I am working through a NAT. To get vdsmd to talk from inside the server and outside, using a secure connection, I made 2 changes:
/etc/vdsm/vdsm.conf management_ip=0.0.0.0 Second, add the external IP address to the NIC as a secondary IP: ip addr add 72.249.6.135/24 dev rhevm Now the inside commands work as well: # vdsClient -s 0 list table On Sat, Oct 6, 2012 at 1:03 PM, Paul Dyer <pmdyer...@gmail.com> wrote: > My real outside address is 72. Here are the requested tests. > > [root@decatur oracle]# route -n > Kernel IP routing table > Destination Gateway Genmask Flags Metric Ref Use > Iface > 72.249.6.0 0.0.0.0 255.255.255.0 U 0 0 0 > rhevm > 10.249.6.0 0.0.0.0 255.255.255.0 U 0 0 0 > rhevm > 20.249.6.0 0.0.0.0 255.255.255.0 U 0 0 0 > data6 > 30.249.6.0 0.0.0.0 255.255.255.0 U 0 0 0 > data30 > 169.254.0.0 0.0.0.0 255.255.0.0 U 1006 0 0 > rhevm > 169.254.0.0 0.0.0.0 255.255.0.0 U 1007 0 0 > data6 > 169.254.0.0 0.0.0.0 255.255.0.0 U 1008 0 0 > data30 > 0.0.0.0 10.249.6.130 0.0.0.0 UG 0 0 0 > rhevm > [root@decatur oracle]# traceroute 72.249.6.135 > traceroute to 72.249.6.135 (72.249.6.135), 30 hops max, 60 byte packets > 1 decatur.ctgcentral.com (72.249.6.135) 0.059 ms 0.008 ms 0.007 ms > [root@decatur oracle]# netstat -lntp |grep 54321 > tcp 0 0 10.249.6.135:54321 0.0.0.0:* > LISTEN 40164/python > > > On Sat, Oct 6, 2012 at 2:56 AM, Dan Kenigsberg <dan...@redhat.com> wrote: > >> On Fri, Oct 05, 2012 at 06:19:07PM -0500, Paul Dyer wrote: >> > I have vdsm.conf set for ssl=true. When I run vdsClient from >> localhost, I >> > get connection refused. >> > >> > # vdsClient -s localhost list table >> > Connection to localhost:54321 refused >> > # vdsClient -s 0 list table >> > Connection to 172.249.6.135:54321 refused >> > >> > My host IPADDR is set to a 10. address internally, but I have added an >> > external secondary address to the nic. >> > >> > # ip addr show >> > 6: xxxx: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state >> > UNKNOWN >> > link/ether 14:fe:b5:ca:5a:78 brd ff:ff:ff:ff:ff:ff >> > inet 10.249.6.135/24 brd 10.249.6.255 scope global rhevm >> > inet 172.249.6.135/24 scope global rhevm >> > >> > >From a remote host, the vdsClient works okay. >> > >> > # vdsClient -s 172.249.6.135 list table >> > 86e03987-8d54-4d1b-af39-85200b959e2f 7268 rh5-royal Up >> > >> > >> > My question, what could cause ECONNREFUSED from a localhost? >> > >> > I got this from strace: >> > 16:36:49 connect(3, {sa_family=AF_INET, sin_port=htons(54321), >> > sin_addr=inet_addr("172.249.6.135")}, 16) = -1 ECONNREFUSED (Connection >> > refused) <0.000439> >> >> I would guess that local routing table have 172.249.6.135-bound packet >> go outside. >> >> what's your `route -n` ? >> >> could you `traceroute 172.249.6.135` ? >> >> which is the ip address bound to vdsm's port 54321? >> netstat -lntp >> >> Dan. >> > > > > -- > Paul Dyer, > Mercury Consulting Group, RHCE > > -- Paul Dyer, Mercury Consulting Group, RHCE 504-302-8750
_______________________________________________ vdsm-devel mailing list vdsm-devel@lists.fedorahosted.org https://lists.fedorahosted.org/mailman/listinfo/vdsm-devel