The IP of the CPVM doesn't need to be the same, that's the "beauty" of
using dynamic URLs, it will use whatever IP is available in the pool.
You can set up a dedicated range for system VMs, but not pin a
particular IP to a CPVM because you must be able to freely destroy it at
any time and also based on load Cloudstack will spawn NEW VMs to address
it, so you can have multiple CPVMs, so it's best for them to each have
their own automatic URL based on the IP.
Your dependencies for the above to work correctly are:
1 - wildcard certificate *.domain.tld
2 - dns resolution 185-163-105-x.domain.tld to 185.163.105.x (this needs
to apply to the range of public IPs that you reserved for the system
VMs)
HTH
On 2024-09-25 10:02, Alexandru Stan wrote:
Yes, it works that way. There are a couple of downsides to this, as the
cp ip's must always be the same (no idea where to create a reservation
for it) and the public ip is clearly visible in the url. But if this is
the only way I guess I don't have a choice.
Thank you!
-----Original Message-----
From: Nux <n...@li.nux.ro>
Sent: Tuesday, September 24, 2024 11:00 PM
To: users@cloudstack.apache.org
Subject: Re: VNC console on multiple zones
Cloudstack will generate a hostname of the following type:
185-163-105-5.domain.tld - assuming the IP the CPVM gets is
185.163.105.5.
Does it make sense?
This implies that for the systemvm public IP range you will need to
generate A records similar to the above.
On 2024-09-24 11:09, Alexandru Stan wrote:
Hi,
I think I tried that at some point, setting the url as wildcard in the
manager config, but I don't remember if this uses the console proxy
ip.domain.com or the individual vm ip.domain.com.
-----Original Message-----
From: Nux <n...@li.nux.ro>
Sent: Tuesday, September 24, 2024 2:01 AM
To: users@cloudstack.apache.org
Cc: Alexandru Stan <alexandru.s...@lifeincloud.com>
Subject: Re: VNC console on multiple zones
Hi,
You want to employ dynamic URLs, so that they look like
192-168-100-10.domain.tld rather than console.domain.tld.
Check
https://www.shapeblue.com/securing-cloudstack-4-11-with-https-tls/
and look for "Dynamic URL".
HTH
On 2024-09-23 21:24, Alexandru Stan wrote:
Hi all,
How does ACS handle vnc console for different zones under the same
manager? In the global config we can only set one URL for the
console, that means something like console.domain.com mapped to an ip
address in the dns zone. But what about other zones with different
public ips
- so different console system vm ip? One solution would obviously be
to have one manager per zone, but I doubt that ACS lets you create
multiple zones within one manager have different public ip ranges and
doesn't offer a way to have a global vnc console.
Thanks!
