Re: Documentation/Issue Link for New Feature “Mother of all plugins”

[Wei ZHOU]

cc @rohit

On Wednesday, November 6, 2024, Ricardo Pertuz
 wrote:

> Hi
>
> Any link I can follow? Thanks again?
>
>
> Regards,
>
> Ricardo Pertuz
>
>
> On 5 Nov 2024 at 12:23 PM -0500, Ricardo Pertuz 
> ,
> wrote:
> > Hey Wei,
> >
> > The one that Rohit will talk “Drive Model”
> >
> > This talk proposes an exciting “Mother of All Plugins” framework for
> Apache CloudStack. This innovative meta-framework empowers vendors,
> operators, and admins to extend CloudStack’s capabilities using any
> programming language of their choice and offer more flexibility and speed
> for developing custom features and extensions.
> >
> >
> > Atte,
> >
> > Ricardo Pertuz
> >
> >
> > On 5 Nov 2024 at 10:32 AM -0500, Wei ZHOU ,
> wrote:
> > > Hi,
> > >
> > > Which feature or talk did you mean ?
> > >
> > >
> > > -Wei
> > >
> > > On Tue, Nov 5, 2024 at 3:01 PM Ricardo Pertuz
> > >  wrote:
> > >
> > > > Hello community,
> > > >
> > > > As I won't be able to attend the conference in Spain, I'd like to
> read
> > > > about the upcoming feature related to the plugin that can be used to
> extend
> > > > the capabilities of ACS, so if anyone knows of a GitHub link or
> issue I can
> > > > read about, it would be brilliant. . I searched for it but was
> unsuccessful.
> > > >
> > > >
> > > > BR,
> > > >
> > > > Ricardo Pertuz
> > > >
> > > >
> > > >
>

Re: Documentation/Issue Link for New Feature “Mother of all plugins”

[Wei ZHOU]

Hi,

Which feature or talk did you mean ?


-Wei

On Tue, Nov 5, 2024 at 3:01 PM Ricardo Pertuz
 wrote:

> Hello community,
>
> As I won't be able to attend the conference in Spain, I'd like to read
> about the upcoming feature related to the plugin that can be used to extend
> the capabilities of ACS, so if anyone knows of a GitHub link or issue I can
> read about, it would be brilliant. . I searched for it but was unsuccessful.
>
>
> BR,
>
> Ricardo Pertuz
>
>
>

Re: Creating Tags for Projects with cloudmonkey

[Wei ZHOU]

Hi,

try this

tags[0].key=foo tags[0].value=bar


-Wei

On Thu, Oct 31, 2024 at 11:12 AM Waag, Markus 
wrote:

> Hi,
> we use projects to organize our customers and now want to tag certain
> projects. I am currently trying to do this via CloudMonkey and the API
> command createTags, but I am struggling with the syntax for the "tags"
> attribute. Can someone help me out?
>
> The API reference says I need a map of tags (key/value pairs) (
> https://cloudstack.apache.org/api/apidocs-4.18/apis/createTags.html).
> Here's an example of one of my attempts:
> create tags resourcetype=project
> resourceids=4a2d488d-7b11-486a-8ab0-7b6111ceb704
> tags=[{"key":"foo","value":"bar"}]
> but this results in:
> Error: (HTTP 431, error code ) Unable to execute API command
> createtags due to invalid value [{key:foo,value:bar}] for parameter tags.
>
> I have already tried several other formats already with the same results;
> can someone tell me a working syntax?
>
> Thanks in advance
> Markus
>

Re: Issue with Port Forwards in VR.

[Wei ZHOU]

Does the network have port forwarding rules on other public ips ? Do they
work ?



On Tuesday, October 22, 2024, Marty Godsey  wrote:

> Yes.
>
> I have an existing VR that is set up in the “normal” way. This is advanced
> networking without security groups.
>
> The VR has a public interface and an interface on an isolated network
> (private). This is not a VPC, just a VR.
>
> The public interface has a few IP addresses assigned to it. The private
> interface has one.
>
> On a public IP, I have opened a port to be allowed in the firewall:
>
> Source CIDR: 0.0.0.0/0
> Protocol: TCP
> Start Port: 475
> End Port: 475
>
> In the Port Forward settings, I have forwarded this port to a VM:
>
> Private Port Start: 475
> Private Port End: 475
> Public Port Start: 475
> Public Port End: 475
> Protocol: TCP
> Instance: Selected Instance (I know its listening)
>
> When I do a PCAP on the instance, I don’t see any packets on my port
> hitting the interface. I then checked the VR. I ran a PCAP on the pubic
> side, I see my packet hit the VR. I run a PCAP on the private side, I dont
> see my packet.
>
> I have rebuilt the network, rebooted the VR (even though rebuilding
> reboots it anyway), rebooted the instance.
>
> I have other port forwards configured in the same manner going to some
> other instances and they work fine. This router has not been touched since
> the update from 4.18.x to 4.19.x. This is the first time something is being
> added to it.
>
> The version of the software on the router is 4.19.0.2
>
> Regards,
> Marty Godsey
> Rudio, LLC
>
> Book Time: https://calendly.com/rudio-martyg
> Support: supp...@rudio.net<mailto:supp...@rudio.net?subject=Rudio%
> 20Support>
> Ph: 859-328-1100
> The content of this email is intended for the person or entity to which it
> is addressed only. This email may contain confidential information. If you
> are not the person to whom this message is addressed, be aware that any
> use, reproduction, or distribution of this message is strictly prohibited.
> If you received this in error, please contact the sender and immediately
> delete this email and any attachments.
>
>
> From: Wei ZHOU 
> Date: Tuesday, October 22, 2024 at 11:09 AM
> To: users@cloudstack.apache.org 
> Subject: Re: Issue with Port Forwards in VR.
> WARNING: This email originated from outside of the organization. Do not
> click links or open attachments unless you recognize the sender and know
> the content is safe.
>
>
> Hi Marty,
>
> As I understand, #9053 is not a bug, it has been fixed by adding a network
> ACL for the private port.
>
> Can you share more details ?
>
> -Wei
>
> On Tue, Oct 22, 2024 at 4:52 PM Marty Godsey  wrote:
>
> > Hello,
> >
> > I see there is a bug filed for the issue I am seeing:
> >
> > https://github.com/apache/cloudstack/issues/9053
> >
> > I see this bug was closed, and there is a workaround. Has the issue
> itself
> > been addressed?
> >
> > I am on 4.19.0.2. This used to work, and the existing entries are
> working,
> > but new entries are not.
> >
> > Regards,
> > Marty Godsey
> >
> >
>

Re: Issue with Port Forwards in VR.

[Wei ZHOU]

Hi Marty,

As I understand, #9053 is not a bug, it has been fixed by adding a network
ACL for the private port.

Can you share more details ?

-Wei

On Tue, Oct 22, 2024 at 4:52 PM Marty Godsey  wrote:

> Hello,
>
> I see there is a bug filed for the issue I am seeing:
>
> https://github.com/apache/cloudstack/issues/9053
>
> I see this bug was closed, and there is a workaround. Has the issue itself
> been addressed?
>
> I am on 4.19.0.2. This used to work, and the existing entries are working,
> but new entries are not.
>
> Regards,
> Marty Godsey
>
>

Re: Searching by instance IP in the UI no longer works 4.19.1

[Wei ZHOU]

Hi,

It has been fixed by #9547
The fix will be available in 4.19.2.0 or 4.20.0.0 release


-Wei



On Mon, Oct 21, 2024 at 9:23 AM  wrote:

> Hello,
>
>
>
>   Is this a known issue? Searching by instance IP in the UI no longer works
> in version 4.19.1?
>
> Regards,
>
> Cristian
>
>

Re: How to recover metadata

[Wei ZHOU]

What kind of information do you want ?



On Saturday, October 19, 2024, Sanjay Kumar  wrote:

> Hi Everyone,
>
> We are trying to get the metadata information from kvm host.
>
> Any help would be really appreciated. Thank you!
>
>
> Regards,
> SK
>

Re: Link-local/Control IP address on VMs

[Wei ZHOU]

It should be feasible for kvm.
For vmware/xen, it needs some research.


On Tuesday, October 15, 2024, Ricardo Pertuz
 wrote:

> BTW it could be practical to manage CKS internally from the HYP and not
> using a public IP and opening ports.
>
>
> Atte,
>
> Ricardo Pertuz
>
>
> On 15 Oct 2024 at 2:38 PM -0500, Ricardo Pertuz 
> ,
> wrote:
> > Thanks Wido!
> >
> > Right now I can think in creating bash scripting like this to run
> specific commands on VMs
> >
> > #!/bin/bash
> >
> > VM_NAME="i-xx-xxx-VM"
> >
> > # Timeout
> > TIMEOUT=5
> >
> > # JSON Command
> > COMMAND_JSON=$(cat < > {
> >  "execute": "guest-exec",
> >  "arguments": {
> >  "path": "/tmp/echo_hello.sh",
> >  "capture-output": true
> >  }
> > }
> > EOF
> > )
> >
> > result=$(virsh qemu-agent-command "$VM_NAME" "$COMMAND_JSON" --timeout
> $TIMEOUT)
> >
> > echo "Result: $result"
> >
> > But would be nice to have a module on Cloudstack like user-data but to
> send ops commands on the running command, I will create the PR then.
> >
> >
> > Regards,
> >
> > Ricardo Pertuz
> >
> >
> > On 15 Oct 2024 at 10:12 AM -0500, Wido den Hollander
> , wrote:
> > >
> > >
> > > Op 15/10/2024 om 14:49 schreef Ricardo Pertuz:
> > > > Haven’t found any relevant about the cloudstack-guest-tool, do you
> have any reference I can follow? The qemu-guest-agent I have used it before
> but in standard implementation of libvirt
> > > >
> > > See:
> > > https://github.com/apache/cloudstack/blob/main/agent/
> bindir/cloud-guest-tool.in
> > >
> > > I see there is no exec, but you can fetch information from the VM if
> you
> > > want through this tool.
> > >
> > > PR is welcome to add exec functionality!
> > >
> > > Wido
> > >
> > > >
> > > > Atte,
> > > >
> > > > Ricardo Pertuz
> > > >
> > > >
> > > > On 15 Oct 2024 at 1:52 AM -0500, Wido den Hollander
> , wrote:
> > > > >
> > > > > cloudstack-guest-tool
> > > >
>

Re: [VOTE] Apache CloudStack 4.20.0.0 RC1

[Wei ZHOU]

Hi João, and Daan,

I think there was something wrong in the forward-merge or branches.

For example, I can find the file Qcow2HeaderField.java in 4.18.2.4 and
4.19.1.2

https://github.com/apache/cloudstack/blob/4.18.2.4/services/secondary-storage/server/src/main/java/org/apache/cloudstack/storage/formatinspector/Qcow2HeaderField.java
https://github.com/apache/cloudstack/blob/4.19.1.2/services/secondary-storage/server/src/main/java/org/apache/cloudstack/storage/formatinspector/Qcow2HeaderField.java

However, it cannot be found in 4.18/4.19/main branches and
4.20.0.0-RC20241011T0947
 as
well.


-Wei



On Fri, Oct 11, 2024 at 2:54 PM João Jandre  wrote:

> Hi All,
>
> I've created a 4.20.0.0 release (RC1), with the following artifacts up
> for a vote:
>
> Git Branch and Commit SH:
> https://github.com/apache/cloudstack/tree/4.20.0.0-RC20241011T0947
> Commit: cd4acc1fa6219ce0ec5f44978c76bf5b859b98e0
>
> Source release (checksums and signatures are available at the same
> location):
> https://dist.apache.org/repos/dist/dev/cloudstack/4.20.0.0/
>
> PGP release keys (signed using 488D90DA107445E3243D162606F3CEC65B335790):
> https://dist.apache.org/repos/dist/release/cloudstack/KEYS
>
> Vote will be open for 120 hours (due to the weekend).
>
> For sanity in tallying the vote, can PMC members please be sure to
> indicate "(binding)" with their vote?
>
> [ ] +1  approve
> [ ] +0  no opinion
> [ ] -1  disapprove (and reason why)
>
>

Re: ISCSI WITH KVM

[Wei ZHOU]

It looks like a migrate flag UNSAFE needs to set
https://java.libvirt.org/javadoc/org/libvirt/Domain.MigrateFlags.html#UNSAFE

Can you file a github issue ?


-Wei

On Thu, Oct 10, 2024 at 9:18 PM Sanjay Kumar  wrote:

> Hi
>
> We are trying to add iscsi with kvm in our infra with multiple host and it
> is working with one host only. is there any guide line for iscsi use as
> share storage with kvm.
>
> Migration failed.
> Exception during migrate: org.libvirt.LibvirtException: Unsafe migration:
> Migration without shared storage is unsafe
>
> Any help would be really appreciated. Thank you!
>
> Regards,
> SK
>

Re: Newbie needs help with a Virtual Router problem

[Wei ZHOU]

Welcome to the community !


