Unable to create Instance from user account
*Hi,* I am successfully create vpc and tier then create Instance using root admin account. But when I create another account and create another domain. Then I login using this account. This account permission is domain admin. I try to create Instance but failed action. Then I try to create vpc & tier also it is failed. What can I do now? what is permission needed for different domain admin. --- Alamin
Re: Problems setting up HTTPS on CS Managementserver GUI / recommadations relizing
I have two cloudstack clusters I installed and manage. One is my personal two node cluster, and the other is an experimental 5 node cluster for work. These are both side projects, so time configuring and managing them is limited. In both cases I configured an Apache proxy in front of cloudstack's webinterface on 443. My personal cluster is using a letsencrypt.com cert loaded into Apache. The work cluster is using a self-signed cert load into Apache for now (when not experimental a real cert of some sort will be used). I have configured Clodustack management to only listen on loopback (except when I need consoleproxy access) The problem with that is then consoleproxy default configuration breaks. Consoleproxy default to non-ssl and ajax loading of non-ssl connections in an ssl connection is...well problematic. Since both Cloudstack's are side projects I have not gotten around to configuring consoleproxy to use ssl yet, but it is on the list. Until I get time to get consoleproxy using ssl, I've changed Cloudstack's management configuration to listen beyond just the loop back address when consoleproxy access is actually required. I tried loading various certs into Cloudstack management to get the webinterface to use ssl but it never worked. I ran out of time to figure out what I was missing, so I put an Apache proxy in front of it. Darren -- This e-mail is confidential. Any distribution, use or copying of this e-mail or the information it contains other than by the intended recipient is forbidden. If you are not the intended recipient, please advise the sender (by return e-mail or otherwise) immediately and delete this e-mail. - Original Message - From: "Vash X" To: "users" Sent: Tuesday, September 14, 2021 10:18:32 AM Subject: Problems setting up HTTPS on CS Managementserver GUI / recommadations relizing Hi, at the moment I am trying to setting up https - access for the management server with my own certificates. Sadly i wasn't successfull until now. OS: Ubuntu 20.04 Standard Cloudstack Basically i was following the documentation ( http://docs.cloudstack.apache.org/en/latest/installguide/optional_installation.html#ssl-optional) as well as following guide from shapeblue ( https://www.shapeblue.com/securing-cloudstack-4-11-with-https-tls/) for setting up https for the GUI. At the moment i am stuck, as i didn't really have clue where and how to proceed onwards, as i am not finding any problems, warinings or errors in the cloudstack log's. Usage of netstat shows, that currently no service is listening on port 8443. Which leads me to a assumption that i maybe messed up access-priviledges for the actual keystore-file, as the server.properties noted sais, that the https configuration will only be used when the keystorefile exists and is readable by the managementserver. Therefore which permissions are normally used for the keystore to be accessed by the management server? As the documentation states, that more or less every site has it's own practices on providing webservices to actual users, i would like to ask for some experiences with different appoaches? Till now i "stumbled" over some ways the set up a reverseproxy based on nginx / apache "in front" of the actual CS-Management WebServer, which shall take care of the certificate handling. Another idea i have read on a side would be to "by pass" the CS-Management Webserver, targetting directly to the "root"-volume. Which seems to be a aventures appoach... So i am highly interested in your approaches and experiences regardning this topic. Thanks in advance!
