Re: [one-users] Using CloudInit for contextualization
It should be working. Can you send us the output of onevm show -x vmid of one of those machines? On Mon, Feb 3, 2014 at 6:17 PM, Wilma Hermann wilma.herm...@gmail.com wrote: Hi, I'm using the release image from yesterday (02-Feb-2014 03:39) [1]. And the machine uses cloud-init 0.7.3: # virt-cat one-42 /var/log/cloud-init.log | grep running 2014-02-03 15:18:56,873 - util.py[DEBUG]: Cloud-init v. 0.7.3 running 'init-local' at Mon, 03 Feb 2014 15:18:56 +. Up 4.48 seconds. [1]: http://cloud-images.ubuntu.com/releases/13.10/release/ Thanks in advance Wilma 2014-02-03 Javier Fontan jfon...@opennebula.org: Are you using a recent version of those images? OpenNebula support was added in cloud-init 0.7.3 and the current images come with that version. User data can be specified with USER_DATA or USERDATA parameters so your configuration seems to be OK. On Mon, Feb 3, 2014 at 5:54 PM, Wilma Hermann wilma.herm...@gmail.com wrote: Hi, Well, the core of the problem sounds logical to me. Nevertheless, I have to wait 2 minutes for the network initialization to time-out until I can reboot the machine using the CtrlAltDel-Button in VNC... That's not comfortable, but bearable. However, I cannot get that USER_DATA variable to work. Whatever I enter there, it is obviously ignored. I tried it with the exact code from the documentation you mentioned, but also with something like CONTEXT=[NETWORK=YES,SSH_PUBLIC_KEY=$USER[SSH_PUBLIC_KEY], USER_DATA=#cloud-config bootcmd: - echo HelloWorld /etc/issue ] just to get a visual feedback that the USER_DATA is being used by cloud-init. None of it worked out. Is there a special trick with USER_DATA? Just in case that's important: I'm using OpenNebula 4.4 with libvirt/KVM. Thanks in advance Wilma 2014-01-30 Javier Fontan jfon...@opennebula.org: Unfortunately the current version of cloud-init does not load new network parameters after they are configured in some distributions. There is a ticket to track that problem [1] The documentation gives some ideas on how to overcome this [2]: --8-- The current version of cloud-init configures the network before running cloud-init configuration. This makes the network configuration not reliable. Until a new version that fixes this is released you can add OpenNebula context packages or this user data to reboot the machine so the network is properly configured. --8-- [1] https://bugs.launchpad.net/cloud-init/+bug/1225922 [2] http://docs.opennebula.org/stable/user/virtual_machine_setup/cloud-init.html On Tue, Jan 28, 2014 at 1:56 PM, Wilma Hermann wilma.herm...@gmail.com wrote: Hi, I'm trying to get a Ubuntu 13.10 guest to work, which uses a official Cloud-image (http://cloud-images.ubuntu.com/saucy/) as disk. However, the VM is not integrating into the virtual network. I've double checked the virtual network settings with CentOS-VMs, the network works correctly. I've found out that CloudInit writes a correct /etc/network/interfaces file with a static address, however, the machine somehow ignores this file and keeps sending DHCP requests without getting an answer (which is intended since we don't use DHCP in the VM's network). # virt-cat one-42 /etc/network/interfaces auto lo iface lo inet loopback auto eth0 iface eth0 inet static address 192.168.129.4 network 192.168.128.0 netmask 255.255.254.0 gateway 192.168.128.1 # virt-cat one-42 /var/log/syslog | tail -6 Jan 28 12:42:44 ubuntu dhclient: DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 21 (xid=0x1080a577) Jan 28 12:43:05 ubuntu dhclient: DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 13 (xid=0x1080a577) Jan 28 12:43:18 ubuntu dhclient: DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 20 (xid=0x1080a577) Jan 28 12:43:38 ubuntu dhclient: DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 1 (xid=0x1080a577) Jan 28 12:43:39 ubuntu dhclient: No DHCPOFFERS received. Jan 28 12:43:39 ubuntu dhclient: No working leases in persistent database - sleeping. Does anybody know how the VM template needs to be configured in order to get it working? Thanks in advance Wilma ___ Users mailing list Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org -- Javier Fontán Muiños Developer OpenNebula - The Open Source Toolkit for Data Center Virtualization www.OpenNebula.org | @OpenNebula | github.com/jfontan -- Javier Fontán Muiños Developer OpenNebula - The Open Source Toolkit for Data Center Virtualization www.OpenNebula.org | @OpenNebula | github.com/jfontan -- Javier Fontán Muiños Developer OpenNebula - The Open Source Toolkit for Data Center
Re: [one-users] Questions about OpenNebula system
Dear Carlos and OpenNebula Community, Thanks. You're quite right. I have below question for you: in OpenNebula 3.8.1, if oneimage create .. with below template: NAME = win-xp-5 PATH = /var/lib/image/win-xp-2.qcow2 TYPE = OS the image created successfully, but when PATH = /var/lib/one/var/datastores/ win-xp-2.qcow2, get below error is oned.log file. do you know why and how to fix it? Thank you very much ! Sun Feb 2 22:29:31 2014 [ImG][D]: Message received: LOG E 22 cp: Not allowed to copy images from /var/lib/one/var/ /var/lib/one/etc/ /var/lib/one/ Sun Feb 2 22:29:31 2014 [ImM][E]: cp: Not allowed to copy images from /var/lib/one/var/ /var/lib/one/etc/ /var/lib/one/ Sun Feb 2 22:29:31 2014 [ImG][D]: Message received: LOG E 22 Not allowed to copy image file /var/lib/one/var/datastores/win-xp-2.qcow2 Sun Feb 2 22:29:31 2014 [ImM][E]: Not allowed to copy image file /var/lib/one/var/datastores/win-xp-2.qcow2 Sun Feb 2 22:29:31 2014 [ImG][D]: Message received: LOG I 22 ExitCode: 255 Sun Feb 2 22:29:31 2014 [ImM][I]: ExitCode: 255 Sun Feb 2 22:29:31 2014 [ImG][D]: Message received: CP FAILURE 22 Not allowed to copy image file /var/lib/one/var/datastores/win-xp-2.qcow2 Sun Feb 2 22:29:31 2014 [ImM][E]: Error copying image in the datastore: Not allowed to copy image file /var/lib/one/var/datastores/win-xp-2.qcow2 On Tue, Feb 4, 2014 at 11:10 PM, Carlos Martín Sánchez cmar...@opennebula.org wrote: Hi, Please forward your questions to the mailing list, this way others can help and more people with the same problems will benefit from the answers. Regards -- Carlos Martín, MSc Project Engineer OpenNebula - Flexible Enterprise Cloud Made Simple www.OpenNebula.org | cmar...@opennebula.org | @OpenNebulahttp://twitter.com/opennebulacmar...@opennebula.org On Mon, Feb 3, 2014 at 9:01 PM, Qiubo Su (David Su) qiub...@gmail.comwrote: Dear Carlos, Thanks. You're quite right. I have below question for you: in OpenNebula 3.8.1, if oneimage create .. with below template: NAME = win-xp-5 PATH = /var/lib/image/win-xp-2.qcow2 TYPE = OS the image created successfully, but when PATH = /var/lib/one/var/datastores/win-xp-2.qcow2, get below error is oned.log file. do you know why and how to fix it? Thank you very much ! Sun Feb 2 22:29:31 2014 [ImG][D]: Message received: LOG E 22 cp: Not allowed to copy images from /var/lib/one/var/ /var/lib/one/etc/ /var/lib/one/ Sun Feb 2 22:29:31 2014 [ImM][E]: cp: Not allowed to copy images from /var/lib/one/var/ /var/lib/one/etc/ /var/lib/one/ Sun Feb 2 22:29:31 2014 [ImG][D]: Message received: LOG E 22 Not allowed to copy image file /var/lib/one/var/datastores/win-xp-2.qcow2 Sun Feb 2 22:29:31 2014 [ImM][E]: Not allowed to copy image file /var/lib/one/var/datastores/win-xp-2.qcow2 Sun Feb 2 22:29:31 2014 [ImG][D]: Message received: LOG I 22 ExitCode: 255 Sun Feb 2 22:29:31 2014 [ImM][I]: ExitCode: 255 Sun Feb 2 22:29:31 2014 [ImG][D]: Message received: CP FAILURE 22 Not allowed to copy image file /var/lib/one/var/datastores/win-xp-2.qcow2 Sun Feb 2 22:29:31 2014 [ImM][E]: Error copying image in the datastore: Not allowed to copy image file /var/lib/one/var/datastores/win-xp-2.qcow2 On Mon, Feb 3, 2014 at 11:54 PM, Carlos Martín Sánchez cmar...