On Friday, October 11, 2024, Ron Gage  wrote:

> Nevermind...  I found the problem.  Egress rules deny all on the VR by
> default.  Gotta allow all to allow traffic.
>
> Sorry to have bothered you all!
>
> Ron Gage
>
>
>
> On 10/10/2024 7:28 PM, Ron Gage wrote:
>
> Greetings all from Detroit!
>
> I have a bit of a problem with the virtual router within CS.  In my case,
> it is not forwarding traffic from a guest network to public.
>
> From the VR cli, I can ping out to google (8.8.8.8) via public without
> issue, I can ping other devices on the public net (e.g. 192.168.0.13 -
> don't judge me) and I can ping devices in the guest network (10.0.0.46/24).
> You would certainly think that this would be enough.  It isn't.
>
> From the device in the guest network (10.0.0.46/24), I can ping the
> VR/network gateway without issue and the VR is set as the default gateway (
> 10.0.0.1/24).  Device on guest network cannot ping out past the default
> gateway and thus cannot reach either local infrastructure like DNS (
> 192.168.0.13/24) or internet.
>
> From the VR in the admin portal:
>
> Could I get a suggestion or two on what I might be doing wrong here?
>
> Thanks!
>
> Ron Gage
>
>
>

Re: SSL Certificate Install Failing

[Wei ZHOU]

The root certificate should start with "BEGIN CERTIFICATE" and end with
"END CERTIFICATE"



On Mon, Oct 7, 2024 at 12:37 PM Granwille Strauss
 wrote:

> Hi Guys,
>
> I am so confused, we have a newly issued Wildcard certificate that I am
> trying to install to cloudstack via UI but it seems to fail with consolveVM:
>
> 2024-10-07 10:30:21,786 INFO
> [cloud.consoleproxy.ConsoleProxySecureServerFactoryImpl] (
> Console-Proxy-Main:null) Start initializing SSL
> 2024-10-07 10:30:21,786 INFO
> [cloud.consoleproxy.ConsoleProxySecureServerFactoryImpl] (
> Console-Proxy-Main:null) No certificates passed, recheck global
> configuration and certificates
> 2024-10-07 10:30:21,787 INFO
> [cloud.consoleproxy.ConsoleProxySecureServerFactoryImpl] (
> Console-Proxy-Main:null) Start initializing SSL
> 2024-10-07 10:30:21,787 INFO
> [cloud.consoleproxy.ConsoleProxySecureServerFactoryImpl] (
> Console-Proxy-Main:null) No certificates passed, recheck global
> configuration and certificates
> 2024-10-07 10:30:21,813 ERROR
> [cloud.consoleproxy.ConsoleProxySecureServerFactoryImpl] (
> Console-Proxy-Main:null) java.lang.NullPointerException: null SSLContext
>
> Am I being stupid or something? Because I am fairly sure what I am adding
> is correct, see attached screenshot: https://tinyurl.com/yrkggqko
>
> My certificate file is in .crt format from the provider, and I converted
> my key, which was in basic text to PKCS#8 format. Am I missing something?
> SSVM seems to boot and connect fine, its just ConsoleVM failing to connect,
> but is running. My global config has the domain URL as a wildcard in place
> so *.domain.tld and I made sure 1-2-3.domain.tld has an A record to the
> consoleVM's IP address too.
>
> What format must the "server certificate" be in? I am confused with why
> this isn't working.
>
> --
> Regards / Groete
>
>  Granwille Strauss  //  Senior Systems Admin
>
> *e:* granwi...@namhost.com
> *m:* +264 81 323 1260 <+264813231260>
> *w:* www.namhost.com
>
>  
> 
> 
> 
>
> 
>
> Namhost Internet Services (Pty) Ltd ,
>
> 24 Black Eagle Rd, Hermanus, 7210, RSA
>
>
>
> The content of this message is confidential. If you have received it by
> mistake, please inform us by email reply and then delete the message. It is
> forbidden to copy, forward, or in any way reveal the contents of this
> message to anyone without our explicit consent. The integrity and security
> of this email cannot be guaranteed over the Internet. Therefore, the sender
> will not be held liable for any damage caused by the message. For our full
> privacy policy and disclaimers, please go to
> https://www.namhost.com/privacy-policy
>
>

Re: Error adding a extraconfig when updating virtual machine

[Wei ZHOU]

Hi Pratik,

The error clearly mentioned "It is not allowed to add setting for
extraconfig."

You can use cloudmonkey/cmk, please refer to what Ricardo did
update virtualmachine id=012287ac-8358-4e90-a1ec-b6e86dc23774
extraconfig='%3Cdevices%3E%20%3Ctpm%20model%3D%22tpm-tis%22%3E%20%3Cbackend%20type%3D%22emulator%22%20version%3D%222.0%22/%3E%20%3C/tpm%3E%20%3C/devices%3E'


-Wei



On Mon, Oct 7, 2024 at 10:59 AM Pratik Chandrakar <
chandrakarpra...@gmail.com> wrote:

> Hello,
> I am using CS 4.19.1 and trying to add the extraconfig for tpm from the UI
> but it gives me error as "It is not allowed to add setting for extraconfig.
> Please update VirtualMachine with extraconfig parameter. " . Please advise
>
> On Thu, Sep 19, 2024 at 4:41 PM Ricardo Pertuz
>  wrote:
>
> > Thanks Wei,
> >
> > It worked.
> >
> >
> > Atte,
> >
> > Ricardo Pertuz
> >
> >
> > On 19 Sep 2024 at 6:08 AM -0500, users@cloudstack.apache.org, wrote:
> > >
> > > allow.additional.vm.configuration.list.kvm
> >
>
>
> --
> *Regards,*
> *Pratik Chandrakar*
>

Re: Public IP on instances

[Wei ZHOU]

Hi Marty,

You can get more information of ROUTED mode on
https://docs.cloudstack.apache.org/en/latest/adminguide/networking/dynamic_static_routing.html

-Wei

On Wed, Oct 2, 2024 at 4:49 PM Marty Godsey  wrote:

> Alex,
>
> So does this mean that the customer will need their own public subnet
> space in the public-public scenario if the VR is just acting as a router?
> How does this work with automatic allocation like it does now?
>
> Regards,
> Marty Godsey
>
>
> From: Alex Mattioli 
> Date: Tuesday, October 1, 2024 at 11:28 AM
> To: users@cloudstack.apache.org 
> Subject: RE: Public IP on instances
> WARNING: This email originated from outside of the organization. Do not
> click links or open attachments unless you recognize the sender and know
> the content is safe.
>
>
> Building on what Stephan said.
>
> In 4.20 there will be a new feature called "ROUTED mode", in which the ACS
> VR instead of NATting simply routes between two networks, which can be
> private-private, public-private, private-public, or public-public, the last
> two allowing for your end user VMs to have public IPs without the need of
> Operator intervention, also in 4.20 there will be support for BGP in the
> ACS VR, which means that the subnets (Public or otherwise) used by end
> users in Routed mode are automatically advertised upstream.
>
> Either way, be with static or dynamic routing, with Routed mode you'll
> have full control of the public IPs assigned.
>
> There will be a session by Wei Zhoue showcasing this new mode in the next
> CCC on Friday 22nd of November at 11:30am (CEST):
> https://atpscan.global.hornetsecurity.com?d=2_L5ASGiZkQUy3WIwyuwS7ZEKxepbehOc5_5hXyBHbo&f=11FL9O81QOaDecjEcRW18Bc0HDwHHudUjgQm2sZqr9gJbPweH0Shmsafosz_FMYI&i=&k=6QIh&m=xESLIvTl3JcJbFIqHFyvGNC1cUa3dk3JTm5rBb5GnLQJ3vj32DnmC4tQB2MBumH3KUBKIgO_92Wciricec2_QmRLcGT_eCOLZ0_pkooYey0r2M9ujzushgA9RReAifUB&n=-M8F8az2r7mgeJh5YU7MrhqAibcsRyS0M1O0dRutOk5rut1Q8AAkzkeebWTZrnp-&r=EHCXAcWOc9fQZ2opSXDWb5CMVWfKXQzbrDBydD8iFiT8SlLV64-xS7HzpWvCaIqS&s=4abe87433b9f7e516be6a66312b0cfd1832f52c7168732bffd6af7b44d7107b8&u=https%3A%2F%2Fwww.cloudstackcollab.org%2F
>
> Cheers,
> Alex
>
>
>
>
> -Original Message-
> From: Stephan Bienek 
> Sent: 01 October 2024 14:39
> To: users@cloudstack.apache.org
> Subject: Re: Public IP on instances
>
> We are using L2 networks with for example a /29 public subnet for the
> customer network as well, as Lucian mentioned it.
>
> This approach and quite a few other use cases i will share during my talk
> at CCC 2024 in Madrid.
>
> As an alternative to the L2 /29 approach, which is not the most efficient
> approach if you only need a single IP, you could use a Shared Network with
> specify VLAN, without VR and tell the customer which single IP to use.
> In order to make sure no customer is using "wrong" IPs, be sure to use the
> approach Alex Mattioli mentioned once - creating fixed MAC-IP entries on
> your routers.
>
> We combine the L2 network approach with what Swen mentioned, collecting
> netflow data from routers via open source "pmacct" for traffic accounting.
> This could help to get per-customer (or per-IP) accounting data even when
> using one shared VR.
>
> Best regards,
> Stephan
>
> > Wei ZHOU  hat am 01.10.2024 14:11 CEST
> geschrieben:
> >
> >
> > +1 with what Lucian said.
> >
> > Please update the value of global setting "vm.network.stats.interval"
> > (by default 0), and restart mgmt server.
> > then you can get network statistics of each nic on shared networks.
> >
> > -Wei
> >
> > On Tue, Oct 1, 2024 at 1:47 PM Nux  wrote:
> >
> > > I thought the traffic usage is taken from the hypervisor, for the
> > > VM's NIC.
> > > Btw, you can also use L2 networks, may be more flexible and economic
> > > (with IPv4 usage).
> > >
> > > On 2024-10-01 10:24, Alexandru Stan wrote:
> > > > Hi everyone,
> > > >
> > > > I have a specific scenario with ACS that I'm not sure how to
> > > > approach, maybe someone here can share a solution/workaround. As
> > > > far as I know, the only way to have a public ip directly assigned
> > > > to a vm (I mean on the vm's network adapter) is to use a shared
> > > > network. But in this case all users would share one router and I
> > > > wouldn't be able to track network usage individually, correct? Is
> > > > there any other way to do this AND have traffic usage at vm/user
> > > > level? Creating multiple shared networks is not an option, it
> > > > would require constant monitoring of the routers to keep track of ip
> usage and so on.
> > > >
> > > > Thank you!
> > >
>

Re: Roles permission

[Wei ZHOU]

Hi,

Can you upgrade to 4.19.1.1 ?


-Wei


On Wed, Oct 2, 2024 at 10:11 AM Alessandro Caviglione <
c.alessan...@gmail.com> wrote:

> Hi,
> I'm running ACS 4.19.1 and I see something strange with roles.
> In the doc I read this for domain admin role:
> Domain administrators can perform administrative operations for Users who
> belong to that domain. Domain administrators do not have visibility into
> physical servers or other domains.
>
> I've created some domains and one Domain Admin accounts for each domain,
> BUT users under domain admin account CAN SEE all other domains networks and
> instances, why??
>

Re: Public IP on instances

[Wei ZHOU]

+1 with what Lucian said.

Please update the value of global setting "vm.network.stats.interval" (by
default 0), and restart mgmt server.
then you can get network statistics of each nic on shared networks.

-Wei

On Tue, Oct 1, 2024 at 1:47 PM Nux  wrote:

> I thought the traffic usage is taken from the hypervisor, for the VM's
> NIC.
> Btw, you can also use L2 networks, may be more flexible and economic
> (with IPv4 usage).
>
> On 2024-10-01 10:24, Alexandru Stan wrote:
> > Hi everyone,
> >
> > I have a specific scenario with ACS that I'm not sure how to approach,
> > maybe someone here can share a solution/workaround. As far as I know,
> > the only way to have a public ip directly assigned to a vm (I mean on
> > the vm's network adapter) is to use a shared network. But in this case
> > all users would share one router and I wouldn't be able to track
> > network usage individually, correct? Is there any other way to do this
> > AND have traffic usage at vm/user level? Creating multiple shared
> > networks is not an option, it would require constant monitoring of the
> > routers to keep track of ip usage and so on.
> >
> > Thank you!
>

Re: ssh key issue

[Wei ZHOU]

You can ssh into the cks nodes using the key on the mamagement server

~cloud/.ssh/id_rsa



On Thursday, September 26, 2024, Nixon Varghese K S 
wrote:

> Hi All,
>
> I have a situation where I lost my ssh key pairs in cloudstack; hence, I am
> unable to login to any of my Kubernetes nodes. Is there a way that I can
> create new key and add it through UI or be able to download the key again
> from CloudStack.. It would be helpful if I could get any advice...
>
> --
> With Regards,
> Nixon Varghese
>

Re: Removal of unused plugins

[Wei ZHOU]

Hi Byran,

They have copied some repos to OpenSDN on github.
https://github.com/OpenSDN-io

There were already some changes made to some repos.

-Wei


On Wednesday, September 25, 2024, Bryan Tiang 
wrote:

> Hi Guys,
>
> Speaking of Tungsten Plugin, what happened with the OpenSDN integration?
>
> Last i heard was that they formed a committee after Tungsten project was
> closed, but havent heard any news since?
>
> Reagrds,
> Bryan
> On 18 Sep 2024 at 10:22 PM +0800, Wei ZHOU , wrote:
> > Thanks Byran.
> >
> > I think we will definitely keep the following the plugins
> > - kvm, vmware, xenserver, simulator
> > - ovs, vxlan, nsx, tungsten, internal-lb
> >
> > hyperv is not well-maintained, but I prefer to keep it. ovm/ovm3/ucs
> > support could be dropped.
> >
> > for the network plugins, I do not have preferences. good to know that
> Palo
> > alto is interested.
> > in ACS 4.21 or 4.22, you might see some more VNF improvements (e.g. a
> > provider framework and an implementation)
> >
> >
> > Kind regards,
> > Wei
> >
> >
> > On Wed, Sep 18, 2024 at 3:25 PM Bryan Tiang 
> > wrote:
> >
> > > Hi Wei Zhou,
> > >
> > > We dont use any of the plugins listed, but some do stand out:
> > >
> > > # HyperV # We dont use it right now, but would definitely use it if it
> was
> > > more mature. Some enterprise-ey applications we use require HyperV
> (other
> > > than Vmware) for some reason (Eg. Oneidentity Privilege Access Mgmt
> > > System), so we maintain a small cluster of HyperV outside of
> cloudstack.
> > > But if there's no intention to enhance these, id suggest to remove it.
> With
> > > people moving out of Vmware and looking for alternatives, Cloudstack
> docs
> > > should show the fairly supported items. Its just better on optics and
> CS
> > > adoption.
> > >
> > > # Palo Alto # I believe this was built by CloudOps by Aptum in 2014? We
> > > were researching this extensively cause we wanted to implement some
> NGFW
> > > capabilities in our setup, but it seems the project wasn't maintained
> over
> > > the years. Im not sure whos using it, but it's sad there wasn't much
> > > uptake. Probably because Palo Alto is really expensive now. If there
> was a
> > > fortinet plugin, we'd be very interested. But right now, we settled on
> > > using VNF + L2 Networks.
> > >
> > > Note: Please dont remove VXLAN plugin... will self destruct.
> > >
> > >
> > >
>

Re: VNC console on multiple zones

[Wei ZHOU]

It would a valid improvement request to have different console domain per
zone.