RE: virtual router stuck on starting - cloudstack 4.15.1 with kvm
Hello, I have found the issue, after I have changed the CPU and memory for this " System Offering For Software Router - Local Storage' system offering the router was deployed in few seconds without any issue. CPU mhz from 500 to 2000 and RAM from 256 to 2048. Regards, Cristian -Original Message- From: cristian.c@istream.today Sent: Wednesday, September 15, 2021 10:18 AM To: users@cloudstack.apache.org Subject: RE: virtual router stuck on starting - cloudstack 4.15.1 with kvm Any suggestion on this issue? Thank you. -Original Message- From: cristian.c@istream.today Sent: Monday, September 13, 2021 5:40 PM To: users@cloudstack.apache.org Subject: RE: virtual router stuck on starting - cloudstack 4.15.1 with kvm Hi, Yes, please see : root@usa-nyc-kvm-001:/var/lib/libvirt/images# libvirtd -v 2021-09-13 14:33:40.944+: 75403: info : libvirt version: 6.0.0, package: 0ubuntu8.13 (Frode Nordahl Fri, 16 Jul 2021 05:16:36 +) 2021-09-13 14:33:40.944+: 75403: info : hostname: usa-nyc-kvm-001 2021-09-13 14:33:40.944+: 75403: debug : virLogParseOutputs:1654 : outputs=1:stderr 2021-09-13 14:33:40.944+: 75403: debug : virLogParseOutput:1492 : output=1:stderr 2021-09-13 14:33:40.944+: 75403: info : libvirt version: 6.0.0, package: 0ubuntu8.13 (Frode Nordahl Fri, 16 Jul 2021 05:16:36 +) 2021-09-13 14:33:40.944+: 75403: info : hostname: usa-nyc-kvm-001 2021-09-13 14:33:40.944+: 75403: info : virObjectNew:251 : OBJECT_NEW: obj=0x55935a296b60 classname=virAccessManager 2021-09-13 14:33:40.944+: 75403: debug : virAccessManagerNewDriver:111 : Initialized with stack 2021-09-13 14:33:40.944+: 75403: info : virObjectNew:251 : OBJECT_NEW: obj=0x55935a297f90 classname=virAccessManager 2021-09-13 14:33:40.944+: 75403: debug : virAccessManagerNewDriver:111 : Initialized with none 2021-09-13 14:33:40.944+: 75403: info : virObjectRef:386 : OBJECT_REF: obj=0x55935a296b60 2021-09-13 14:33:40.944+: 75403: info : virObjectUnref:348 : OBJECT_UNREF: obj=0x55935a296b60 2021-09-13 14:33:40.944+: 75403: debug : main:1177 : Decided on pid file path '/run/libvirtd.pid' 2021-09-13 14:33:40.944+: 75403: debug : main:1187 : Decided on socket paths '/run/libvirt/libvirt-sock', '/run/libvirt/libvirt-sock-ro' and '/run/libvirt/libvirt-admin-sock' 2021-09-13 14:33:40.944+: 75403: error : virPidFileAcquirePath:367 : Failed to acquire pid file '/run/libvirtd.pid': Resource temporarily unavailable 2021-09-13 14:33:40.944+: 75403: debug : virFileClose:110 : Closed fd 3 root@usa-nyc-kvm-001:/var/lib/libvirt/images# /usr/bin/qemu-system-x86_64 --version QEMU emulator version 4.2.1 (Debian 1:4.2-3ubuntu6.17) Copyright (c) 2003-2019 Fabrice Bellard and the QEMU Project developers root@usa-nyc-kvm-001:/var/lib/libvirt/images# lsb_release -a No LSB modules are available. Distributor ID: Ubuntu Description:Ubuntu 20.04.2 LTS Release:20.04 Codename: focal CPU : vendor_id : AuthenticAMD cpu family : 23 model : 49 model name : AMD EPYC 7552 48-Core Processor BTW: the SSVM and Proxy console is running fine on this node.. Thank you! -Original Message- From: Andrija Panic Sent: Monday, September 13, 2021 4:40 PM To: users Subject: Re: virtual router stuck on starting - cloudstack 4.15.1 with kvm Can you share qemu/libvirt version/flavour? On Mon, 13 Sept 2021 at 14:18, wrote: > Hello, > > > > I'm trying to understand this error, I created new network with > VPC in a new zone where I added KVM hypervisor, and I have this issue. > > > > > > 2021-09-13 11:36:18,621 DEBUG > [resource.virtualnetwork.VirtualRoutingResource] > (agentRequest-Handler-1:null) (logid:42d715f2) Trying to connect to > 169.254.52.234 > > 2021-09-13 11:36:21,684 DEBUG > [resource.virtualnetwork.VirtualRoutingResource] > (agentRequest-Handler-1:null) (logid:42d715f2) Could not connect to > 169.254.52.234 > > > > Here is the full log : https://pastebin.com/0NwsccUc > > > > root@usa-nyc-kvm-001:~# telnet 169.254.156.179 3922 > > Trying 169.254.156.179... > > telnet: Unable to connect to remote host: Connection refused ( before > connection refused, I get no route to host, for sure the nic is not up > ) > > root@usa-nyc-kvm-001:~# virsh list > > Id NameState > > --- > > 2v-4048-VM running > > 4s-4050-VM running > > 7r-4092-VM running > > > > root@usa-nyc-kvm-001:~# > > > > > > If I check the log inside the router, I see this (the router is also > responding very slow, waiting a lot to connect on it via virsh console): > > > > r-4092-VM login: root > > Password: > > > > Login timed out after 60 seconds. > > > > > >__?.o/ Apache CloudStack SystemVM 4.15.1 > > ( )#https://cloudstack.apache.org > > (___(_) Debian GNU/Linux 10 r-4093-VM ttyS0 > > > > r-4093-VM login: root > > Password: > > Linux r-4093-VM 4.19.0-14-amd64 #1 SMP
Image is not in qcow2 format - 1 zone with KVM and Vmware
Hello,
This looks like a bug, why is trying to use the VMware systemvm template
for a KVM host? The KVM system template is available and ready for use.