@opennebula.org wrote: Hi, Why the $VMID can't be passed to fail.sh when it is activated? Where did you get that? The docs say $ID, not $VMID. Regards -- Carlos Martín, MSc Project Engineer OpenNebula - Flexible Enterprise Cloud Made Simple www.OpenNebula.org | cmar...@opennebula.org | @OpenNebulahttp://twitter.com/opennebulacmar...@opennebula.org On Mon, Feb 3, 2014 at 10:58 AM, Qiubo Su (David Su) qiub...@gmail.comwrote: Dear OpenNebula Community, I'm using the OpenNebula 3.8.1 at the moment, however both of the VM_HOOK and HOST_HOOK features don't look working well. Does anyone have similar problem with OpenNebula 3.8.1? How about the later version, e.g. 3.8.3 or 3.8.5? Thank you very much. Best regards, Q.D.S. On Sun, Feb 2, 2014 at 9:17 PM, Qiubo Su (David Su) qiub...@gmail.comwrote: Dear OpenNebula Community, Sent you below email yesterday about not able to generate the desired FAILED state event (i.e. read permission denied when chmod -r /var/lib/image/win-xp-2.qcow2) to activate the action defined in the VM_HOOK section in ~/etc/oned.conf. Moreover, the $VMID (2nd argument defined in the VM_HOOK) can't be passed to the /var/lib/one/var/remotes/hooks/fail.sh file. For example, simply defined the fail.sh as: #!/bin/bash echo $1 $2 When onevm resubmit 2014, the fail.sh is activated by other FAILED state event (not the one specified in below email), the output by echo $1 $2 is VM only, while it should be VM 2014. Why the $VMID can't be passed to fail.sh when it is activated? Thank you very much for your help and have a great weekend ! Best regards, Q.D.S. On Sat, Feb 1, 2014 at 9:26 PM, Qiubo Su
Re: [one-users] VM Opennebula with OpenVZ
Hi Caty, please, provide OpenNebula version you are using as well as VM log file (part of it where errors appear). The openvz driver code available at [1] is updated for OpenNebula 4.4(although docs are not updated yet). [1] https://bitbucket.org/hpcc_kpi/opennebula-openvz/wiki/Home Regards, Nikolay. Catalina Quinde wrote on 04/02/14 00:05: hello friends, I'm using opennebula with openvz, the state the vm is running in opennebula, but when I make a stop the machine status is failed, why is this happening? and how I can fix? Thanks very much. Regards, Caty. ___ Users mailing list Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org ___ Users mailing list Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org
Re: [one-users] Using CloudInit for contextualization
I also tried it with the current Alpha 2 of Ubuntu 14.04 which includes cloud-init 0.7.5, but it does not work either. You can find the output of onevm and oneimage attached. Thanks in advance Wilma 2014-02-04 Javier Fontan jfon...@opennebula.org: It should be working. Can you send us the output of onevm show -x vmid of one of those machines? On Mon, Feb 3, 2014 at 6:17 PM, Wilma Hermann wilma.herm...@gmail.com wrote: Hi, I'm using the release image from yesterday (02-Feb-2014 03:39) [1]. And the machine uses cloud-init 0.7.3: # virt-cat one-42 /var/log/cloud-init.log | grep running 2014-02-03 15:18:56,873 - util.py[DEBUG]: Cloud-init v. 0.7.3 running 'init-local' at Mon, 03 Feb 2014 15:18:56 +. Up 4.48 seconds. [1]: http://cloud-images.ubuntu.com/releases/13.10/release/ Thanks in advance Wilma 2014-02-03 Javier Fontan jfon...@opennebula.org: Are you using a recent version of those images? OpenNebula support was added in cloud-init 0.7.3 and the current images come with that version. User data can be specified with USER_DATA or USERDATA parameters so your configuration seems to be OK. On Mon, Feb 3, 2014 at 5:54 PM, Wilma Hermann wilma.herm...@gmail.com wrote: Hi, Well, the core of the problem sounds logical to me. Nevertheless, I have to wait 2 minutes for the network initialization to time-out until I can reboot the machine using the CtrlAltDel-Button in VNC... That's not comfortable, but bearable. However, I cannot get that USER_DATA variable to work. Whatever I enter there, it is obviously ignored. I tried it with the exact code from the documentation you mentioned, but also with something like CONTEXT=[NETWORK=YES,SSH_PUBLIC_KEY=$USER[SSH_PUBLIC_KEY], USER_DATA=#cloud-config bootcmd: - echo HelloWorld /etc/issue ] just to get a visual feedback that the USER_DATA is being used by cloud-init. None of it worked out. Is there a special trick with USER_DATA? Just in case that's important: I'm using OpenNebula 4.4 with libvirt/KVM. Thanks in advance Wilma 2014-01-30 Javier Fontan jfon...@opennebula.org: Unfortunately the current version of cloud-init does not load new network parameters after they are configured in some distributions. There is a ticket to track that problem [1] The documentation gives some ideas on how to overcome this [2]: --8-- The current version of cloud-init configures the network before running cloud-init configuration. This makes the network configuration not reliable. Until a new version that fixes this is released you can add OpenNebula context packages or this user data to reboot the machine so the network is properly configured. --8-- [1] https://bugs.launchpad.net/cloud-init/+bug/1225922 [2] http://docs.opennebula.org/stable/user/virtual_machine_setup/cloud-init.html On Tue, Jan 28, 2014 at 1:56 PM, Wilma Hermann wilma.herm...@gmail.com wrote: Hi, I'm trying to get a Ubuntu 13.10 guest to work, which uses a official Cloud-image (http://cloud-images.ubuntu.com/saucy/) as disk. However, the VM is not integrating into the virtual network. I've double checked the virtual network settings with CentOS-VMs, the network works correctly. I've found out that CloudInit writes a correct /etc/network/interfaces file with a static address, however, the machine somehow ignores this file and keeps sending DHCP requests without getting an answer (which is intended since we don't use DHCP in the VM's network). # virt-cat one-42 /etc/network/interfaces auto lo iface lo inet loopback auto eth0 iface eth0 inet static address 192.168.129.4 network 192.168.128.0 netmask 255.255.254.0 gateway 192.168.128.1 # virt-cat one-42 /var/log/syslog | tail -6 Jan 28 12:42:44 ubuntu dhclient: DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 21 (xid=0x1080a577) Jan 28 12:43:05 ubuntu dhclient: DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 13 (xid=0x1080a577) Jan 28 12:43:18 ubuntu dhclient: DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 20 (xid=0x1080a577) Jan 28 12:43:38 ubuntu dhclient: DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 1 (xid=0x1080a577) Jan 28 12:43:39 ubuntu dhclient: No DHCPOFFERS received. Jan 28 12:43:39 ubuntu dhclient: No working leases in persistent database - sleeping. Does anybody know how the VM template needs to be configured in order to get it working? Thanks in advance Wilma ___ Users mailing list Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org -- Javier
Re: [one-users] Using CloudInit for contextualization