On Wednesday, September 25, 2024, Alexandru Stan
 wrote:

> Yes, it works that way. There are a couple of downsides to this, as the cp
> ip's must always be the same (no idea where to create a reservation for it)
> and the public ip is clearly visible in the url. But if this is the only
> way I guess I don't have a choice.
>
> Thank you!
>
> -Original Message-
> From: Nux 
> Sent: Tuesday, September 24, 2024 11:00 PM
> To: users@cloudstack.apache.org
> Subject: Re: VNC console on multiple zones
>
> Cloudstack will generate a hostname of the following type:
> 185-163-105-5.domain.tld - assuming the IP the CPVM gets is 185.163.105.5.
>
> Does it make sense?
>
> This implies that for the systemvm public IP range you will need to
> generate A records similar to the above.
>
> On 2024-09-24 11:09, Alexandru Stan wrote:
> > Hi,
> >
> > I think I tried that at some point, setting the url as wildcard in the
> > manager config, but I don't remember if this uses the console proxy
> > ip.domain.com or the individual vm ip.domain.com.
> >
> >
> > -Original Message-
> > From: Nux 
> > Sent: Tuesday, September 24, 2024 2:01 AM
> > To: users@cloudstack.apache.org
> > Cc: Alexandru Stan 
> > Subject: Re: VNC console on multiple zones
> >
> > Hi,
> >
> > You want to employ dynamic URLs, so that they look like
> > 192-168-100-10.domain.tld rather than console.domain.tld.
> >
> > Check
> > https://www.shapeblue.com/securing-cloudstack-4-11-with-https-tls/
> > and look for "Dynamic URL".
> >
> > HTH
> >
> > On 2024-09-23 21:24, Alexandru Stan wrote:
> >> Hi all,
> >>
> >> How does ACS handle vnc console for different zones under the same
> >> manager? In the global config we can only set one URL for the
> >> console, that means something like console.domain.com mapped to an ip
> >> address in the dns zone. But what about other zones with different
> >> public ips
> >> - so different console system vm ip? One solution would obviously be
> >> to have one manager per zone, but I doubt that ACS lets you create
> >> multiple zones within one manager have different public ip ranges and
> >> doesn't offer a way to have a global vnc console.
> >>
> >> Thanks!
>

Re: Enable nic multiqueue after build

[Wei ZHOU]

Yes.

nic.packed.virtqueues.enabled




On Mon, Sep 23, 2024 at 3:36 PM Jimmy Huybrechts 
wrote:

> Hi Wei,
>
> That seems to work :) is there also a setting to enable those packed virt
> queues this way? On a stopped vm of course.
>
> --
> Jimmy
>
> From: Wei ZHOU 
> Date: Monday, 23 September 2024 at 14:26
> To: users@cloudstack.apache.org 
> Subject: Enable nic multiqueue after build
> Hi,
>
> You can try
> - stop vm
> - go to vm settings
> - add vm setting nic.multiqueue.number
> - start vm
>
>
>
> On Monday, September 23, 2024, Jimmy Huybrechts 
> wrote:
>
> > Hi,
> >
> > Currently I have a VM that does a little too much pps for a single queue
> > and was looking for a way to enable multiqueue.
> > I found this can be done on new vm’s since 4.18 according to:
> > https://github.com/apache/cloudstack/pull/7333
> >
> > And I can indeed see those options when building a new one.
> >
> > But how do I enable this on a currently built vm? As needing to recreate
> > everything from the current one would be.. not fun :)
> >
> > --
> > Jimmy
> >
>

Enable nic multiqueue after build

[Wei ZHOU]

Hi,

You can try
- stop vm
- go to vm settings
- add vm setting nic.multiqueue.number
- start vm



On Monday, September 23, 2024, Jimmy Huybrechts 
wrote:

> Hi,
>
> Currently I have a VM that does a little too much pps for a single queue
> and was looking for a way to enable multiqueue.
> I found this can be done on new vm’s since 4.18 according to:
> https://github.com/apache/cloudstack/pull/7333
>
> And I can indeed see those options when building a new one.
>
> But how do I enable this on a currently built vm? As needing to recreate
> everything from the current one would be.. not fun :)
>
> --
> Jimmy
>

Re: Secure Boot on Ubuntu 20.4 KVM Hypervisor for Win11

[Wei ZHOU]

Hi,

You can refer to the blog which provides an example of correct
configuration (in section "Step 5: Verification")
.

-Wei


On Thu, Sep 19, 2024 at 9:56 PM Ricardo Pertuz
 wrote:

> Thanks Wei,
>
> The command shows me the whole xml dump, any particular section I should
> check? Regarding secure I only see
>
> loader readonly='yes' secure='yes'
> type='pflash'>/usr/share/OVMF/OVMF_CODE_4M.secboot.fd
>
>
> Atte,
>
> Ricardo Pertuz
>
>
> On 19 Sep 2024 at 8:01 AM -0500, users@cloudstack.apache.org, wrote:
> >
> > --security-info
>

Re: Secure Boot on Ubuntu 20.4 KVM Hypervisor for Win11

[Wei ZHOU]

Hi,

Can you check if the output of the command "virsh dumpxml --security-info
vm-name"  is correct ?

-Wei

On Thu, Sep 19, 2024 at 1:26 PM Ricardo Pertuz
 wrote:

> Hey community,
>
> I have Ubuntu 20.04 as KVM Hypervisor on my 4.19 ACS platform but when
> booting a virtual machine with a Windows 11 ISO I’m getting "Guest has not
> initialized the display (yet)"
>
> I followed the guide:
>
>
> https://blog.cloudabc.eu/cloudstack/2024/02/18/CloudStack-Create-Windows-11-on-Ubuntu/
>
> but I’m guessing it’s related that is not compatible with Ubuntu 20.04
>
>
> Atte,
>
> Ricardo Pertuz
>
>
>

Re: Error adding a extraconfig when updating virtual machine

[Wei ZHOU]

Hi,

Please update the global configuration
"allow.additional.vm.configuration.list.kvm".
You can also set per account or domain.

-Wei

On Thu, Sep 19, 2024 at 1:03 PM Ricardo Pertuz
 wrote:

> Hi community
>
> when
>
> update virtualmachine id=012287ac-8358-4e90-a1ec-b6e86dc23774
> extraconfig='%3Cdevices%3E%20%3Ctpm%20model%3D%22tpm-tis%22%3E%20%3Cbackend%20type%3D%22emulator%22%20version%3D%222.0%22/%3E%20%3C/tpm%3E%20%3C/devices%3E'
>
> Which is intended to enable tpm
>
> 
> 
> 
> 
> 
>
> I’m having the following error
>
> (HTTP 530, error code 4250) Failed to update VM, due to: Extra config
> 'devices' is not on the list of allowed keys for KVM hypervisor host
>
> Any idea? Thanks!
>
>
> Atte,
>
> Ricardo Pertuz
>
>
>

Re: Removal of unused plugins

[Wei ZHOU]

Thanks Byran.

I think we will definitely keep the following the plugins
- kvm, vmware, xenserver, simulator
- ovs, vxlan, nsx, tungsten, internal-lb

hyperv is not well-maintained, but I prefer to keep it. ovm/ovm3/ucs
support could be dropped.

for the network plugins, I do not have preferences. good to know that Palo
alto is interested.
in ACS 4.21 or 4.22, you might see some more VNF improvements (e.g. a
provider framework and an implementation)


Kind regards,
Wei


On Wed, Sep 18, 2024 at 3:25 PM Bryan Tiang 
wrote:

> Hi Wei Zhou,
>
> We dont use any of the plugins listed, but some do stand out:
>
> # HyperV # We dont use it right now, but would definitely use it if it was
> more mature. Some enterprise-ey applications we use require HyperV (other
> than Vmware) for some reason (Eg. Oneidentity Privilege Access Mgmt
> System), so we maintain a small cluster of HyperV outside of cloudstack.
> But if there's no intention to enhance these, id suggest to remove it. With
> people moving out of Vmware and looking for alternatives, Cloudstack docs
> should show the fairly supported items. Its just better on optics and CS
> adoption.
>
> # Palo Alto # I believe this was built by CloudOps by Aptum in 2014? We
> were researching this extensively cause we wanted to implement some NGFW
> capabilities in our setup, but it seems the project wasn't maintained over
> the years. Im not sure whos using it, but it's sad there wasn't much
> uptake. Probably because Palo Alto is really expensive now. If there was a
> fortinet plugin, we'd be very interested. But right now, we settled on
> using VNF + L2 Networks.
>
> Note: Please dont remove VXLAN plugin... will self destruct.
>
>
>

Re: Removal of unused plugins

[Wei ZHOU]

Hi,

It looks like the formatting is lost.
Below are the plugins in red in my previous email.

- plugins/hypervisors

hyperv
ovm
ovm3
ucs

- plugins/network-elements

bigswitch
cisco-vnmc
elastic-loadbalancer
netscaler
stratosphere-ssp
brocade-vcs
juniper-contrail
nicira-nvp
opendaylight
palo-alto



Kind regards,
Wei

On Wed, Sep 18, 2024 at 11:37 AM Wei ZHOU  wrote:

> Hi all,
>
> There are some plugins in CloudStack which have not been updated for some
> years. I think we should remove some of the plugins in the next releases.
>
> For hypervisors, we have a wiki page to maintain the EOL dates:
> https://cwiki.apache.org/confluence/display/CLOUDSTACK/Hypervisor+and+Management+Server+OS+EOL+Dates
> (thanks Rohit)
>
> We lack the information of network plugins.
>
> Anyone (or knows someone else) is using the following plugins in red ?
>
> *- plugins/hypervisors*
>
>
>
> * - baremetal- hyperv- kvm- ovm- ovm3- simulator- ucs- vmware- xenserver*
>
> *- plugins/network-elements*
>
>
>- bigswitch
>- cisco-vnmc
>- elastic-loadbalancer
>- internal-loadbalancer
>- netscaler
>- nsx
>- ovs
>- stratosphere-ssp
>- vxlan
>- brocade-vcs
>- dns-notifier
>- globodns
>- juniper-contrail
>- nicira-nvp
>- opendaylight
>- palo-alto
>- tungsten
>
>
>
> Thank you !
>
> Kind regards,
> Wei
>
>
>
>
>
>

Re: New PMC member: Suresh Anaparti

[Wei ZHOU]

Congratulations Suresh !

-Wei

On Wed, Sep 18, 2024 at 12:52 PM Rohit Yadav  wrote:

> The Project Management Committee (PMC) for Apache CloudStack
> has invited Suresh Anaparti to become a PMC member and we are pleased
> to announce that they have accepted.
>
> Suresh has contributed in the past and has shown effort to make the
> project run smoothly. He also has served as the release manager for
> CloudStack releases 4.16.1.0 and 4.19.1.0.
>
> Please join me in congratulating Suresh
>
> Regards,
> Rohit Yadav
>

Removal of unused plugins

[Wei ZHOU]

Hi all,

There are some plugins in CloudStack which have not been updated for some
years. I think we should remove some of the plugins in the next releases.

For hypervisors, we have a wiki page to maintain the EOL dates:
https://cwiki.apache.org/confluence/display/CLOUDSTACK/Hypervisor+and+Management+Server+OS+EOL+Dates
(thanks Rohit)

We lack the information of network plugins.

Anyone (or knows someone else) is using the following plugins in red ?

*- plugins/hypervisors*



* - baremetal- hyperv- kvm- ovm- ovm3- simulator- ucs- vmware- xenserver*

*- plugins/network-elements*


   - bigswitch
   - cisco-vnmc
   - elastic-loadbalancer
   - internal-loadbalancer
   - netscaler
   - nsx
   - ovs
   - stratosphere-ssp
   - vxlan
   - brocade-vcs
   - dns-notifier
   - globodns
   - juniper-contrail
   - nicira-nvp
   - opendaylight
   - palo-alto
   - tungsten



Thank you !

Kind regards,
Wei

Re: Preferred storage pool (preferred.storage.pool)

[Wei ZHOU]

Hi,

It depends on the disk offerings.
If the disk offering says it uses local storage, volumes will be created on
the local storage pool. otherwise on the ceph rbd.
`preferred.storage.pool` is useless in your case.

-Wei


On Tue, Sep 17, 2024 at 9:53 AM Sanjay Kumar  wrote:

> Hi Wei,
>
> Thanks for the quick revert.
>
> We have to cluster in our setup, one is rbd and one is local. I want to set
> the uuid of primary storage of local  in preferred.storage.pool from global
> setting then the vm will create in local or rbd pool?
>
>
> Thank you
>
>
>
> On Tue, Sep 17, 2024 at 1:13 PM Wei ZHOU  wrote:
>
> > What's your question ?
> >
> > It is an account-level setting, you can set different values per account
> or
> > domain.
> >
> > -Wei
> >
> > On Tue, Sep 17, 2024 at 9:25 AM Sanjay Kumar 
> > wrote:
> >
> > > Hello!
> > >
> > > Please let us know if we use this option(preferred.storage.pool), then
> > all
> > > VMs will use this pool which uuid we will use with this setting.
> > >
> > >
> > > Any help would be really appreciated. Thank you!
> > >
> > > Regards,
> > > SK
> > >
> >
>

Re: Preferred storage pool (preferred.storage.pool)

[Wei ZHOU]

What's your question ?

It is an account-level setting, you can set different values per account or
domain.

-Wei

On Tue, Sep 17, 2024 at 9:25 AM Sanjay Kumar  wrote:

> Hello!
>
> Please let us know if we use this option(preferred.storage.pool), then all
> VMs will use this pool which uuid we will use with this setting.
>
>
> Any help would be really appreciated. Thank you!
>
> Regards,
> SK
>

Re: HA related issue

[Wei ZHOU]

I never tested it.

mariadb galera cluster is a mature solution for DB.
Yoi may refer to a discussion
https://lists.apache.org/thread/ql9zg4ohtkd9mvw5bc93mrwwwr8bxq9x

-Wei

On Tuesday, September 10, 2024, sai  wrote:

> Hi All,
>
> I have configured DB HA for the first time following this
> https://docs.cloudstack.apache.org/en/latest/adminguide/reliability.html
> document.
>
> when I stop master database, the second slave node doesn't comes up and
> management server throws a simple error.  Unable to keep the db connection
> for LockMaster1
> com.mysql.cj.jdbc.exceptions.CommunicationsException: Communications link
> failure
> can anyone please help me what might be the issue or any other settings
> need to done.
>
> Thanks,
> sai
>

Re: Update CIDR - Isolated network - ACS 4.18.3

[Wei ZHOU]

If you have some running VMs, you need to manually update the netmask of
the IPs (and routes if needed) inside the VMs as well.

