/0[udp] [7]
TRANSPORT
Routed Connections:
L2TP-PSK{517}:  ROUTED, TRANSPORT, reqid 4
L2TP-PSK{517}:   0.0.0.0/0[udp/l2f] [8] === 0.0.0.0/0[udp] [7]
vpn-xxx.xxx.xxx.171{516}:  ROUTED, TUNNEL, reqid 3
vpn-xxx.xxx.xxx.171{516}:   10.241.0.0/16 [4] === 10.2.200.0/23 [6]
192.168.251.0/26 [2]

Any help would be appreciated, currently stuck.

Thanks Again
-Wally

On Sun, Feb 18, 2024 at 12:17 AM Wally B 
wrote:


I'm working on a site to site connection from my VPC to my on prem
OPNsense VPN.

Cloudstack Version 4.19.0
OPNSense Version 23.4.2

I have two P2 selectors setup in OPNsense and i've got a VPN
customer gateway setup with two subnets (
192.168.251.0/26,172.16.192.0/20 [1] ) in Cloudstack.

The issue im running into is, only the first address in my  VPN
customer gateway gets added to the SAD. So, In the above example,
since 192.168.251.0/26 [2] is first I can pass traffic to and from
the VPC to that subnet on prem. However, 172.16.192.0/20 [3] is
not added.

I checked the logs on my VPC VR and found the following.

Feb 18 06:11:56 r-407-VM charon: 07[CFG] unable to install policy
172.16.192.0/20 [3] === 10.241.0.0/16 [4] in for reqid 3, the same
policy for reqid 5 exists
Feb 18 06:11:56 r-407-VM charon: 07[CFG] unable to install policy
172.16.192.0/20 [3] === 10.241.0.0/16 [4] fwd for reqid 3, the
same policy for reqid 5 exists
Feb 18 06:11:56 r-407-VM charon: 07[CFG] unable to install policy
10.241.0.0/16 [4] === 172.16.192.0/20 [3] out for reqid 3, the
same policy for reqid 5 exists

Wondering if i'm just formatting my  VPN customer gateway CIDRs
wrong?

Thanks!
Wally



Links:
--
[1] http://192.168.251.0/26,172.16.192.0/20
[2] http://192.168.251.0/26
[3] http://172.16.192.0/20
[4] http://10.241.0.0/16
[5] http://172.16.192.0/16
[6] http://10.2.200.0/23
[7] http://0.0.0.0/0%5Budp%5D
[8] http://0.0.0.0/0%5Budp/l2f%5D

Re: restrict Instance console access

[Nux]

Hi,

I do not think there is one in that version - or later ones, although 
certain things do change, you'll have to do it outside Cloudstack 
somehow.


On 2024-02-19 15:52, Gary Dixon wrote:

HI

ACS 4.15.2

Ubuntu 20.04

We have a requirement to restrict access to the VM console for certain
tenants within our ACS implementation - however I cannot see a way to
accomplish this via Role permissions.

Is there a way to restrict VM Console access for specific users ?

BR

Gary

Gary Dixon

Quadris Cloud Manager

0161 537 4980 [1]

 +44 7989717661 [2]

gary.di...@quadris.co.uk

www.quadris.com

Innovation House, 12‑13 Bredbury Business Park
Bredbury Park Way, Bredbury, Stockport, SK6 2SN



Links:
--
[1] tel:0161%20537%204980
[2] tel:+44%207989717661

Re: Unable to find the virtio-win package

[Nux]

Hello,

Sorry to see virtio-win is not available in your Ubuntu distro. I tested 
a while back and the package was available, although I forget the 
version I used.

Anyway, it's no big deal, can easily be worked around.
So these are the files the RPM installs (as of 08-02-2024), they are 
basically drivers for Windows: https://pastebin.com/raw/WDH51ZYJ


I believe virt-v2v expects them in the same location, namely 
/usr/share/virtio-win. There are multiple ways to do this. Examples:


1 - convert the RPM into a deb package and install it:
# download the rpm
wget 
https://fedorapeople.org/groups/virt/virtio-win/direct-downloads/stable-virtio/virtio-win.noarch.rpm

# install "alien" which can convert rpms to debs
apt -y install alien
# the conversion, can take a while
alien -d virtio-win.noarch.rpm
# install the resulting deb
dpkg -i virtio-win*.deb

2 - download and extract the RPM contents
# download the rpm
wget 
https://fedorapeople.org/groups/virt/virtio-win/direct-downloads/stable-virtio/virtio-win.noarch.rpm

# install the required software to inspect rpm packages
sudo apt -y install rpm2cpio cpio
# create a working directory and cd into it
mkdir virtio-rpm
cd virtio-rpm
# extract
rpm2cpio ../virtio-win*.noarch.rpm | cpio -i --make-directories
# copy the files in the right place
sudo cp -av usr/share/* /usr/share/

You need to do this on every hypervisor you expect to be running 
virt-v2v.


HTH


On 2024-02-08 13:23, Cloudstack Users wrote:
OK, for those of us that are not that familiar with linux, can you 
please let me know how to get that from the ISO to an installer on the 
KVM host? Thank you.


From: Wei ZHOU 
Date: Thursday, February 8, 2024 at 8:14 AM
To: users@cloudstack.apache.org 
Subject: Re: Unable to find the virtio-win package
Hi,

you can download the ISO from
https://fedorapeople.org/groups/virt/virtio-win/direct-downloads/

-Wei

On Thu, 8 Feb 2024 at 14:10, Cloudstack Users
 wrote:


Hello,

We are trying to install the virtio-win drivers on our Ubuntu 22.04
installation for our KVM hosts. When we run the command as specified 
in the

documentation, we get an error.


https://docs.cloudstack.apache.org/en/latest/adminguide/virtual_machines.html#requirements-on-the-kvm-hosts

For Debian-based distributions:

apt install virtio-win

# apt install virtio-win
Reading package lists... Done
Building dependency tree... Done
Reading state information... Done
E: Unable to locate package virtio-win

Does anyone know if it uses a different package name that we need to
install?


,

[Answers in Genesis] [Creation Museum] 
<
https://creationmuseum.org/>  [Ark 
Encounter] 

Re: new website is life

[Nux]

Kudos to all involved!
Really nice and fancy.

On 2024-02-07 08:22, Daan Hoogland wrote:

People,
we brought the new website. Please all have a look at
https://cloudstack.apache.org

thanks for any feedback

Re: Snapshot download

[Nux]

KVM VM snapshots are stored inside the qcow2 file of the VM, AFAIK. You 
can't separate it from the VM itself.

You'll have to give the authorities this file unadultered.

On 2024-02-01 05:18, Jithin Raju wrote:

Hi Jimmy,

This feature is not available yet (others may confirm), could you open 
a feature request?


-Jithin

From: Jimmy Huybrechts 
Date: Wednesday, 31 January 2024 at 9:38 PM
To: users@cloudstack.apache.org 
Subject: Snapshot download
Hi,

While doing some last tests before production I noticed there is no 
option to download a vm snapshot (including memory if saved), now for 
some law enforcement cases they will request such a snapshot with 
memory (after proper warrants of course). How to download these in this 
case? Even if it needs to be done manually from shell. Not being able 
to do it is not really an option here unfortunately.


--
Jimmy

Re: [VOTE] Apache CloudStack 4.19.0.0 RC4

[Nux]

+1 (binding) based on a series of tests I've done with Advanced Zones 
and VMWare.



On 2024-01-31 17:10, Nicolas Vazquez wrote:

+1 (binding)

Repeated tests performed on previous RCs around Vmware to KVM migration 
and KVM import/export


Regards,
Nicolas Vazquez


From: Rohit Yadav 
Date: Tuesday, 30 January 2024 at 09:37
To: users , d...@cloudstack.apache.org 


Subject: Re: [VOTE] Apache CloudStack 4.19.0.0 RC4
+1 (binding)

Tested 4.19.0.0 RC4 packages with EL8 (Alma Linux) + KVM using mbx.

Tested the following:

Registered new template
Registered ssh public key
Created isolated network in VM deploy form
Deployed VM as root admin
Allow egress rules for isolated network
Created PF and FW rules, was able to ssh to instance and wget/ping 
Internet IPs


Created normal user account
Register ssh public key
Created isolated network in VM deploy form
Deployed VM as normal user with ssh key
Allow egress rules for isolated network
Acquire new public IP and SNAT that to the VM
Created FW rules, was able to ssh to instance and wget/ping Internet 
IPs


Found some UI quirks, issues, but none of them are blockers. Reported 
them here: https://github.com/apache/cloudstack/issues/8576



Regards.








From: Abhishek Kumar 
Sent: Monday, January 29, 2024 12:28
To: users ; d...@cloudstack.apache.org 


Cc: PMC 
Subject: [VOTE] Apache CloudStack 4.19.0.0 RC4

Hi All,

I've created a 4.19.0.0 release (RC4), with the following artifacts up 
for

a vote:

Git Branch and Commit SH:
https://github.com/apache/cloudstack/tree/4.19.0.0-RC20240129T1021
Commit: 2746225b999612f156e421199e34ef8de98a3664

Source release (checksums and signatures are available at the same
location):
https://dist.apache.org/repos/dist/dev/cloudstack/4.19.0.0/

PGP release keys (signed using 
65518106473A09D7AF26B384A70BD2EAA74E2866):

https://dist.apache.org/repos/dist/release/cloudstack/KEYS

For testing purposes, I have uploaded the different distro packages to:
http://download.cloudstack.org/testing/4.19.0.0-RC4/

Since 4.16 the system VM template registration is no longer mandatory
before upgrading, however, it can be downloaded from here if needed:
https://download.cloudstack.org/systemvm/4.19/

The vote will be open for 72 hours.

For sanity in tallying the vote, can PMC members please be sure to 
indicate

"(binding)" with their vote?

[ ] +1  approve
[ ] +0  no opinion
[ ] -1  disapprove (and reason why)

Regards,
Abhishek

Re: xcp templates to kvm

[Nux]

What Kiran said, and in addition to that make sure you have the right 
drivers in the VM templates (ie virtio_blk, virtio_net etc).

Virt-v2v might help here:
https://access.redhat.com/articles/1353783

On 2024-01-31 12:17, Kiran Chavala wrote:

Hi Francisco

The xcp zone templates will in vhd format. In order for them to work 
with KVM zone they have to be in qcow2 format


You can try to use the qemu-img tool to convert them to qcow2 format

Regards
Kiran

From: Francisco Arencibia Quesada 
Date: Wednesday, 31 January 2024 at 5:28 PM
To: users@cloudstack.apache.org 
Subject: xcp templates to kvm
Good morning guys,

I have a doubt regarding a matter. If I copy all templates, such as 
Ubuntu
and Windows, from an XCP zone to a KVM zone, is it possible to make 
them

work? Or do I need to create new templates for the KVM zone?
Thank you in advance
Regards
--
*Francisco Arencibia Quesada.*
*DevOps Engineer*

Re: Cloudstack takes 5 Minutes to Realise Hypervisor is down.

[Nux]

When dealing with these timeouts, try not to be too stingy with the 
values.
2 minutes may not be enough for other timeouts in your infra to complete 
so that the whole process happens gracefully.
Whoever thought of 5 minutes as default must have had serious 
considerations.


On 2024-01-24 09:02, Wei ZHOU wrote:

Hi,

You can change the global setting "ping.interval" to 10 (seconds), 
restart

the management service, and retest.

-Wei

On Wed, 24 Jan 2024 at 09:41, Bryan Tiang  
wrote:



Hi Community,

We are performing failover test to see how quickly a VM will failover 
to

another compute node in the event of a compute node hardware failure.

We forcefully power off the compute node where the VM is residing and
monitor how long it takes to failover, and after a few tests the 
result is
averagely around 5 mins for the compute node to be declared down and 
for

the VM to failover to another node.

Referring to
https://cwiki.apache.org/confluence/display/cloudstack/host+ha, we've
made a few changes in global settings hoping we can shorten the total 
time

needed to failover but it doesn’t seem to work.

We're wondering which settings that will effectively achieve our
objective, we're looking at around 2 mins total for failover to 
complete.


We are using Cloudstack 4.18.1 + Linstor + KVM Ubuntu

Regards,
Bryan

Re: new website design

[Nux]

+1 - do it.

On 2024-01-19 14:50, Daan Hoogland wrote:

As we get no major issues on it and we already voted to have this
design applied, is it alright to deploy this in the coming weeks?

On Wed, Jan 17, 2024 at 8:31 PM Daan Hoogland  
wrote:


devs and users,

back in august we had a small discussion about a new website design,
led by Ivet [1]. In the meanwhile Rohit had investigated using
docusaurus as a publishing mechanism for the site. After the last few
weeks I have been working on integrating the two. The result so far
can be viewed on the staging site [2]

Please all have a look and give me any feedback you may have, so we
can move this forward.

[1] https://lists.apache.org/thread/fopjc3r4hjkp9nbkj9xzoxv406rowkso
[2] https://cloudstack.staged.apache.org/

--
Daan

Re: new PMC member Harikrishna Patnala

[Nux]

Congrats Harikrishna, well deserved!



On 2024-01-15 09:25, Daan Hoogland wrote:

users and dev,

The PMC have invited Harikrishna to join their ranks and he has
gracefully accepted. Please join me in congratulating Hari.

New committer: Alexandre Mattioli

[Nux]

All,

The Project Management Committee (PMC) for Apache CloudStack
has invited Alexandre Mattioli to become a committer and we are pleased
to announce that they have accepted.

Alex has been instrumental in many features present today in Cloudstack, 
with a focus on networking and VMWare:

- IPv6 static routing
- Edge Zones
- Autoscaling with VR
- VNF appliances
- VMWare NSX support
- Tungsten Fabric / OpenSDN
- Backup & recovery framework
- VLAN trunking and security policies in ESX
and so on.


Please join me in congratulating Alex!

Re: Management GUI Session Time Out

[Nux]

Hello Bryan,

I think on recent releases you need to adjust session.timeout in 
/etc/cloudstack/management/server.properties and then restart the 
service.


HTH

On 2024-01-05 17:00, Brian Fossmeyer wrote:

Hello,

I know there is a GitHub idea to add a session timeout to the GUI, but 
I would like to go ahead and change it before that idea becomes a 
reality. I found an old article


https://cwiki.apache.org/confluence/display/CLOUDSTACK/Increase+the+Timeout+of+the+CloudStack+Management+GUI

And the path that is mentioned in there is different for 4.18.1. The 
path that I found for the web.xml is:



/usr/share/cloudstack-management/webapp/WEB-INF

Is this the correct place to put the timeout settings of


 60


And is this the proper method to make this change to extend the default 
timer?


Thanks,

Brian

Brian Fossmeyer
Senior Enterprise Systems Engineer, Technology

[Answers in Genesis] [Creation Museum] 
  [Ark Encounter] 

Re: [VOTE] Apache CloudStack 4.19.0.0 RC1

[Nux]

That's a nice Christmas gift, Abhishek, thanks!

I'll be testing after the new year.



On 2023-12-22 13:48, Abhishek Kumar wrote:

Hi All,

I've created a 4.19.0.0 release (RC1), with the following artifacts up 
for

a vote:

Git Branch and Commit SH:
https://github.com/apache/cloudstack/tree/4.19.0.0-RC20231222T1711
Commit: 92c0fc8fc25c916a7f3c7875d924b2d14d437501

Source release (checksums and signatures are available at the same
location):
https://dist.apache.org/repos/dist/dev/cloudstack/4.19.0.0/

PGP release keys (signed using 
65518106473A09D7AF26B384A70BD2EAA74E2866):

https://dist.apache.org/repos/dist/release/cloudstack/KEYS

For testing purposes, I have uploaded the different distro packages to:
http://download.cloudstack.org/testing/4.19.0.0-RC1/

Since 4.16 the system VM template registration is no longer mandatory
before upgrading, however, it can be downloaded from here if needed:
https://download.cloudstack.org/systemvm/4.19/

Vote will be open for 120 hours.

For sanity in tallying the vote, can PMC members please be sure to 
indicate

"(binding)" with their vote?

[ ] +1  approve
[ ] +0  no opinion
[ ] -1  disapprove (and reason why)

Happy Christmas everyone!

@Devs - sorry the previous email wasn't copied to the user mailing list
correctly.

Regards,
Abhishek

Re: Happy Holidays!

[Nux]

Happy holidays, Ivet and all!

On 2023-12-21 13:28, Ivet Petrova wrote:

Dear community members and fellow CloudStack friends,

I want to wish you all a great holiday season, lots of great times
with your beloved ones, lots of presents and great time.
Thank you all, who are contributing to the community, who participated
at events, who supported all the community marketing initiatives!
We are a great community, and I am sure next year will be even more
successful for us as a community.

Happy Holidays,
Ivet

Re: new committer: João Jandre Paraquetti

[Nux]

Welcome aboard, João! :-)


On 2023-12-18 12:46, Daan Hoogland wrote:

community,
The PMC have invited João Jandre Paraquetti to join the project as a
committer and the invitation was gratefully accepted.
Please join me in welcoming João.
Congratulations João,

Re: VM/Disk Metrics Prometheus Export

[Nux]

If on KVM I recommend the Prometheus libvirt exporter.

On 2023-12-07 10:31, Joan g wrote:

Hi Team,

I could see that we have prometheus exporter plugin available with
cloudstack.

Do we have any plans to export VM,VR and disk metrices ?

Regards,
Jon

Re: running Windows VM on Ubuntu 22 KVM

[Nux]

This is already possible. Stop the VM, go to Settings, change the 
rootDiskController and/or dataDiskController as you please.


https://i.imgur.com/ns7Cdzm.jpg

On 2023-12-13 06:16, Pratik Chandrakar wrote:

Hi Wei,
I think lots of users are unaware of PV OS Type to improve the 
performance,

I was also facing the same problem with Windows Machine and thanks to
this thread I also got better disk performance. So instead of changing 
the

OS type can ACS provide an option within the UI to change the
virtualization/driver (e.g. scsi/ide) mode in a stopped VM?