This is a test environment with 1 Zone with VMware and 2 clusters, 1 for
VMware and 1 with KVM hypervisor, I can use the hypervisor for instances but
not for system vms because of this issue. I wanted to reproduce in this
environment the systemvm deploy issue which I have in a different
environment (virtual router stuck on starting - cloudstack 4.15.1 with kvm)
and here I have this issue.
2021-09-15 08:06:35,641 WARN [resource.wrapper.LibvirtStartCommandWrapper]
(agentRequest-Handler-4:null) (logid:63f6a09d) LibvirtException
org.libvirt.LibvirtException: internal error: process exited while
connecting to monitor: 2021-09-15T08:06:35.264910Z qemu-system-x86_64:
-blockdev
{"node-name":"libvirt-3-format","read-only":true,"cache":{"direct":true,"no-
flush":false},"driver":"qcow2","file":"libvirt-3-storage","backing":null}:
Image is not in qcow2 format
at org.libvirt.ErrorHandler.processError(Unknown Source)
at org.libvirt.ErrorHandler.processError(Unknown Source)
at org.libvirt.Connect.domainCreateXML(Unknown Source)
at
com.cloud.hypervisor.kvm.resource.LibvirtComputingResource.startVM(LibvirtCo
mputingResource.java:1614)
at
com.cloud.hypervisor.kvm.resource.wrapper.LibvirtStartCommandWrapper.execute
(LibvirtStartCommandWrapper.java:85)
at
com.cloud.hypervisor.kvm.resource.wrapper.LibvirtStartCommandWrapper.execute
(LibvirtStartCommandWrapper.java:45)
at
com.cloud.hypervisor.kvm.resource.wrapper.LibvirtRequestWrapper.execute(Libv
irtRequestWrapper.java:78)
at
com.cloud.hypervisor.kvm.resource.LibvirtComputingResource.executeRequest(Li
bvirtComputingResource.java:1646)
at com.cloud.agent.Agent.processRequest(Agent.java:661)
at com.cloud.agent.Agent$AgentRequestHandler.doTask(Agent.java:1079)
at com.cloud.utils.nio.Task.call(Task.java:83)
at com.cloud.utils.nio.Task.call(Task.java:29)
at
java.base/java.util.concurrent.FutureTask.run(FutureTask.java:264)
at
java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecut
or.java:1128)
at
java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecu
tor.java:628)
at java.base/java.lang.Thread.run(Thread.java:829)
Regards,
Cristian
Re: SSVM not starting
Peter,
those log lines seem not relevant in that they don't say anything about the
root cause.
as you say you run ubuntu i think you mean (implied) that you use KVM as
hypervisor, do you?
was the system template registered before starting the system? given this
information it seems most likely that you missed that step.
On Tue, Sep 14, 2021 at 10:02 PM Peter Stine wrote:
> I am trying to start Cloudstack 4.15.1.0 but cannot get the SSVM to launch
> or even recognize that there is storage. (I'm running Ubuntu Server 20.04,
> the management server is on a virtual machine and the primary storage is on
> a ceph cluster (which seems to be working)) libvirt is running.
>
> I can add the secondary storage as an NFS, but the seeded VM template does
> not appear. This is the relevant part in the log.