-Wei

On Sun, Sep 1, 2024 at 9:36 AM  wrote:

> Hello,
>
>   Just did a test, updating in db and rebuild the network. Looks fine.
>
> Thank you,
> Cristian
>
> -Original Message-
> From: Wei ZHOU 
> Sent: Friday, August 30, 2024 10:14 AM
> To: users@cloudstack.apache.org
> Subject: Re: Update CIDR - Isolated network - ACS 4.18.3
>
> Hi,
>
> I think you have to manually update the database
>
> - change "cidr" field of "network"
> - update the "netmask" field of "nics"
> - restart network with cleanup
>
> Maybe some steps are missing. Please test it with a test network first.
>
> -Wei
>
>
> On Fri, Aug 30, 2024 at 9:04 AM Cristian Ciobanu  >
> wrote:
>
> > Hi Alex,
> >
> >I'm out of IPs in this network, this is why I intended to updated
> > the subnet, production VMs. It is a isolated network.
> >
> >
> > Regards,
> > Cristian
> >
> > On Thu, Aug 29, 2024, 16:05 Alex Mattioli
> > 
> > wrote:
> >
> > > Hi Cristian,
> > >
> > > What's the use case there?
> > > Also, which type of network are you using?
> > >
> > > Cheers
> > > Alex
> > >
> > >
> > >
> > >
> > > -Original Message-
> > > From: cristian.c@istream.today 
> > > Sent: Thursday, August 29, 2024 7:24 AM
> > > To: users@cloudstack.apache.org
> > > Subject: Update CIDR - Isolated network - ACS 4.18.3
> > >
> > > Hello,
> > >
> > >
> > >
> > > Is it possible to update the CIDR to a different subnet, such as
> > > changing from /24 to /23 or a larger range? I ask this because when
> > > I try to do this, I get an error : Invalid value of Guest VM CIDR.
> > > For IP
> > Reservation,
> > > Guest VM CIDR should be a subset of network CIDR : 10.2.1.0/24
> > >
> > >
> > > Best regards,
> > >
> > > Cristian
> > >
> > >
> > >
> >
>
>

Re: Update CIDR - Isolated network - ACS 4.18.3

[Wei ZHOU]

Hi,

I think you have to manually update the database

- change "cidr" field of "network"
- update the "netmask" field of "nics"
- restart network with cleanup

Maybe some steps are missing. Please test it with a test network first.

-Wei


On Fri, Aug 30, 2024 at 9:04 AM Cristian Ciobanu 
wrote:

> Hi Alex,
>
>I'm out of IPs in this network, this is why I intended to updated the
> subnet, production VMs. It is a isolated network.
>
>
> Regards,
> Cristian
>
> On Thu, Aug 29, 2024, 16:05 Alex Mattioli 
> wrote:
>
> > Hi Cristian,
> >
> > What's the use case there?
> > Also, which type of network are you using?
> >
> > Cheers
> > Alex
> >
> >
> >
> >
> > -Original Message-
> > From: cristian.c@istream.today 
> > Sent: Thursday, August 29, 2024 7:24 AM
> > To: users@cloudstack.apache.org
> > Subject: Update CIDR - Isolated network - ACS 4.18.3
> >
> > Hello,
> >
> >
> >
> > Is it possible to update the CIDR to a different subnet, such as changing
> > from /24 to /23 or a larger range? I ask this because when I try to do
> > this, I get an error : Invalid value of Guest VM CIDR. For IP
> Reservation,
> > Guest VM CIDR should be a subset of network CIDR : 10.2.1.0/24
> >
> >
> > Best regards,
> >
> > Cristian
> >
> >
> >
>

Re: Port Forwarding in Network

[Wei ZHOU]

Thanks for sharing. Interesting

How many cpu and memory does you VR have ?


-Wei
On Thursday, August 29, 2024, Bryan Tiang  wrote:

> Hi Alex and Wei Zhou,
>
> Thanks for the input, so it seems this new feature is more beneficial for
> those who are currently using Shared Networks.
>
> We have 50 AutoscaleGroups in a single VR because our company mainly
> distributes/broadcasts stock prices from multiple exchanges to public
> users, so lots of micro services that need to autoscale instantaneously
> when the markets suddenly spike/rally which can result in 1 - 10x traffic
> bursts.
>
> However, most of our Autoscale Groups consists of API Gateways to route
> traffic to different network tiers and micro services. This is what takes
> up lots of Autoscale Groups.
>
> We had to duplicate lots of API Gateway into multiple Autoscale Groups
> because the current feature only allows load balancing to 1 single port.
>
> So this is more of a workaround for us to overcome the current Autoscale
> feature limitation.
>
> I think something worth mentioning is that our Autoscale Group, load
> balances traffic to other Autoscale Groups.
>
> For example:
>
> Internet -> ASG LB (API GW) -> ASG LB (Microservice 1) -> Database
>
> And in some cases, we have this as well:
>
> Internet -> ASG LB (API GW) -> ASG LB (Microservice 1) -> ASG LB
> (Microservice 2)-> Database
>
> I guess makes the VR very busy.
>
> Happy to share more, sounds like our use is bit extreme… but it works so
> far though. Its only the CPU Utilisation that’s concerning… (memory is
> always around 40% so not a bottleneck there)
>
> Regards,
> Bryan
> On 29 Aug 2024 at 11:27 PM +0800, Alex Mattioli <
> alex.matti...@shapeblue.com>, wrote:
> > Hi Bryan,
> >
> > What's your use case for 50 autoscale groups in 1 VR? When designing the
> feature we never envisioned more than 2 or 3.
> >
> > In NAT mode you should be able to get some 3gpbs through the VR, in
> ROUTED mode then some 6-7gbps. Those numbers do go down (considerably
> sometimes) with the number of firewall rules, load balancing, etc... you
> have setup in the network.
> >
> > You'll need to create new networks in ROUTED mode, there's no migration
> path from NATTED mode to ROUTED mode.
> >
> > You definitely can allow all traffic in the firewall and setup firewall
> rules in each individual VM.
> >
> > In this initial implementation there's no load balancer in ROUTED mode,
> so no Autoscale groups. But it is definitely a possible improvement for
> future versions.
> >
> > Cheers
> > Alex
> >
> >
> >
> >
> > -Original Message-
> > From: Bryan Tiang 
> > Sent: Thursday, August 29, 2024 11:11 AM
> > To: users@cloudstack.apache.org; users@cloudstack.apache.org
> > Cc: d...@cloudstack.apache.org
> > Subject: RE: Port Forwarding in Network
> >
> > Hey Alex,
> >
> > It’s exiting to hear this new features coming about, and that the VR
> performance will be improved as a result of pure routing.
> >
> > We have a pain point right now where our VR is at 75% CPU when handling
> 200Mbps Internet Traffic. Probably because we have 50 Autoscale Groups
> within that 1 VR… (VR is 4Core,4GB).
> >
> > We have plans support 1Gb-5Gbps Internet Bandwidth within a single VR
> one day, but if it’s already at 75%… kinda worrying for us. So this is
> exciting.
> >
> > I went through the design document and have few questions. Is this going
> to be a new network? Or can existing VPC networks upgrade to Routed Mode?
> >
> > Since every VM will get to have its own Public IP, does it mean every VM
> can have its own firewall rules now?
> >
> > Will this feature be available for Autoscale Groups? We are heavy users
> of it.
> >
> > Regards,
> > Bryan
> > On 29 Aug 2024 at 4:22 AM +0800, Alex Mattioli <
> alex.matti...@shapeblue.com>, wrote:
> > > Hi Marty,
> > >
> > >
> > >
> > > Here's the documentation for Routed Mode and Simple Dynamic Routing, I
> did the original design and my colleague @Wei Zhou<mailto:Wei.Zhou@
> shapeblue.com> refined and implemented it.
> > >
> > > https://cwiki.apache.org/confluence/pages/viewpage.
> action?pageId=306153967
> > >
> > > https://cwiki.apache.org/confluence/pages/viewpage.
> action?pageId=315492858
> > >
> > > Cheers,
> > >
> > > Alex
> > >
> > >
> > >
> > >
> > >
> > >
> > >
> > > -Original M

Re: Port Forwarding in Network

[Wei ZHOU]

Hi,

See my inline reply

> Is this going to be a new network? Or can existing VPC networks upgrade
to Routed Mode?

You need to create a new network offering, and a new network.

> Since every VM will get to have its own Public IP, does it mean every VM
can have its own firewall rules now?

every VM has an IP which you can access, if routes are configured.
Firewall rules are applied on the network level.

> Will this feature be available for Autoscale Groups? We are heavy users
of it.

at this moment no. In the future if Autoscale is supported for shared
networks, it will work with routed networks as well.


-Wei

On Thu, Aug 29, 2024 at 4:11 PM Bryan Tiang 
wrote:

> Hey Alex,
>
> It’s exiting to hear this new features coming about, and that the VR
> performance will be improved as a result of pure routing.
>
> We have a pain point right now where our VR is at 75% CPU when handling
> 200Mbps Internet Traffic. Probably because we have 50 Autoscale Groups
> within that 1 VR… (VR is 4Core,4GB).
>
> We have plans support 1Gb-5Gbps Internet Bandwidth within a single VR one
> day, but if it’s already at 75%… kinda worrying for us. So this is exciting.
>
> I went through the design document and have few questions. Is this going
> to be a new network? Or can existing VPC networks upgrade to Routed Mode?
>
> Since every VM will get to have its own Public IP, does it mean every VM
> can have its own firewall rules now?
>
> Will this feature be available for Autoscale Groups? We are heavy users of
> it.
>
> Regards,
> Bryan
> On 29 Aug 2024 at 4:22 AM +0800, Alex Mattioli <
> alex.matti...@shapeblue.com>, wrote:
> > Hi Marty,
> >
> >
> >
> > Here's the documentation for Routed Mode and Simple Dynamic Routing, I
> did the original design and my colleague @Wei Zhou wei.z...@shapeblue.com> refined and implemented it.
> >
> >
> https://cwiki.apache.org/confluence/pages/viewpage.action?pageId=306153967
> >
> >
> https://cwiki.apache.org/confluence/pages/viewpage.action?pageId=315492858
> >
> > Cheers,
> >
> > Alex
> >
> >
> >
> >
> >
> >
> >
> > -Original Message-
> > From: Marty Godsey 
> > Sent: Wednesday, August 28, 2024 11:07 AM
> > To: users@cloudstack.apache.org
> > Subject: Re: Port Forwarding in Network
> >
> >
> >
> > Thank you, Alex. I am excited about that addition. Even having the
> ability to not have to NAT is very useful.
> >
> >
> >
> > Regards,
> >
> > Marty Godsey
> >
> > Rudio, LLC
> >
> >
> >
> > Book Time: https://calendly.com/rudio-martyg
> >
> > Support: supp...@rudio.net<mailto:supp...@rudio.net
> ?subject=Rudio%20Support<mailto:supp...@rudio.net%
> 3cmailto:supp...@rudio.net?subject=Rudio%20Support>>
> >
> > Ph: 859-328-1100
> >
> > The content of this email is intended for the person or entity to which
> it is addressed only. This email may contain confidential information. If
> you are not the person to whom this message is addressed, be aware that any
> use, reproduction, or distribution of this message is strictly prohibited.
> If you received this in error, please contact the sender and immediately
> delete this email and any attachments.
> >
> >
> >
> >
> >
> > From: Alex Mattioli  alex.matti...@shapeblue.com>>
> >
> > Date: Tuesday, August 27, 2024 at 11:56 AM
> >
> > To: users@cloudstack.apache.org<mailto:users@cloudstack.apache.org> <
> users@cloudstack.apache.org<mailto:users@cloudstack.apache.org>>
> >
> > Subject: RE: Port Forwarding in Network
> >
> > WARNING: This email originated from outside of the organization. Do not
> click links or open attachments unless you recognize the sender and know
> the content is safe.
> >
> >
> >
> >
> >
> > Hi Marty,
> >
> >
> >
> > There are two PRs in progress, one for Routed Mode for IPv4 in Isolated
> Networks and VPCs and another for Simple Dynamic Route with BGP.
> >
> >
> >
> > With Routed Mode you'll be able to assign public IPs directly to VMs,
> this should be ready for ACS 4.20, which will be routed via the ACS VR.
> >
> > This has been possible for IPv6 since ACS 4.17 and will work in a
> similar way (with some differences) for IPv4. Here's a video explaining how
> it works for IPv6: https://www.youtube.com/watch?v=UvCSmU1TjRY&t=1583s
> >
> >
> >
> > As mentioned before, if you want to skip the VR completely then you need
> to use Shared Networks, 

Re: Query on VPC keeping virtual router running without firewall rules

[Wei ZHOU]

Hi Sai,

I was the author of the PR. Let me explain.

In old behavior, it
- firstly applies some iptables rules by update_config.py
- then restores the iptables rules from rules.v4 file.
The rules in first step is gone in step 2, which causes the issue.

In the PR, it firstly restores the iptables rules from file and then
applies some new rules (including the default rules for system vms and
virtual routers).

Hope it helps you.