On Mon, Dec 11, 2023 at 4:14 PM Wei ZHOU  wrote:

If the OS type is "Windows Server ", the VM will be started with 
an

E1000 nic device and IDE disk.

You need to change to "Windows PV", vm will have virtio NIC and disk.
If you want better disk performance, you can try with "Other PV 
Virtio-SCSI

(64-bit)", which might require some changes on your windows templates.

-Wei


On Mon, 11 Dec 2023 at 11:34,  wrote:

> Thx, Wei, I used OS Type Windows Server 2022 (64-bit). Is this not
working?
>
> -Ursprüngliche Nachricht-
> Von: Wei ZHOU 
> Gesendet: Montag, 11. Dezember 2023 11:29
> An: users@cloudstack.apache.org
> Betreff: Re: running Windows VM on Ubuntu 22 KVM
>
> You can stop the vm, change the OS type to "Windows PV" and then start
the
> vm.
>
> -Wei
>
> On Mon, 11 Dec 2023 at 11:17,  wrote:
>
> > Hi all,
> >
> >
> >
> > I am kind of new to use KVM for Windows VMs and run into some problems.
> >
> > I used an English template for Windows Server 2022 and installed a VM
> > successfully via Cloudstack. Everything looks good and the NIC is
> > working Intel PRO 1000 emulation.
> >
> > As far as I understand you need to install the VirtIO driver to get a
> > better performance from your VM. I downloaded the ISO from:
> >
> > https://fedorapeople.org/groups/virt/virtio-win/direct-downloads/stabl
> > e-virt
> > io/virtio-win.iso
> >  > le-virtio/virtio-win.iso>
> >
> > And installed them inside the Windows Sever VM successfully. But even
> > after a reboot of the VM it looks like it is still using the emulated
> > Intel PRO
> > 1000 NIC and also QEMU ATA drivers for disk access.
> >
> >
> >
> > Did I miss something? Do I need to install anything on the KVM host,
too?
> > Performance is very poor inside the Wind VM.
> >
> >
> >
> > Thx for any help!
> >
> >
> >
> > Regards,
> >
> > Swen
> >
> >
>
>
>

Re: new committer Vladimir Petrov

[Nux]

Well done, Vladi! :)

On 2023-12-12 09:52, Daan Hoogland wrote:

community,

The PMC has decided Vladi to become a committer and he has gracefully
accepted. Please join me in welcoming Vladi to the project as
committer.
Congratulations Vladi

Re: OS Upgrade Rocky 8.5 to 8.9

[Nux]

Thanks Wei, yes, that is my understanding as well.



On 2023-12-11 22:44, Wei ZHOU wrote:

Right. The value might  be updated each time when cloudstack-agent is
restarted.

-Wei


在 2023年12月11日星期一，Nux  写道：


Great,

When you are done upgrading all hosts then you can revert the original
/etc/redhat-release. If it's identical on all hosts it should be fine, 
if

it still complains you can have a look in the DB.



On 2023-12-11 14:14, Christian Reichert wrote:


Hi Nux,

thanks for your replay, I did a first test in changing the OS and I 
was

able to add the host again.

Many thanks,

Christian



-Ursprüngliche Nachricht-
Von: Nux [mailto:n...@li.nux.ro]
Gesendet: Montag, 11. Dezember 2023 12:07
An: users@cloudstack.apache.org
Cc: Christian Reichert 
Betreff: Re: OS Upgrade Rocky 8.5 to 8.9

Hi,

Cloudstack matches the Rocky OS by means of 2 things:
- the contents of /etc/redhat-release and
- the contents of cloud.host_details (where existing entries are)

The script who does this is
/usr/share/cloudstack-common/scripts/vm/hypervisor/versions.sh

I am not 100% this will work, but try to adjust /etc/redhat-release 
on
the new server to be like the old ones, see if that yields any 
improvements

to your problem.
You should definitely NOT fiddle like this in production, if you have 
a

test environment, that'd be great.

HTH

On 2023-12-10 11:11, Christian Reichert wrote:


Hello Community,

I have a Cluster with Rocky 8.5 hosts, libvirt 6 and CloudStack 
Agent

4.18.0. I upgrade the first host to Rock 8.9 with libvirt 8, now the
agent is not starting on the host.

In the log I found "ERROR [kvm.resource.LibvirtConnection]
(Agent-Handler-1:null) (logid:) Connection with libvirtd is broken:
invalid connection pointer in virConnectGetVersion"

I know that I cannot mix OS versions in a cluster but I thought this
is only valid for major versions like Rock 8 / 9.

When I add the host to a new create cluster the host is successfully
added.

Any idea how to upgrade my existing cluster without interrupting the
instances to Rock 8.9?

Any help would be appreciated, thanks

BR, Christian

Re: AW: OS Upgrade Rocky 8.5 to 8.9

[Nux]

Great,

When you are done upgrading all hosts then you can revert the original 
/etc/redhat-release. If it's identical on all hosts it should be fine, 
if it still complains you can have a look in the DB.




On 2023-12-11 14:14, Christian Reichert wrote:

Hi Nux,

thanks for your replay, I did a first test in changing the OS and I was 
able to add the host again.


Many thanks,

Christian



-Ursprüngliche Nachricht-
Von: Nux [mailto:n...@li.nux.ro]
Gesendet: Montag, 11. Dezember 2023 12:07
An: users@cloudstack.apache.org
Cc: Christian Reichert 
Betreff: Re: OS Upgrade Rocky 8.5 to 8.9

Hi,

Cloudstack matches the Rocky OS by means of 2 things:
- the contents of /etc/redhat-release and
- the contents of cloud.host_details (where existing entries are)

The script who does this is
/usr/share/cloudstack-common/scripts/vm/hypervisor/versions.sh

I am not 100% this will work, but try to adjust /etc/redhat-release on 
the new server to be like the old ones, see if that yields any 
improvements to your problem.
You should definitely NOT fiddle like this in production, if you have a 
test environment, that'd be great.


HTH

On 2023-12-10 11:11, Christian Reichert wrote:

Hello Community,

I have a Cluster with Rocky 8.5 hosts, libvirt 6 and CloudStack Agent
4.18.0. I upgrade the first host to Rock 8.9 with libvirt 8, now the
agent is not starting on the host.

In the log I found "ERROR [kvm.resource.LibvirtConnection]
(Agent-Handler-1:null) (logid:) Connection with libvirtd is broken:
invalid connection pointer in virConnectGetVersion"

I know that I cannot mix OS versions in a cluster but I thought this
is only valid for major versions like Rock 8 / 9.

When I add the host to a new create cluster the host is successfully
added.

Any idea how to upgrade my existing cluster without interrupting the
instances to Rock 8.9?

Any help would be appreciated, thanks

BR, Christian

Re: AW: AW: running Windows VM on Ubuntu 22 KVM

[Nux]

If it is then it will certainly require the virtio drivers.
That said I always avoided doing this operation, often prone to crashes 
in my experience.


On 2023-12-11 11:53, m...@swen.io wrote:

Hi Nux,

thx, virtio-win-gt-x64.msi was the missing link. Now VM-snapshot do 
work!
What is not working at the moment is dynamically scaling cpu of a 
running VM. Is this even possible with Windows?


Regards,
Swen

-Ursprüngliche Nachricht-
Von: Nux 
Gesendet: Montag, 11. Dezember 2023 12:41
An: users@cloudstack.apache.org
Cc: m...@swen.io
Betreff: Re: AW: running Windows VM on Ubuntu 22 KVM

You can VM snapshot Windows, no issues, doesn't need any special tools.
That said, I usually bundle virtio drivers and QEMU guest agent in 
Windows VMs.

Basically install something like this:
https://fedorapeople.org/groups/virt/virtio-win/direct-downloads/archive-virtio/virtio-win-0.1.240-1/virtio-win-gt-x64.msi

On 2023-12-11 11:26, m...@swen.io wrote:

Is it possible to create VM-snapshots of Windows VMs? Do I need to
install other guest tools?

-Ursprüngliche Nachricht-
Von: Wei ZHOU 
Gesendet: Montag, 11. Dezember 2023 11:43
An: users@cloudstack.apache.org
Betreff: Re: running Windows VM on Ubuntu 22 KVM

If the OS type is "Windows Server ", the VM will be started with
an
E1000 nic device and IDE disk.

You need to change to "Windows PV", vm will have virtio NIC and disk.
If you want better disk performance, you can try with "Other PV
Virtio-SCSI (64-bit)", which might require some changes on your
windows templates.

-Wei


On Mon, 11 Dec 2023 at 11:34,  wrote:


Thx, Wei, I used OS Type Windows Server 2022 (64-bit). Is this not
working?

-Ursprüngliche Nachricht-
Von: Wei ZHOU 
Gesendet: Montag, 11. Dezember 2023 11:29
An: users@cloudstack.apache.org
Betreff: Re: running Windows VM on Ubuntu 22 KVM

You can stop the vm, change the OS type to "Windows PV" and then
start the vm.

-Wei

On Mon, 11 Dec 2023 at 11:17,  wrote:

> Hi all,
>
>
>
> I am kind of new to use KVM for Windows VMs and run into some problems.
>
> I used an English template for Windows Server 2022 and installed a
> VM successfully via Cloudstack. Everything looks good and the NIC
> is working Intel PRO 1000 emulation.
>
> As far as I understand you need to install the VirtIO driver to get
> a better performance from your VM. I downloaded the ISO from:
>
> https://fedorapeople.org/groups/virt/virtio-win/direct-downloads/st
> a
> bl
> e-virt
> io/virtio-win.iso
> <https://fedorapeople.org/groups/virt/virtio-win/direct-downloads/s
> t
> ab
> le-virtio/virtio-win.iso>
>
> And installed them inside the Windows Sever VM successfully. But
> even after a reboot of the VM it looks like it is still using the
> emulated Intel PRO
> 1000 NIC and also QEMU ATA drivers for disk access.
>
>
>
> Did I miss something? Do I need to install anything on the KVM host, too?
> Performance is very poor inside the Wind VM.
>
>
>
> Thx for any help!
>
>
>
> Regards,
>
> Swen
>
>

Re: [D] Test Discussion [cloudstack]

[Nux]

test reply

On 2023-12-11 11:52, NuxRo wrote:

GitHub user NuxRo added a comment to the discussion: Test Discussion

yo

GitHub link: 
https://github.com/apache/cloudstack/discussions/8344#discussioncomment-7818945



This is an automatically sent email for users@cloudstack.apache.org.
To unsubscribe, please send an email to: 
users-unsubscr...@cloudstack.apache.org

Re: AW: running Windows VM on Ubuntu 22 KVM

[Nux]

You can VM snapshot Windows, no issues, doesn't need any special tools.
That said, I usually bundle virtio drivers and QEMU guest agent in 
Windows VMs.

Basically install something like this:
https://fedorapeople.org/groups/virt/virtio-win/direct-downloads/archive-virtio/virtio-win-0.1.240-1/virtio-win-gt-x64.msi

On 2023-12-11 11:26, m...@swen.io wrote:
Is it possible to create VM-snapshots of Windows VMs? Do I need to 
install other guest tools?


-Ursprüngliche Nachricht-
Von: Wei ZHOU 
Gesendet: Montag, 11. Dezember 2023 11:43
An: users@cloudstack.apache.org
Betreff: Re: running Windows VM on Ubuntu 22 KVM

If the OS type is "Windows Server ", the VM will be started with an
E1000 nic device and IDE disk.

You need to change to "Windows PV", vm will have virtio NIC and disk.
If you want better disk performance, you can try with "Other PV 
Virtio-SCSI (64-bit)", which might require some changes on your windows 
templates.


-Wei


On Mon, 11 Dec 2023 at 11:34,  wrote:

Thx, Wei, I used OS Type Windows Server 2022 (64-bit). Is this not 
working?


-Ursprüngliche Nachricht-
Von: Wei ZHOU 
Gesendet: Montag, 11. Dezember 2023 11:29
An: users@cloudstack.apache.org
Betreff: Re: running Windows VM on Ubuntu 22 KVM

You can stop the vm, change the OS type to "Windows PV" and then start
the vm.

-Wei

On Mon, 11 Dec 2023 at 11:17,  wrote:

> Hi all,
>
>
>
> I am kind of new to use KVM for Windows VMs and run into some problems.
>
> I used an English template for Windows Server 2022 and installed a
> VM successfully via Cloudstack. Everything looks good and the NIC is
> working Intel PRO 1000 emulation.
>
> As far as I understand you need to install the VirtIO driver to get
> a better performance from your VM. I downloaded the ISO from:
>
> https://fedorapeople.org/groups/virt/virtio-win/direct-downloads/sta
> bl
> e-virt
> io/virtio-win.iso
>  ab
> le-virtio/virtio-win.iso>
>
> And installed them inside the Windows Sever VM successfully. But
> even after a reboot of the VM it looks like it is still using the
> emulated Intel PRO
> 1000 NIC and also QEMU ATA drivers for disk access.
>
>
>
> Did I miss something? Do I need to install anything on the KVM host, too?
> Performance is very poor inside the Wind VM.
>
>
>
> Thx for any help!
>
>
>
> Regards,
>
> Swen
>
>

Re: OS Upgrade Rocky 8.5 to 8.9

[Nux]

Hi,

Cloudstack matches the Rocky OS by means of 2 things:
- the contents of /etc/redhat-release and
- the contents of cloud.host_details (where existing entries are)

The script who does this is 
/usr/share/cloudstack-common/scripts/vm/hypervisor/versions.sh


I am not 100% this will work, but try to adjust /etc/redhat-release on 
the new server to be like the old ones, see if that yields any 
improvements to your problem.
You should definitely NOT fiddle like this in production, if you have a 
test environment, that'd be great.


HTH

On 2023-12-10 11:11, Christian Reichert wrote:

Hello Community,

I have a Cluster with Rocky 8.5 hosts, libvirt 6 and CloudStack Agent
4.18.0. I upgrade the first host to Rock 8.9 with libvirt 8, now the
agent is not starting on the host.

In the log I found "ERROR [kvm.resource.LibvirtConnection]
(Agent-Handler-1:null) (logid:) Connection with libvirtd is broken:
invalid connection pointer in virConnectGetVersion"

I know that I cannot mix OS versions in a cluster but I thought this
is only valid for major versions like Rock 8 / 9.

When I add the host to a new create cluster the host is successfully
added.

Any idea how to upgrade my existing cluster without interrupting the
instances to Rock 8.9?

Any help would be appreciated, thanks

BR, Christian

Re: [VOTE] Adopt Github Discusssions as Users Forum

[Nux]

-0 - I have voiced my concerns already.


On 2023-12-04 08:01, Rohit Yadav wrote:

All,

Following the discussion thread on adopting Github Discussions as users 
forum [1], I put the following proposal for a vote:



  1.  Adopt and use Github Discussions as user forums.
  2.  The Github Discussions feature is tied with the 
users@cloudstack.apache.org mailing list (PR: 
https://github.com/apache/cloudstack/pull/8274).
  3.  Any project governance and decision-making thread such as voting, 
releases etc. should continue to use the project mailing lists.


Vote will be open for 120 hours (by Friday, 8th Dec).

For sanity in tallying the vote, can PMC members please be sure to 
indicate "(binding)" with their vote?


[ ] +1  approve
[ ] +0  no opinion
[ ] -1  disapprove (and reason why)

[1] https://lists.apache.org/thread/hs0295hw9rnmhoh9l2qo5hc4b62hhvk8


Regards.

Re: Host tags

[Nux]

Sounds good, thanks for clarifying.


On 2023-12-04 20:40, Marty Godsey wrote:

Nux,

They do. I have no other issues and the tags “magically appeared” so, 
idk.. But it didn’t seem to have any issues. Since there were no issues 
observed, I am not worried about troubleshooting.


Marty

From: Nux 
Date: Friday, December 1, 2023 at 1:56 PM
To: users@cloudstack.apache.org 
Subject: Re: Host tags
Hi,

That could be XO's doing. I was hoping XO and cloudstack can co-exist 
peacefully, but this doesn't fill me with confidence.




On 1 December 2023 08:42:35 GMT, Boris Stoyanov 
 wrote:

Marty,
We haven’t really observed a situation of tags being missing all of 
the sudden, I don’t recall such issue. Feel free to add them once more 
at the host.


Bobby.

From: Marty Godsey 
Date: Wednesday, 29 November 2023 at 22:26
To: users@cloudstack.apache.org 
Subject: Host tags
Hello guys,

I am using XCP-NG for my hosts and use XOA to “manage” them. When I 
say manage, I mean just use it for visibility into the cluster. 
Cloudstack does all the work.


I noticed today that my tags on the hosts are missing. It’s on one of 
the hosts but not the other two. Is this a concern? How would I get 
them back if needed?


Marty

Re: VM Snapshot failing

[Nux]

Can you include more of the log before and after? 