>
> 2021-09-14 14:43:44,584 DEBUG [c.c.s.StatsCollector]
> (StatsCollector-5:ctx-00afa557) (logid:3775b849) There is no secondary
> storage VM for secondary storage host Cloudstack_Secondary
> 2021-09-14 14:43:44,595 DEBUG [c.c.h.o.r.Ovm3HypervisorGuru]
> (StatsCollector-5:ctx-00afa557) (logid:3775b849) getCommandHostDelegation:
> class com.cloud.agent.api.GetStorageStatsCommand
> 2021-09-14 14:43:44,596 DEBUG [c.c.h.XenServerGuru]
> (StatsCollector-5:ctx-00afa557) (logid:3775b849) We are returning the
> default host to execute commands because the command is not of Copy type.
> 2021-09-14 14:43:44,736 DEBUG [c.c.a.t.Request]
> (StatsCollector-5:ctx-00afa557) (logid:3775b849) Seq 3-2352849330324373554:
> Received: { Ans: , MgmtId: 90520741394843, via: 3(gd-cs01-clst01-host-01),
> Ver: v1, Flags: 10, { GetStorageStatsAnswer } }
>
>
> My colleague and I tried to have the script that extracts the template
> echo when it modifies the sql database, but it doesn't give output, so it's
> not clear what it is doing. There is, however, no addition to the database
> after we run the script.
>
> I have been following the install in the latest documentation on the
> Apache docs.
>
--
Daan
Re: Groovy Script error while changing guest cpu model.
Thank You Wei. Now its working but I did only change the value not the option on the default agent file. So, I didnot notice the option I was only looking the value. I wonder something I might have missed out. Silly error from my end. I am very grateful for you Help. Thank You. On 2021/09/14 08:48:09, Wei ZHOU wrote: > Hi, > > There is a typo. you should use 'guest.cpu.mode' not 'guest.cpu.model'. > > -Wei > > On Tue, 14 Sept 2021 at 10:40, avi wrote: > > > Hello Wei, > > > > I have the following agent properties on both the host: > > > > cluster=1 > > pod=1 > > resource=com.cloud.hypervisor.kvm.resource.LibvirtComputingResource > > private.network.device=cloudbr0 > > domr.scripts.dir=scripts/network/domr/kvm > > router.aggregation.command.each.timeout=600 > > guest.network.device=cloudbr1 > > guest.cpu.model=host-passthrough > > keystore.passphrase=6sqeDqWNbnb5wer > > hypervisor.type=kvm > > port=8250 > > zone=1 > > public.network.device=cloudbr1 > > local.storage.uuid=34c08c2b-8cd4-43b0-a6a1-205ca6d449e0 > > host=x.x.x.x@static > > guid=8880b099-e99c-3012-afc6-d1a365f08991 > > LibvirtComputingResource.id=1 > > workers=5 > > iscsi.session.cleanup.enabled=false > > > > Thank You. > > > > On 2021/09/13 12:00:00, Wei ZHOU wrote: > > > Hi Abishek, > > > > > > It is better to share your agent.properties > > > > > > -Wei > > > > > > On Mon, 13 Sept 2021 at 13:39, avi wrote: > > > > > > > Hello Ivan, > > > > > > > > But I am still getting qemu virtual cpu in guest VM's(Windows). Did > > > > everything as documented. I want the VM's to have same CPU as the host > > > > machines Will it be possible? > > > > > > > > Thank You. > > > > > > > > On 2021/09/13 07:55:39, Ivan Kudryavtsev wrote: > > > > > That is just fine. Go ahead, it's not an error. > > > > > > > > > > On Mon, Sep 13, 2021 at 2:24 PM avi wrote: > > > > > > > > > > > Hello All, > > > > > > > > > > > > I am using cloudstack 4.15.1 with KVM host. I was playing with > > changing > > > > > > guest cpu model and tested out > > > > > > host-passthrough and host-model but I was unable to succed. I > > changed > > > > the > > > > > > parameter in the agent config file as documented but I