-Wei




On Tuesday, August 27, 2024, sai  wrote:

> Hi All,
>
> I have hit similar issue as https://github.com/apache/
> cloudstack/issues/8729
> and trying to understand the code fixed in the PR
> https://github.com/apache/cloudstack/pull/8787, unfortunately I couldn't
> understand. can anyone please try to explain  the fix?
>
> Summary: When having a VPC without associated vms, there are no firewall
> rules defined (iptables). And that's a problem because it leaves the
> vrouter vulnerable to receiving a packet on port 35999, and if that
> happens, HAProxy will start logging in a loop until it fills the vrouter's
> disk.
>
> Thanks,
> sai
>

Re: ACS 4.15.1 to 4.19.1.0-1 Upgrade - VM Console Access denied

[Wei ZHOU]

5,533 INFO
> [cloud.consoleproxy.ConsoleProxyResourceHandler] (Thread-156:null) Sent
> file /resource/noVNC/vendor/pako/lib/zlib/deflate.js with content type
> text/javascript
> 2024-08-25 11:17:55,535 INFO
> [cloud.consoleproxy.ConsoleProxyResourceHandler] (Thread-157:null) Sent
> file /resource/noVNC/vendor/pako/lib/zlib/zstream.js with content type
> text/javascript
> 2024-08-25 11:17:55,702 INFO
> [cloud.consoleproxy.ConsoleProxyResourceHandler] (Thread-158:null) Get
> resource request for /resource/noVNC/vendor/pako/lib/utils/common.js
> 2024-08-25 11:17:55,704 INFO
> [cloud.consoleproxy.ConsoleProxyResourceHandler] (Thread-159:null) Get
> resource request for /resource/noVNC/vendor/pako/lib/zlib/trees.js
> 2024-08-25 11:17:55,705 INFO
> [cloud.consoleproxy.ConsoleProxyResourceHandler] (Thread-158:null) Sent
> file /resource/noVNC/vendor/pako/lib/utils/common.js with content type
> text/javascript
> 2024-08-25 11:17:55,706 INFO
> [cloud.consoleproxy.ConsoleProxyResourceHandler] (Thread-160:null) Get
> resource request for /resource/noVNC/vendor/pako/lib/zlib/adler32.js
> 2024-08-25 11:17:55,708 INFO
> [cloud.consoleproxy.ConsoleProxyResourceHandler] (Thread-161:null) Get
> resource request for /resource/noVNC/vendor/pako/lib/zlib/crc32.js
> 2024-08-25 11:17:55,709 INFO
> [cloud.consoleproxy.ConsoleProxyResourceHandler] (Thread-159:null) Sent
> file /resource/noVNC/vendor/pako/lib/zlib/trees.js with content type
> text/javascript
> 2024-08-25 11:17:55,710 INFO
> [cloud.consoleproxy.ConsoleProxyResourceHandler] (Thread-160:null) Sent
> file /resource/noVNC/vendor/pako/lib/zlib/adler32.js with content type
> text/javascript
> 2024-08-25 11:17:55,712 INFO
> [cloud.consoleproxy.ConsoleProxyResourceHandler] (Thread-162:null) Get
> resource request for /resource/noVNC/vendor/pako/lib/zlib/messages.js
> 2024-08-25 11:17:55,715 INFO
> [cloud.consoleproxy.ConsoleProxyResourceHandler] (Thread-161:null) Sent
> file /resource/noVNC/vendor/pako/lib/zlib/crc32.js with content type
> text/javascript
> 2024-08-25 11:17:55,719 INFO
> [cloud.consoleproxy.ConsoleProxyResourceHandler] (Thread-162:null) Sent
> file /resource/noVNC/vendor/pako/lib/zlib/messages.js with content type
> text/javascript
> 2024-08-25 11:17:56,002 INFO
> [cloud.consoleproxy.ConsoleProxyResourceHandler] (Thread-163:null) Get
> resource request for /resource/noVNC/vendor/pako/lib/zlib/inffast.js
> 2024-08-25 11:17:56,006 INFO
> [cloud.consoleproxy.ConsoleProxyResourceHandler] (Thread-163:null) Sent
> file /resource/noVNC/vendor/pako/lib/zlib/inffast.js with content type
> text/javascript
> 2024-08-25 11:17:56,060 INFO
> [cloud.consoleproxy.ConsoleProxyResourceHandler] (Thread-164:null) Get
> resource request for /resource/noVNC/vendor/pako/lib/zlib/inftrees.js
> 2024-08-25 11:17:56,064 INFO
> [cloud.consoleproxy.ConsoleProxyResourceHandler] (Thread-164:null) Sent
> file /resource/noVNC/vendor/pako/lib/zlib/inftrees.js with content type
> text/javascript
> 2024-08-25 11:17:56,180 INFO
> [cloud.consoleproxy.ConsoleProxyResourceHandler] (Thread-165:null) Get
> resource request for /resource/noVNC/package.json
> 2024-08-25 11:17:56,185 INFO
> [cloud.consoleproxy.ConsoleProxyResourceHandler] (Thread-165:null) Sent
> file /resource/noVNC/package.json with content type application/octet-stream
> 2024-08-25 11:17:56,248 INFO
> [cloud.consoleproxy.ConsoleProxyResourceHandler] (Thread-166:null) Get
> resource request for /resource/noVNC/app/images/icons/novnc.ico
> 2024-08-25 11:17:56,249 INFO
> [cloud.consoleproxy.ConsoleProxyResourceHandler] (Thread-166:null) Sent
> file /resource/noVNC/app/images/icons/novnc.ico with content type
> application/octet-stream
> 2024-08-25 11:20:52,056 INFO
> [cloud.consoleproxy.ConsoleProxyResourceHandler] (Thread-167:null) Get
> resource request for /resource/noVNC/vnc.html
> 2024-08-25 11:20:52,060 INFO
> [cloud.consoleproxy.ConsoleProxyResourceHandler] (Thread-167:null) Sent
> 304 file has not been modified since 18 Jul 2024 20:43:08 GMT/
>
>
> On 8/24/24 21:08, Biswajit Banerjee wrote:
> > when I set novnc.console.default to True , The VM console proceeds
> > with connecting , but fails with failure token expired .
> >
> > There is no error logs in /var/log/cloud.log .
> >
> > Please let me know if anything I can provide which can help in
> > diagnosis .
> >
> > Thanks
> >
> > On 8/24/24 20:54, Wei ZHOU wrote:
> >> is novnc.console.default set to true ?
> >>
> >>
> >> On Sat, Aug 24, 2024 at 5:18 PM Biswajit Banerjee
> >>  wrote:
> >>> Dear Experts
> >>>
> >>> Platform details
> >>>
> >>>* ACS 4.15.1 to 4.19.1.0-1 Upgrade
> >>

Re: ACS 4.15.1 to 4.19.1.0-1 Upgrade - VM Console Access denied

[Wei ZHOU]

is novnc.console.default set to true ?


On Sat, Aug 24, 2024 at 5:18 PM Biswajit Banerjee
 wrote:
>
> Dear Experts
>
> Platform details
>
>   * ACS 4.15.1 to 4.19.1.0-1 Upgrade
>   * KVM Hosts on Centos 7.x
>
> After Upgrade , Console of Any VM is not accessible and giving access
> denied . We have destroyed and  recreated the console proxy many times .
> The /var/log/cloud.log from the cpvm is
>
> /2024-08-24 11:37:35,958 INFO
> [resource.consoleproxy.ConsoleProxyResource]
> (agentRequest-Handler-4:null) Receive ReadyCommand, response with
> ReadyAnswer
> 2024-08-24 11:37:35,960 INFO [cloud.consoleproxy.ConsoleProxy]
> (Console-Proxy-Main:null) Setting httpCmdListenPort=8001
> 2024-08-24 11:37:35,968 INFO [cloud.consoleproxy.ConsoleProxy]
> (Console-Proxy-Main:null) Setting reconnectMaxRetry=5
> 2024-08-24 11:37:35,971 INFO
> [cloud.consoleproxy.ConsoleProxyBaseServerFactoryImpl]
> (Console-Proxy-Main:null) create HTTP server instance at port: 80
> 2024-08-24 11:37:36,383 INFO [cloud.consoleproxy.ConsoleProxy]
> (Console-Proxy-Main:null) Listening for HTTP CMDs on port 8001
> 2024-08-24 11:38:48,257 INFO [cloud.consoleproxy.ConsoleProxy]
> (Thread-12:null) Session null has already been used, cannot connect
> 2024-08-24 11:38:48,262 WARN [cloud.consoleproxy.ConsoleProxy]
> (Thread-12:null) *External authenticator failed authentication request
> for vm 860889b8-4465-48ff-83a1-002c4c7ad2ca *with sid p5vznJrcn3ksmaubpkBzEA
> 2024-08-24 11:38:48,268 WARN
> [cloud.consoleproxy.ConsoleProxyAjaxHandler] (Thread-12:null) *Failed to
> create viewer due to External authenticator failed request for vm
> *860889b8-4465-48ff-83a1-002c4c7ad2ca with sid p5vznJrcn3ksmaubpkBzEA
> com.cloud.consoleproxy.AuthenticationException: External authenticator
> failed request for vm 860889b8-4465-48ff-83a1-002c4c7ad2ca with sid
> p5vznJrcn3ksmaubpkBzEA
>  at
> com.cloud.consoleproxy.ConsoleProxy.authenticationExternally(ConsoleProxy.java:564)
>  at
> com.cloud.consoleproxy.ConsoleProxy.getAjaxVncViewer(ConsoleProxy.java:494)
>  at
> com.cloud.consoleproxy.ConsoleProxyAjaxHandler.doHandle(ConsoleProxyAjaxHandler.java:142)
>  at
> com.cloud.consoleproxy.ConsoleProxyAjaxHandler.handle(ConsoleProxyAjaxHandler.java:51)
>  at
> jdk.httpserver/com.sun.net.httpserver.Filter$Chain.doFilter(Filter.java:77)
>  at
> jdk.httpserver/sun.net.httpserver.AuthFilter.doFilter(AuthFilter.java:82)
>  at
> jdk.httpserver/com.sun.net.httpserver.Filter$Chain.doFilter(Filter.java:80)
>  at
> jdk.httpserver/sun.net.httpserver.ServerImpl$Exchange$LinkHandler.handle(ServerImpl.java:848)
>  at
> jdk.httpserver/com.sun.net.httpserver.Filter$Chain.doFilter(Filter.java:77)
>  at
> jdk.httpserver/sun.net.httpserver.ServerImpl$Exchange.run(ServerImpl.java:817)
>  at java.base/java.lang.Thread.run(Thread.java:829)
> 2024-08-24 11:42:30,679 INFO [cloud.consoleproxy.ConsoleProxy]
> (Thread-14:null) Session null has already been used, cannot connect
> 2024-08-24 11:42:30,683 WARN [cloud.consoleproxy.ConsoleProxy]
> (Thread-14:null) External authenticator failed authentication request
> for vm 42b60075-0279-4d63-ac9a-a516c89cd870 with sid l2ziWlT8sQZNmDdRx8zMbQ
> 2024-08-24 11:42:30,683 WARN
> [cloud.consoleproxy.ConsoleProxyAjaxHandler] (Thread-14:null) Failed to
> create viewer due to External authenticator failed request for vm
> 42b60075-0279-4d63-ac9a-a516c89cd870 with sid l2ziWlT8sQZNmDdRx8zMbQ
> com.cloud.consoleproxy.AuthenticationException: External authenticator
> failed request for vm 42b60075-0279-4d63-ac9a-a516c89cd870 with sid
> l2ziWlT8sQZNmDdRx8zMbQ
>  at
> com.cloud.consoleproxy.ConsoleProxy.authenticationExternally(ConsoleProxy.java:564)
>  at
> com.cloud.consoleproxy.ConsoleProxy.getAjaxVncViewer(ConsoleProxy.java:494)
>  at
> com.cloud.consoleproxy.ConsoleProxyAjaxHandler.doHandle(ConsoleProxyAjaxHandler.java:142)
>  at
> com.cloud.consoleproxy.ConsoleProxyAjaxHandler.handle(ConsoleProxyAjaxHandler.java:51)
>  at
> jdk.httpserver/com.sun.net.httpserver.Filter$Chain.doFilter(Filter.java:77)
>  at
> jdk.httpserver/sun.net.httpserver.AuthFilter.doFilter(AuthFilter.java:82)
>  at
> jdk.httpserver/com.sun.net.httpserver.Filter$Chain.doFilter(Filter.java:80)
>  at
> jdk.httpserver/sun.net.httpserver.ServerImpl$Exchange$LinkHandler.handle(ServerImpl.java:848)
>  at
> jdk.httpserver/com.sun.net.httpserver.Filter$Chain.doFilter(Filter.java:77)
>  at
> jdk.httpserver/sun.net.httpserver.ServerImpl$Exchange.run(ServerImpl.java:817)
>  at java.base/java.lang.Thread.run(Thread.java:829/
>   Please Help to resolve this issue . Is it a Bug . Please give me guidance.
>
> TIA
>
> Biswajit

Re: Cloudstack 4.19 Behavior with MariaDB Galera Cluster

[Wei ZHOU]

As I remember, GET_LOCK is supported if wsrep_on is ON in latest mariadb
versions.

-Wei

On Wednesday, August 14, 2024, Joan g  wrote:

> As Rohit mentioned, since the GET_LOCK function isn't supported here, could
> there be a risk of inconsistency* if both managers update the same row
> simultaneously*?
>
> @João Jandre Paraquetti Thank you pointing out I was connecting to  'cloud'
> DB for db.usage.uri
>
>
> Jon
>
> On Wed, Aug 14, 2024 at 9:59 AM Rohit Yadav 
> wrote:
>
> > Worth mentioning here that due to GET_LOCK limitations you may not use
> > your db cluster in active-active configuration.
> >
> > Regards.
> >
> >
> >
> > 
> > From: Marty Godsey 
> > Sent: Tuesday, August 13, 2024 11:22:47 PM
> > To: users@cloudstack.apache.org 
> > Subject: Re: Cloudstack 4.19 Behavior with MariaDB Galera Cluster
> >
> > I use a Galera Cluster for my DB, which works without issue. I do not,
> for
> > other reasons, load balance. It is set to failover. Before I had to make
> > this change, I used load balance, and it worked fine, however.
> >
> > Regards,
> > Marty Godsey
> >
> >
> > From: João Jandre Paraquetti 
> > Date: Tuesday, August 13, 2024 at 1:46 PM
> > To: users@cloudstack.apache.org 
> > Subject: Re: Cloudstack 4.19 Behavior with MariaDB Galera Cluster
> > WARNING: This email originated from outside of the organization. Do not
> > click links or open attachments unless you recognize the sender and know
> > the content is safe.
> >
> >
> > Hello Jon,
> >
> > Whether there will be randomness or not depends on your setup. As far as
> > I know, there are two possible modes for the connection with Galera
> > clusters: sequential and loadbalance. With the sequential mode, the
> > connector will try to connect to hosts in the order in which they were
> > declared in the connection URL, so no randomness. Using the loadbalance
> > mode, the connector performs load-balancing for all queries by randomly
> > picking a host from the connection URL for each connection, so even with
> > all hosts up, you'll have random connections.
> >
> > Regarding whether random connections are a problem, since you'll be
> > using a Galera cluster, any MariaDB node should be basically the same
> > (from the mgmt servers perspective), as all data is replicated, so it
> > does not really matter which one is used. I don't see any problem with
> > different mgmt servers connecting to different MariaDB nodes that are on
> > the same Galera cluster.
> >
> > Could you share the value that you configured for db.usage.uri? please
> > make sure that you are connecting to the cloud_usage DB and not the
> > cloud DB.
> >
> > Best regards
> >
> > João Jandre
> >
> > On 8/13/24 08:24, Joan g wrote:
> > > Hello Community,
> > >
> > > I am trying to explore the mariadb flexible URI introduced in 4.19 Ref:
> > >
> > https://atpscan.global.hornetsecurity.com?d=-s6c4P8H0F-6-
> lmZZ6U00SpQrMbRGp0imtCmO17q9oA&f=SWvzu6arJFaC7g8oD58dV-
> rNUGDjTikFIHTyuWVLU7GWtnNyMz6Tg6x1Z2wjH2Zw&i=&k=Ie9V&m=jUm3E2gaksTIskF_
> WQRJEDhPUC8imjmYn5p6CgRIz4HqqTgZR46VEfxgYcZ4WOeDSSi30TuzzkpM7H-
> MjQmDfubymBkJ5ggkbm1wjD6mwd7HpdXHHnYDkyKCXoMGsSTE&n=
> OD2YhJhOuOTBvltNv5vw7yY5G1B0ApS-wcJDDiSNEKF9kUMWcZo4ux2s7IMzOwcL&r=
> CujZfpt5OxUjowOuEiunB9ROUBFRuQ2BIvaP-f6zEKC3KLuhFgDPL3jXADWhIqyQ&s=
> 100aa56155ed1380bc3f081e5584c81a68ecac1ca324e8940189c7bb1089
> 2f3a&u=https%3A%2F%2Fgithub.com%2Fapache%2Fcloudstack%2Fpull%2F7895
> > > My concern is on deployment with 2 or 3 Cloudstack management Servers.
> > >
> > > In the event of a server failure or restart, there's a possibility that
> > > each management service could connect to different MariaDB hosts. Is
> this
> > > behavior acceptable? Will it cause any issues with the database? I've
> > heard
> > > that all management servers should  connect to the same MariaDB host.
> > >
> > > Also Usage service is failing to start using  db.usage.uri, management
> is
> > > fine
> > >
> > > Jon
> > >
> >
>

Re: Unable to add Ceph RBD for primary storage (No such file or directory)

[Wei ZHOU]

Hi,

I just tested adding ceph pool on alma9 (it has the same
package/version installed), it worked

What's the ceph version ?