On 1 December 2023 17:53:44 GMT, Granwille Strauss 
 wrote:
>Hi Guys
>
>I am trying to make a snapshot of a specific VM via cloudstack UI. But it 
>keeps failing with the following error:
>
>> 2023-12-01 19:49:18,585 DEBUG [c.c.a.t.Request] 
>> (Work-Job-Executor-2:ctx-1209a35a job-4622/job-4623 ctx-de841c3f) 
>> (logid:74a50c5f) Seq 36-391324554706966: Received:  { Ans: , MgmtId: 
>> 66988330791812, via: 36(HOSTNAME), Ver: v1, Flags: 10, { CreateObjectAnswer 
>> } }
>> 2023-12-01 19:49:18,585 DEBUG [o.a.c.s.s.SnapshotServiceImpl] 
>> (Work-Job-Executor-2:ctx-1209a35a job-4622/job-4623 ctx-de841c3f) 
>> (logid:74a50c5f) create snapshot backup-donaf failed: Failed take snapshot 
>> for volume 
>> [volumeTO[uuid=24a9c1eb-007b-4bff-b935-1bb86b522633|path=734d26ae-dccb-41df-993a-dbea866cd2be|datastore=PrimaryDataStoreTO[uuid=85e49c98-0988-4627-984c-8f4719c401e3|name=HOSTNAME-local-85e49c98|id=24|pooltype=Filesystem]]],
>>  in VM [i-2-159-VM], due to [VM [i-2-159-VM] has no disk with path 
>> [/var/lib/libvirt/images/734d26ae-dccb-41df-993a-dbea866cd2be]. VM's XML 
>> [
>Do you guys know what this could mean and possible ways to address this, 
>please?
>
>-- 
>Regards / Groete
>
>  Granwille Strauss  // Senior Systems Admin
>
>*e:* granwi...@namhost.com
>*m:* +264 81 323 1260 
>*w:* www.namhost.com 
>
>
>
>
>
>Namhost Internet Services (Pty) Ltd,
>
>24 Black Eagle Rd, Hermanus, 7210, RSA
>
>
>
>The content of this message is confidential. If you have received it by 
>mistake, please inform us by email reply and then delete the message. It is 
>forbidden to copy, forward, or in any way reveal the contents of this message 
>to anyone without our explicit consent. The integrity and security of this 
>email cannot be guaranteed over the Internet. Therefore, the sender will not 
>be held liable for any damage caused by the message. For our full privacy 
>policy and disclaimers, please go to https://www.namhost.com/privacy-policy
>
>Powered by AdSigner 
>

Re: Host tags

[Nux]

Hi,

That could be XO's doing. I was hoping XO and cloudstack can co-exist 
peacefully, but this doesn't fill me with confidence.



On 1 December 2023 08:42:35 GMT, Boris Stoyanov  
wrote:
>Marty,
>We haven’t really observed a situation of tags being missing all of the 
>sudden, I don’t recall such issue. Feel free to add them once more at the host.
>
>Bobby.
>
>From: Marty Godsey 
>Date: Wednesday, 29 November 2023 at 22:26
>To: users@cloudstack.apache.org 
>Subject: Host tags
>Hello guys,
>
>I am using XCP-NG for my hosts and use XOA to “manage” them. When I say 
>manage, I mean just use it for visibility into the cluster. Cloudstack does 
>all the work.
>
>I noticed today that my tags on the hosts are missing. It’s on one of the 
>hosts but not the other two. Is this a concern? How would I get them back if 
>needed?
>
>Marty
>
> 
>

Re: new committer Bryan Lima

[Nux]

Congratulations, Bryan!


On 2023-11-30 09:07, Daan Hoogland wrote:

All,

The Project Management Committee (PMC) for Apache CloudStack
has invited Bryan Lima to become a PMC member and we are pleased
to announce that they have accepted.

Bryan has contributed himself and assisted in reviewing and testing
the work of others. He has shown to be responsive, constructive and
pleasant to work with.

please join me in congratulating Bryan

Re: new PMC member: Abhishek Kumar

[Nux]

Congrats and well deserved! 

On 23 November 2023 09:40:58 CET, Daan Hoogland  wrote:
>The Project Management Committee (PMC) for Apache CloudStack
>has invited Abhishek Kumar to become a PMC member and we are pleased
>to announce that they have accepted.
>
>Abhishek has contributed in the past and has shown effort to make the
>project run smoothly. He is also the Release Manager for the upcoming
>4.19 release.
>
>please join me in congratulating Abhishek
>
>-- 
>Daan
>

Re: Firewall rules based on IP lists

[Nux]

This could be easily done with a security group, but I take it you're not using 
a security groups zone..

The alternative is like Ruben said to use ipsets inside the guest.



On 22 November 2023 17:39:15 CET, Ruben Bosch  wrote:
>I'm not aware of this existing in CloudStack, but you could very easily use 
>"ipset" to achieve this within your Linux VM.
>
>Met vriendelijke groet / Kind regards,
>
>Ruben Bosch
>CLDIN
>
>> On 22 Nov 2023, at 17:36, Murilo Moura  wrote:
>> 
>> Is there any future feature planned to allow creating firewall rules based
>> on "lists" with multiple source IPs together?
>> 
>> it would be useful with cloudflare, for example, which has several IPs that
>> are geographically distributed and need to be released on the client's
>> firewall.
>

Re: SMBIOS UUID sticky

[Nux]

Hi,

It seems like a serious enough problem , I'd open a guthyb issue explaining it 
and hopefully something can be done about it.



On 22 November 2023 17:46:04 CET, Francisco Arencibia Quesada 
 wrote:
>Hello everyone!
>
>I'm really hoping to find an answer here, since I can't find anything on
>the internet regarding my problem. So, here's the deal:
>
>I'm using cloudstack as an orchestrator for XenServer. I noticed that each
>time a Windows VM shuts down, when it starts up again it has a different
>SMBIOS UUID. This causes problems for a specific application, Veeam Agent
>for Windows. Veeam Agent recognises the machine from its SMBIOS UUID only,
>so each time an SMBIOS UUID is reset, Veeam Agents think its a different
>machine and delete the entire backup chain, then creating a new one. Is
>there any way I can make my VMs SMBIOS UUID persistent/permanent/sticky?
>Any help would be appreciated.
>
>Thanks :)
>
>-- 
>*Francisco Arencibia Quesada.*
>*DevOps Engineer*

Re: VM Templates - ROOT DISK link

[Nux]

Yes there is, when you create a Compute Offering you can choose between 
thin provisioning, sparse provisioning and fat provisioning (full clone 
afaik).
That said I do not recommend full clones generally, they generate a lot 
of I/O and "waste" of space.




On 2023-11-21 14:18, Murilo Moura wrote:
Guys, when we create a new VM from a template, it seems to me that a 
new
disk is created as if it were a snapshot, linked to the original 
template

file (qcow2 backing file link).

Is there any way to avoid this link, creating a complete clone of the
template disk and attaching it exclusively to the new VM?

Re: XCP-NG 8.2 and Linux Bridging

[Nux]

I never was able to use XS with OVS in a Security Groups zone, you need 
a bridge so iptables/ebtables work well on it.



On 2023-11-22 07:30, Wei ZHOU wrote:

Hi,

OVS/XS should be supported. doc may be out of date.

-Wei


On Tue, 21 Nov 2023 at 21:15, Marty Godsey  wrote:


In the documentation, I see that Linux bridging is still mentioned for
XenServer 6.1 installs. I understand we are past that, but is Linux
bridging still required when using Advanced networking with security
groups? Is CS not compatible with the OVS?

Regards,
Marty

Re: KVM clustering with Cloudstack

[Nux]

You either do it with Cloudstack or you don't. Using corosync etc is not 
supported.



On 2023-11-20 10:12, Francisco Arencibia Quesada wrote:

Good morning guys,

What is recommended from your point of view?
Create a KVM cluster with corosync and pacemaker, or directly handle 
the

cluster
with CloudStack. Is it fully supported?


Kind regards.

Re: Inquiry about Enabling Security Groups and Network Type "Advanced"

[Nux]

Hello,

Alas you can't just enable security groups on an existing regular 
advanced zone, one needs to be created from scratch.
In an adv zone with SG basically you have all your VMs connected in one 
big network that is protected and isolated by the so called security 
grups which are basically sets of iptables and ebtables rules.


You lose the ability of having a virtual router in front of your VMs, so 
say goodbye to NAT, load balancer, firewall (although you have security 
groups which have a similar role), vpn etc.


What you gain is not insignificant either, because sg zones are simpler 
from a networking pov and this is always a good thing.
I find SG zones are usually perfect for VPS/cloud providers. Typically 
all the VPS would be connected in a flat network, eg a public /24, each 
would get a public IP and they'd be locked into that IP by the security 
groups (they won't be able to "steal" IPs).


HTH

On 2023-11-14 01:51, Palash Biswas wrote:

Hi Community Team Member,

I hope you're having a good day.
I would like to inquire about enabling Security Groups without the need 
to
recreate Zones. Additionally, I'm interested in understanding the 
potential

impacts or risks associated with enabling Security Groups with the
"Advanced" Network Type.

Your guidance and advice on this matter would be greatly appreciated.

Regards,
Palash Biswas

Re: Redundant router - Isolated Network

[Nux]

What is the issue with vrrp exactly?

On 2023-11-09 18:59, Alex Mattioli wrote:

Does this PR fix the issues with VRRP?




-Original Message-
From: gabriel.fernan...@scclouds.com.br 


Sent: Wednesday, November 8, 2023 3:32 PM
To: users@cloudstack.apache.org
Subject: RE: Redundant router - Isolated Network

Hello Cristian,

This feature was removed from the UI due to complaints made by some 
operators. However, we have an ongoing discussion in this Pull Request:
(https://github.com/apache/cloudstack/pull/7405) where we are 
considering ways to reimplement this feature without the aforementioned 
issues.


Kind regards.

Re: VM Backups

[Nux]

Hi,

When you use KVM with local storage you are using qcow2 files which 
allow for both VM and volume snapshots.

Make sure in the global settings the KVM snapshots are enabled.

On 2023-11-07 11:07, Granwille Strauss wrote:

Hi Nux

We run KVM using local storage for all VM instances. Its to my
understanding you cannot run live/running VM snapshots of VMs if you
use the KVM local storage.

On 11/7/23 13:03, Nux wrote:


You certainly can. What is your hypervisor?

On 2023-11-07 10:28, Granwille Strauss wrote:
Hi Guys

I want to add on to this question, what is the industry standard of
making backups/snapshots of the VMs when using or working only with
local storage? You cannot make running/live VM snapshots if you use
local storage. So what do most guys implement in such cases?
On 11/7/23 05:25, Murilo Moura wrote:

Hi everyone!

What other solutions, besides Veeam, can be used (in production) to
backup
virtual machines integrated with CloudStack?

--

Regards / Groete

[1]
Granwille Strauss  //  Senior Systems Admin

e: granwi...@namhost.com
m: +264 81 323 1260 [2]
w: www.namhost.com [1] [3]

[4] [5] [6] [7] [8]

[9]

Namhost Internet Services (Pty) Ltd,

24 Black Eagle Rd, Hermanus, 7210, RSA

The content of this message is confidential. If you have
received
it by mistake, please inform us by email reply and then delete the
message. It is forbidden to copy, forward, or in any way reveal the
contents of this message to anyone without our explicit consent. The

integrity and security of this email cannot be guaranteed over the
Internet. Therefore, the sender will not be held liable for any
damage
caused by the message. For our full privacy policy and disclaimers,
please go to https://www.namhost.com/privacy-policy

[10]

Links:
--
[1] https://www.namhost.com
[2] tel:+264813231260
[3] https://www.namhost.com/
[4] https://www.facebook.com/namhost
[5] https://twitter.com/namhost
[6] https://www.instagram.com/namhostinternetservices/
[7] https://www.linkedin.com/company/namhos
[8] https://www.youtube.com/channel/UCTd5v-kVPaic_dguGur15AA
[9]


https://www.adsigner.com/v1/l/631091998d4670001fe43ec2/621c9b76c140bb001ed0f818/banner

[10]


https://www.adsigner.com/v1/c/631091998d4670001fe43ec2/621c9b76c140bb001ed0f818

--

 Regards / Groete

 [2]
 Granwille Strauss  //  Senior Systems Admin

e: granwi...@namhost.com
m: +264 81 323 1260 [3]
w: www.namhost.com [4]

 [5] [6] [7] [8] [9]

 [10]

 Namhost Internet Services (Pty) Ltd,

24 Black Eagle Rd, Hermanus, 7210, RSA

The content of this message is confidential. If you have 
received
it by mistake, please inform us by email reply and then delete the
message. It is forbidden to copy, forward, or in any way reveal the
contents of this message to anyone without our explicit consent. The
integrity and security of this email cannot be guaranteed over the
Internet. Therefore, the sender will not be held liable for any damage
caused by the message. For our full privacy policy and disclaimers,
please go to https://www.namhost.com/privacy-policy

[11]

Links:
--
[1] http://www.namhost.com
[2] https://www.namhost.com
[3] tel:+264813231260
[4] https://www.namhost.com/
[5] https://www.facebook.com/namhost
[6] https://twitter.com/namhost
[7] https://www.instagram.com/namhostinternetservices/
[8] https://www.linkedin.com/company/namhos
[9] https://www.youtube.com/channel/UCTd5v-kVPaic_dguGur15AA
[10] 
https://www.adsigner.com/v1/l/631091998d4670001fe43ec2/621c9b76c140bb001ed0f818/banner
[11] 
https://www.adsigner.com/v1/c/631091998d4670001fe43ec2/621c9b76c140bb001ed0f818

Re: VM Backups

[Nux]

You certainly can. What is your hypervisor?

On 2023-11-07 10:28, Granwille Strauss wrote:

Hi Guys

I want to add on to this question, what is the industry standard of
making backups/snapshots of the VMs when using or working only with
local storage? You cannot make running/live VM snapshots if you use
local storage. So what do most guys implement in such cases?
On 11/7/23 05:25, Murilo Moura wrote:


Hi everyone!

What other solutions, besides Veeam, can be used (in production) to
backup
virtual machines integrated with CloudStack?


--

 Regards / Groete

 [1]
 Granwille Strauss  //  Senior Systems Admin

e: granwi...@namhost.com
m: +264 81 323 1260 [2]
w: www.namhost.com [3]

 [4] [5] [6] [7] [8]

 [9]

 Namhost Internet Services (Pty) Ltd,

24 Black Eagle Rd, Hermanus, 7210, RSA

The content of this message is confidential. If you have 
received
it by mistake, please inform us by email reply and then delete the
message. It is forbidden to copy, forward, or in any way reveal the
contents of this message to anyone without our explicit consent. The
integrity and security of this email cannot be guaranteed over the
Internet. Therefore, the sender will not be held liable for any damage
caused by the message. For our full privacy policy and disclaimers,
please go to https://www.namhost.com/privacy-policy

[10]

Links:
--
[1] https://www.namhost.com
[2] tel:+264813231260
[3] https://www.namhost.com/
[4] https://www.facebook.com/namhost
[5] https://twitter.com/namhost
[6] https://www.instagram.com/namhostinternetservices/
[7] https://www.linkedin.com/company/namhos
[8] https://www.youtube.com/channel/UCTd5v-kVPaic_dguGur15AA
[9] 
https://www.adsigner.com/v1/l/631091998d4670001fe43ec2/621c9b76c140bb001ed0f818/banner
[10] 
https://www.adsigner.com/v1/c/631091998d4670001fe43ec2/621c9b76c140bb001ed0f818

Re: Can't upload ova file format

[Nux]

Try "qemu-img convert -p VineetVM-disk1.vmdk-O qcow2 VineetVM-disk1.img" 
but judging by those errors, the vmdk may have issues (corruption).




On 2023-11-05 19:58, Technology rss wrote:

Thank you,
I am trying 3 way convert but always failed. have any option for 
success

convert ?

root@ubuntu:~# qemu-img convert -O qcow2 VineetVM-disk1.vmdk
VineetVM-disk1.img
qemu-img: error while reading at byte 9529458688: Invalid argument

root@ubuntu:~# qemu-img convert -f vmdk -O raw  VineetVM-disk1.vmdk
VineetVM-disk1.raw
qemu-img: error while reading at byte 9529458688: Invalid argument

root@ubuntu:~# qemu-img convert -O qcow2 VineetVM-disk1.vmdk
VineetVM-disk1.qcow2
qemu-img: error while reading at byte 9529458688: Invalid argument


--


*Thanks & Regards.**Support Admin*
--


*Facebook  | Twitter
 | YouTube
 | LinkedIn
**Address : *116/1 
West

Malibagh, D. I. T Road
Dhaka-1217, Bangladesh
*Mob :* +88 01716915504
*Email :* support.ad...@technologyrss.com
*Web :* www.technologyrss.com


On Sun, Nov 5, 2023 at 10:52 PM Rohit Yadav 
wrote:


Hi,

OVA templates aren't supported for KVM. You could convert the ova/vmdk 
to

qcow2/img to be able to use it with KVM.


Regards.


From: Technology Rss 
Sent: Sunday, November 5, 2023 11:25
To: users@cloudstack.apache.org ;
d...@cloudstack.apache.org 
Subject: Can't upload ova file format

*Hi,*

My ACS version is 4.18.1.0, kvm Hypervisor, I try to upload ova format
template but I face below error.

https://prnt.sc/HeGZoHq-SQ-b

I see ova file is supported.

What can I do now? Please help me...

--

*Thanks & Regards.*

*Support Admin*



*Facebook  | Twitter
 | YouTube
 | LinkedIn
*

*Address : *116/1 West Malibagh, D. I. T Road

Dhaka-1217, Bangladesh

*Mob :* +88 01716915504

*Email :* support.ad...@technologyrss.com

*Web :* www.technologyrss.com

Re: noVNC performance

[Nux]

In my experience the current NoVNC console is more than adequate for the 
task you mentioned - installing Windows.
I have done it more times than I want to remember and it never struck me 
as a blocker.


If it's such a painful experience for you then maybe there are other 
factors at play here such as local network, packet loss, firewalls etc.


On 2023-11-02 10:36, Murilo Moura wrote:

Perfect!


Thank you very much for your contributions on this issue.

As for the noVNC console being a support resource and not a means to 
spend

all day connected, I completely agree.

However, in some scenarios such as the installation of servers with a
graphical desktop (e.g. windows server), until the minimum setup is
completed to activate some remote access protocol (RDP, VNC, etc.), it 
ends

up being a poor quality experience, given the delay generated in the
console.

Regarding the comparison, accessing the VNC port directly, I'll test 
it.

Thank you for your suggestion.


Take care!



On Thu, Nov 2, 2023 at 5:57 AM Nux  wrote:


I think Rohit nails it here with regards to the performance penalty.

Historically the web console has only been used for basic or recovery
operations, not meant for long term, day to day use. As he suggested 
RDP
is a much better solution (by miles) and if you're target is Linux 
then

look at X2Go or FreeNX.