It's a long shot but do you have the default image set to qcow2? In '/etc/one/vmm_exec/vmm_exec_kvm.conf': DISK = [ driver = qcow2 ] If this is the case change it to raw, restart oned and try again. The image already has the driver set to qcow2 so it should work. On Tue, Feb 4, 2014 at 11:48 AM, Wilma Hermann wilma.herm...@gmail.com wrote: I also tried it with the current Alpha 2 of Ubuntu 14.04 which includes cloud-init 0.7.5, but it does not work either. You can find the output of onevm and oneimage attached. Thanks in advance Wilma 2014-02-04 Javier Fontan jfon...@opennebula.org: It should be working. Can you send us the output of onevm show -x vmid of one of those machines? On Mon, Feb 3, 2014 at 6:17 PM, Wilma Hermann wilma.herm...@gmail.com wrote: Hi, I'm using the release image from yesterday (02-Feb-2014 03:39) [1]. And the machine uses cloud-init 0.7.3: # virt-cat one-42 /var/log/cloud-init.log | grep running 2014-02-03 15:18:56,873 - util.py[DEBUG]: Cloud-init v. 0.7.3 running 'init-local' at Mon, 03 Feb 2014 15:18:56 +. Up 4.48 seconds. [1]: http://cloud-images.ubuntu.com/releases/13.10/release/ Thanks in advance Wilma 2014-02-03 Javier Fontan jfon...@opennebula.org: Are you using a recent version of those images? OpenNebula support was added in cloud-init 0.7.3 and the current images come with that version. User data can be specified with USER_DATA or USERDATA parameters so your configuration seems to be OK. On Mon, Feb 3, 2014 at 5:54 PM, Wilma Hermann wilma.herm...@gmail.com wrote: Hi, Well, the core of the problem sounds logical to me. Nevertheless, I have to wait 2 minutes for the network initialization to time-out until I can reboot the machine using the CtrlAltDel-Button in VNC... That's not comfortable, but bearable. However, I cannot get that USER_DATA variable to work. Whatever I enter there, it is obviously ignored. I tried it with the exact code from the documentation you mentioned, but also with something like CONTEXT=[NETWORK=YES,SSH_PUBLIC_KEY=$USER[SSH_PUBLIC_KEY], USER_DATA=#cloud-config bootcmd: - echo HelloWorld /etc/issue ] just to get a visual feedback that the USER_DATA is being used by cloud-init. None of it worked out. Is there a special trick with USER_DATA? Just in case that's important: I'm using OpenNebula 4.4 with libvirt/KVM. Thanks in advance Wilma 2014-01-30 Javier Fontan jfon...@opennebula.org: Unfortunately the current version of cloud-init does not load new network parameters after they are configured in some distributions. There is a ticket to track that problem [1] The documentation gives some ideas on how to overcome this [2]: --8-- The current version of cloud-init configures the network before running cloud-init configuration. This makes the network configuration not reliable. Until a new version that fixes this is released you can add OpenNebula context packages or this user data to reboot the machine so the network is properly configured. --8-- [1] https://bugs.launchpad.net/cloud-init/+bug/1225922 [2] http://docs.opennebula.org/stable/user/virtual_machine_setup/cloud-init.html On Tue, Jan 28, 2014 at 1:56 PM, Wilma Hermann wilma.herm...@gmail.com wrote: Hi, I'm trying to get a Ubuntu 13.10 guest to work, which uses a official Cloud-image (http://cloud-images.ubuntu.com/saucy/) as disk. However, the VM is not integrating into the virtual network. I've double checked the virtual network settings with CentOS-VMs, the network works correctly. I've found out that CloudInit writes a correct /etc/network/interfaces file with a static address, however, the machine somehow ignores this file and keeps sending DHCP requests without getting an answer (which is intended since we don't use DHCP in the VM's network). # virt-cat one-42 /etc/network/interfaces auto lo iface lo inet loopback auto eth0 iface eth0 inet static address 192.168.129.4 network 192.168.128.0 netmask 255.255.254.0 gateway 192.168.128.1 # virt-cat one-42 /var/log/syslog | tail -6 Jan 28 12:42:44 ubuntu dhclient: DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 21 (xid=0x1080a577) Jan 28 12:43:05 ubuntu dhclient: DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 13 (xid=0x1080a577) Jan 28 12:43:18 ubuntu dhclient: DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 20 (xid=0x1080a577) Jan 28 12:43:38 ubuntu dhclient: DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 1 (xid=0x1080a577) Jan 28 12:43:39 ubuntu dhclient: No DHCPOFFERS received. Jan 28 12:43:39 ubuntu dhclient: No working leases in persistent
Re: [one-users] Sunstone with nginx as reverse-proxy - server exception
Hi, On 2 February 2014 00:06, ML mail mlnos...@yahoo.com wrote: Hi, I am trying to setup nginx as HTTPS reverse proxy to sunstone as described in the OpenNebula3 book. I can get it to work up to the login screen but once logged I get the following error message from sunstone: It appears there was a server exception. Please check server's log. Could yo check what request is causing this error? If you are using Chrome you can check it in the Network tab of the developer tools, you should look for a request returning a 500 error. Cheers Checking sunstone.log or sunstone.error does not show any error. Anyone knows what could be wrong? Below is my nginx server setup: upstream sunstone { server 127.0.0.1:9869; } server { listen 443; server_name sunstone-frontend; ssl on; ssl_certificate /etc/ssl/certs/sunstone.crt; ssl_certificate_key /etc/ssl/private/sunstone.key; location / { proxy_pass http://sunstone; } } Cheers, ML ___ Users mailing list Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org -- -- Daniel Molina Project Engineer OpenNebula - Flexible Enterprise Cloud Made Simple www.OpenNebula.org | dmol...@opennebula.org | @OpenNebula ___ Users mailing list Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org
Re: [one-users] VNC in sunstone not working on firefox 26 (one 4.4)
Hi Ondra, Let us know if the solution proposed by Wilma works for you. Thank you both for your feedback. On 1 February 2014 19:41, Wilma Hermann wilma.herm...@gmail.com wrote: Hi, are you using a self-signed certificate? I encountered the same issue with a snakeoil-cert, Firefox seems to store the trust to a certain certificate not only based on the domain but also on the port used. Since VNC is using a different port, this ends up in a missing trust-warning. Try opening https://opennebulaaddr https://opennebulaaddr/vm/272/startvnc:29876/ in your firefox. If it gives you a warning, then you only need to trust your cert and sucure VNC should work. Greetings Wilma 2014-01-31 Tino Vazquez cvazq...@c12g.com: Hi, Ok, thanks for letting us know. I've opened a ticket to reproduce and solve this problem for future releases: http://dev.opennebula.org/issues/2703 Regards, -Tino -- OpenNebula - Flexible Enterprise Cloud Made Simple -- Constantino Vázquez Blanco, PhD, MSc Senior Infrastructure Architect at C12G Labs www.c12g.com | @C12G | es.linkedin.com/in/tinova -- Confidentiality Warning: The information contained in this e-mail and any accompanying documents, unless otherwise expressly indicated, is confidential and privileged, and is intended solely for the person and/or entity to whom it is addressed (i.e. those identified in the To and cc box). They are the property of C12G Labs S.L.. Unauthorized distribution, review, use, disclosure, or copying of this communication, or any part thereof, is strictly prohibited and may be unlawful. If you have received this e-mail in error, please notify us immediately by e-mail at ab...