-Wei

On Wed, Aug 7, 2024 at 12:11 PM Muhammad Hanis Irfan Mohd Zaid
 wrote:
>
> I also noticed that comma in the end. I just took a blind eye and expected it 
> to be as designed. I don't enter any comma in the end:  https://ibb.co/N3zMVvc
>
> Yep, the package is already installed.
>
> # dnf -y install libvirt-daemon-driver-storage-rbd
> Last metadata expiration check: 1:29:57 ago on Wed 07 Aug 2024 04:37:02 PM 
> +08.
> Package libvirt-daemon-driver-storage-rbd-10.0.0-6.6.el9_4.x86_64 is already 
> installed.
> Dependencies resolved.
> Nothing to do.
> Complete!
>
> I'm running the KVM host in Rocky Linux 9.4 (Blue Onyx) with CloudStack 
> 4.19.1.1
>
>
>
> On Wed, 7 Aug 2024 at 18:02, Wei ZHOU  wrote:
>>
>> Hi,
>>
>> There is a comma (,) after 10.0.32.75 , was it a mistake ?
>>
>> org.libvirt.LibvirtException: failed to connect to the RADOS monitor
>> on: 10.0.32.71,10.0.32.72,10.0.32.73,10.0.32.74,10.0.32.75,: No such file
>> or directory
>>
>> Have you installed the package "libvirt-daemon-driver-storage-rbd" on
>> the kvm host ?
>>
>> -Wei
>>
>> On Wed, Aug 7, 2024 at 11:27 AM Muhammad Hanis Irfan Mohd Zaid
>>  wrote:
>> >
>> > I'm trying to add a Ceph RBD pool for primary storage use. I've 5 Ceph MONs
>> > in my POC lab. Ping and telnet to all the Ceph MONs with port 6789 works.
>> >
>> > I'm following the steps from this:
>> > - https://docs.ceph.com/en/reef/rbd/rbd-cloudstack/
>> > - https://rohityadav.cloud/blog/ceph/
>> >
>> > Agent log when specifying 5 monitors:
>> > 2024-08-07 17:12:34,691 INFO  [kvm.storage.LibvirtStorageAdaptor]
>> > (agentRequest-Handler-3:null) (logid:db5277f2) Attempting to create storage
>> > pool eb5ec036-c08a-3d3d-996d-40968077d391 (RBD) in libvirt
>> > 2024-08-07 17:12:34,706 WARN  [kvm.storage.LibvirtStorageAdaptor]
>> > (agentRequest-Handler-3:null) (logid:db5277f2) Storage pool
>> > eb5ec036-c08a-3d3d-996d-40968077d391 was not found running in libvirt. Need
>> > to create it.
>> > 2024-08-07 17:12:34,706 INFO  [kvm.storage.LibvirtStorageAdaptor]
>> > (agentRequest-Handler-3:null) (logid:db5277f2) Didn't find an existing
>> > storage pool eb5ec036-c08a-3d3d-996d-40968077d391 by UUID, checking for
>> > pools with duplicate paths
>> > 2024-08-07 17:17:34,738 ERROR [kvm.storage.LibvirtStorageAdaptor]
>> > (agentRequest-Handler-3:null) (logid:db5277f2) Failed to create RBD storage
>> > pool: org.libvirt.LibvirtException: failed to connect to the RADOS monitor
>> > on: 10.0.32.71,10.0.32.72,10.0.32.73,10.0.32.74,10.0.32.75,: No such file
>> > or directory
>> > 2024-08-07 17:17:34,739 ERROR [kvm.storage.LibvirtStorageAdaptor]
>> > (agentRequest-Handler-3:null) (logid:db5277f2) Failed to create the RBD
>> > storage pool, cleaning up the libvirt secret
>> > 2024-08-07 17:17:34,739 WARN  [cloud.agent.Agent]
>> > (agentRequest-Handler-3:null) (logid:db5277f2) Caught:
>> > com.cloud.utils.exception.CloudRuntimeException: Failed to create storage
>> > pool: eb5ec036-c08a-3d3d-996d-40968077d391
>> > at
>> > com.cloud.hypervisor.kvm.storage.LibvirtStorageAdaptor.createStoragePool(LibvirtStorageAdaptor.java:743)
>> > at
>> > com.cloud.hypervisor.kvm.storage.KVMStoragePoolManager.createStoragePool(KVMStoragePoolManager.java:364)
>> > at
>> > com.cloud.hypervisor.kvm.storage.KVMStoragePoolManager.createStoragePool(KVMStoragePoolManager.java:358)
>> > at
>> > com.cloud.hypervisor.kvm.resource.wrapper.LibvirtModifyStoragePoolCommandWrapper.execute(LibvirtModifyStoragePoolCommandWrapper.java:42)
>> > at
>> > com.cloud.hypervisor.kvm.resource.wrapper.LibvirtModifyStoragePoolCommandWrapper.execute(LibvirtModifyStoragePoolCommandWrapper.java:35)
>> > at
>> > com.cloud.hypervisor.kvm.resource.wrapper.LibvirtRequestWrapper.execute(LibvirtRequestWrapper.java:78)
>> > at
>> > com.cloud.hypervisor.kvm.resource.LibvirtComputingResource.executeRequest(LibvirtComputingResource.java:1929)
>> > at com.cloud.agent.Agent.processRequest(Agent.java:683)
>> > at com.cloud.agent.Agent$AgentRequestHandler.doTask(Agent.java:1106)
>> > at com.cloud.utils.nio.Task.call(Task.java:83)
>> > at com.cloud.utils.nio.Task.call(Task.java:29)
>> > at java.base/java.util.concurrent.FutureTask.run(FutureTask.java:264)
>> > at
>&

Re: Unable to add Ceph RBD for primary storage (No such file or directory)

[Wei ZHOU]

Hi,

There is a comma (,) after 10.0.32.75 , was it a mistake ?

org.libvirt.LibvirtException: failed to connect to the RADOS monitor
on: 10.0.32.71,10.0.32.72,10.0.32.73,10.0.32.74,10.0.32.75,: No such file
or directory

Have you installed the package "libvirt-daemon-driver-storage-rbd" on
the kvm host ?

-Wei

On Wed, Aug 7, 2024 at 11:27 AM Muhammad Hanis Irfan Mohd Zaid
 wrote:
>
> I'm trying to add a Ceph RBD pool for primary storage use. I've 5 Ceph MONs
> in my POC lab. Ping and telnet to all the Ceph MONs with port 6789 works.
>
> I'm following the steps from this:
> - https://docs.ceph.com/en/reef/rbd/rbd-cloudstack/
> - https://rohityadav.cloud/blog/ceph/
>
> Agent log when specifying 5 monitors:
> 2024-08-07 17:12:34,691 INFO  [kvm.storage.LibvirtStorageAdaptor]
> (agentRequest-Handler-3:null) (logid:db5277f2) Attempting to create storage
> pool eb5ec036-c08a-3d3d-996d-40968077d391 (RBD) in libvirt
> 2024-08-07 17:12:34,706 WARN  [kvm.storage.LibvirtStorageAdaptor]
> (agentRequest-Handler-3:null) (logid:db5277f2) Storage pool
> eb5ec036-c08a-3d3d-996d-40968077d391 was not found running in libvirt. Need
> to create it.
> 2024-08-07 17:12:34,706 INFO  [kvm.storage.LibvirtStorageAdaptor]
> (agentRequest-Handler-3:null) (logid:db5277f2) Didn't find an existing
> storage pool eb5ec036-c08a-3d3d-996d-40968077d391 by UUID, checking for
> pools with duplicate paths
> 2024-08-07 17:17:34,738 ERROR [kvm.storage.LibvirtStorageAdaptor]
> (agentRequest-Handler-3:null) (logid:db5277f2) Failed to create RBD storage
> pool: org.libvirt.LibvirtException: failed to connect to the RADOS monitor
> on: 10.0.32.71,10.0.32.72,10.0.32.73,10.0.32.74,10.0.32.75,: No such file
> or directory
> 2024-08-07 17:17:34,739 ERROR [kvm.storage.LibvirtStorageAdaptor]
> (agentRequest-Handler-3:null) (logid:db5277f2) Failed to create the RBD
> storage pool, cleaning up the libvirt secret
> 2024-08-07 17:17:34,739 WARN  [cloud.agent.Agent]
> (agentRequest-Handler-3:null) (logid:db5277f2) Caught:
> com.cloud.utils.exception.CloudRuntimeException: Failed to create storage
> pool: eb5ec036-c08a-3d3d-996d-40968077d391
> at
> com.cloud.hypervisor.kvm.storage.LibvirtStorageAdaptor.createStoragePool(LibvirtStorageAdaptor.java:743)
> at
> com.cloud.hypervisor.kvm.storage.KVMStoragePoolManager.createStoragePool(KVMStoragePoolManager.java:364)
> at
> com.cloud.hypervisor.kvm.storage.KVMStoragePoolManager.createStoragePool(KVMStoragePoolManager.java:358)
> at
> com.cloud.hypervisor.kvm.resource.wrapper.LibvirtModifyStoragePoolCommandWrapper.execute(LibvirtModifyStoragePoolCommandWrapper.java:42)
> at
> com.cloud.hypervisor.kvm.resource.wrapper.LibvirtModifyStoragePoolCommandWrapper.execute(LibvirtModifyStoragePoolCommandWrapper.java:35)
> at
> com.cloud.hypervisor.kvm.resource.wrapper.LibvirtRequestWrapper.execute(LibvirtRequestWrapper.java:78)
> at
> com.cloud.hypervisor.kvm.resource.LibvirtComputingResource.executeRequest(LibvirtComputingResource.java:1929)
> at com.cloud.agent.Agent.processRequest(Agent.java:683)
> at com.cloud.agent.Agent$AgentRequestHandler.doTask(Agent.java:1106)
> at com.cloud.utils.nio.Task.call(Task.java:83)
> at com.cloud.utils.nio.Task.call(Task.java:29)
> at java.base/java.util.concurrent.FutureTask.run(FutureTask.java:264)
> at
> java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128)
> at
> java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628)
> at java.base/java.lang.Thread.run(Thread.java:829)
>
> Agent log when specifying 1 monitors:
> 2024-08-07 17:06:09,791 INFO  [kvm.storage.LibvirtStorageAdaptor]
> (agentRequest-Handler-2:null) (logid:c790784b) Attempting to create storage
> pool 69b2f6e0-12c8-31a3-bdc6-71b3a1e265f2 (RBD) in libvirt
> 2024-08-07 17:06:09,806 WARN  [kvm.storage.LibvirtStorageAdaptor]
> (agentRequest-Handler-2:null) (logid:c790784b) Storage pool
> 69b2f6e0-12c8-31a3-bdc6-71b3a1e265f2 was not found running in libvirt. Need
> to create it.
> 2024-08-07 17:06:09,806 INFO  [kvm.storage.LibvirtStorageAdaptor]
> (agentRequest-Handler-2:null) (logid:c790784b) Didn't find an existing
> storage pool 69b2f6e0-12c8-31a3-bdc6-71b3a1e265f2 by UUID, checking for
> pools with duplicate paths
> 2024-08-07 17:11:09,840 ERROR [kvm.storage.LibvirtStorageAdaptor]
> (agentRequest-Handler-2:null) (logid:c790784b) Failed to create RBD storage
> pool: org.libvirt.LibvirtException: failed to connect to the RADOS monitor
> on: 10.0.32.71,: No such file or directory
> 2024-08-07 17:11:09,840 ERROR [kvm.storage.LibvirtStorageAdaptor]
> (agentRequest-Handler-2:null) (logid:c790784b) Failed to create the RBD
> storage pool, cleaning up the libvirt secret
> 2024-08-07 17:11:09,841 WARN  [cloud.agent.Agent]
> (agentRequest-Handler-2:null) (logid:c790784b) Caught:
> com.cloud.utils.exception.CloudRuntimeException: Failed to create storage
> pool: 69b2f6e0-12c8-31a3-bdc6-71b3a1e265f2
> at
> com.cloud.hypervisor.kvm.storage.LibvirtStorageAdaptor.createStorag

Re: Stuck and unsure of what to do next

[Wei ZHOU]

Hi,

4.19.0.1 does not contain the fixes for veeam 11/12:
https://github.com/apache/cloudstack/pull/8241