If you want to measure like for like, then what you can do is connect 
to

the KVM's VNC port directly using virt-manager or virt-viewer (you'll
need to get the VNC password from the DB and decrypt it).


On 2023-11-01 12:37, Rohit Yadav wrote:
> In case you've compared using KVM, by default the noVNC console is
> encrypted by CA framework b/w CPVM and the hypervisor host, which could
> induce some performance pressures.
>
> Also bear in mind you may be comparing:
>
> VM <- Proxmox vnc server -> novnc client in your browser (is this SSl
> enabled?)
>
> versus
>
> VM <- CloudStack KVM host encrypted qemu/vnc server -> vnc-over-TLS ->
> cpvm agent (reverse proxy) -> secured accessed your browser (in case of
> SSL enabled CPVM)
>
> In the latter (case with CloudStack), there is a double
> encryption/decryption that happens on the CPVM side on both sides.
>
>
> Regards.
>
> 
> From: Murilo Moura 
> Sent: Wednesday, November 1, 2023 16:22
> To: users@cloudstack.apache.org 
> Subject: Re: noVNC performance
>
> Hi Yadav!
>
>
> Yes, I even made this comparison with the same server where I was
> running
> Proxmox before. As for the client, I also accessed it from the same
> source
> that I previously used with Proxmox noVNC.
>
> I have the impression that there is some tuning opportunity that I
> haven't
> found yet, given that the noVNC library is used in both projects
> (Proxmox &
> Cloudstack), but with very different results.
>
>
>
> On Wed, Nov 1, 2023 at 7:26 AM Rohit Yadav 
> wrote:
>
>> Hi Murilo,
>>
>> Have you tested/compared VNC based traffic between CloudStack VMs and
>> proxmox (or others) from the same server and client locations?
>>
>> Depending on your env, if you've a busy console proxy you can try to
>> upgrade the systemvm (CPVM) offering with more CPU (cores and speed)
>> and
>> look at the network setup.
>>
>> You could also explore alternatives, for example if the guest VMs have
>> RDP
>> setup/install such as in case of Windows VMs, you could use a RDP
>> client
>> such as the Microsoft remote desktop app on the client side. In my
>> experience, RDP client with guest VMs have better performance and I/O
>> (webcam, microphone, speaker) than compared with VNC (noVNC).
>>
>>
>> Regards.
>>
>> 
>> From: Murilo Moura 
>> Sent: Wednesday, November 1, 2023 08:23
>> To: users@cloudstack.apache.org 
>> Subject: noVNC performance
>>
>> Is there any instruction to optimize the performance of the graphical
>> console via noVNC? For virtual machines with desktop enabled, the
>> performance of the noVNC console is very low.
>>
>> I came from experience with Proxmox and in it the noVNC console, even
>> protected by SSL, is much superior. That's why I wondered if there was
>> any
>> way of tuning noVNC in ACS.
>>
>>
>>
>>

Re: noVNC performance

[Nux]

I think Rohit nails it here with regards to the performance penalty.

Historically the web console has only been used for basic or recovery 
operations, not meant for long term, day to day use. As he suggested RDP 
is a much better solution (by miles) and if you're target is Linux then 
look at X2Go or FreeNX.


If you want to measure like for like, then what you can do is connect to 
the KVM's VNC port directly using virt-manager or virt-viewer (you'll 
need to get the VNC password from the DB and decrypt it).



On 2023-11-01 12:37, Rohit Yadav wrote:
In case you've compared using KVM, by default the noVNC console is 
encrypted by CA framework b/w CPVM and the hypervisor host, which could 
induce some performance pressures.


Also bear in mind you may be comparing:

VM <- Proxmox vnc server -> novnc client in your browser (is this SSl 
enabled?)


versus

VM <- CloudStack KVM host encrypted qemu/vnc server -> vnc-over-TLS -> 
cpvm agent (reverse proxy) -> secured accessed your browser (in case of 
SSL enabled CPVM)


In the latter (case with CloudStack), there is a double 
encryption/decryption that happens on the CPVM side on both sides.



Regards.


From: Murilo Moura 
Sent: Wednesday, November 1, 2023 16:22
To: users@cloudstack.apache.org 
Subject: Re: noVNC performance

Hi Yadav!


Yes, I even made this comparison with the same server where I was 
running
Proxmox before. As for the client, I also accessed it from the same 
source

that I previously used with Proxmox noVNC.

I have the impression that there is some tuning opportunity that I 
haven't
found yet, given that the noVNC library is used in both projects 
(Proxmox &

Cloudstack), but with very different results.



On Wed, Nov 1, 2023 at 7:26 AM Rohit Yadav 
wrote:


Hi Murilo,

Have you tested/compared VNC based traffic between CloudStack VMs and
proxmox (or others) from the same server and client locations?

Depending on your env, if you've a busy console proxy you can try to
upgrade the systemvm (CPVM) offering with more CPU (cores and speed) 
and

look at the network setup.

You could also explore alternatives, for example if the guest VMs have 
RDP
setup/install such as in case of Windows VMs, you could use a RDP 
client

such as the Microsoft remote desktop app on the client side. In my
experience, RDP client with guest VMs have better performance and I/O
(webcam, microphone, speaker) than compared with VNC (noVNC).


Regards.


From: Murilo Moura 
Sent: Wednesday, November 1, 2023 08:23
To: users@cloudstack.apache.org 
Subject: noVNC performance

Is there any instruction to optimize the performance of the graphical
console via noVNC? For virtual machines with desktop enabled, the
performance of the noVNC console is very low.

I came from experience with Proxmox and in it the noVNC console, even
protected by SSL, is much superior. That's why I wondered if there was 
any

way of tuning noVNC in ACS.

Re: Metrics not visible

[Nux]

Can't see the image, maybe link it elsewhere.
Also which Cloudstack version etc?

On 2023-10-17 09:49, cristian.c@istream.today wrote:

Hello,

  Is this a bug? I see like this for all VMs.

Best regards,

Cristian

Re: AW: Cloudstack VM HA

[Nux]

What I learned in practice is that enabling Host HA affects VM HA.. in 
that VM HA no longer works. :)


So what does Host HA do? It'll reboot the hypervisor via IPMI if it is 
deemed unreachable. While the hypervisor is down or rebooting the VMs 
CANNOT be moved/started on another hypervisor.


What does VM HA do? It'll make sure VMs on a HA offering will be 
restarted (possibly on another hypervisor) if it is deemed down. 
Possible scenarios where VM HA would kick in:

- hypervisor crashed and Cloudstack marked the VMs on it as down
- user has powered off the VM from within (poweroff via ssh for 
example), Cloudstack will notice it is down and restart it


As part of VM HA and for data integrity, a hypervisor will keep a 
heartbeat file (sort of lock file) on the NFS primary storage - if the 
the NFS share has gone away it will assume it is in a network split or 
has lost access to the storage and will forcefully reboot itself. This 
is where that happens:


https://github.com/apache/cloudstack/blob/d2ad9363a264290e9e5ee58db4a745cbb0e1c62a/scripts/vm/hypervisor/kvm/kvmheartbeat.sh#L162

HTH

On 2023-10-11 14:47, Bryan Tiang wrote:

Hi Nix and Swen,

Thanks for the input! Just curious, can VM HA and Host HA be enabled at 
the same time?


In our case, using Cloudstack + Linstor.

And to clarify my understanding. Host HA migrates VMs to another Host 
if Cloudstack detects the physical host to be unhealthy, right? That’s 
all?


Regards,
Bryan
On 11 Oct 2023 at 7:48 PM +0800, m...@swen.io, wrote:

Hi Bryan,

we are testing the exact same scenario at the moment! :-)

As far as I understand CS has 2 different HA. VM HA and Host HA. When 
talking about VM HA the VM needs to use an offering with ha is 
enabled. CS is now checking if the VM is running and if it is not 
running it will restart or recreate it. You can test this when 
destroying a vm via virsh destroy on KVM directly. CS will restart 
this VM.


Host HA only works, as NUX wrote, with NFS-storage at the moment. As 
far as I know StorPool is developing a new framework so other storages 
can be used for host ha in the future. I read something on the ccc 
agenda.


Regards,
Swen

-Ursprüngliche Nachricht-
Von: Bryan Tiang 
Gesendet: Dienstag, 10. Oktober 2023 12:36
An: users@cloudstack.apache.org
Betreff: Cloudstack VM HA

Hi All,

We are setting up Cloudstack + Linbit SDS (via plugin). Hypervisor is 
Ubuntu.


We are trying to test the VM HA by powering down a physical node at 
random. However, the VMs doesn’t seem to be failing over to the other 
nodes.


VM HA is enabled already, is there something we are missing?

Regards,
Bryan

Re: Cloudstack VM HA

[Nux]

Hello,

You need a stable NFS primary storage for the hearbeat file.
You can keep it in disabled state after the testing - so VMs do not get 
created there - but it needs to be present.
Watch out, if the NFS storage becomes unstable or unreachable via 
network (switch fault etc) the hypervisors will force reboot themselves.



On 2023-10-10 11:35, Bryan Tiang wrote:

Hi All,

We are setting up Cloudstack + Linbit SDS (via plugin). Hypervisor is 
Ubuntu.


We are trying to test the VM HA by powering down a physical node at 
random. However, the VMs doesn’t seem to be failing over to the other 
nodes.


VM HA is enabled already, is there something we are missing?

Regards,
Bryan

Re: Can I create 500 vm

[Nux]

Hello,

What kind of zone?

Seems right at first glance, but zone details are important.
In a security zone or basic zone it should work no problems, in an 
advanced zone it will depend on how many networks (and virtual routers) 
you want to deploy.


On 2023-10-09 19:17, Technology rss wrote:

Hi,
My network is 172.22.0.0/22

Which ip range for POD and Guest?

I needed create 500 vm on my network.

For PoD
172.22.0.2 to 172.22.1.254

For Guest
172.22.2.1 to 172.22.3.254

My setup is right or wrong?

Thanks.

Re: AW: KVM Host HA Settings

[Nux]

If you only have local storage, then Host HA may make sense, at least if 
the hypervisor crashes have it rebooted via ipmi.

Test it and see if it behaves as expected.


On 2023-10-05 10:35, Granwille Strauss wrote:

I am idiot, that makes sense, yes. Thank you.
On 10/5/23 11:15, Nux wrote:


Hello,

"By definition" you cannot have VM HA with local storage.

If your hypervisor goes down, through what process will the storage
of your VM be moved to another hypervisor and started there?

For VM HA you always must have network/shared storage, be it CEPH,
Storpool, Linbit etc - and always you need some NFS share for the
heartbeat - if the heartbeat NFS share were to become unavailable
all the hypervisors will fence themselves (forced reboot).

On 2023-10-05 10:03, Granwille Strauss wrote:
Hi Nux

So we cannot run VM Ha on strict KVM local storage? Or can we keep
this configuration of local storage and set up a temp NFS Primary
storage just for the hearbeat process to work?

On 10/4/23 15:36, Nux wrote:

I would avoid using host HA, I am not sure it can be relied upon
currently and one thing I know for sure is that it breaks VM HA.
I would just rely on the VM HA feature and disable host HA
altogether.
Do note, VM HA requires an NFS storage for the hearbeat etc and it
needs to be stable otherwise hosts will begin to fence themselves.

On 2023-10-04 13:29, W. Verleger - proIO GmbH wrote:

Hi Boris,

Thank you, will check

 ૘ෞ਀ഀ਀䴀椀琀 昀爀攀甀渀搀氀椀挀栀攀渀 䜀爀ﰀßen



/ With kind regards

Wilken Verleger

proIO GmbH
Kleyerstr. 79 - 89 / Tor 13
D-60326 Frankfurt am Main

- Support -
Mail: supp...@proio.com
24h:  +(49) (0) 1805 522 855

-Ursprüngliche Nachricht-
Von: Boris Stoyanov 
Gesendet: Donnerstag, 28. September 2023 19:55
An: users@cloudstack.apache.org
Betreff: Re: KVM Host HA Settings

Hi Wilken,

Have you checked these article:
https://www.shapeblue.com/host-ha-for-kvm-hosts-in-cloudstack/
You can also see the feature spec here:
https://cwiki.apache.org/confluence/display/CLOUDSTACK/Host+HA it
contains more detailed explanation of all the settings

Regards,
Boris.

From: W. Verleger - proIO GmbH 
Date: Thursday, 28 September 2023, 17:28
To: users@cloudstack.apache.org 
Subject: KVM Host HA Settings
Hi,

Bringing in new KVM hosts to CS 4.18.0.0.
How do you all configure Cloudstack to use "Host HA" for KVM
hypervisor (preferably CS 4.18.0.0)?

Thanks so much!

Mit freundlichen Grüßen / With kind regards

Wilken Verleger

proIO GmbH
Kleyerstr. 79 - 89 / Tor 13
D-60326 Frankfurt am Main

- Support -
Mail: supp...@proio.com
24h:  +(49) (0) 1805 522 855

- proIO GmbH -
Geschäftsführer: Swen Brüseke
Sitz der Gesellschaft: Frankfurt am Main

USt-IdNr. DE 267 075 918
Registergericht: Frankfurt am Main - HRB 86239

Diese E-Mail enthält vertrauliche und/oder rechtlich geschützte
Informationen.
Wenn Sie nicht der richtige Adressat sind oder diese E-Mail
irrtümlich erhalten haben, informieren Sie bitte sofort den
Absender und vernichten Sie diese Mail.
Das unerlaubte Kopieren sowie die unbefugte Weitergabe dieser Mail

sind nicht gestattet.

This e-mail may contain confidential and/or privileged
information.
If you are not the intended recipient (or have received this
e-mail in error) please notify the sender immediately and destroy
this e-mail.
Any unauthorized copying, disclosure or distribution of the
material in this e-mail is strictly forbidden.

- proIO GmbH -
Geschäftsführer: Swen Brüseke
Sitz der Gesellschaft: Frankfurt am Main

USt-IdNr. DE 267 075 918
Registergericht: Frankfurt am Main - HRB 86239

Diese E-Mail enthält vertrauliche und/oder rechtlich geschützte
Informationen.
Wenn Sie nicht der richtige Adressat sind oder diese E-Mail
irrtümlich erhalten haben,
informieren Sie bitte sofort den Absender und vernichten Sie diese

Mail.
Das unerlaubte Kopieren sowie die unbefugte Weitergabe dieser Mail

sind nicht gestattet.

This e-mail may contain confidential and/or privileged
information.
If you are not the intended recipient (or have received this
e-mail in error) please notify
the sender immediately and destroy this e-mail.
Any unauthorized copying, disclosure or distribution of the
material in this e-mail is strictly forbidden.


--

 Regards / Groete

  [1]
 Granwille Strauss  //  Senior Systems Admin

e: granwi...@namhost.com
m: +264 81 323 1260 [2]
w: www.namhost.com [1] [3]

 [4] [5] [6] [7] [8]

 [9]

 Namhost Internet Services (Pty) Ltd,

24 Black Eagle Rd, Hermanus, 7210, RSA

 The content of this message is confidential. If you have
received
it by mistake, please inform us by email reply and then delete the
message. It is forbidden to copy, forward, or in any way reveal the
contents of this message to anyone without our explicit consent. The
integrity and security of this email cannot be guaranteed over the
Internet. Therefore, the sender will not be held liable for any damage

caused by the message. For our full privacy policy and disclaimers,
please go to htt

Re: AW: KVM Host HA Settings

[Nux]

Hello,

"By definition" you cannot have VM HA with local storage.

If your hypervisor goes down, through what process will the storage of 
your VM be moved to another hypervisor and started there?


For VM HA you always must have network/shared storage, be it CEPH, 
Storpool, Linbit etc - and always you need some NFS share for the 
heartbeat - if the heartbeat NFS share were to become unavailable all 
the hypervisors will fence themselves (forced reboot).



On 2023-10-05 10:03, Granwille Strauss wrote:

Hi Nux

So we cannot run VM Ha on strict KVM local storage? Or can we keep
this configuration of local storage and set up a temp NFS Primary
storage just for the hearbeat process to work?

On 10/4/23 15:36, Nux wrote:


I would avoid using host HA, I am not sure it can be relied upon
currently and one thing I know for sure is that it breaks VM HA.
I would just rely on the VM HA feature and disable host HA
altogether.
Do note, VM HA requires an NFS storage for the hearbeat etc and it
needs to be stable otherwise hosts will begin to fence themselves.

On 2023-10-04 13:29, W. Verleger - proIO GmbH wrote:


Hi Boris,

Thank you, will check




૘ෞ਀ഀ਀䴀椀琀 昀爀攀甀渀搀氀椀挀栀攀渀 䜀爀ﰀßen

/ With kind regards

Wilken Verleger

proIO GmbH
Kleyerstr. 79 - 89 / Tor 13
D-60326 Frankfurt am Main

- Support -
Mail: supp...@proio.com
24h:  +(49) (0) 1805 522 855

-Ursprüngliche Nachricht-
Von: Boris Stoyanov 
Gesendet: Donnerstag, 28. September 2023 19:55
An: users@cloudstack.apache.org
Betreff: Re: KVM Host HA Settings

Hi Wilken,

Have you checked these article:
https://www.shapeblue.com/host-ha-for-kvm-hosts-in-cloudstack/
You can also see the feature spec here:
https://cwiki.apache.org/confluence/display/CLOUDSTACK/Host+HA it
contains more detailed explanation of all the settings

Regards,
Boris.

From: W. Verleger - proIO GmbH 
Date: Thursday, 28 September 2023, 17:28
To: users@cloudstack.apache.org 
Subject: KVM Host HA Settings
Hi,

Bringing in new KVM hosts to CS 4.18.0.0.
How do you all configure Cloudstack to use "Host HA" for KVM
hypervisor (preferably CS 4.18.0.0)?

Thanks so much!