@c12g.com and delete the e-mail and attachments and any copy from your system. C12G thanks you for your cooperation. On 31 January 2014 17:05, Hamada, Ondrej ondrej.ham...@acision.com wrote: Hi Tino, Yes, I can confirm that. Without SSL the VNC works in firefox. Regards, Ondra -Original Message- From: Tino Vazquez [mailto:cvazq...@c12g.com] Sent: Friday, January 31, 2014 12:50 PM To: Hamada, Ondrej Cc: users Subject: Re: [one-users] VNC in sunstone not working on firefox 26 (one 4.4) Hi Ondrej, Just to rule out other problems, can you confirm that without SSL VNC is working in Firefox? Regards, -Tino -- OpenNebula - Flexible Enterprise Cloud Made Simple -- Constantino Vázquez Blanco, PhD, MSc Senior Infrastructure Architect at C12G Labs www.c12g.com | @C12G | es.linkedin.com/in/tinova -- Confidentiality Warning: The information contained in this e-mail and any accompanying documents, unless otherwise expressly indicated, is confidential and privileged, and is intended solely for the person and/or entity to whom it is addressed (i.e. those identified in the To and cc box). They are the property of C12G Labs S.L.. Unauthorized distribution, review, use, disclosure, or copying of this communication, or any part thereof, is strictly prohibited and may be unlawful. If you have received this e-mail in error, please notify us immediately by e-mail at ab...@c12g.com and delete the e-mail and attachments and any copy from your system. C12G thanks you for your cooperation. On 30 January 2014 17:59, Hamada, Ondrej ondrej.ham...@acision.com wrote: Hi Tino, Thank you for reply. Here's the output: 17:45:06.596 POST https://opennebulaaddr/vm/272/startvnc [HTTP/1.1 200 OK 59ms] 17:45:06.621 SecurityError: The operation is insecure. websock.js:333 17:45:06.619 New state 'loaded', was 'disconnected'. Msg: noVNC ready: native WebSockets, canvas rendering util.js:110 17:45:06.620 New state 'connect', was 'loaded'. util.js:110 17:45:06.621 Skipping unsupported WebSocket binary sub-protocol util.js:111 17:45:08.621 New state 'failed', was 'connect'. Msg: Connect timeout util.js:111 17:45:08.672 New state 'disconnected', was 'failed'. The security error - it remains me that the problems had started probably after I've configured apache as a SSL proxy for sunstone. And in Chrome it works ok. Unfortunately I need the SSL enabled. -Original Message- From: Tino Vazquez [mailto:cvazq...@c12g.com] Sent: Thursday, January 30, 2014 4:24 PM To: Hamada, Ondrej Cc: users Subject: Re: [one-users] VNC in sunstone not working on firefox 26 (one 4.4) Hi Ondrej, Right after clicking on the VNC link, is anything showing in the Firefox dev tools console [1]? Best, -Tino [1] https://developer.mozilla.org/en/docs/Tools -- OpenNebula - Flexible Enterprise Cloud Made Simple -- Constantino Vázquez Blanco, PhD, MSc Senior Infrastructure Architect at C12G Labs www.c12g.com | @C12G | es.linkedin.com/in/tinova -- Confidentiality Warning: The information contained in this e-mail and any accompanying documents, unless otherwise expressly indicated, is confidential and privileged, and is intended solely
Re: [one-users] Sunstone with nginx as reverse-proxy - server exception
Hi Daniel, Using Firefox and Firebug I can see that actually the requests which have trouble are those using AJAX, so the design/layout of Sunstone loads but no data, everything is empty. The requests do not give a 50x error but a 403 Forbidden. Here is a few example of them taken from the Network tab of Firebug: 3ms GET vm?timeout=false 403 Forbidden sunstone-frontend 9 B 192.168.100.170:443 80ms GET image?timeout=true 403 Forbidden sunstone-frontend 9 B 192.168.100.170:443 41ms GET vnet?timeout=true 403 Forbidden sunstone-frontend 9 B 192.168.100.170:443 Do you have any ideas what could be generating that 403? Cheers, ML On Tuesday, February 4, 2014 12:01 PM, Daniel Molina dmol...@opennebula.org wrote: Hi, On 2 February 2014 00:06, ML mail mlnos...@yahoo.com wrote: Hi, I am trying to setup nginx as HTTPS reverse proxy to sunstone as described in the OpenNebula3 book. I can get it to work up to the login screen but once logged I get the following error message from sunstone: It appears there was a server exception. Please check server's log. Could yo check what request is causing this error? If you are using Chrome you can check it in the Network tab of the developer tools, you should look for a request returning a 500 error. Cheers Checking sunstone.log or sunstone.error does not show any error. Anyone knows what could be wrong? Below is my nginx server setup: upstream sunstone { server 127.0.0.1:9869; } server { listen 443; server_name sunstone-frontend; ssl on; ssl_certificate /etc/ssl/certs/sunstone.crt; ssl_certificate_key /etc/ssl/private/sunstone.key; location / { proxy_pass http://sunstone; } } Cheers, ML ___ Users mailing list Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org -- -- Daniel Molina Project Engineer OpenNebula - Flexible Enterprise Cloud Made Simple www.OpenNebula.org | dmol...@opennebula.org | @OpenNebula___ Users mailing list Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org
Re: [one-users] VNC in sunstone not working on firefox 26 (one 4.4)
Hi, Thank you for hints, but my connection gets reseted when trying to access https://opennebulaaddr:29876. I already have permanent exception for my cert in firefox. Ondra From: Daniel Molina [mailto:dmol...@opennebula.org] Sent: Tuesday, February 04, 2014 12:03 PM To: Hamada, Ondrej Cc: users Subject: Re: [one-users] VNC in sunstone not working on firefox 26 (one 4.4) Hi Ondra, Let us know if the solution proposed by Wilma works for you. Thank you both for your feedback. On 1 February 2014 19:41, Wilma Hermann wilma.herm...@gmail.commailto:wilma.herm...@gmail.com wrote: Hi, are you using a self-signed certificate? I encountered the same issue with a snakeoil-cert, Firefox seems to store the trust to a certain certificate not only based on the domain but also on the port used. Since VNC is using a different port, this ends up in a missing trust-warning. Try opening https://opennebulaaddrhttps://opennebulaaddr/vm/272/startvnc:29876/ in your firefox. If it gives you a warning, then you only need to trust your cert and sucure VNC should work. Greetings Wilma 2014-01-31 Tino Vazquez cvazq...@c12g.commailto:cvazq...@c12g.com: Hi, Ok, thanks for letting us know. I've opened a ticket to reproduce and solve this problem for future releases: http://dev.opennebula.org/issues/2703 Regards, -Tino -- OpenNebula - Flexible Enterprise Cloud Made Simple -- Constantino Vázquez Blanco, PhD, MSc Senior Infrastructure Architect at C12G Labs www.c12g.comhttp://www.c12g.com | @C12G | es.linkedin.com/in/tinovahttp://es.linkedin.com/in/tinova -- Confidentiality Warning: The information contained in this e-mail and any accompanying documents, unless otherwise expressly indicated, is confidential and privileged, and is intended solely for the person and/or entity to whom it is addressed (i.e. those identified in the To and cc box). They are the property of C12G Labs S.L.. Unauthorized distribution, review, use, disclosure, or copying of this communication, or any part thereof, is strictly prohibited and may be unlawful. If you have received this e-mail in error, please notify us immediately by e-mail at ab...@c12g.commailto:ab...@c12g.com and delete the e-mail and attachments and any copy from your system. C12G thanks you for your cooperation. On 31 January 2014 17:05, Hamada, Ondrej ondrej.ham...