received > > > > following > > > > > > error on both hosts: > > > > > > 12:07:43,928 INFO [kvm.storage.LibvirtStorageAdaptor] > > > > > > (agentRequest-Handler-5:null) (logid:a59f3a95) Trying to fetch > > storage > > > > pool > > > > > > 0420bb0c-6e77-3a53-994a-8907905cd465 from libvirt > > > > > > 12:07:44,092 INFO [kvm.storage.LibvirtStorageAdaptor] > > > > > > (agentRequest-Handler-5:null) (logid:a59f3a95) Trying to fetch > > storage > > > > pool > > > > > > 0420bb0c-6e77-3a53-994a-8907905cd465 from libvirt > > > > > > 12:07:44,309 WARN [kvm.resource.LibvirtKvmAgentHook] > > > > > > (agentRequest-Handler-5:null) (logid:a59f3a95) Groovy script > > > > > > '/etc/cloudstack/agent/hooks/libvirt-vm-xml-transformer.groovy' is > > not > > > > > > available. Transformations will not be applied. > > > > > > 12:07:44,309 WARN [kvm.resource.LibvirtKvmAgentHook] > > > > > > (agentRequest-Handler-5:null) (logid:a59f3a95) Groovy scripting > > engine > > > > is > > > > > > not initialized. Data transformation skipped. > > > > > > 12:07:44,800 WARN [kvm.resource.LibvirtKvmAgentHook] > > > > > > (agentRequest-Handler-5:null) (logid:a59f3a95) Groovy script > > > > > > '/etc/cloudstack/agent/hooks/libvirt-vm-state-change.groovy' is not > > > > > > available. Transformations will not be applied. > > > > > > 12:07:44,801 WARN [kvm.resource.LibvirtKvmAgentHook] > > > > > > (agentRequest-Handler-5:null) (logid:a59f3a95) Groovy scripting > > engine > > > > is > > > > > > not initialized. Data transformation skipped. > > > > > > > > > > > > I only changed the option guest.cpu.mode in the agent file of both > > > > host. > > > > > > And restarted the agent and libvirtd. The host os is Centos 7. The > > > > machine > > > > > > starts sucessfully but the cpu is still set to qemu virtual cpu. > > Did I > > > > miss > > > > > > something during the configuration. Both the KVM host are of same > > > > > > specification. > > > > > > I will be grateful for any help. > > > > > > > > > > > > Thank You. > > > > > > > > > > > > > > > > > > > > > > > > > > >
RE: virtual router stuck on starting - cloudstack 4.15.1 with kvm
Any suggestion on this issue? Thank you. -Original Message- From: cristian.c@istream.today Sent: Monday, September 13, 2021 5:40 PM To: users@cloudstack.apache.org Subject: RE: virtual router stuck on starting - cloudstack 4.15.1 with kvm Hi, Yes, please see : root@usa-nyc-kvm-001:/var/lib/libvirt/images# libvirtd -v 2021-09-13 14:33:40.944+: 75403: info : libvirt version: 6.0.0, package: 0ubuntu8.13 (Frode Nordahl Fri, 16 Jul 2021 05:16:36 +) 2021-09-13 14:33:40.944+: 75403: info : hostname: usa-nyc-kvm-001 2021-09-13 14:33:40.944+: 75403: debug : virLogParseOutputs:1654 : outputs=1:stderr 2021-09-13 14:33:40.944+: 75403: debug : virLogParseOutput:1492 : output=1:stderr 2021-09-13 14:33:40.944+: 75403: info : libvirt version: 6.0.0, package: 0ubuntu8.13 (Frode Nordahl Fri, 16 Jul 2021 05:16:36 +) 2021-09-13 14:33:40.944+: 75403: info : hostname: usa-nyc-kvm-001 2021-09-13 14:33:40.944+: 75403: info : virObjectNew:251 : OBJECT_NEW: obj=0x55935a296b60 classname=virAccessManager 2021-09-13 14:33:40.944+: 75403: debug : virAccessManagerNewDriver:111 : Initialized with stack 2021-09-13 14:33:40.944+: 75403: info : virObjectNew:251 : OBJECT_NEW: obj=0x55935a297f90 classname=virAccessManager 2021-09-13 14:33:40.944+: 75403: debug : virAccessManagerNewDriver:111 : Initialized with none 2021-09-13 