Mit freundlichen Grüßen / With kind regards

Wilken Verleger

proIO GmbH
Kleyerstr. 79 - 89 / Tor 13
D-60326 Frankfurt am Main

- Support -
Mail: supp...@proio.com
24h:  +(49) (0) 1805 522 855

- proIO GmbH -
Geschäftsführer: Swen Brüseke
Sitz der Gesellschaft: Frankfurt am Main

USt-IdNr. DE 267 075 918
Registergericht: Frankfurt am Main - HRB 86239

Diese E-Mail enthält vertrauliche und/oder rechtlich geschützte
Informationen.
Wenn Sie nicht der richtige Adressat sind oder diese E-Mail
irrtümlich erhalten haben, informieren Sie bitte sofort den
Absender und vernichten Sie diese Mail.
Das unerlaubte Kopieren sowie die unbefugte Weitergabe dieser Mail
sind nicht gestattet.

This e-mail may contain confidential and/or privileged
information.
If you are not the intended recipient (or have received this
e-mail in error) please notify the sender immediately and destroy
this e-mail.
Any unauthorized copying, disclosure or distribution of the
material in this e-mail is strictly forbidden.

- proIO GmbH -
Geschäftsführer: Swen Brüseke
Sitz der Gesellschaft: Frankfurt am Main

USt-IdNr. DE 267 075 918
Registergericht: Frankfurt am Main - HRB 86239

Diese E-Mail enthält vertrauliche und/oder rechtlich geschützte
Informationen.
Wenn Sie nicht der richtige Adressat sind oder diese E-Mail
irrtümlich erhalten haben,
informieren Sie bitte sofort den Absender und vernichten Sie diese
Mail.
Das unerlaubte Kopieren sowie die unbefugte Weitergabe dieser Mail
sind nicht gestattet.

This e-mail may contain confidential and/or privileged
information.
If you are not the intended recipient (or have received this
e-mail in error) please notify
the sender immediately and destroy this e-mail.
Any unauthorized copying, disclosure or distribution of the
material in this e-mail is strictly forbidden.


--

 Regards / Groete

 [1]
 Granwille Strauss  //  Senior Systems Admin

e: granwi...@namhost.com
m: +264 81 323 1260 [2]
w: www.namhost.com [3]

 [4] [5] [6] [7] [8]

 [9]

 Namhost Internet Services (Pty) Ltd,

24 Black Eagle Rd, Hermanus, 7210, RSA

The content of this message is confidential. If you have 
received
it by mistake, please inform us by email reply and then delete the
message. It is forbidden to copy, forward, or in any way reveal the
contents of this message to anyone without our explicit consent. The
integrity and security of this email cannot be guaranteed over the
Internet. Therefore, the sender will not be held liable for any damage
caused by the message. For our full privacy policy and disclaimers,
please go to https://www.namhost.com/privacy-policy

[10]

Links:
--
[1] https://www.namhost.com
[2] tel:+264813231260
[3] https://www.namhost.com/
[4] https://www.facebook.com/namhost
[5] https://twitter.com/namhost
[6] https

Re: AW: KVM Host HA Settings

[Nux]

I would avoid using host HA, I am not sure it can be relied upon 
currently and one thing I know for sure is that it breaks VM HA.

I would just rely on the VM HA feature and disable host HA altogether.
Do note, VM HA requires an NFS storage for the hearbeat etc and it needs 
to be stable otherwise hosts will begin to fence themselves.



On 2023-10-04 13:29, W. Verleger - proIO GmbH wrote:

Hi Boris,

Thank you, will check ૘ෞ਀ഀ਀䴀椀琀 昀爀攀甀渀搀氀椀挀栀攀渀 䜀爀ﰀßen / With kind regards

Wilken Verleger

 
proIO GmbH  
Kleyerstr. 79 - 89 / Tor 13  
D-60326 Frankfurt am Main

- Support -
Mail: supp...@proio.com
24h:  +(49) (0) 1805 522 855

-Ursprüngliche Nachricht-
Von: Boris Stoyanov 
Gesendet: Donnerstag, 28. September 2023 19:55
An: users@cloudstack.apache.org
Betreff: Re: KVM Host HA Settings

Hi Wilken,

Have you checked these article: 
https://www.shapeblue.com/host-ha-for-kvm-hosts-in-cloudstack/
You can also see the feature spec here: 
https://cwiki.apache.org/confluence/display/CLOUDSTACK/Host+HA it 
contains more detailed explanation of all the settings


Regards,
Boris.

From: W. Verleger - proIO GmbH 
Date: Thursday, 28 September 2023, 17:28
To: users@cloudstack.apache.org 
Subject: KVM Host HA Settings
Hi,

Bringing in new KVM hosts to CS 4.18.0.0.
How do you all configure Cloudstack to use "Host HA" for KVM hypervisor 
(preferably CS 4.18.0.0)?


Thanks so much!

Mit freundlichen Grüßen / With kind regards

Wilken Verleger


proIO GmbH
Kleyerstr. 79 - 89 / Tor 13
D-60326 Frankfurt am Main

- Support -
Mail: supp...@proio.com
24h:  +(49) (0) 1805 522 855

- proIO GmbH -
Geschäftsführer: Swen Brüseke
Sitz der Gesellschaft: Frankfurt am Main

USt-IdNr. DE 267 075 918
Registergericht: Frankfurt am Main - HRB 86239

Diese E-Mail enthält vertrauliche und/oder rechtlich geschützte 
Informationen.
Wenn Sie nicht der richtige Adressat sind oder diese E-Mail irrtümlich 
erhalten haben, informieren Sie bitte sofort den Absender und 
vernichten Sie diese Mail.
Das unerlaubte Kopieren sowie die unbefugte Weitergabe dieser Mail sind 
nicht gestattet.


This e-mail may contain confidential and/or privileged information.
If you are not the intended recipient (or have received this e-mail in 
error) please notify the sender immediately and destroy this e-mail.
Any unauthorized copying, disclosure or distribution of the material in 
this e-mail is strictly forbidden.






- proIO GmbH -
Geschäftsführer: Swen Brüseke
Sitz der Gesellschaft: Frankfurt am Main

USt-IdNr. DE 267 075 918
Registergericht: Frankfurt am Main - HRB 86239

Diese E-Mail enthält vertrauliche und/oder rechtlich geschützte 
Informationen.
Wenn Sie nicht der richtige Adressat sind oder diese E-Mail irrtümlich 
erhalten haben,
informieren Sie bitte sofort den Absender und vernichten Sie diese 
Mail.
Das unerlaubte Kopieren sowie die unbefugte Weitergabe dieser Mail sind 
nicht gestattet.


This e-mail may contain confidential and/or privileged information.
If you are not the intended recipient (or have received this e-mail in 
error) please notify

the sender immediately and destroy this e-mail.
Any unauthorized copying, disclosure or distribution of the material in 
this e-mail is strictly forbidden.

Re: AVX support enable by default in all KVM cloudstack hosts

[Nux]

There is no way to enable it globally other than modifying that 
properties file.


BTW you can also just specify the "avx" flag individually via 
"guest.cpu.features=", if you only want to add that, however it is a 
good idea generally to use host-model as it tends to give you best 
performance - HOWEVER watch out that if you have different CPUs in your 
hypervisor hosts then this might make live migrations tricky or 
impossible.


hth

On 2023-09-27 10:12, Pierre Le Fevre wrote:

Hi all!
We have some users who need MongoDB, and it seems in newer versions it
needs the "avx" cpu flag to be present.

I've gotten this to work on one host using guest.cpu.mode=host-model in 
the

agent.properties file.

Is there a cleaner way to do this, like in the global settings, so it 
is
enabled by default on all new hosts, and seeing as this is not enabled 
by

default, is there any downside to applying it on all hosts?

Thanks in advance

Pierre
kthcloud

Re: Start instance,Command failed due to Internal Server Error

[Nux]

Hello,

Please send the full logs and also make sure they are in DEBUG mode.

http://www.nux.ro/How_to_enable_DEBUG_mode_in_Cloudstack/

On 2023-09-25 16:12, Angelo Rivera wrote:
I'm using 4.18.1 and getting a java.lang.nullpointerexception erro. any 
experience this and causing not able to launch a new instance and even 
launching a migrating one  and show



   Start instance

Command failed due to Internal Server Error

Re: VM Console not working after upgrading.

[Nux]

Not able to see that picture, maybe you can link it from somewhere else. 
The mailing list will remove picture attachments (but might allow inline 
pasted pictured).


On 2023-09-21 21:56, ma...@gonsource.com wrote:

I had the same issue, and I performed a patch on the VM console. After
that it works, but I get this for the menu now. Anyone else seeing
this?

-Original Message-
From: Francisco Arencibia Quesada 
Sent: Thursday, September 21, 2023 9:23 AM
To: users@cloudstack.apache.org
Subject: Re: VM Console not working after upgrading.

thank you Wi, I got cloud-script.tgz from the rpm and all good..

Thanks for your help as always.

Best regards.

On Thu, Sep 21, 2023 at 1:11 PM Wei ZHOU 
wrote:


Hi,







It is included in cloudstack-common package and installed on mgmt



servers and kvm hosts.







Have you upgraded all mgmt servers and hosts ?







-Wei







On Thu, 21 Sept 2023 at 13:04, Francisco Arencibia Quesada <



arencibia.franci...@gmail.com> wrote:







> it seems to be the cloud-scripts.tgz file, where can I download it




> again for 4.18?



>



> Kind regards



> Thanks



>



> On Thu, Sep 21, 2023 at 12:45 PM Wei ZHOU

 wrote:


>



> > Hi,



> >



> > Have you recreated the CPVM ?



> >



> > -Wei



> >



> >



> > On Thu, 21 Sept 2023 at 12:43, Francisco Arencibia Quesada <



> > arencibia.franci...@gmail.com> wrote:



> >



> > > Good morning guys,



> > >



> > > After upgrading from 4.11 to 4.18, we can't use VM consoles,



> > > they get stuck, and the logs are not showing much information.




> > > Do you have any suggestions regarding this?



> > >



> > > Kind regards



> > > Thanks!



> > >



> > > --



> > > *Francisco Arencibia Quesada.*



> > > *DevOps Engineer*



> > >



> >



>



>



> --



> *Francisco Arencibia Quesada.*



> *DevOps Engineer*



>






--

*Francisco Arencibia Quesada.*

*DevOps Engineer*

Re: Multilevel NAT with private networks

[Nux]

Perhaps it's the late hour, but I am still not sure I understood your 
"common network" and "branch network", but I feel like I very vaguely 
got it.
Anyway, you cannot port forward to a VM not in that respective network, 
as such it would be complicated if not impossible to do what you want.


If I were you and I had real shortage of IPs, I'd perhaps set up a new 
network, maybe shared or L2, put a linux/opnsense/etc in there, assign 
public IP and port forward from it to VMs you'd connect in the same or 
different shared or L2 network (all hooked up to your custom router).


hth

On 2023-09-19 23:43, Emil Karlsson wrote:

Hi,

Thanks for the quick response.

My bad, I meant Isolated networks.

The idea was to be able to isolate some VMs if needed by putting them
in the "branch" isolated network, "under" the root network, as
described in my previous email.

(Which means two port forwarding would be needed)

Now, it seems that I am not able to port forward from one isolated
network to another isolated network. And thus i was wondering if this
is even possible in CloudStack? Or if I can achieve similar results in
some other way?

To recap, it is ideal for us to be able to access any VM in the group
of isolated network using one public IP.

Best regards,
Emil

On Tue, Sep 19, 2023, 22:19 Nux  wrote:


Hello Emil,

I am not sure I follow.
What type of networks are those? Isolated networks, shared networks
or
L2 networks? Or VPC tiers/networks?

On 2023-09-19 10:40, Emil Karlsson wrote:

Hi all,

We're currently using CloudStack as a deployment platform, and I

am

interested to know if it's possible to port forward from one

private

network to another private network.

Our use case:
We have a common network, and a private networks as "branches"

(both

are of
type "Private networks" in CloudStack's terminology), where a VM

can

exist
in the common network an thus port forwarding is only required in

the

main
router -> VM. But they can also exist in any branch underneath,

such

that a
port forwarding rule is needed from root -> branch router -> VM.

As

below:

internet --- > common network  --- > private network 1
- vm 1   - vm 3
- vm 2   - vm 4

The reason for this, is that it would require only one Public IP
address.
However, it appears I am an unable to do this, as the create
portforwardingrule requires a vmID in the network.

Is their some way to achieve this using only CloudStack?

Best regards,
Emil Karlsson
kthcloud

Re: Multilevel NAT with private networks

[Nux]

Hello Emil,

I am not sure I follow.
What type of networks are those? Isolated networks, shared networks or 
L2 networks? Or VPC tiers/networks?



On 2023-09-19 10:40, Emil Karlsson wrote:

Hi all,

We're currently using CloudStack as a deployment platform, and I am
interested to know if it's possible to port forward from one private
network to another private network.

Our use case:
We have a common network, and a private networks as "branches" (both 
are of
type "Private networks" in CloudStack's terminology), where a VM can 
exist
in the common network an thus port forwarding is only required in the 
main
router -> VM. But they can also exist in any branch underneath, such 
that a
port forwarding rule is needed from root -> branch router -> VM. As 
below:


internet --- > common network  --- > private network 1
- vm 1   - vm 3
- vm 2   - vm 4

The reason for this, is that it would require only one Public IP 
address.

However, it appears I am an unable to do this, as the create
portforwardingrule requires a vmID in the network.

Is their some way to achieve this using only CloudStack?

Best regards,
Emil Karlsson
kthcloud

Re: [ANNOUNCEMENT] Apache CloudStack LTS Maintenance Release 4.18.1.0

[Nux]

That's amazing! Thanks, Wei!



On 2023-09-15 14:44, Wei ZHOU wrote:

The Apache CloudStack project is pleased to announce the release of
CloudStack 4.18.1.0.

The CloudStack 4.18.1.0 release is a maintenance release as part of
its 4.18.x LTS branch and contains around 200 fixes and
improvements since the CloudStack 4.18.0.0 release. Some of the
highlights include:

- Support Managed User Data in AutoScale VM groups
- Support CKS (CloudStack Kubernetes Cluster) in VPC tiers
- Support for VMware 8.0.0.x
- Several Hypervisor (VMware, KVM, XenServer) fixes and improvements
- Several UI fixes and improvements
- Several Network (L2, VXLAN, etc) fixes and improvements
- Several System VM (CPVM, SSVM) fixes and improvements
- Improve Solidfire storage plugin integration on VMware
- Support volume migration in ScaleIO/PowerFlex within and across
ScaleIO/PowerFlex storage clusters
- Volume encryption support for StorPool
- Fix CloudStack upgrade with some MySQL versions
- Fix guest OSes and guest OS mappings in CloudStack database


CloudStack LTS branches are supported for 18 months and will receive
updates for the first 12 months and only security updates in the last
6 months.

Apache CloudStack is an integrated Infrastructure-as-a-Service (IaaS)
software platform that allows users to build feature-rich public and
private cloud environments. CloudStack includes an intuitive user
interface and rich API for managing the compute, networking, software,
and storage resources. The project became an Apache top-level project
in March, 2013.

More information about Apache CloudStack can be found at:
https://cloudstack.apache.org/

# Documentation

What's new in CloudStack 4.18.1.0:
https://docs.cloudstack.apache.org/en/4.18.1.0/releasenotes/about.html

The 4.18.1.0 release notes include a full list of issues fixed, as
well as upgrade instructions from previous versions of Apache
CloudStack, and can be found at:
https://docs.cloudstack.apache.org/en/4.18.1.0/releasenotes/

The official installation, administration, and API documentation for
each of the releases are available on our documentation page:
https://docs.cloudstack.apache.org/

# Downloads

The official source code for the 4.18.1.0 release can be downloaded
from our downloads page:
https://cloudstack.apache.org/downloads.html

In addition to the official source code release, individual
contributors have also made convenience binaries available on the
Apache CloudStack download page, and can be found at:

https://download.cloudstack.org/el/7/
https://download.cloudstack.org/el/8/
https://download.cloudstack.org/ubuntu/dists/
https://www.shapeblue.com/packages/

Re: creating multiple VM's from template

[Nux]

Does Storpool have a native driver for Xenserver?
If not and you use iSCSI then bad luck, Xenserver uses LVM for iSCSI 
storage pools and thin provisioning is NOT SUPPORTED there, so you are 
thick/full provisioning all your machines.. 50 machines x 100GB (I 
imagine) is a lot of storage traffic.


Do you have to run this operation often?

Regards



On 2023-09-15 08:40, Gary Dixon wrote:

Hi Cristian

Thanks for the tip - I'll reach out to out StorPool support guys - see
if they have noticed any bottlenecks at the storage level

BR

Gary

Gary Dixon​

Senior Technical Consultant

T:  +44 161 537 4990

E:  v [1]ms@quadris‑support.com

W: www.quadris.co.uk

The information contained in this e-mail from Quadris may be
confidential and privileged for the private use of the named
recipient.  The contents of this e-mail may not necessarily represent
the official views of Quadris.  If you have received this information
in error you must not copy, distribute or take any action or reliance
on its contents.  Please destroy any hard copies and delete this
message.

-Original Message-
From: Cristian Ciobanu 
Sent: Thursday, September 14, 2023 5:48 PM
To: users@cloudstack.apache.org
Subject: Re: creating multiple VM's from template

Hi Gary,

Are you sure that is not related to your storage performance? In my
case, Windows takes much longer to deploy than Linux, because of the
template size even with SSD/Nvme performance.

Cristian

On Thu, Sep 14, 2023, 19:38 Gary Dixon

wrote:


Hi all



ACS 4.15.2

KVM hypervisor on Ubuntu 20.04



We use Ansible to create 50 Windows VM’s from a template to spin

up a

large Citrix estate. It currently takes around 2 hours for the

entire

process to complete.

Are there any settings in ACS that we can tweak to speed up the

process ?