@acision.commailto:ondrej.ham...@acision.com wrote: Hi Tino, Yes, I can confirm that. Without SSL the VNC works in firefox. Regards, Ondra -Original Message- From: Tino Vazquez [mailto:cvazq...@c12g.commailto:cvazq...@c12g.com] Sent: Friday, January 31, 2014 12:50 PM To: Hamada, Ondrej Cc: users Subject: Re: [one-users] VNC in sunstone not working on firefox 26 (one 4.4) Hi Ondrej, Just to rule out other problems, can you confirm that without SSL VNC is working in Firefox? Regards, -Tino -- OpenNebula - Flexible Enterprise Cloud Made Simple -- Constantino Vázquez Blanco, PhD, MSc Senior Infrastructure Architect at C12G Labs www.c12g.comhttp://www.c12g.com | @C12G | es.linkedin.com/in/tinovahttp://es.linkedin.com/in/tinova -- Confidentiality Warning: The information contained in this e-mail and any accompanying documents, unless otherwise expressly indicated, is confidential and privileged, and is intended solely for the person and/or entity to whom it is addressed (i.e. those identified in the To and cc box). They are the property of C12G Labs S.L.. Unauthorized distribution, review, use, disclosure, or copying of this communication, or any part thereof, is strictly prohibited and may be unlawful. If you have received this e-mail in error, please notify us immediately by e-mail at ab...@c12g.commailto:ab...@c12g.com and delete the e-mail and attachments and any copy from your system. C12G thanks you for your cooperation. On 30 January 2014 17:59, Hamada, Ondrej ondrej.ham...@acision.commailto:ondrej.ham...@acision.com wrote: Hi Tino, Thank you for reply. Here's the output: 17:45:06.596 POST https://opennebulaaddr/vm/272/startvnc [HTTP/1.1 200 OK 59ms] 17:45:06.621 SecurityError: The operation is insecure. websock.js:333 17:45:06.619 New state 'loaded', was 'disconnected'. Msg: noVNC ready: native WebSockets, canvas rendering util.js:110 17:45:06.620 New state 'connect', was 'loaded'. util.js:110 17:45:06.621 Skipping unsupported WebSocket binary sub-protocol util.js:111 17:45:08.621 New state 'failed', was 'connect'. Msg: Connect timeout util.js:111 17:45:08.672 New state 'disconnected', was 'failed'. The security error - it remains me that the problems had started probably after I've configured apache as a SSL proxy for sunstone. And in Chrome it works ok. Unfortunately I need the SSL enabled. -Original Message- From: Tino Vazquez [mailto:cvazq...@c12g.commailto:cvazq...@c12g.com] Sent: Thursday, January 30, 2014 4:24 PM To: Hamada, Ondrej Cc: users Subject: Re: [one-users] VNC in sunstone not working on
Re: [one-users] VNC in sunstone not working on firefox 26 (one 4.4)
Hi, The reset of the connection is perfectly right. It's only about trusting the certificate on that port. After that, secure VNC should work. Make sure, that the user account you're using in Sunstone has secure Websockets enabled. You can't access the insecure VNC from an TLS-protected Sunstone because of the Same-Origin-Policy. Greetings Wilma 2014-02-04 Hamada, Ondrej ondrej.ham...@acision.com: Hi, Thank you for hints, but my connection gets reseted when trying to access https://opennebulaaddr:29876. I already have permanent exception for my cert in firefox. Ondra *From:* Daniel Molina [mailto:dmol...@opennebula.org] *Sent:* Tuesday, February 04, 2014 12:03 PM *To:* Hamada, Ondrej *Cc:* users *Subject:* Re: [one-users] VNC in sunstone not working on firefox 26 (one 4.4) Hi Ondra, Let us know if the solution proposed by Wilma works for you. Thank you both for your feedback. On 1 February 2014 19:41, Wilma Hermann wilma.herm...@gmail.com wrote: Hi, are you using a self-signed certificate? I encountered the same issue with a snakeoil-cert, Firefox seems to store the trust to a certain certificate not only based on the domain but also on the port used. Since VNC is using a different port, this ends up in a missing trust-warning. Try opening https://opennebulaaddr https://opennebulaaddr/vm/272/startvnc:29876/ in your firefox. If it gives you a warning, then you only need to trust your cert and sucure VNC should work. Greetings Wilma 2014-01-31 Tino Vazquez cvazq...@c12g.com: Hi, Ok, thanks for letting us know. I've opened a ticket to reproduce and solve this problem for future releases: http://dev.opennebula.org/issues/2703 Regards, -Tino -- OpenNebula - Flexible Enterprise Cloud Made Simple -- Constantino Vázquez Blanco, PhD, MSc Senior Infrastructure Architect at C12G Labs www.c12g.com | @C12G | es.linkedin.com/in/tinova -- Confidentiality Warning: The information contained in this e-mail and any accompanying documents, unless otherwise expressly indicated, is confidential and privileged, and is intended solely for the person and/or entity to whom it is addressed (i.e. those identified in the To and cc box). They are the property of C12G Labs S.L.. Unauthorized distribution, review, use, disclosure, or copying of this communication, or any part thereof, is strictly prohibited and may be unlawful. If you have received this e-mail in error, please notify us immediately by e-mail at ab...@c12g.com and delete the e-mail and attachments and any copy from your system. C12G thanks you for your cooperation. On 31 January 2014 17:05, Hamada, Ondrej ondrej.ham...@acision.com wrote: Hi Tino, Yes, I can confirm that. Without SSL the VNC works in firefox. Regards, Ondra -Original Message- From: Tino Vazquez [mailto:cvazq...@c12g.com] Sent: Friday, January 31, 2014 12:50 PM To: Hamada, Ondrej Cc: users Subject: Re: [one-users] VNC in sunstone not working on firefox 26 (one 4.4) Hi Ondrej, Just to rule out other problems, can you confirm that without SSL VNC is working in Firefox? Regards, -Tino -- OpenNebula - Flexible Enterprise Cloud Made Simple -- Constantino Vázquez Blanco, PhD, MSc Senior Infrastructure Architect at C12G Labs www.c12g.com | @C12G | es.linkedin.com/in/tinova -- Confidentiality Warning: The information contained in this e-mail and any accompanying documents, unless otherwise expressly indicated, is confidential and privileged, and is intended solely for the person and/or entity to whom it is addressed (i.e. those identified in the To and cc box). They are the property of C12G Labs S.L.. Unauthorized distribution, review, use, disclosure, or copying of this communication, or any part thereof, is strictly prohibited and may be unlawful. If you have received this e-mail in error, please notify us immediately by e-mail at ab...@c12g.com and delete the e-mail and attachments and any copy from your system. C12G thanks you for your cooperation. On 30 January 2014 17:59, Hamada, Ondrej ondrej.ham...@acision.com wrote: Hi Tino, Thank you for reply. Here's the output: 17:45:06.596 POST https://opennebulaaddr/vm/272/startvnc [HTTP/1.1 200 OK 59ms] 17:45:06.621 SecurityError: The operation is insecure. websock.js:333 17:45:06.619 New state 'loaded', was 'disconnected'. Msg: noVNC ready: native WebSockets, canvas rendering util.js:110 17:45:06.620 New state 'connect', was 'loaded'. util.js:110 17:45:06.621 Skipping unsupported WebSocket binary sub-protocol util.js:111 17:45:08.621 New state 'failed', was 'connect'. Msg: Connect timeout util.js:111 17:45:08.672 New state 'disconnected', was 'failed'. The security error - it remains me that the problems had started probably after I've configured apache as a SSL proxy for sunstone. And in Chrome it works ok. Unfortunately I need the SSL enabled.