14:33:40.944+: 75403: info : virObjectRef:386 : OBJECT_REF: obj=0x55935a296b60 2021-09-13 14:33:40.944+: 75403: info : virObjectUnref:348 : OBJECT_UNREF: obj=0x55935a296b60 2021-09-13 14:33:40.944+: 75403: debug : main:1177 : Decided on pid file path '/run/libvirtd.pid' 2021-09-13 14:33:40.944+: 75403: debug : main:1187 : Decided on socket paths '/run/libvirt/libvirt-sock', '/run/libvirt/libvirt-sock-ro' and '/run/libvirt/libvirt-admin-sock' 2021-09-13 14:33:40.944+: 75403: error : virPidFileAcquirePath:367 : Failed to acquire pid file '/run/libvirtd.pid': Resource temporarily unavailable 2021-09-13 14:33:40.944+: 75403: debug : virFileClose:110 : Closed fd 3 root@usa-nyc-kvm-001:/var/lib/libvirt/images# /usr/bin/qemu-system-x86_64 --version QEMU emulator version 4.2.1 (Debian 1:4.2-3ubuntu6.17) Copyright (c) 2003-2019 Fabrice Bellard and the QEMU Project developers root@usa-nyc-kvm-001:/var/lib/libvirt/images# lsb_release -a No LSB modules are available. Distributor ID: Ubuntu Description:Ubuntu 20.04.2 LTS Release:20.04 Codename: focal CPU : vendor_id : AuthenticAMD cpu family : 23 model : 49 model name : AMD EPYC 7552 48-Core Processor BTW: the SSVM and Proxy console is running fine on this node.. Thank you! -Original Message- From: Andrija Panic Sent: Monday, September 13, 2021 4:40 PM To: users Subject: Re: virtual router stuck on starting - cloudstack 4.15.1 with kvm Can you share qemu/libvirt version/flavour? On Mon, 13 Sept 2021 at 14:18, wrote: > Hello, > > > > I'm trying to understand this error, I created new network with > VPC in a new zone where I added KVM hypervisor, and I have this issue. > > > > > > 2021-09-13 11:36:18,621 DEBUG > [resource.virtualnetwork.VirtualRoutingResource] > (agentRequest-Handler-1:null) (logid:42d715f2) Trying to connect to > 169.254.52.234 > > 2021-09-13 11:36:21,684 DEBUG > [resource.virtualnetwork.VirtualRoutingResource] > (agentRequest-Handler-1:null) (logid:42d715f2) Could not connect to > 169.254.52.234 > > > > Here is the full log : https://pastebin.com/0NwsccUc > > > > root@usa-nyc-kvm-001:~# telnet 169.254.156.179 3922 > > Trying 169.254.156.179... > > telnet: Unable to connect to remote host: Connection refused ( before > connection refused, I get no route to host, for sure the nic is not up > ) > > root@usa-nyc-kvm-001:~# virsh list > > Id NameState > > --- > > 2v-4048-VM running > > 4s-4050-VM running > > 7r-4092-VM running > > > > root@usa-nyc-kvm-001:~# > > > > > > If I check the log inside the router, I see this (the router is also > responding very slow, waiting a lot to connect on it via virsh console): > > > > r-4092-VM login: root > > Password: > > > > Login timed out after 60 seconds. > > > > > >__?.o/ Apache CloudStack SystemVM 4.15.1 > > ( )#https://cloudstack.apache.org > > (___(_) Debian GNU/Linux 10 r-4093-VM ttyS0 > > > > r-4093-VM login: root > > Password: > > Linux r-4093-VM 4.19.0-14-amd64 #1 SMP Debian 4.19.171-2 (2021-01-30) > x86_64 > > > > > > > > root@r-4093-VM:~# cat /var/log/cloud.log > > Mon 13 Sep 2021 11:50:55 AM UTC Executing cloud-early-config > > Mon 13 Sep 2021 11:50:55 AM UTC Bootstrapping systemvm appliance > > Mon 13 Sep 2021 11:50:57 AM UTC Starting guest services for kvm > > Mon 13 Sep 2021 11:51:04 AM UTC acpiphp and pci_hotplug module already > compiled in > > Mon 13 Sep 2021 11:52:59 AM UTC Received a new non-empty cmdline file > from qemu-guest-agent > > Mon 13 Sep 2021