BR



Gary
Gary Dixon​
Senior Technical Consultant
T: +44 161 537 4990
E: v <+44%207989717661>ms@quadris‑support.com
W:
http://www.q/


uadris.co.uk%2F=05%7C01%7CGary.Dixon%40quadris.co.uk%7C54c1d42e0e



eb40d0081908dbb542755a%7Cf1d6abf3d3b44894ae16db0fb93a96a2%7C0%7C0%7C63



8303069272122691%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV



2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C=FU6skNSKSK

valiq6%2BlQR3LiCgYXglJthiXLMCeEYeYw%3D=0
The information contained in this e-mail from Quadris may be
confidential and privileged for the private use of the named
recipient. The contents of this e-mail may not necessarily represent

the official views of Quadris.

If you have received this information in error you must not copy,
distribute or take any action or reliance on its contents. Please
destroy any hard copies and delete this message.




Links:
--
[1] tel:+44%207989717661

Re: GSOC 2023 Results

[Nux]

Well done Ayush, thank you for your work!
Good job, Nicolas, as well!

Regards

On 2023-09-12 15:10, Nicolas Vazquez wrote:

Hi all,

I’m happy to share with the community that our participation at the 
Google Summer of Code 2023 is finished with one successful project [1].


Please join me congratulating Ayush for his great work on extending the 
Import/Export Instances functionality to KVM [2]. Looking forward to 
seeing you around in the community!


[1] https://summerofcode.withgoogle.com/programs/2023/projects/f0gpheQM
[2] https://github.com/apache/cloudstack/pull/7712

Regards,
Nicolas Vazquez

Re: Multicast traffic problem

[Nux]

Please do it yourself, it's not hard. :)


On 2023-09-12 10:12, Technology Mail wrote:

Please open this issue if possible and support to me for this.

My environment is Almalinux8, and ACS is latest.

Please

---
Thanks.

On 9/12/2023 2:42 PM, Nux wrote:

I think only icmp, tcp and udp are supported in the security groups.
Other traffic such as igmp (multicast) or gre is not supported.. It'd 
be handy if it did though, maybe open a github issue?


Regards

On 2023-09-12 09:08, Technology Mail wrote:

Hello,

I want multicast traffic enable vm to vm, How to config it? have any 
global config for this?


My security group is allow all network: 0.0.0.0/0 (Ingress Rule & 
Egress rule)


Thank you!

-- *Thanks & Regards.*

*Support Admin*



*Facebook <https://www.facebook.com/TechnologyRSS> | Twitter 
<https://twitter.com/technologyrss1> | YouTube 
<https://www.youtube.com/channel/UCBq7qGqFEUe6ObVHMuxudTw> | LinkedIn 
<https://www.linkedin.com/company/technologyrss/>*


*Address : *116/1 West Malibagh, D. I. T Road

Dhaka-1217, Bangladesh

*Mob :* +88 01716915504

*Email :* support.ad...@technologyrss.com

*Web :* www.technologyrss.com

--

*Thanks & Regards.*

*Support Admin*



*Facebook <https://www.facebook.com/TechnologyRSS> | Twitter 
<https://twitter.com/technologyrss1> | YouTube 
<https://www.youtube.com/channel/UCBq7qGqFEUe6ObVHMuxudTw> | LinkedIn 
<https://www.linkedin.com/company/technologyrss/>*


*Address : *116/1 West Malibagh, D. I. T Road

Dhaka-1217, Bangladesh

*Mob :* +88 01716915504

*Email :* support.ad...@technologyrss.com

*Web :* www.technologyrss.com

Re: Multicast traffic problem

[Nux]

I think only icmp, tcp and udp are supported in the security groups.
Other traffic such as igmp (multicast) or gre is not supported.. It'd be 
handy if it did though, maybe open a github issue?


Regards

On 2023-09-12 09:08, Technology Mail wrote:

Hello,

I want multicast traffic enable vm to vm, How to config it? have any 
global config for this?


My security group is allow all network: 0.0.0.0/0 (Ingress Rule & 
Egress rule)


Thank you!

--

*Thanks & Regards.*

*Support Admin*



*Facebook  | Twitter 
 | YouTube 
 | LinkedIn 
*


*Address : *116/1 West Malibagh, D. I. T Road

Dhaka-1217, Bangladesh

*Mob :* +88 01716915504

*Email :* support.ad...@technologyrss.com

*Web :* www.technologyrss.com

Re: [VOTE] Apache CloudStack 4.18.1.0 (RC3)

[Nux]

+1 (binding) from me based on previous testing and testing the last 
minute local storage bug.


Good job, Wei!


On 2023-09-07 09:34, Wei ZHOU wrote:

Hi all,

I've created a 4.18.1.0-RC3, with the following artifacts up for a 
vote:


Git Branch and Commit SH:
https://github.com/apache/cloudstack/commits/4.18.1.0-RC20230907T0850
Commit: 4bdff06acd3630180f85ffe2f54add972607bbb4

Source release (checksums and signatures are available at the following
location):https://dist.apache.org/repos/dist/dev/cloudstack/4.18.1.0/

PGP release keys (signed using 1503DFE7C8226103):
https://dist.apache.org/repos/dist/release/cloudstack/KEYS

Vote will be open for 72 hours.

For sanity in tallying the vote, can PMC members please be sure to 
indicate

"(binding)" with their vote?

[ ] +1 approve
[ ] +0 no opinion
[ ] -1 disapprove (and reason why)

Re: [VOTE] Apache CloudStack 4.18.1.0 (RC2)

[Nux]

Thanks Wei, that's unfortunate, but hey, good thing it got caught in 
time.


Regards

On 2023-09-06 09:19, Wei ZHOU wrote:

Hi all,

Thanks a lot for your testing, Rohit, Hari, Lucian, Nicolas and Bobby.

Unfortunately Rohit found a critical issue that live migration failed
between kvm hosts with local storage pools:
https://github.com/apache/cloudstack/issues/7942
We have proposed a fix: https://github.com/apache/cloudstack/pull/7945

I will create RC3 when the fix is verified and merged. The issue 
impacts

kvm hosts with local storage only.

-Wei


On Fri, 1 Sept 2023 at 09:39, Wei ZHOU  wrote:


Hi all,

I've created a 4.18.1.0-RC2, with the following artifacts up for a 
vote:


Git Branch and Commit SH:
https://github.com/apache/cloudstack/commits/4.18.1.0-RC20230901T0817
Commit: 0e7f7d42f0ec68a360fafa7de21ea06577ed032c

Source release (checksums and signatures are available at the 
following

location):https://dist.apache.org/repos/dist/dev/cloudstack/4.18.1.0/

PGP release keys (signed using 1503DFE7C8226103):
https://dist.apache.org/repos/dist/release/cloudstack/KEYS

Vote will be open for 72 hours.

For sanity in tallying the vote, can PMC members please be sure to
indicate "(binding)" with their vote?

[ ] +1 approve
[ ] +0 no opinion
[ ] -1 disapprove (and reason why)

Re: [VOTE] Apache CloudStack 4.18.1.0 (RC2)

[Nux]

+1 (binding) from me based on network and storage related tests with 
both Advanced Zones (with KVM, Xen and VMware) as well as tests on 
Security Groups zones with KVM on EL8.


Regards

On 2023-09-05 13:23, Wei ZHOU wrote:

+1 (binding)

Tested the upgrade from 4.16.1, 4.17.2 and 4.18.0, checked guest OS 
mappings
Manually tested vm operations with various OSes: rocky8, alma8, 
ubuntu22,

vmware8.0c
Kicked smoke tests with various OSes: centos7, rocky8, ubuntu22,
vmware70u3, vmware80. All look ok, except 2 test failures with CKS 
which we

have seen in some PRs.

-Wei

On Fri, 1 Sept 2023 at 09:39, Wei ZHOU  wrote:


Hi all,

I've created a 4.18.1.0-RC2, with the following artifacts up for a 
vote:


Git Branch and Commit SH:
https://github.com/apache/cloudstack/commits/4.18.1.0-RC20230901T0817
Commit: 0e7f7d42f0ec68a360fafa7de21ea06577ed032c

Source release (checksums and signatures are available at the 
following

location):https://dist.apache.org/repos/dist/dev/cloudstack/4.18.1.0/

PGP release keys (signed using 1503DFE7C8226103):
https://dist.apache.org/repos/dist/release/cloudstack/KEYS

Vote will be open for 72 hours.

For sanity in tallying the vote, can PMC members please be sure to
indicate "(binding)" with their vote?

[ ] +1 approve
[ ] +0 no opinion
[ ] -1 disapprove (and reason why)

Re: How to Best Shrink Volume

[Nux]

I believe most do not allow shrinkage, simples. :)
At least the likes of Digitalocean and Hetzner do not.

Instead how you could juggle storage flexibly is by adding or removing 
data volumes and within the VM use them with LVM.



HTH

On 2023-09-04 15:50, Granwille Strauss wrote:

Hi Wido

Thank you. Yes, I only shrink it inside the VM. But still Cloudstack
volume shows 120GB and within the VM lsblk command shows that 120 GB
is available. Since I cannot shrink the volume, how do most providers
take care of this issue? I mean it would be awkward if a client see
they can have 120 GB available when they're paying for 60 GB, for
example.
On 9/4/23 15:45, Wido den Hollander wrote:


Op 04-09-2023 om 13:08 schreef Granwille Strauss:


Hi Wido

I mounted a live ISO to the VM, booted into the ISO and went into
recover mode, had to unmount the / partition of the VM, and then
proceed to resize it via parted and write changes. Rebooted via
and detatched the ISO and now VM shows 60 GB correctly. However,
in Cloudstack, still says the volume is 120 GB. But when I want to
shrink it to 60 GB, I get this error:


In this case you did not shrink the volume, but only the partition
and filesystem on the volume.

Failed to resize volume operation of volume UUID:
[eec8285e-8715-441b-b418-b71b231f1bab] due to - Unable to shrink
volumes of type QCOW2


QCOW2 volumes can't be reduced in size. So no, this is not a bug.


And yes, the VM is stopped when I try doing this. I now want to
confirm from the community, is this the expected behaviour or not?
It seems Wei doubted it. If not, that means I have a bug that need
to be looked at and further checked.


Wei is correct. QCOW2 can't be shrinked.

Wido


On 9/4/23 12:46, Wido den Hollander wrote:

Op 04/09/2023 om 09:18 schreef Granwille Strauss:
Thank you. Can you confirm if this behaviour is expected? Or am I
experiencing a bug?

What exactly? You did this resize manually outside the knowledge of
cloudstack, am I correct?

How did you do this live/recovery method?

Wido

On 9/4/23 09:00, Wido den Hollander wrote:

Op 04-09-2023 om 08:20 schreef Granwille Strauss:
Hi

I managed to resize the VM itself back to 60 GB via live/recovery
method. However, now in Cloudstack it still says the volume remains
120  GB and when I want to shrink it I am presented with the errors
from my previous reply. Is there a way around this? Such as making a
database change. Also, is this the expected behaviour for a KVM
host?

This is recorded in the table 'volumes'. If you decrease the size to
60GB there is should show properly.

Wido

On 9/2/23 11:22, Granwille Strauss wrote:

Hi Wei

It seems you're right you cannot shrink the volume in Cloudstack:

Failed to resize volume operation of volume UUID:
[eec8285e-8715-441b-b418-b71b231f1bab] due to - Unable to shrink
volumes of type QCOW2

Going from existing size of 128849018880 to size of 64424509440
would shrink the volume.Need to sign off by supplying the shrinkok
parameter with value of true.

On 9/2/23 10:37, Wei ZHOU wrote:
Hi Wido,

Does it work with kvm ?

my suggestion would be
- create a new vm with 60GB
- copy the data using `rsync`

-Wei

On Sat, 2 Sept 2023 at 08:25, Wido den Hollander
wrote:

Hi,

Yes, you should make sure the filesystem and partitions are within
the
to be set new boundaries.

Once that's done you can shrink the volume.

I would recommend:

- Shrink EXT4 + Partitions to 59GB
- Shrink volume to 60GB
- Grow EXT4 + Partitions to 60GB

The step to 59GB is to prevent that by calc mistake you chip off the

last portion of your filesystem.

Wido

Op 01-09-2023 om 16:29 schreef Granwille Strauss:
Hi Guys

Anyone willing to assist me with a quick one. What's the best and
recommended way to shrink a VM volume via UI? The VM volume was
first 60
GB, we then expended it to 120 GB and increased it in the VM via
parted.
I now want to  take it back to 60GB. How do I proceed? Do I first
shrink
the ext4 in the VM first then proceed to shrink the volume in
Cloudstack
UI by selecting also the "Shrink OK" option? Detailed steps would be

appreciated, please.

--
Regards / Groete

 [1]  Granwille Strauss // Senior
Systems Admin

*e:*granwi...@namhost.com
*m:* +264 81 323 1260 [2]
*w:*www.namhost.com  [3]

 [4]
[5]<
https://www.instagram.com/namhostinternetservices/><
https://www.linkedin.com/company/namhos> [6]<
https://www.youtube.com/channel/UCTd5v-kVPaic_dguGur15AA> [7]
<


https://www.adsigner.com/v1/l/631091998d4670001fe43ec2/621c9b76c140bb001ed0f818/banner


Namhost Internet Services (Pty) Ltd,

24 Black Eagle Rd, Hermanus, 7210, RSA

The content of this message is confidential. If you have received it
by
mistake, please inform us by email reply and then delete the
message. It
is forbidden to copy, forward, or in any way reveal the contents of
this
message to anyone without our explicit consent. The integrity and
security 

Re: [VOTE] Apache CloudStack 4.18.1.0 (RC2)

[Nux]

Top job!

PS: I know technically we cover this by invoking "-R" in the docs 
example, but do you think the issue warrants dropping few words in there 
to underline the issue? Something like "do note the -R switch which 
backs up the MySQL database routines"


On 2023-09-04 15:22, Rohit Yadav wrote:
Wei pointed out privately to me that it's already in our docs at 
https://docs.cloudstack.apache.org/en/latest/upgrading/upgrade/upgrade-4.17.html#database-preparation


My bad, I didn't notice it earlier :)


Regards.

________
From: Nux 
Sent: Monday, September 4, 2023 19:44
To: d...@cloudstack.apache.org 
Cc: users 
Subject: Re: [VOTE] Apache CloudStack 4.18.1.0 (RC2)

Cheers Rohit,

I'm for including the routines bit in the release or upgrade notes. We
haven't had such a gotcha until now, even though it's not strictly
within scope.

Regards

On 2023-09-04 14:03, Rohit Yadav wrote:

+1 (binding)

Upgraded a multi-zone (edge and core) KVM env with NFS, local storage
and Linstor storage from 4.18.0.0 to 4.18.1.0. Post upgrade tested VM
deployment as root admin and normal user account.

I hit the issue of procedures not found as I had moved my DB from one
host to another and didn't export the routines using mysqldump -R 
flag.
I could apply them manually courtesy of Wei. I think we should 
document

this that people moving their DBs must also backup/dump the routines
(procedures), though I don't think that's a usual thing that users
would normally do - and is outside of scope of CloudStack.



Regards.


From: Wei ZHOU 
Sent: Friday, September 1, 2023 13:09
To: d...@cloudstack.apache.org ; users

Subject: [VOTE] Apache CloudStack 4.18.1.0 (RC2)

Hi all,

I've created a 4.18.1.0-RC2, with the following artifacts up for a
vote:

Git Branch and Commit SH:
https://github.com/apache/cloudstack/commits/4.18.1.0-RC20230901T0817
Commit: 0e7f7d42f0ec68a360fafa7de21ea06577ed032c

Source release (checksums and signatures are available at the 
following

location):https://dist.apache.org/repos/dist/dev/cloudstack/4.18.1.0/

PGP release keys (signed using 1503DFE7C8226103):
https://dist.apache.org/repos/dist/release/cloudstack/KEYS

Vote will be open for 72 hours.

For sanity in tallying the vote, can PMC members please be sure to
indicate "(binding)" with their vote?

[ ] +1 approve
[ ] +0 no opinion
[ ] -1 disapprove (and reason why)

Re: [VOTE] Apache CloudStack 4.18.1.0 (RC2)

[Nux]

Cheers Rohit,

I'm for including the routines bit in the release or upgrade notes. We 
haven't had such a gotcha until now, even though it's not strictly 
within scope.


Regards

On 2023-09-04 14:03, Rohit Yadav wrote:

+1 (binding)

Upgraded a multi-zone (edge and core) KVM env with NFS, local storage 
and Linstor storage from 4.18.0.0 to 4.18.1.0. Post upgrade tested VM 
deployment as root admin and normal user account.


I hit the issue of procedures not found as I had moved my DB from one 
host to another and didn't export the routines using mysqldump -R flag. 
I could apply them manually courtesy of Wei. I think we should document 
this that people moving their DBs must also backup/dump the routines 
(procedures), though I don't think that's a usual thing that users 
would normally do - and is outside of scope of CloudStack.




Regards.


From: Wei ZHOU 
Sent: Friday, September 1, 2023 13:09
To: d...@cloudstack.apache.org ; users 


Subject: [VOTE] Apache CloudStack 4.18.1.0 (RC2)

Hi all,

I've created a 4.18.1.0-RC2, with the following artifacts up for a 
vote:


Git Branch and Commit SH:
https://github.com/apache/cloudstack/commits/4.18.1.0-RC20230901T0817
Commit: 0e7f7d42f0ec68a360fafa7de21ea06577ed032c

Source release (checksums and signatures are available at the following
location):https://dist.apache.org/repos/dist/dev/cloudstack/4.18.1.0/

PGP release keys (signed using 1503DFE7C8226103):
https://dist.apache.org/repos/dist/release/cloudstack/KEYS

Vote will be open for 72 hours.

For sanity in tallying the vote, can PMC members please be sure to
indicate "(binding)" with their vote?

[ ] +1 approve
[ ] +0 no opinion
[ ] -1 disapprove (and reason why)

Re: Restricting instance deletion to the creator.