Re: [one-users] Using CloudInit for contextualization
No, I never touched that file. It's current setting is DISK = [ driver = raw , cache = none] I also tried converting the Ubuntu Image to qcow and raw using qemu-img to make sure it is no problem with the image format. That also didn't change anything. 2014-02-04 Javier Fontan jfon...@opennebula.org: It's a long shot but do you have the default image set to qcow2? In '/etc/one/vmm_exec/vmm_exec_kvm.conf': DISK = [ driver = qcow2 ] If this is the case change it to raw, restart oned and try again. The image already has the driver set to qcow2 so it should work. On Tue, Feb 4, 2014 at 11:48 AM, Wilma Hermann wilma.herm...@gmail.com wrote: I also tried it with the current Alpha 2 of Ubuntu 14.04 which includes cloud-init 0.7.5, but it does not work either. You can find the output of onevm and oneimage attached. Thanks in advance Wilma 2014-02-04 Javier Fontan jfon...@opennebula.org: It should be working. Can you send us the output of onevm show -x vmid of one of those machines? On Mon, Feb 3, 2014 at 6:17 PM, Wilma Hermann wilma.herm...@gmail.com wrote: Hi, I'm using the release image from yesterday (02-Feb-2014 03:39) [1]. And the machine uses cloud-init 0.7.3: # virt-cat one-42 /var/log/cloud-init.log | grep running 2014-02-03 15:18:56,873 - util.py[DEBUG]: Cloud-init v. 0.7.3 running 'init-local' at Mon, 03 Feb 2014 15:18:56 +. Up 4.48 seconds. [1]: http://cloud-images.ubuntu.com/releases/13.10/release/ Thanks in advance Wilma 2014-02-03 Javier Fontan jfon...@opennebula.org: Are you using a recent version of those images? OpenNebula support was added in cloud-init 0.7.3 and the current images come with that version. User data can be specified with USER_DATA or USERDATA parameters so your configuration seems to be OK. On Mon, Feb 3, 2014 at 5:54 PM, Wilma Hermann wilma.herm...@gmail.com wrote: Hi, Well, the core of the problem sounds logical to me. Nevertheless, I have to wait 2 minutes for the network initialization to time-out until I can reboot the machine using the CtrlAltDel-Button in VNC... That's not comfortable, but bearable. However, I cannot get that USER_DATA variable to work. Whatever I enter there, it is obviously ignored. I tried it with the exact code from the documentation you mentioned, but also with something like CONTEXT=[NETWORK=YES,SSH_PUBLIC_KEY=$USER[SSH_PUBLIC_KEY], USER_DATA=#cloud-config bootcmd: - echo HelloWorld /etc/issue ] just to get a visual feedback that the USER_DATA is being used by cloud-init. None of it worked out. Is there a special trick with USER_DATA? Just in case that's important: I'm using OpenNebula 4.4 with libvirt/KVM. Thanks in advance Wilma 2014-01-30 Javier Fontan jfon...@opennebula.org: Unfortunately the current version of cloud-init does not load new network parameters after they are configured in some distributions. There is a ticket to track that problem [1] The documentation gives some ideas on how to overcome this [2]: --8-- The current version of cloud-init configures the network before running cloud-init configuration. This makes the network configuration not reliable. Until a new version that fixes this is released you can add OpenNebula context packages or this user data to reboot the machine so the network is properly configured. --8-- [1] https://bugs.launchpad.net/cloud-init/+bug/1225922 [2] http://docs.opennebula.org/stable/user/virtual_machine_setup/cloud-init.html On Tue, Jan 28, 2014 at 1:56 PM, Wilma Hermann wilma.herm...@gmail.com wrote: Hi, I'm trying to get a Ubuntu 13.10 guest to work, which uses a official Cloud-image (http://cloud-images.ubuntu.com/saucy/) as disk. However, the VM is not integrating into the virtual network. I've double checked the virtual network settings with CentOS-VMs, the network works correctly. I've found out that CloudInit writes a correct /etc/network/interfaces file with a static address, however, the machine somehow ignores this file and keeps sending DHCP requests without getting an answer (which is intended since we don't use DHCP in the VM's network). # virt-cat one-42 /etc/network/interfaces auto lo iface lo inet loopback auto eth0 iface eth0 inet static address 192.168.129.4 network 192.168.128.0 netmask 255.255.254.0 gateway 192.168.128.1 # virt-cat one-42 /var/log/syslog | tail -6 Jan 28 12:42:44 ubuntu dhclient: DHCPDISCOVER on eth0 to 255.255.255.255 port 67 interval 21 (xid=0x1080a577) Jan 28 12:43:05 ubuntu dhclient:
Re: [one-users] Using CloudInit for contextualization
I'll try to test that image and will let you know what I can find. On Tue, Feb 4, 2014 at 1:18 PM, Wilma Hermann wilma.herm...@gmail.com wrote: No, I never touched that file. It's current setting is DISK = [ driver = raw , cache = none] I also tried converting the Ubuntu Image to qcow and raw using qemu-img to make sure it is no problem with the image format. That also didn't change anything. 2014-02-04 Javier Fontan jfon...@opennebula.org: It's a long shot but do you have the default image set to qcow2? In '/etc/one/vmm_exec/vmm_exec_kvm.conf': DISK = [ driver = qcow2 ] If this is the case change it to raw, restart oned and try again. The image already has the driver set to qcow2 so it should work. On Tue, Feb 4, 2014 at 11:48 AM, Wilma Hermann wilma.herm...@gmail.com wrote: I also tried it with the current Alpha 2 of Ubuntu 14.04 which includes cloud-init 0.7.5, but it does not work either. You can find the output of onevm and oneimage attached. Thanks in advance Wilma 2014-02-04 Javier Fontan jfon...@opennebula.org: It should be working. Can you send us the output of onevm show -x vmid of one of those machines? On Mon, Feb 3, 2014 at 6:17 PM, Wilma Hermann wilma.herm...@gmail.com wrote: Hi, I'm using the release image from yesterday (02-Feb-2014 03:39) [1]. And the machine uses cloud-init 0.7.3: # virt-cat one-42 /var/log/cloud-init.log | grep running 2014-02-03 15:18:56,873 - util.py[DEBUG]: Cloud-init v. 0.7.3 running 'init-local' at Mon, 03 Feb 2014 15:18:56 +. Up 4.48 seconds. [1]: http://cloud-images.ubuntu.com/releases/13.10/release/ Thanks in advance Wilma 2014-02-03 Javier Fontan jfon...@opennebula.org: Are you using a recent version of those images? OpenNebula support was added in cloud-init 0.7.3 and the current images come with that version. User data can be specified with USER_DATA or USERDATA parameters so your configuration seems to be OK. On Mon, Feb 3, 2014 at 5:54 PM, Wilma Hermann wilma.herm...@gmail.com wrote: Hi, Well, the core of the problem sounds logical to me. Nevertheless, I have to wait 2 minutes for the network initialization to time-out until I can reboot the machine using the CtrlAltDel-Button in VNC... That's not comfortable, but bearable. However, I cannot get that USER_DATA variable to work. Whatever I enter there, it is obviously ignored. I tried it with the exact code from the documentation you mentioned, but also with something like CONTEXT=[NETWORK=YES,SSH_PUBLIC_KEY=$USER[SSH_PUBLIC_KEY], USER_DATA=#cloud-config bootcmd: - echo HelloWorld /etc/issue ] just to get a visual feedback that the USER_DATA is being used by cloud-init. None of it worked out. Is there a special trick with USER_DATA? Just in case that's important: I'm using OpenNebula 4.4 with libvirt/KVM. Thanks in advance Wilma 2014-01-30 Javier Fontan jfon...@opennebula.org: Unfortunately the current version of cloud-init does not load new network parameters after they are configured in some distributions. There is a ticket to track that problem [1] The documentation gives some ideas on how to overcome this [2]: --8-- The current version of cloud-init configures the network before running cloud-init configuration. This makes the network configuration not reliable. Until a new version that fixes this is released you can add OpenNebula context packages or this user data to reboot the machine so the network is properly configured. --8-- [1] https://bugs.launchpad.net/cloud-init/+bug/1225922 [2] http://docs.opennebula.org/stable/user/virtual_machine_setup/cloud-init.html On Tue, Jan 28, 2014 at 1:56 PM, Wilma Hermann wilma.herm...@gmail.com wrote: Hi, I'm trying to get a Ubuntu 13.10 guest to work, which uses a official Cloud-image (http://cloud-images.ubuntu.com/saucy/) as disk. However, the VM is not integrating into the virtual network. I've double checked the virtual network settings with CentOS-VMs, the network works correctly. I've found out that CloudInit writes a correct /etc/network/interfaces file with a static address, however, the machine somehow ignores this file and keeps sending DHCP requests without getting an answer (which is intended since we don't use DHCP in the VM's network). # virt-cat one-42 /etc/network/interfaces auto lo iface lo inet loopback auto eth0 iface eth0 inet static address 192.168.129.4 network 192.168.128.0 netmask 255.255.254.0 gateway 192.168.128.1 # virt-cat one-42