-Wei

On Tue, Aug 6, 2024 at 10:43 AM Trung Pham Minh  wrote:
>
> Hi Wei ZHOU,
>
> Backup plugin veeam password (backup.plugin.veeam.password) -> My Veeam EM 
> Password has been encrypt
> Backup plugin veeam request timeout (backup.plugin.veeam.request.timeout) -> 
> 300
> Backup plugin veeam restore timeout (backup.plugin.veeam.restore.timeout) -> 
> 600
> Backup plugin veeam url (backup.plugin.veeam.url) -> 
> https://10.255.2.45:9398/api/
> Backup plugin veeam username (backup.plugin.veeam.username) -> administrator
> Backup plugin veeam validate ssl (backup.plugin.veeam.validate.ssl) -> false
>
> I'm using
> - CloudStack version 4.19.0.1
> - Veeam Backup & Rep version: 12.1.2.172
>
> I only have 6 informations on Global Setting CloudStack Web GUI
>
> Trung,
> Thanks & Regards
>
> -Original Message-
> From: Wei ZHOU 
> Sent: Tuesday, August 6, 2024 3:24 PM
> To: users@cloudstack.apache.org
> Subject: Re: Stuck and unsure of what to do next
>
> Hi,
>
> it looks attachment is not supported in the mailing list
>
> Can you check by the following commands ?
>
> ```
> curl -k https://xxx:9398/api/
> ssh username@xxx hostname
> ```
>
> https://xxx:9398/api/ : value of  backup.plugin.veeam.url
> username:  value of backup.plugin.veeam.username
>
>
> -Wei
>
> On Tue, Aug 6, 2024 at 10:19 AM Trung Pham Minh  wrote:
> >
> > Hi Wei ZHOU,
> >
> > Here is my global settting
> >
> > Trung,
> > Thanks & Regards
> >
> > -Original Message-
> > From: Wei ZHOU 
> > Sent: Tuesday, August 6, 2024 3:15 PM
> > To: users@cloudstack.apache.org
> > Subject: Re: Stuck and unsure of what to do next
> >
> > Hi,
> >
> > Can you share the value of global settings ? Are URL, username and password 
> > set correctly ?
> >
> > -Wei
> >
> > On Tue, Aug 6, 2024 at 9:54 AM Trung Pham Minh  wrote:
> > >
> > > Hello Cloudstack Team,
> > >
> > > I am looking to integrate Veeam with CloudStack, following the guide
> > > available at this link:
> > > https://docs.cloudstack.apache.org/en/latest/adminguide/veeam_plugin
> > > .h
> > > tml
> > >
> > > I have already installed the following requirements:
> > >
> > >   *   Installed Backup and Replication Manager, including the console, 
> > > with default settings
> > >   *   Installed Enterprise Manager
> > >   *   Installed an SSH server on the 'Veeam Backup and Replication 
> > > Manager' server. Windows Server 2019 has 'OpenSSH Server' as a built-in 
> > > optional feature which is compatible.
> > >   *   PowerShell 5.1 is the default version on Windows Server 2019
> > >
> > > On CloudStack, I have also set the following global parameters:
> > >
> > >   *   backup.plugin.veeam.url: My Veeam Server IP
> > >   *   backup.plugin.veeam.username: My Veeam Enterprise Username
> > >   *   backup.plugin.veeam.password: My Veeam Enterprise Password
> > >   *   backup.plugin.veeam.validate.ssl: false
> > >   *   backup.plugin.veeam.request.timeout: 300
> > >   *   backup.plugin.veeam.task.poll.interval: 5
> > >   *   backup.plugin.veeam.task.poll.max.retry: 120
> > >
> > > Below is some information about the system I am setting up for the Veeam 
> > > Plug-in CloudStack:
> > >
> > >   *   Veeam Server IP: 10.255.2.7/24
> > >   *   Veeam Enterprise combined with Veeam Console IP: 10.255.2.45/24
> > >   *   CloudStack IP: 10.255.2.57/24
> > >
> > > I am not sure what to do next to complete this project. I have consulted 
> > > Google, YouTube, and Reddit but haven't found sufficient information to 
> > > proceed. Could you please list the next steps I should take to finish it?
> > >
> > > Thank you very much.
> > >
> > >
> > >
> > > Trung,
> > >
> > > Thanks & Regards
> > >

Re: Stuck and unsure of what to do next

[Wei ZHOU]

Hi,

it looks attachment is not supported in the mailing list

Can you check by the following commands ?

```
curl -k https://xxx:9398/api/
ssh username@xxx hostname
```

https://xxx:9398/api/ : value of  backup.plugin.veeam.url
username:  value of backup.plugin.veeam.username


-Wei

On Tue, Aug 6, 2024 at 10:19 AM Trung Pham Minh  wrote:
>
> Hi Wei ZHOU,
>
> Here is my global settting
>
> Trung,
> Thanks & Regards
>
> -Original Message-
> From: Wei ZHOU 
> Sent: Tuesday, August 6, 2024 3:15 PM
> To: users@cloudstack.apache.org
> Subject: Re: Stuck and unsure of what to do next
>
> Hi,
>
> Can you share the value of global settings ? Are URL, username and password 
> set correctly ?
>
> -Wei
>
> On Tue, Aug 6, 2024 at 9:54 AM Trung Pham Minh  wrote:
> >
> > Hello Cloudstack Team,
> >
> > I am looking to integrate Veeam with CloudStack, following the guide
> > available at this link:
> > https://docs.cloudstack.apache.org/en/latest/adminguide/veeam_plugin.h
> > tml
> >
> > I have already installed the following requirements:
> >
> >   *   Installed Backup and Replication Manager, including the console, with 
> > default settings
> >   *   Installed Enterprise Manager
> >   *   Installed an SSH server on the 'Veeam Backup and Replication Manager' 
> > server. Windows Server 2019 has 'OpenSSH Server' as a built-in optional 
> > feature which is compatible.
> >   *   PowerShell 5.1 is the default version on Windows Server 2019
> >
> > On CloudStack, I have also set the following global parameters:
> >
> >   *   backup.plugin.veeam.url: My Veeam Server IP
> >   *   backup.plugin.veeam.username: My Veeam Enterprise Username
> >   *   backup.plugin.veeam.password: My Veeam Enterprise Password
> >   *   backup.plugin.veeam.validate.ssl: false
> >   *   backup.plugin.veeam.request.timeout: 300
> >   *   backup.plugin.veeam.task.poll.interval: 5
> >   *   backup.plugin.veeam.task.poll.max.retry: 120
> >
> > Below is some information about the system I am setting up for the Veeam 
> > Plug-in CloudStack:
> >
> >   *   Veeam Server IP: 10.255.2.7/24
> >   *   Veeam Enterprise combined with Veeam Console IP: 10.255.2.45/24
> >   *   CloudStack IP: 10.255.2.57/24
> >
> > I am not sure what to do next to complete this project. I have consulted 
> > Google, YouTube, and Reddit but haven't found sufficient information to 
> > proceed. Could you please list the next steps I should take to finish it?
> >
> > Thank you very much.
> >
> >
> >
> > Trung,
> >
> > Thanks & Regards
> >

Re: Stuck and unsure of what to do next

[Wei ZHOU]

Hi,

Can you share the value of global settings ? Are URL, username and
password set correctly ?

-Wei

On Tue, Aug 6, 2024 at 9:54 AM Trung Pham Minh  wrote:
>
> Hello Cloudstack Team,
>
> I am looking to integrate Veeam with CloudStack, following the guide 
> available at this link: 
> https://docs.cloudstack.apache.org/en/latest/adminguide/veeam_plugin.html
>
> I have already installed the following requirements:
>
>   *   Installed Backup and Replication Manager, including the console, with 
> default settings
>   *   Installed Enterprise Manager
>   *   Installed an SSH server on the 'Veeam Backup and Replication Manager' 
> server. Windows Server 2019 has 'OpenSSH Server' as a built-in optional 
> feature which is compatible.
>   *   PowerShell 5.1 is the default version on Windows Server 2019
>
> On CloudStack, I have also set the following global parameters:
>
>   *   backup.plugin.veeam.url: My Veeam Server IP
>   *   backup.plugin.veeam.username: My Veeam Enterprise Username
>   *   backup.plugin.veeam.password: My Veeam Enterprise Password
>   *   backup.plugin.veeam.validate.ssl: false
>   *   backup.plugin.veeam.request.timeout: 300
>   *   backup.plugin.veeam.task.poll.interval: 5
>   *   backup.plugin.veeam.task.poll.max.retry: 120
>
> Below is some information about the system I am setting up for the Veeam 
> Plug-in CloudStack:
>
>   *   Veeam Server IP: 10.255.2.7/24
>   *   Veeam Enterprise combined with Veeam Console IP: 10.255.2.45/24
>   *   CloudStack IP: 10.255.2.57/24
>
> I am not sure what to do next to complete this project. I have consulted 
> Google, YouTube, and Reddit but haven't found sufficient information to 
> proceed. Could you please list the next steps I should take to finish it?
>
> Thank you very much.
>
>
>
> Trung,
>
> Thanks & Regards
>

Re: Long time to load noVNC

[Wei ZHOU]

It looks like a configuration issue.

After changing the global setting, it would be better to restart the
management server and destroy the CPVM.

-Wei

On Sun, Aug 4, 2024 at 1:43 AM Fariborz Navidan  wrote:
>
> Hi,
>
> I have double checked resources and network status on both the host and
> CPVM. The host's CPU/RAM utilisation is under 20% and CPU usage of console
> VM during the long response time is around 0.3%.
>
> I just reverted the "'consoleproxy.sslEnabled" setting back to false and
> then restarted console VM and it responds immediately. In other hand, when
> above setting is set to true, CPVM struggled with SSL connection.
>
> The uploaded cert is a valid Let's Encrypt one along with unencrypted PKCS8
> private key.
>
> Any idea on what's happening?
>
> Regards.
>
> On Sat, 3 Aug 2024, 18:13 Jayanth Babu A, 
> wrote:
>
> > Hi,
> > It may indicate a resource or network issue. Just in case, have you
> > already checked the CPU & memory utilization on the CPVM & on the host?
> > The below trace shows that the TLS handshake is taking time.
> >
> >
> > $ curl -vIL --trace-time https://console.r9host.com
> >
> > 14:37:46.203639 *   Trying 149.50.127.131:443...
> >
> > 14:37:46.203710 * TCP_NODELAY set
> >
> > 14:37:46.464621 * Connected to console.r9host.com (149.50.127.131) port
> > 443 (#0)
> >
> > 14:37:46.465004 * ALPN, offering h2
> >
> > 14:37:46.465165 * ALPN, offering http/1.1
> >
> > 14:37:46.470305 * successfully set certificate verify locations:
> >
> > 14:37:46.470389 *   CAfile: /etc/ssl/certs/ca-certificates.crt
> >
> >   CApath: /etc/ssl/certs
> >
> > 14:37:46.470604 * TLSv1.3 (OUT), TLS handshake, Client hello (1):
> >
> > 14:38:14.752752 * TLSv1.3 (IN), TLS handshake, Server hello (2):
> >
> > 14:38:14.752950 * TLSv1.2 (IN), TLS handshake, Certificate (11):
> >
> > 14:38:14.754551 * TLSv1.2 (IN), TLS handshake, Server key exchange (12):
> >
> > 14:38:14.754989 * TLSv1.2 (IN), TLS handshake, Server finished (14):
> >
> > 14:38:14.755663 * TLSv1.2 (OUT), TLS handshake, Client key exchange (16):
> >
> > 14:38:14.756040 * TLSv1.2 (OUT), TLS change cipher, Change cipher spec (1):
> >
> > 14:38:14.756446 * TLSv1.2 (OUT), TLS handshake, Finished (20):
> >
> > 14:38:15.279001 * TLSv1.2 (IN), TLS handshake, Finished (20):
> >
> > 14:38:15.279063 * SSL connection using TLSv1.2 /
> > ECDHE-RSA-AES256-GCM-SHA384
> >
> > 14:38:15.279096 * ALPN, server did not agree to a protocol
> >
> > 14:38:15.279131 * Server certificate:
> >
> > 14:38:15.279177 *  subject: CN=console.r9host.com
> >
> > 14:38:15.279227 *  start date: Aug  3 07:42:27 2024 GMT
> >
> > 14:38:15.279270 *  expire date: Nov  1 07:42:26 2024 GMT
> >
> > 14:38:15.279312 *  subjectAltName: host "console.r9host.com" matched
> > cert's "console.r9host.com"
> >
> > 14:38:15.279349 *  issuer: C=US; O=Let's Encrypt; CN=R10
> >
> > 14:38:15.279396 *  SSL certificate verify ok.
> >
> > 14:38:15.279499 > HEAD / HTTP/1.1
> >
> > 14:38:15.279499 > Host: console.r9host.com
> >
> > 14:38:15.279499 > User-Agent: curl/7.68.0
> >
> > 14:38:15.279499 > Accept: */*
> >
> > 14:38:15.279499 >
> >
> > 14:38:15.540409 * Mark bundle as not supporting multiuse
> >
> > 14:38:15.540539 < HTTP/1.1 404 Not Found
> >
> > HTTP/1.1 404 Not Found
> >
> > 14:38:15.540631 < Content-Length: 50
> >
> > Content-Length: 50
> >
> > 14:38:15.540671 < Content-Type: text/html
> >
> > Content-Type: text/html
> >
> >
> >
> > 14:38:15.540706 <
> >
> > 14:38:15.540738 * Excess found: excess = 50 url = / (zero-length body)
> >
> > 14:38:15.540809 * Connection #0 to host console.r9host.com left intact
> >
> >
> > Regards,
> > Jayanth Reddy
> >
> > From: Fariborz Navidan 
> > Date: Saturday, 3 August 2024 at 3:06 PM
> > To: users@cloudstack.apache.org 
> > Subject: Long time to load noVNC
> > Hello Everyone.
> >
> > I have a strange problem with console proxy after enabling SSL. I have got
> > a valid certificate and uploaded into CS (v4.18.2.1). Afterward, the
> > console proxy takes a long time to load. For example when I browse to
> > https://console.mycompany.com, it take a few minutes to send response and
> > when I click the "view console" button in a VM view page, it takes a few
> > minutes to load noVNC at
> >
> > https://console.r9host.com/resource/noVNC/vnc.html?autoconnect=true&port=8443&token=
> > .
> > ..
> >
> > Any idea why console provy VM is such slow?
> >
> > Thanks in advance.
> > Disclaimer *** This e-mail contains PRIVILEGED AND CONFIDENTIAL
> > INFORMATION intended solely for the use of the addressee(s). If you are not
> > the intended recipient, please notify the sender by e-mail and delete the
> > original message. Further, you are not authorised to copy, disclose, or
> > distribute this e-mail or its contents to any other person and any such
> > actions are unlawful and strictly prohibited. This e-mail may contain
> > viruses. NxtGen Datacenter & Cloud Technologies Private Ltd (“NxtGen”) has
> > taken every reasonable precaution to minimize this risk but is 

Re: Upgrade to 4.19.1.0 from 4.15.1 - Issues

[Wei ZHOU]

Have you upgraded all cloudstack-agent (if you use kvm) ?