[Nux]

Yeah, that might be difficult, the entire idea of a "project" is for the 
members to share the resources, ie have access to them, that means 
deletions.


Off the top of my head - and it could just be me overthinking it - you 
could build some sort of proxy for the API, basically intercept it and 
check the calls before relaying them to Cloudstack.. so in short, not 
easy.


On 2023-09-01 12:08, Jorge Luiz Correa wrote:

Is there any way (global configuration, role changes, etc.) to restrict
deletion of an instance to the creator only?

For example, I have a Project with a few users. If user A creates an
instance, only user A can delete it. The goal is that one user can't 
delete

instances from another by mistake.

Thanks!
:)

--
Jorge Luiz Corrêa
Embrapa Agricultura Digital

echo "CkpvcmdlIEx1aXogQ29ycmVhCkFu
YWxpc3RhIGRlIFJlZGVzIGUgU2VndXJhbm
NhCkVtYnJhcGEgQWdyaWN1bHR1cmEgRGln
aXRhbCAtIE5USQpBdi4gQW5kcmUgVG9zZW
xsbywgMjA5IChCYXJhbyBHZXJhbGRvKQpD
RVAgMTMwODMtODg2IC0gQ2FtcGluYXMsIF
NQClRlbGVmb25lOiAoMTkpIDMyMTEtNTg4
Mgpqb3JnZS5sLmNvcnJlYUBlbWJyYXBhLm
JyCgo="|base64 -d

--
__
Aviso de confidencialidade

Esta mensagem da
Empresa  Brasileira de Pesquisa  Agropecuaria (Embrapa), empresa 
publica
federal  regida pelo disposto  na Lei Federal no. 5.851,  de 7 de 
dezembro

de 1972,  e  enviada exclusivamente  a seu destinatario e pode conter
informacoes  confidenciais, protegidas  por sigilo profissional.  Sua
utilizacao desautorizada  e ilegal e  sujeita o infrator as penas da 
lei.

Se voce  a recebeu indevidamente, queira, por gentileza, reenvia-la ao
emitente, esclarecendo o equivoco.

Confidentiality note

This message from
Empresa  Brasileira de Pesquisa  Agropecuaria (Embrapa), a government
company  established under  Brazilian law (5.851/72), is directed
exclusively to  its addressee  and may contain confidential data, 
protected under  professional secrecy  rules. Its unauthorized  use is
illegal and  may subject the transgressor to the law's penalties. If 
you

are not the addressee, please send it back, elucidating the failure.

Re: [DISCUSS] New Design for the Apache CloudStack Website

[Nux]

Hi Ivet,

Looks nice and trendy, thanks for the effort!

Regards

On 2023-08-30 14:34, Ivet Petrova wrote:

Hi All,

I uploaded the design here: 
https://drive.google.com/file/d/1pef7xWWMPYAA5UkbS_XMUxrz53KB7J5t/view?usp=sharing



Kind regards,




On 30 Aug 2023, at 16:31, Giles Sirett 
mailto:giles.sir...@shapeblue.com>> wrote:


Hi Ivet – thanks for pushing forward with this – excited to review a 
new design.


On that note, I cant see a link in your mail ☹

Kind Regards
Giles


Giles Sirett
CEO
giles.sir...@shapeblue.com
www.shapeblue.com




From: Ivet Petrova 
mailto:ivet.petr...@shapeblue.com>>

Sent: Wednesday, August 30, 2023 10:14 AM
To: users@cloudstack.apache.org; 
Marketing mailto:market...@shapeblue.com>>

Cc: dev mailto:d...@cloudstack.apache.org>>
Subject: [DISCUSS] New Design for the Apache CloudStack Website

Hello,

I would like to start a discussion on the design of the Apache 
CloudStack Website and to propose a new design for it.


As we all know, the website has not been changed for years in terms of 
design and information. The biggest issue we know we have is that the 
website is not showing the full potential of CloudStack. In addition to 
it during discussions with many community members, I have noted the 
following issues:

- the existing website design is old-school
- the current homepage does not collect enough information to show 
CloudStack's strengths
- current website design is missing images from the ACS UI and cannot 
create a feel for the product in the users

- the website has issues on a mobile device
- we lack any graphic and diagrams
- some important information like how to download is not very visible

I collected a lot of feedback during last months and want to propose a 
new up to date design for the website, which is attached below. The new 
design will bring:

- improved UX
- look and feel corresponding to the CloudStack's capabilities and 
strengths

- more graphical elements, diagrams
- better branding
- more important information, easily accessible for the potential users

I hope you will like the new design – all feedback welcome. Once we 
have the design finalised, we will use Rohit’s proposal previously of a 
CMS, which is easy to edit.


[cid:B5517475-02DA-472A-BD1D-F3B600AD28ED]

Kind regards,

Re: [VOTE] Apache CloudStack 4.18.1.0 (RC2)

[Nux]

Thanks Wei!

Let the testing begin.

On 2023-09-01 08:40, Wei ZHOU wrote:

Hi all,

You can find the (unofficial) packages at
http://download.cloudstack.org/testing/4.18.1.0-RC20230901T0817/ for 
your

convenience.

Kind regards
Wei


On Fri, 1 Sept 2023 at 09:39, Wei ZHOU  wrote:


Hi all,

I've created a 4.18.1.0-RC2, with the following artifacts up for a 
vote:


Git Branch and Commit SH:
https://github.com/apache/cloudstack/commits/4.18.1.0-RC20230901T0817
Commit: 0e7f7d42f0ec68a360fafa7de21ea06577ed032c

Source release (checksums and signatures are available at the 
following

location):https://dist.apache.org/repos/dist/dev/cloudstack/4.18.1.0/

PGP release keys (signed using 1503DFE7C8226103):
https://dist.apache.org/repos/dist/release/cloudstack/KEYS

Vote will be open for 72 hours.

For sanity in tallying the vote, can PMC members please be sure to
indicate "(binding)" with their vote?

[ ] +1 approve
[ ] +0 no opinion
[ ] -1 disapprove (and reason why)

Re: [Consultation] Remove DB HA feature (db.ha.enabled)

[Nux]

+1, looking forward to a PR I can test then.

Regards

On 2023-08-23 11:59, Rohit Yadav wrote:

Thanks João, Daniel,

I see João's PR - I'm not keen on getting the mysql-ha plugin removed 
if it can be improved/fixed. What users complain about is when it 
doesn't work or the documentation isn't clear about how to use it (or 
in fact have any MySQL HA plan for use with CloudStack).



Regards.


From: João Jandre Paraquetti 
Sent: Wednesday, August 23, 2023 01:26
To: users@cloudstack.apache.org ; 
d...@cloudstack.apache.org 

Subject: Re: [Consultation] Remove DB HA feature (db.ha.enabled)

Sure, Daniel

PR #7895 is currently in draft as we need to do some more tests.
However, the intention is to enable users to configure the DB 
connection
URI directly through `db.properties` file. These are the tests that 
have

been done so far with ACS without this PR changeset:

Using the current version in a setup with MariaDB and Galera, with a
cluster size of 3 and the following configuration on the db.properties 
file:

```
# High Availability And Cluster Properties
db.ha.enabled=true
db.ha.loadBalanceStrategy=com.cloud.utils.db.StaticStrategy
# cloud stack Database
db.cloud.replicas=192.168.201.161,192.168.201.162
db.cloud.autoReconnect=false
db.cloud.failOverReadOnly=false
db.cloud.reconnectAtTxEnd=false
db.cloud.autoReconnectForPools=true
db.cloud.secondsBeforeRetrySource=1800
db.cloud.queriesBeforeRetrySource=5000
db.cloud.initialTimeout=3600
```
When the MariaDB service stops in the main node, ACS switches to one of
the other two nodes. However, if the host is shut down, the switch 
never

occurs.

Then, we also did tests using the changes proposed in the PR, by
configuring the db.cloud.uri:

```
db.cloud.uri=jdbc:mariadb:sequential://192.168.201.160:3306,192.168.201.161:3306,192.168.201.162:3306/cloud?autoReconnect=true=517=true=sql_mode='STRICT_TRANS_TABLES,NO_ZERO_IN_DATE,NO_ZERO_DATE,ERROR_FOR_DIVISION_BY_ZERO,NO_ENGINE_SUBSTITUTION'=UTC

# These properties are ignored when setting the URI manually, so no 
need

to set them.

# High Availability And Cluster Properties
# db.ha.enabled=true
# db.ha.loadBalanceStrategy=com.cloud.utils.db.StaticStrategy
# cloud stack Database
# db.cloud.replicas=192.168.201.161,192.168.201.162
# db.cloud.autoReconnect=false
# db.cloud.failOverReadOnly=false
# db.cloud.reconnectAtTxEnd=false
# db.cloud.autoReconnectForPools=true
# db.cloud.secondsBeforeRetrySource=1800
# db.cloud.queriesBeforeRetrySource=5000
# db.cloud.initialTimeout=3600
```

I was able to configure and use the sequential failover mode. This way,
when the MariaDB service stops in the main node and even if the host is
shut down, ACS is able to switch to the other DBs.

There are two differences between defining the URI manually (which is
proposed with PR#7895) and the generated by ACS.
The first one is the `jdbc:mariadb`, which is the driver that makes the
connection with the DBMS, this enables usage of MariaDB URL
configurations, this driver is being introduced into ACS with PR#7895.
The second one is the usage of the `sequential` [1] failover mode, that
will try to connect to hosts in the order in which they were declared 
in
the connection URL, so the first available host is used for all 
queries,

and if one of the hosts is shut down, it will try to reconnect with the
other on the list. As this mode only connects to a single DB, the
problems referenced by Rohit are avoided. But the failover mechanism is
still in place.

Best regards,
João Jandre

[1] - https://mariadb.com/kb/en/about-mariadb-connector-j/

On 22/08/2023 16:03, Daniel Salvador wrote:

Hello Lucian and all,

I am -1 on removing the whole DB HA feature from CloudStack.

As we discussed on July[1], the current properties we have on
"db.properties" regarding DB HA are hardcoded and only address some 
MySQL

properties, which are not fully compatible with the properties for
configuring DB HA on MariaDB. It indeed has some problems; however, I 
think
we should keep the functionality and improve it, to enrich CloudStack 
and

avoid using other layers to accomplish the goals. It is good to have a
workaround, though.

João Jandre and I are already working on a solution to flexibilize the 
DB
parameters in order to allow one to configure DB HA properly when 
using
MariaDB (and also do several other configurations). João, could you 
point
to the PR that addresses the changes and share the configurations and 
tests

we have done so far?

Best regards,
Daniel Salvador (gutoveronezi)

[1] - https://lists.apache.org/thread/j0mmwy9dfr9k2kbnnjxcr2m7y8zwd34c

On Tue, Aug 22, 2023 at 12:42 PM Nux  wrote:

New adopters may not go ahead with it in production because they 
won't
get it working, unless they fix a lot of code, that would be a nice 
pull

request. :)


On 2023-08-22 16:25, K B Shiv Kumar wrote:
Well, if it is broken and it is not prominently mentioned anywhere 
new

adopters may go ahead with that on prod

Re: [Consultation] Remove DB HA feature (db.ha.enabled)

[Nux]

New adopters may not go ahead with it in production because they won't 
get it working, unless they fix a lot of code, that would be a nice pull 
request. :)



On 2023-08-22 16:25, K B Shiv Kumar wrote:
Well, if it is broken and it is not prominently mentioned anywhere new 
adopters may go ahead with that on production. So I guess best to 
remove or at least mention that it is not production grade.


Thanks
Shiv


On 22-Aug-2023, at 20:12, Nux  wrote:

But what do you think of the removal of DB HA code?

When using Galera you need to query against a single node, don't 
spread the load among all 3, as this will break certain locking 
functionality in Cloudstack and lead to problems.


In a Haproxy configuration you should be keeping just one active, eg:
   server galera1 10.0.3.2:3306 check
   server galera2 10.0.3.3:3306 check backup
   server galera3 10.0.3.4:3306 check backup

Regards

On 2023-08-22 15:36, K B Shiv Kumar wrote:
We faced some issues when running Galera. We went back to master 
slave.

Anyone using Galera in production for a long time?
Regards,
Shiv

On 22-Aug-2023, at 19:34, Nux  wrote:
Happy to contribute a doc on how to achieve HA if we decide to 
remove this.

Thanks
On 2023-08-22 15:01, Rohit Yadav wrote:
+1 it's a broken feature that at least doesn't work with MySQL 8.x, 
I'm not sure if it worked with prior versions of MySQL. However, we 
need to document some sort of suggested MySQL HA setup in our docs.

Regards.

From: Nux 
Sent: Tuesday, August 22, 2023 18:54
To: users@cloudstack.apache.org ; Dev 


Subject: [Consultation] Remove DB HA feature (db.ha.enabled)
Hello everyone,
A few weeks ago I asked you if you use or managed to use the DB HA
Cloudstack feature (db.ha.enabled)[1] and after reading some of the
replies and doing intensive testing myself I have found out that 
the

feature is indeed non-functional, it's broken.
In my testing I discovered DB HA can easily be done outside of
Cloudstack by employing load balancers and other techniques.
Personally I have achieved that by using Haproxy in front of Galera
cluster, but also introduced Keepalived (vrrp) in my setup to 
"balance"

multiple Haproxies which also worked well.
As such, since the feature is basically broken, it will not be 
trivial

to fix it and there are better ways of doing HA, then I propose to
remove it altogether.
Thoughts? Anyone against it?
Cheers
[1] -
https://docs.cloudstack.apache.org/en/latest/adminguide/reliability.html#database-high-availability

Re: [Consultation] Remove DB HA feature (db.ha.enabled)

[Nux]

Thanks for elaborating, Rohit.


On 2023-08-22 16:25, Rohit Yadav wrote:

Shiv, Lucian, all,

It's a known limitation for all available MySQL clustering solutions 
such as Galera, Percona XtraDB, Innodb Cluster that GET_LOCK [1] isn't 
supported [2][3]. The GET_LOCK is used by CloudStack for global locking 
critical code when more than one management server(s) are running 
against the same database/server.


(MySQL NDB, InnoDB cluster could be something to experiment, as well 
as, coming up with a locking service framework which could help get 
around the mysql/native get_lock limitations).


[1] 
https://dev.mysql.com/doc/refman/8.0/en/locking-functions.html#:~:text=MySQL%20enforces%20a%20maximum%20length,lock%20with%20the%20same%20name.


[2] https://mariadb.com/kb/en/mariadb-galera-cluster-known-limitations/

[3] https://docs.percona.com/percona-xtradb-cluster/8.0/limitation.html



Regards.


From: Nux 
Sent: Tuesday, August 22, 2023 20:12
To: d...@cloudstack.apache.org 
Cc: users@cloudstack.apache.org ; K B Shiv 
Kumar 

Subject: Re: [Consultation] Remove DB HA feature (db.ha.enabled)

But what do you think of the removal of DB HA code?

When using Galera you need to query against a single node, don't spread
the load among all 3, as this will break certain locking functionality
in Cloudstack and lead to problems.

In a Haproxy configuration you should be keeping just one active, eg:
 server galera1 10.0.3.2:3306 check
 server galera2 10.0.3.3:3306 check backup
 server galera3 10.0.3.4:3306 check backup

Regards

On 2023-08-22 15:36, K B Shiv Kumar wrote:
We faced some issues when running Galera. We went back to master 
slave.


Anyone using Galera in production for a long time?

Regards,
Shiv






On 22-Aug-2023, at 19:34, Nux  wrote:


Happy to contribute a doc on how to achieve HA if we decide to remove
this.

Thanks

On 2023-08-22 15:01, Rohit Yadav wrote:

+1 it's a broken feature that at least doesn't work with MySQL 8.x,
I'm not sure if it worked with prior versions of MySQL. However, we
need to document some sort of suggested MySQL HA setup in our docs.
Regards.

From: Nux 
Sent: Tuesday, August 22, 2023 18:54
To: users@cloudstack.apache.org ; Dev

Subject: [Consultation] Remove DB HA feature (db.ha.enabled)
Hello everyone,
A few weeks ago I asked you if you use or managed to use the DB HA
Cloudstack feature (db.ha.enabled)[1] and after reading some of the
replies and doing intensive testing myself I have found out that the
feature is indeed non-functional, it's broken.
In my testing I discovered DB HA can easily be done outside of
Cloudstack by employing load balancers and other techniques.
Personally I have achieved that by using Haproxy in front of Galera
cluster, but also introduced Keepalived (vrrp) in my setup to
"balance"
multiple Haproxies which also worked well.
As such, since the feature is basically broken, it will not be
trivial
to fix it and there are better ways of doing HA, then I propose to
remove it altogether.
Thoughts? Anyone against it?
Cheers
[1] -
https://docs.cloudstack.apache.org/en/latest/adminguide/reliability.html#database-high-availability

Re: [Consultation] Remove DB HA feature (db.ha.enabled)

[Nux]

But what do you think of the removal of DB HA code?

When using Galera you need to query against a single node, don't spread 
the load among all 3, as this will break certain locking functionality 
in Cloudstack and lead to problems.


In a Haproxy configuration you should be keeping just one active, eg:
server galera1 10.0.3.2:3306 check
server galera2 10.0.3.3:3306 check backup
server galera3 10.0.3.4:3306 check backup

Regards

On 2023-08-22 15:36, K B Shiv Kumar wrote:

We faced some issues when running Galera. We went back to master slave.

Anyone using Galera in production for a long time?

Regards,
Shiv


On 22-Aug-2023, at 19:34, Nux  wrote:

Happy to contribute a doc on how to achieve HA if we decide to remove 
this.


Thanks

On 2023-08-22 15:01, Rohit Yadav wrote:
+1 it's a broken feature that at least doesn't work with MySQL 8.x, 
I'm not sure if it worked with prior versions of MySQL. However, we 
need to document some sort of suggested MySQL HA setup in our docs.

Regards.