Re: [one-users] VNC in sunstone not working on firefox 26 (one 4.4)
Hmm, so the problem is probably in my VNC proxy configuration. If I enable the websockets for user, then the VNC window shows up, but it is disconnected. In chrome it is now disconnected too and novnc.log reports missing pem file in /var/lib/one although I have specified both certificate and key in the vnc-proxy parameters in sunstone-server.conf From: Wilma Hermann [mailto:wilma.herm...@gmail.com] Sent: Tuesday, February 04, 2014 1:10 PM To: Hamada, Ondrej Cc: Daniel Molina; users Subject: Re: [one-users] VNC in sunstone not working on firefox 26 (one 4.4) Hi, The reset of the connection is perfectly right. It's only about trusting the certificate on that port. After that, secure VNC should work. Make sure, that the user account you're using in Sunstone has secure Websockets enabled. You can't access the insecure VNC from an TLS-protected Sunstone because of the Same-Origin-Policy. Greetings Wilma 2014-02-04 Hamada, Ondrej ondrej.ham...@acision.commailto:ondrej.ham...@acision.com: Hi, Thank you for hints, but my connection gets reseted when trying to access https://opennebulaaddr:29876. I already have permanent exception for my cert in firefox. Ondra From: Daniel Molina [mailto:dmol...@opennebula.orgmailto:dmol...@opennebula.org] Sent: Tuesday, February 04, 2014 12:03 PM To: Hamada, Ondrej Cc: users Subject: Re: [one-users] VNC in sunstone not working on firefox 26 (one 4.4) Hi Ondra, Let us know if the solution proposed by Wilma works for you. Thank you both for your feedback. On 1 February 2014 19:41, Wilma Hermann wilma.herm...@gmail.commailto:wilma.herm...@gmail.com wrote: Hi, are you using a self-signed certificate? I encountered the same issue with a snakeoil-cert, Firefox seems to store the trust to a certain certificate not only based on the domain but also on the port used. Since VNC is using a different port, this ends up in a missing trust-warning. Try opening https://opennebulaaddrhttps://opennebulaaddr/vm/272/startvnc:29876/ in your firefox. If it gives you a warning, then you only need to trust your cert and sucure VNC should work. Greetings Wilma 2014-01-31 Tino Vazquez cvazq...@c12g.commailto:cvazq...@c12g.com: Hi, Ok, thanks for letting us know. I've opened a ticket to reproduce and solve this problem for future releases: http://dev.opennebula.org/issues/2703 Regards, -Tino -- OpenNebula - Flexible Enterprise Cloud Made Simple -- Constantino Vázquez Blanco, PhD, MSc Senior Infrastructure Architect at C12G Labs www.c12g.comhttp://www.c12g.com | @C12G | es.linkedin.com/in/tinovahttp://es.linkedin.com/in/tinova -- Confidentiality Warning: The information contained in this e-mail and any accompanying documents, unless otherwise expressly indicated, is confidential and privileged, and is intended solely for the person and/or entity to whom it is addressed (i.e. those identified in the To and cc box). They are the property of C12G Labs S.L.. Unauthorized distribution, review, use, disclosure, or copying of this communication, or any part thereof, is strictly prohibited and may be unlawful. If you have received this e-mail in error, please notify us immediately by e-mail at ab...@c12g.commailto:ab...@c12g.com and delete the e-mail and attachments and any copy from your system. C12G thanks you for your cooperation. On 31 January 2014 17:05, Hamada, Ondrej ondrej.ham...@acision.commailto:ondrej.ham...@acision.com wrote: Hi Tino, Yes, I can confirm that. Without SSL the VNC works in firefox. Regards, Ondra -Original Message- From: Tino Vazquez [mailto:cvazq...@c12g.commailto:cvazq...@c12g.com] Sent: Friday, January 31, 2014 12:50 PM To: Hamada, Ondrej Cc: users Subject: Re: [one-users] VNC in sunstone not working on firefox 26 (one 4.4) Hi Ondrej, Just to rule out other problems, can you confirm that without SSL VNC is working in Firefox? Regards, -Tino -- OpenNebula - Flexible Enterprise Cloud Made Simple -- Constantino Vázquez Blanco, PhD, MSc Senior Infrastructure Architect at C12G Labs www.c12g.comhttp://www.c12g.com | @C12G | es.linkedin.com/in/tinovahttp://es.linkedin.com/in/tinova -- Confidentiality Warning: The information contained in this e-mail and any accompanying documents, unless otherwise expressly indicated, is confidential and privileged, and is intended solely for the person and/or entity to whom it is addressed (i.e. those identified in the To and cc box). They are the property of C12G Labs S.L.. Unauthorized distribution, review, use, disclosure, or copying of this communication, or any part thereof, is strictly prohibited and may be unlawful. If you have received this e-mail in error, please notify us immediately by e-mail at ab...@c12g.commailto:ab...@c12g.com and delete the e-mail and attachments and any copy from your system. C12G thanks you for your cooperation. On 30 January 2014 17:59, Hamada, Ondrej ondrej.ham...@acision.commailto:ondrej.ham...@acision.com
Re: [one-users] Sunstone with nginx as reverse-proxy - server exception
I have found out the problem with the 403 forbidden errors, I needed to pass the following HTTP headers in my nginx reverse proxy configuration: proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header Host $http_host; Now everything works fine except for VNC. Any clues if it is possible to run VNC in Sunstone through an nginx HTTPS reverse proxy? Note here that my reverse proxy and Sunstone are on the same (frontend) server. Regards ML On Tuesday, February 4, 2014 12:23 PM, ML mail mlnos...@yahoo.com wrote: Hi Daniel, Using Firefox and Firebug I can see that actually the requests which have trouble are those using AJAX, so the design/layout of Sunstone loads but no data, everything is empty. The requests do not give a 50x error but a 403 Forbidden. Here is a few example of them taken from the Network tab of Firebug: 3ms GET vm?timeout=false 403 Forbidden sunstone-frontend 9 B 192.168.100.170:443 80ms GET image?timeout=true 403 Forbidden sunstone-frontend 9 B 192.168.100.170:443 41ms GET vnet?timeout=true 403 Forbidden sunstone-frontend 9 B 192.168.100.170:443 Do you have any ideas what could be generating that 403? Cheers, ML On Tuesday, February 4, 2014 12:01 PM, Daniel Molina dmol...@opennebula.org wrote: Hi, On 2 February 2014 00:06, ML mail mlnos...@yahoo.com wrote: Hi, I am trying to setup nginx as HTTPS reverse proxy to sunstone as described in the OpenNebula3 book. I can get it to work up to the login screen but once logged I get the following error message from sunstone: It appears there was a server exception. Please check server's log. Could yo check what request is causing this error? If you are using Chrome you can check it in the Network tab of the developer tools, you should look for a request returning a 500 error. Cheers Checking sunstone.log or sunstone.error does not show any error. Anyone knows what could be wrong? Below is my nginx server setup: upstream sunstone { server 127.0.0.1:9869; } server { listen 443; server_name sunstone-frontend; ssl on; ssl_certificate /etc/ssl/certs/sunstone.crt; ssl_certificate_key /etc/ssl/private/sunstone.key; location / { proxy_pass http://sunstone; } } Cheers, ML ___ Users mailing list Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org -- -- Daniel Molina Project Engineer OpenNebula - Flexible Enterprise Cloud Made Simple www.OpenNebula.org | dmol...@opennebula.org | @OpenNebula___ Users mailing list Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org
[one-users] (no subject)
Hi, I am new to Opennebula and Linux based virtualization in general so please bear with me. I was able to successfully follow the the instructions and install Opennebula and create a VM as instructed in the quick start guide. However, when I shutdown the VM for a while, it disappeared. How do I get it back? Here are a few command outputs == $ onevm list ID USER GROUPNAMESTAT UCPUUMEM HOST TIME == $ onevm show 0 VIRTUAL MACHINE 0 INFORMATION ID : 0 NAME: test1 USER: oneadmin GROUP : oneadmin STATE : DONE LCM_STATE : LCM_INIT RESCHED : No START TIME : 02/03 20:35:20 END TIME: 02/03 20:49:38 DEPLOY ID : one-0 VIRTUAL MACHINE MONITORING USED MEMORY : 0K USED CPU: 0 NET_RX : 652K NET_TX : 2K PERMISSIONS OWNER : um- GROUP : --- OTHER : --- VM DISKS ID TARGET IMAGE TYPE SAVE SAVE_AS 0 hdaCentOS-6.4_x86_64 file NO - VM NICS ID NETWORK VLAN BRIDGE IP MAC 0 privateno br0 138.239.115.111 02:00:8a:ef:73:6f fe80::400:8aff:feef:736f VIRTUAL MACHINE HISTORY SEQ HOSTACTION DS STARTTIME PROLOG 0 cmfm33 shutdown0 02/03 20:39:45 0d 00h09m 0h00m18s USER TEMPLATE SCHED_MESSAGE=Mon Feb 3 20:39:15 2014 : No hosts enabled to run VMs VIRTUAL MACHINE TEMPLATE AUTOMATIC_REQUIREMENTS=!(PUBLIC_CLOUD = YES) CONTEXT=[ DISK_ID=1, SSH_PUBLIC_KEY=ssh-dss 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 oneadmin@cmfm33, TARGET=hdb ] CPU=1 GRAPHICS=[ LISTEN=0.0.0.0, PORT=5900, TYPE=vnc ] MEMORY=512 OS=[ ARCH=x86_64 ] TEMPLATE_ID=0 VCPU=1 VMID=0 == $ onevm boot 0 [VirtualMachineAction] Wrong state to perform action boot === Please help. Regards. ___ Users mailing list Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org
Re: [one-users] AppMarket 2.0 Beta (1.9.80) release
Jaime Melis jme...@opennebula.org writes: Dear community, Hello, we are pleased to announce the release of AppMarket 2.0 Beta: http://opennebula.org/appmarket-2-0-beta-1-9-80/ I discuss with some colleagues used to some very expensive proprietary software, I gather their needs to study the opportunity to switch part of their infrastructure to ONE. What they call “catalogue” is very important to them and they have a use-flow based on it, I'm preparing some redmine requests but I take the opportunity of this thread to ask some questions. NB: I do not setup an AppMarket yet. This release brings many new goodies to the AppMarket: AppMarket - Multi-image Appliances: AppMarket Appliances can now have multiple disks, which creates new possibilities to upload and register more complex and feature complete Appliances. Does this mean we can store and distribute a complete OneFlow service? Is there a way to clearly identify and group appliances by version, like: - one entry per appliance - one sub-entry per appliance version, with some sorting newest first/last I'm wondering about storage size, does AppMarket use the same storage as ONE or the disks are copied from ONE to AppMarket? I do not see clearly what is the storage requirement and how things get together between AppMarket/ONE/Sunstone. - Sunstone Import: users will be able to import registered Appliances to OpenNebula via Sunstone by using pre-filled Image and Template creation forms. - Sunstone Views: two new Sunstone views: an AppMarket *admin* view, that allows full control of the AppMarket, and a *user* view, that allows end users to import registered appliances. In the documentation “Create an Appliance”[1], we must provide “the URLs of the files and the OpenNebula template in the Appliance creation form”. Is there a way to push appliances from ONE/Sunstone, I read “From AppMarket 2.0 creating an appliance can be also done through the AppMarket tab in Sunstone”. Providing a new VM/OneFlow action “Store in AppMarket” could be great ;-) AppMarket Worker A new horizontally-scalable component that subscribes to the AppMarket and executes jobs. It enhances the AppMarket functionality by adding: - OVA processing: If a URL to an OVA package is supplied, the AppMarket will be able completely process it and integrate it to its repository. This involves: downloading and unpacking of the OVA package, parsing of the OVF file and creating a corresponding OpenNebula template. - Format conversion: appliances registered in a specific format, can be converted to a new format. - Extensibility: All the operations described above are implemented within the framework of an extensible driver engine, which allows further customization and integration by the administrators. Great feature, many thanks to Produban for funding. Regards. Footnotes: [1] https://github.com/OpenNebula/addon-appmarket/blob/master/doc/usage.md#create-an-appliance-user -- Daniel Dehennin Récupérer ma clef GPG: gpg --keyserver pgp.mit.edu --recv-keys 0x7A6FE2DF pgp_pPPw6lqkr.pgp Description: PGP signature ___ Users mailing list Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org
Re: [one-users] Vlan template
Nice. Thanks -- Thank you, Dmitri Chebotarov VCL Sys Eng, Engineering Architectural Support, TSD - Ent Servers Messaging 223 Aquia Building, Ffx, MSN: 1B5 Phone: (703) 993-6175 | Fax: (703) 993-3404 From: Jaime Melis jme...@opennebula.orgmailto:jme...@opennebula.org Date: Thursday, January 30, 2014 at 5:15 To: Dimach Chebotarov dcheb...@gmu.edumailto:dcheb...@gmu.edu Cc: Gandalf Corvotempesta gandalf.corvotempe...@gmail.commailto:gandalf.corvotempe...@gmail.com, Users OpenNebula users@lists.opennebula.orgmailto:users@lists.opennebula.org Subject: Re: [one-users] Vlan template Hi all, Stefan Kooman recently requested this functionality and it's included in the code. Apologies for not understanding the issue better before: http://dev.opennebula.org/issues/2345 cheers, Jaime On Tue, Jan 28, 2014 at 9:42 PM, Dmitri Chebotarov dcheb...@gmu.edumailto:dcheb...@gmu.edu wrote: It seems like the command to add trunk is almost identical to adding vlan: - vlan (ie. Access-port) : ovs-vsctl set port vnet0 tag=Vlan1 - trunk : ovs-vsctl set port vnet0 trunks=VlanID1,VlanID2 Would it be possible to adjust command to add trunk port with list of VLANs if multiple VLAN Ids listed in the Virtual Network’s VLAN field? -- Thank you, Dmitri Chebotarov VCL Sys Eng, Engineering Architectural Support, TSD - Ent Servers Messaging 223 Aquia Building, Ffx, MSN: 1B5 Phone: (703) 993-6175tel:%28703%29%20993-6175 | Fax: (703) 993-3404tel:%28703%29%20993-3404 On 1/28/14, 12:23 , Dmitri Chebotarov dcheb...@gmu.edumailto:dcheb...@gmu.edu wrote: Hi guys Have you found solution for how to add trunk interface? I¹m facing the same task and looking for a possible solution. I found this ports http://blog.scottlowe.org/2013/05/28/vlan-trunking-to-guest-domains-with-o p en-vswitch/ and trying to implement it via RAW entry in VM template. No results yetŠ -- Thank you, Dmitri Chebotarov VCL Sys Eng, Engineering Architectural Support, TSD - Ent Servers Messaging 223 Aquia Building, Ffx, MSN: 1B5 Phone: (703) 993-6175tel:%28703%29%20993-6175 | Fax: (703) 993-3404tel:%28703%29%20993-3404 On 5/21/13, 3:21 , Gandalf Corvotempesta gandalf.corvotempe...@gmail.commailto:gandalf.corvotempe...@gmail.com wrote: 2013/5/20 Jaime Melis jme...@opennebula.orgmailto:jme...@opennebula.org: However, you can only tag one VLAN per interfaces, which as far as I know, is the only thing that makes sense? Why? Trunk interfaces carries multiple vlan, is absolutely standard. I have not less than 58 VLANs on a single interface on my XenServer host. ___ Users mailing list Users@lists.opennebula.orgmailto:Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org ___ Users mailing list Users@lists.opennebula.orgmailto:Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org ___ Users mailing list Users@lists.opennebula.orgmailto:Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org -- Jaime Melis Project Engineer OpenNebula - Flexible Enterprise Cloud Made Simple www.OpenNebula.orghttp://www.OpenNebula.org | jme...@opennebula.orgmailto:jme...@opennebula.org ___ Users mailing list Users@lists.opennebula.org http://lists.opennebula.org/listinfo.cgi/users-opennebula.org