From: Nux 
Sent: Tuesday, August 22, 2023 18:54
To: users@cloudstack.apache.org ; Dev 


Subject: [Consultation] Remove DB HA feature (db.ha.enabled)
Hello everyone,
A few weeks ago I asked you if you use or managed to use the DB HA
Cloudstack feature (db.ha.enabled)[1] and after reading some of the
replies and doing intensive testing myself I have found out that the
feature is indeed non-functional, it's broken.
In my testing I discovered DB HA can easily be done outside of
Cloudstack by employing load balancers and other techniques.
Personally I have achieved that by using Haproxy in front of Galera
cluster, but also introduced Keepalived (vrrp) in my setup to 
"balance"

multiple Haproxies which also worked well.
As such, since the feature is basically broken, it will not be 
trivial

to fix it and there are better ways of doing HA, then I propose to
remove it altogether.
Thoughts? Anyone against it?
Cheers
[1] -
https://docs.cloudstack.apache.org/en/latest/adminguide/reliability.html#database-high-availability

Re: Register Now for CloudStack Collaboration Conference - First 50 get a CloudStack T-shirt

[Nux]

Do you have a picture of them?

Thanks

On 2023-08-21 13:14, Ivet Petrova wrote:

Hi all,

I am happy to announce that we have a special surprise for the early 
birds! As you know the CloudStack Collaboration Conference will happen 
on November 23-24th in Paris, France.
Now we have a special surprise for the first 50 people registered for 
the event!
Get an Apache Cloudstack branded Tshirt special edition for the 
conference in Paris.


Hurry up, we are limited in these cool t-shirts: 
https://events.hubilo.com/cloudstack-collaboration-conference-2023/register



Kind regards,

Re: [PROPOSE] ACS 4.18.1.0 release

[Nux]

Thanks for the update, Wei.
Good job so far!

On 2023-08-21 12:48, Wei ZHOU wrote:

Hi all,

In the last weeks, we have merged a few bug fixes into the 4.18 branch. 
We

are still working on remaining bug fixes and reviewing pull requests.

22 pull requests are open for review:
https://github.com/apache/cloudstack/pulls?q=is%3Aopen+is%3Apr+milestone%3A4.18.1.0

51 issues are open (including 2 critical , 15 major, 33 minor issues):
https://github.com/apache/cloudstack/issues?q=is%3Aopen+is%3Aissue+milestone%3A4.18.1.0

*The code freeze time of 4.18.1.0 will be 12:00pm UTC (1pm BST, 2pm 
CEST),
28th August*.  The open pull requests and issues after code freeze will 
be

moved to 4.18.2.0 milestone.

-Wei



On Wed, 2 Aug 2023 at 03:22, Wei ZHOU  wrote:


Hi all,

Here is an update of Apache CloudStack 4.18.1.0 release:

There are some open PRs and issues on github:

37 pull requests are open for review:
https://github.com/apache/cloudstack/pulls?q=is%3Aopen+is%3Apr+milestone%3A4.18.1.0

66 issues are open (including 1 BLOCKER, 1 critical , 18 major, 39 
minor

issues):
https://github.com/apache/cloudstack/issues?q=is%3Aopen+is%3Aissue+milestone%3A4.18.1.0


We are busy with them. The processes need to be postponed for 2-4 
weeks.



-Wei




On Thu, 4 May 2023 at 10:34, Wei ZHOU  wrote:


Hi all,

Currently CloudStack 4.18.0.0 is the latest LTS release. There are 
some
bugs and pull requests with 4.18.0.0 [1], including the fix for the 
upgrade

issue if users use MySQL 5.6 and 5.7.

I would like to propose the release of 4.18.1.0 and the timeline

- from now till the end of July (3 months): accept bug fixes and 
minor

improvements [2]
- first week in Aug: stablisation efforts, accept only blocker and
critical bug fixes.
- Aug: start cutting RCs, vote and finish release work.

I will push myself as the release manager (RM) of 4.18.1.0, if nobody
objects.
In case anyone wants to include a bug fix or a pull request in 
4.18.1.0

milestone, please mention me (weizhouapache) on github.

[1] https://github.com/apache/cloudstack/milestone/27
[2] https://cwiki.apache.org/confluence/display/CLOUDSTACK/LTS


Any suggestions ?

Kind regards,
Wei

Re: Imported templates not working

[Nux]

Hi,

Is the template UEFI capable? Sorry for trivial question.
Which HV is this?


On 2023-08-21 09:45, Francisco Arencibia Quesada wrote:

Hi,
the error is:
UEFI Interactive Shell v.2.2
EDK II
UEFI v2.70 (EDK II, 0x0001)
Mapping table:
 BLK0: ...
 BLK1: .
 BLK2: 
Press ESC in 1 seconds to skip startup.nsh or any other key to continue
Shell>_

Regards


On Mon, Aug 21, 2023 at 10:41 AM Wei ZHOU  
wrote:



Hi,

The image is not visible.
Can you describe how to import the templates ?

-Wei

On Mon, 21 Aug 2023 at 10:20, Francisco Arencibia Quesada <
arencibia.franci...@gmail.com> wrote:

> Good morning everyone,
>
> I have imported some templates from another cloudstack, Windows
> 2016,2019,2022, the only one working is 2016 the is giving this error at
> boot:
>
> [image: Screenshot from 2023-08-21 09-55-13.png]
>
> Any idea how to fix this? In the cloudstack of origin all images work, it
> seems this problem appeared when importing.
>
> Kind regards
>
> --
> *Francisco Arencibia Quesada.*
> *DevOps Engineer*
>

Re: [Consultation] Remove DB HA feature (db.ha.enabled)

[Nux]

Happy to contribute a doc on how to achieve HA if we decide to remove 
this.


Thanks

On 2023-08-22 15:01, Rohit Yadav wrote:
+1 it's a broken feature that at least doesn't work with MySQL 8.x, I'm 
not sure if it worked with prior versions of MySQL. However, we need to 
document some sort of suggested MySQL HA setup in our docs.



Regards.


From: Nux 
Sent: Tuesday, August 22, 2023 18:54
To: users@cloudstack.apache.org ; Dev 


Subject: [Consultation] Remove DB HA feature (db.ha.enabled)

Hello everyone,

A few weeks ago I asked you if you use or managed to use the DB HA
Cloudstack feature (db.ha.enabled)[1] and after reading some of the
replies and doing intensive testing myself I have found out that the
feature is indeed non-functional, it's broken.

In my testing I discovered DB HA can easily be done outside of
Cloudstack by employing load balancers and other techniques.
Personally I have achieved that by using Haproxy in front of Galera
cluster, but also introduced Keepalived (vrrp) in my setup to "balance"
multiple Haproxies which also worked well.

As such, since the feature is basically broken, it will not be trivial
to fix it and there are better ways of doing HA, then I propose to
remove it altogether.

Thoughts? Anyone against it?

Cheers

[1] -
https://docs.cloudstack.apache.org/en/latest/adminguide/reliability.html#database-high-availability

[Consultation] Remove DB HA feature (db.ha.enabled)

[Nux]

Hello everyone,

A few weeks ago I asked you if you use or managed to use the DB HA 
Cloudstack feature (db.ha.enabled)[1] and after reading some of the 
replies and doing intensive testing myself I have found out that the 
feature is indeed non-functional, it's broken.


In my testing I discovered DB HA can easily be done outside of 
Cloudstack by employing load balancers and other techniques.
Personally I have achieved that by using Haproxy in front of Galera 
cluster, but also introduced Keepalived (vrrp) in my setup to "balance" 
multiple Haproxies which also worked well.


As such, since the feature is basically broken, it will not be trivial 
to fix it and there are better ways of doing HA, then I propose to 
remove it altogether.


Thoughts? Anyone against it?

Cheers

[1] - 
https://docs.cloudstack.apache.org/en/latest/adminguide/reliability.html#database-high-availability

Re: Rocky 9 management setup

[Nux]

Hello,

Which problem do you have, the labels or libvirtd file?
The labels usually are a browser caching issue. Try to clear your 
browser cache or try with a different browser or a private browsing 
session.




On 2023-07-25 02:59, 김재종 wrote:

I have same problem.

Do you have any work around or plan to resolve it?

I hope you can help me.

good day!!

-Original Message-
From: "Jeremy Hansen"
To: ;
Cc:
Sent: 2023-03-11 (토) 05:51:58 (GMT+09:00)
Subject: Re: Rocky 9 management setup

 Seeing some broken labels:

Also noticed that /etc/sysconfig/libvirtd needs to exist.  The latest
libvirt packages in Rocky 9 do not automatically place this file:

From /var/log/cloudstack/agent/setup.log

DEBUG:root:[Errno 2] No such file or directory:
'/etc/sysconfig/libvirtd'
  File
"/usr/lib64/python3.9/site-packages/cloudutils/serviceConfig.py", line
38, in configuration
result = self.config()
  File
"/usr/lib64/python3.9/site-packages/cloudutils/serviceConfig.py", line
635, in config
cfo.save()
  File
"/usr/lib64/python3.9/site-packages/cloudutils/configFileOps.py", line
62, in save
fp = open(self.fileName, "r")

-jeremy


On Friday, Mar 10, 2023 at 1:40 AM, Me  wrote:

So I went through the process on both 4.17 and 4.18 and made sure I
chose advanced and still, I see no way of adding a guest network in
4.18:

4.17 has a button to create a guest network.  Do I have to change a
parameter in the global config to enable this?

Thanks
-jeremy

On Thursday, Mar 09, 2023 at 11:54 PM, Wei ZHOU
 wrote:

Hi Jeremy,

There is a new type of network: L2. Please try with the L2 network.
refer to


https://docs.cloudstack.apache.org/en/latest/adminguide/networking_and_traffic.html#configure-guest-traffic-in-an-advanced-zone



Please note, L2 networks are only supported in the Advanced zone .
If you created a Basic zone, you cannot create any new networks.

Kind regards,
Wei

On Fri, 10 Mar 2023 at 06:22, Jeremy Hansen

wrote:

Ran in to this while trying to setup QuickCloudNoServices:

Configuring guest traffic
*Something went wrong; please correct the following:*
Service Dhcp is not supported by the network offering [Network
Offering
[20-Guest-QuickCloudNoServices]

This is during the configuration wizard.

Not really sure I understand. I’m trying to set up a L2 network
with an
external DHCP server. Is QuickCloudNoServices the wrong choice?

-jeremy

On Thursday, Mar 09, 2023 at 6:23 PM, Me  wrote:
Is there links to any kind of updated documentation? I seem to be
having
issues with libvirtd and setting up the agent on Rocky 9. I’m
trying to
follow the 4.17 docs, but some things seem to no longer apply.

Error 530
Unable to add the host: Cannot find the server resources at
http://dell1.fr1.clx.corp

Also noticed in the agent adding process, this being written to
qemu.conf:

#deprecation_behavior = "none"vnc_tls=1
vnc_tls=1vnc_tls=1
vnc_tls=1vnc_tls=1

which breaks libvirtd:

Mar 09 18:14:21 dell1.fr1.clx.corp libvirtd[29917]: configuration
file
syntax error: /etc/libvirt/qemu.conf:955: expecting a separator
Mar 09 18:14:21 dell1.fr1.clx.corp libvirtd[29917]: Initialization
of QEMU
state driver failed: configuration file syntax error:
/etc/libvirt/qemu.conf:955: expecting a separator
Mar 09 18:14:21 dell1.fr1.clx.corp libvirtd[29917]: Driver state
initialization failed

Fixing that config allowed libvirtd to start and I was able to add
hosts.

Thanks
-jeremy

On Thursday, Mar 09, 2023 at 10:22 AM, Wei ZHOU

wrote:
Hi Jeremy,

You can find the packages for 4.18.0.0-RC2 at



http://packages.shapeblue.com/cloudstack/upstream/testing/4.18.0.0-RC20230224T1301/


The "el8" packages can also be used on rocky8/rocky9.

-Wei

On Thu, 9 Mar 2023 at 18:06, Jeremy Hansen

wrote:

Thanks. I had build issues with 4.18 trying to build on Rocky 9. If
packages are available, I’d love to try it.

-jeremy

On Thursday, Mar 09, 2023 at 2:46 AM, Rohit Yadav <
rohit.ya...@shapeblue.com> wrote:
Hi Jeremy,

EL9 isn't supported for 4.17 yet (you may workaround, but not
generally
recommended), wait until 4.18.0.0.

You may even help test the 4.18.0.0 RCs.

Regards.


From: Kiran Chavala 
Sent: Thursday, March 9, 2023 14:14
To: Vivek Kumar via users 
Subject: Re: Rocky 9 management setup

Hi Vivek

You can comment the line number 45 and line 375 to 391 in the script

/usr/bin/cloudstack-setup-databases

And try running the cloudstack-setup-databases again

Regards
Kiran



From: Jeremy Hansen
Sent: Thursday, March 09, 2023 07:53
To: Vivek Kumar via users
Subject: Rocky 9 management setup

The database setup script seems broken in 4.17.2.0 for Rocky 9. I
realize
Rocky isn’t officially supported yet but I’d like to try…

Is there an alternative way to setup the db on a fresh install?

Currently seeing

Traceback (most recent call last):
File "/usr/bin/cloudstack-setup-databases", line 45, in 
from cloud_utils import check_selinux, CheckFailed, resolves_to_ipv6

ImportError: 

Re: Cloudstack DB HA, do you use db.ha.enabled?

[Nux]

Cheers Simon,

I'll double check the jar is loaded in my next tests.



On 2023-07-20 22:08, Simon Weller wrote:

Lucian,

Check to see whether the mysql-ha jar is being loaded. There's a 
separate

mysql-ha package that needs to be installed.

Is this Ubuntu or rpm? I'm not sure whether the default Ubuntu builds
include the extra package. I believe the shapeblue build does though.

-Si


On Thu, Jul 20, 2023, 3:03 PM Nux  wrote:


Cheers Daniel,

Can you share any other db.ha parameters you may have tuned?
For me it didn't work out of the box as you described.

Thanks

On 2023-07-20 14:04, Daniel Salvador wrote:
> Hello Nux,
>
> Normally I set up three nodes with MariaDB and Galera cluster; then, in
> the
> "db.properties" file I mark "db.ha.enabled" as true, and I define one
> of
> the nodes as main and the other as replicas. When the main node goes
> down,
> one of the replicas takes over, and so on.
>
> The current properties we have on "db.properties" regarding DB HA are
> hard
> coded and only address some MySQL properties; which is not the perfect
> scenario for MariaDB HA. However, it provides a minimum DB HA setup. Me
> and
> other contributors are already working on a flexible solution to
> address
> other MySQL properties, and MariaDB properties as well.
>
> Best regards,
> Daniel Salvador (gutoveronezi)
>
> On Thu, Jul 20, 2023 at 7:46 AM Nux  wrote:
>
>> Hello,
>>
>> As per the subject, how do you make your DB layer HA and do you use
>> the
>> db.ha.enabled feature/setting in the Cloudstack management server
>> db.properties file?
>>
>> Cheers
>>

Re: Cloudstack DB HA, do you use db.ha.enabled?

[Nux]

Cheers Daniel,

Can you share any other db.ha parameters you may have tuned?
For me it didn't work out of the box as you described.

Thanks

On 2023-07-20 14:04, Daniel Salvador wrote:

Hello Nux,

Normally I set up three nodes with MariaDB and Galera cluster; then, in 
the
"db.properties" file I mark "db.ha.enabled" as true, and I define one 
of
the nodes as main and the other as replicas. When the main node goes 
down,

one of the replicas takes over, and so on.

The current properties we have on "db.properties" regarding DB HA are 
hard

coded and only address some MySQL properties; which is not the perfect
scenario for MariaDB HA. However, it provides a minimum DB HA setup. Me 
and
other contributors are already working on a flexible solution to 
address

other MySQL properties, and MariaDB properties as well.

Best regards,
Daniel Salvador (gutoveronezi)

On Thu, Jul 20, 2023 at 7:46 AM Nux  wrote:


Hello,

As per the subject, how do you make your DB layer HA and do you use 
the

db.ha.enabled feature/setting in the Cloudstack management server
db.properties file?

Cheers

Cloudstack DB HA, do you use db.ha.enabled?

[Nux]

Hello,

As per the subject, how do you make your DB layer HA and do you use the 
db.ha.enabled feature/setting in the Cloudstack management server 
db.properties file?


Cheers

Re: Waldur for cloudstack

[Nux]

Hi,

I would give the users access to the UI, that's what it is for.
You might want to check the dynamic roles though and make sure the users 
only have access to the APIs they really need.


That said, a Waldur plugin sounds nice, keep us updated if you go that 
way.


Cheers

On 2023-06-14 14:42, Samuel Ngoda wrote:

Thank you.
I am considering doing a plugin for Waldur because we would not like
the customers to access the management servers directly for the
purposes of managing their cloud.
For ease of management and security purposes.

When the public access the management servers directly so as to log in
to their account, is the infrastructure safe?

Regards,
Sam


On Tue, Jun 13, 2023 at 6:33 PM Daniel Salvador 
 wrote:


Hello Sam,

As per their website, Waldur currently does not have integration with
CloudStack. As Waldur is a platform that consumes the cloud, it would 
be
necessary to request them to integrate with CloudStack, as they 
already do

with OpenStack, AWS and others.

Regarding billing in CloudStack, we have the Usage and Quota modules 
that
manage the rating processes and allow the users and operators to 
export the
rated data to a proper billing software. We are working on 
improvements on
the Usage/Quota processes and GUI, and we will be opening the PRs in 
the

next weeks. You can see a preview of the new features in this link:
https://www.youtube.com/watch?v=3tGhrzuxaOw (though you might have to
enable the automatic translation).

Best regards,
Daniel Salvador (gutoveronezi)

On Tue, Jun 13, 2023 at 2:53 AM Samuel Ngoda  
wrote:


> Hi,
> Can Waldur be integrated with cloudstack?
> If not, is there any other open source alternative to provide a user
> console with automated billing and provisioning with a single login?
>
> Regards,
> Sam
>