-Wei

On Fri, Aug 2, 2024 at 2:33 PM Biswajit Banerjee
 wrote:
>
> After destroying the VM , it gets automatically recreated . I presume
> that is what is expected .
>
> Let me Know if any thing else is required .
>
> Also about  " 'readyForShutdown' either does not exist, is not
> available for user. Unable to proceed " Please guide me
>
> On 8/2/24 17:59, Biswajit Banerjee wrote:
> > Yes destroyed CPVM Many times but did not work .
> >
> > On 8/2/24 13:16, Wei ZHOU wrote:
> >> Hi,
> >>
> >> Have you destroy/recreate the CPVM ?
> >>
> >> -Wei
> >>
> >> On Fri, Aug 2, 2024 at 12:55 AM Biswajit Banerjee
> >>  wrote:
> >>> Hello,
> >>>
> >>> We have Upgraded ACS 4.15.1 to 4.19.1.0 . Every thing are fine apart
> >>> from 2 issues
> >>>
> >>>   1. We are getting repeated error on ACS webUI with admin users
> >>> saying "
> >>>  The given command 'readyForShutdown' either does not exist, is not
> >>>  available for user. Unable to proceed. Please contact your
> >>>  administrator" every Second . how can we disable this repeated
> >>>  message . please Guide
> >>>   2. Console proxy gives " Access is denied for the console session
> >>> " and
> >>>  Following is the error in /var/log/cloud.log
> >>>
> >>> /A2024-08-01 22:38:48,121 INFO [cloud.consoleproxy.ConsoleProxy]
> >>> (Console-Proxy-Main:null) Setting reconnectMaxRetry=5
> >>> 2024-08-01 22:38:48,127 INFO
> >>> [cloud.consoleproxy.ConsoleProxyBaseServerFactoryImpl]
> >>> (Console-Proxy-Main:null) create HTTP server instance at port: 80
> >>> 2024-08-01 22:38:48,718 INFO [cloud.consoleproxy.ConsoleProxy]
> >>> (Console-Proxy-Main:null) Listening for HTTP CMDs on port 8001
> >>> 2024-08-01 22:39:29,274 INFO [cloud.consoleproxy.ConsoleProxy]
> >>> (Thread-12:null) Session null has already been used, cannot connect
> >>> *2024-08-01 22:39:29,278 WARN [cloud.consoleproxy.ConsoleProxy]
> >>> (Thread-12:null) External authenticator failed authentication request
> >>> for vm 3cdf6590-ffa2-40e8-966c-63cc42534c26 with sid
> >>> uDFk1uQZy9YBz5ZRSSB1SA
> >>> 2024-08-01 22:39:29,281 WARN
> >>> [cloud.consoleproxy.ConsoleProxyAjaxHandler] (Thread-12:null) Failed to
> >>> create viewer due to External authenticator failed request for vm
> >>> 3cdf6590-ffa2-40e8-966c-63cc42534c26 with sid uDFk1uQZy9YBz5ZRSSB1SA
> >>> com.cloud.consoleproxy.AuthenticationException: External authenticator
> >>> failed request for vm 3cdf6590-ffa2-40e8-966c-63cc42534c26 with sid
> >>> uDFk1uQZy9YBz5ZRSSB1SA*
> >>>   at
> >>> com.cloud.consoleproxy.ConsoleProxy.authenticationExternally(ConsoleProxy.java:564)
> >>>
> >>>   at
> >>> com.cloud.consoleproxy.ConsoleProxy.getAjaxVncViewer(ConsoleProxy.java:494)
> >>>
> >>>   at
> >>> com.cloud.consoleproxy.ConsoleProxyAjaxHandler.doHandle(ConsoleProxyAjaxHandler.java:142)
> >>>
> >>>   at
> >>> com.cloud.consoleproxy.ConsoleProxyAjaxHandler.handle(ConsoleProxyAjaxHandler.java:51)
> >>>
> >>>   at
> >>> jdk.httpserver/com.sun.net.httpserver.Filter$Chain.doFilter(Filter.java:77)
> >>>
> >>>   at
> >>> jdk.httpserver/sun.net.httpserver.AuthFilter.doFilter(AuthFilter.java:82)
> >>>
> >>>   at
> >>> jdk.httpserver/com.sun.net.httpserver.Filter$Chain.doFilter(Filter.java:80)
> >>>
> >>>   at
> >>> jdk.httpserver/sun.net.httpserver.ServerImpl$Exchange$LinkHandler.handle(ServerImpl.java:848)
> >>>
> >>>   at
> >>> jdk.httpserver/com.sun.net.httpserver.Filter$Chain.doFilter(Filter.java:77)
> >>>
> >>>   at
> >>> jdk.httpserver/sun.net.httpserver.ServerImpl$Exchange.run(ServerImpl.java:817)
> >>>
> >>>   at java.base/java.lang.Thread.run(Thread.java:829)
> >>> 2024-08-01 22:40:18,843 INFO [cloud.consoleproxy.ConsoleProxy]
> >>> (Thread-14:null) Session null has already been used, cannot connect
> >>> 2024-08-01 22:40:18,861 WARN [cloud.consoleproxy.ConsoleProxy]
> >>> (Thread-1

Re: Upgrade to 4.19.1.0 from 4.15.1 - Issues

[Wei ZHOU]

Hi,

Have you destroy/recreate the CPVM ?

-Wei

On Fri, Aug 2, 2024 at 12:55 AM Biswajit Banerjee
 wrote:
>
> Hello,
>
> We have Upgraded ACS 4.15.1 to 4.19.1.0 . Every thing are fine apart
> from 2 issues
>
>  1. We are getting repeated error on ACS webUI with admin users saying "
> The given command 'readyForShutdown' either does not exist, is not
> available for user. Unable to proceed. Please contact your
> administrator" every Second . how can we disable this repeated
> message . please Guide
>  2. Console proxy gives " Access is denied for the console session " and
> Following is the error in /var/log/cloud.log
>
> /A2024-08-01 22:38:48,121 INFO [cloud.consoleproxy.ConsoleProxy]
> (Console-Proxy-Main:null) Setting reconnectMaxRetry=5
> 2024-08-01 22:38:48,127 INFO
> [cloud.consoleproxy.ConsoleProxyBaseServerFactoryImpl]
> (Console-Proxy-Main:null) create HTTP server instance at port: 80
> 2024-08-01 22:38:48,718 INFO [cloud.consoleproxy.ConsoleProxy]
> (Console-Proxy-Main:null) Listening for HTTP CMDs on port 8001
> 2024-08-01 22:39:29,274 INFO [cloud.consoleproxy.ConsoleProxy]
> (Thread-12:null) Session null has already been used, cannot connect
> *2024-08-01 22:39:29,278 WARN [cloud.consoleproxy.ConsoleProxy]
> (Thread-12:null) External authenticator failed authentication request
> for vm 3cdf6590-ffa2-40e8-966c-63cc42534c26 with sid uDFk1uQZy9YBz5ZRSSB1SA
> 2024-08-01 22:39:29,281 WARN
> [cloud.consoleproxy.ConsoleProxyAjaxHandler] (Thread-12:null) Failed to
> create viewer due to External authenticator failed request for vm
> 3cdf6590-ffa2-40e8-966c-63cc42534c26 with sid uDFk1uQZy9YBz5ZRSSB1SA
> com.cloud.consoleproxy.AuthenticationException: External authenticator
> failed request for vm 3cdf6590-ffa2-40e8-966c-63cc42534c26 with sid
> uDFk1uQZy9YBz5ZRSSB1SA*
>  at
> com.cloud.consoleproxy.ConsoleProxy.authenticationExternally(ConsoleProxy.java:564)
>  at
> com.cloud.consoleproxy.ConsoleProxy.getAjaxVncViewer(ConsoleProxy.java:494)
>  at
> com.cloud.consoleproxy.ConsoleProxyAjaxHandler.doHandle(ConsoleProxyAjaxHandler.java:142)
>  at
> com.cloud.consoleproxy.ConsoleProxyAjaxHandler.handle(ConsoleProxyAjaxHandler.java:51)
>  at
> jdk.httpserver/com.sun.net.httpserver.Filter$Chain.doFilter(Filter.java:77)
>  at
> jdk.httpserver/sun.net.httpserver.AuthFilter.doFilter(AuthFilter.java:82)
>  at
> jdk.httpserver/com.sun.net.httpserver.Filter$Chain.doFilter(Filter.java:80)
>  at
> jdk.httpserver/sun.net.httpserver.ServerImpl$Exchange$LinkHandler.handle(ServerImpl.java:848)
>  at
> jdk.httpserver/com.sun.net.httpserver.Filter$Chain.doFilter(Filter.java:77)
>  at
> jdk.httpserver/sun.net.httpserver.ServerImpl$Exchange.run(ServerImpl.java:817)
>  at java.base/java.lang.Thread.run(Thread.java:829)
> 2024-08-01 22:40:18,843 INFO [cloud.consoleproxy.ConsoleProxy]
> (Thread-14:null) Session null has already been used, cannot connect
> 2024-08-01 22:40:18,861 WARN [cloud.consoleproxy.ConsoleProxy]
> (Thread-14:null) External authenticator failed authentication request
> for vm 3cdf6590-ffa2-40e8-966c-63cc42534c26 with sid uDFk1uQZy9YBz5ZRSSB1SA
> 2024-08-01 22:40:18,862 WARN
> [cloud.consoleproxy.ConsoleProxyAjaxHandler] (Thread-14:null) Failed to
> create viewer due to External authenticator failed request for vm
> 3cdf6590-ffa2-40e8-966c-63cc42534c26 with sid uDFk1uQZy9YBz5ZRSSB1SA
> com.cloud.consoleproxy.AuthenticationException: External authenticator
> failed request for vm 3cdf6590-ffa2-40e8-966c-63cc42534c26 with sid
> uDFk1uQZy9YBz5ZRSSB1SA
>  at
> com.cloud.consoleproxy.ConsoleProxy.authenticationExternally(ConsoleProxy.java:564)
>  at
> com.cloud.consoleproxy.ConsoleProxy.getAjaxVncViewer(ConsoleProxy.java:494)
>  at
> com.cloud.consoleproxy.ConsoleProxyAjaxHandler.doHandle(ConsoleProxyAjaxHandler.java:142)
>  at
> com.cloud.consoleproxy.ConsoleProxyAjaxHandler.handle(ConsoleProxyAjaxHandler.java:51)
>  at
> jdk.httpserver/com.sun.net.httpserver.Filter$Chain.doFilter(Filter.java:77)
>  at
> jdk.httpserver/sun.net.httpserver.AuthFilter.doFilter(AuthFilter.java:82)
>  at
> jdk.httpserver/com.sun.net.httpserver.Filter$Chain.doFilter(Filter.java:80)
>  at
> jdk.httpserver/sun.net.httpserver.ServerImpl$Exchange$LinkHandler.handle(ServerImpl.java:848)
>  at
> jdk.httpserver/com.sun.net.httpserver.Filter$Chain.doFilter(Filter.java:77)
>  at
> jdk.httpserver/sun.net.httpserver.ServerImpl$Exchange.run(ServerImpl.java:817)
>  at java.base/java.lang.Thread.run(Thread.java:829)
> /Please guide us to resolve the issue .
>
> TIA
>
> Regards
>
> Biswajit

Re: Kubernetes in creating state

[Wei ZHOU]

Is the public IP of CKS cluster reachable from the mgmt server ?

as far as I know, in some users' environment, the public IPs and
private IPs are mutually unreachable.

-Wei

On Fri, Jul 26, 2024 at 6:03 PM Ricardo Pertuz
 wrote:
>
> Thanks Kiran,
>
> I did that and even consulting the database parameter
>
> | name | value |
> +--+---+
> +--+---+
> | endpoint.url | http://192.168.x.x:8080/client/api |
> +--+---+
>
> but still getting the "The connection to the server localhost:8080 was 
> refused - did you specify the right host or port?" I made sure I have the 
> connection right also the right NetworkOffering and the ACL en Allow ALL just 
> for testing but not working, anything else I can check?
>
> Ricardo Pertuz
> CTO
>
>
>
>
>
> 25 de julio de 2024, 20:30, "Kiran Chavala"  
> escribió:
>
>
>
> >
> > Hi Ricardo
> >
> > Please set the global settings value of “Endpoint url (endpoint.url)” to 
> > the management server ip address
> >
> > http:// > >:8080/client/api 
> > http://10.1.35.31:8080/client/api%3E
> >
> > Regards
> >
> > Kiran
> >
> > From: Ricardo Pertuz 
> >
> > Date: Friday, 26 July 2024 at 4:16 AM
> >
> > To: users@cloudstack.apache.org 
> >
> > Subject: Kubernetes in creating state
> >
> > Hi,
> >
> > On my ACS KVM 4.19.0.1 I'm creating a Kubernetes cluster v 1.24, the nodes 
> > are created successfully but the cluster remains in "Starting" phase, in 
> > the logs I see only the following warning
> >
> > 2024-07-25 17:08:30,682 WARN [c.c.k.c.u.KubernetesClusterUtil] 
> > (API-Job-Executor-1:ctx-cd6974d9 job-7508 ctx-a6104520) (logid:4314dc5d) 
> > Failed to retrieve ready node count for Kubernetes cluster : kubernetes01
> >
> > 024-07-25 17:08:30,033 DEBUG [c.c.k.c.u.KubernetesClusterUtil] 
> > (API-Job-Executor-1:ctx-cd6974d9 job-7508 ctx-a6104520) (logid:4314dc5d) 
> > Checking ready nodes for the Kubernetes cluster : kubernetes01 with total 2 
> > provisioned nodes
> >
> > java.lang.NumberFormatException: For input string: "0
> >
> > The connection to the server localhost:8080 was refused - did you specify 
> > the right host or port?"
> >
> >  at 
> > java.base/java.lang.NumberFormatException.forInputString(NumberFormatException.java:65)
> >  
> > https://java.base/java.lang.NumberFormatException.forInputString(NumberFormatException.java:65)
> >
> >  at java.base/java.lang.Integer.parseInt(Integer.java:652) 
> > https://java.base/java.lang.Integer.parseInt(Integer.java:652)
> >
> >  at java.base/java.lang.Integer.parseInt(Integer.java:770) 
> > https://java.base/java.lang.Integer.parseInt(Integer.java:770)
> >
> >  at 
> > com.cloud.kubernetes.cluster.utils.KubernetesClusterUtil.getKubernetesClusterReadyNodesCount(KubernetesClusterUtil.java:220)
> >
> >  at 
> > com.cloud.kubernetes.cluster.utils.KubernetesClusterUtil.validateKubernetesClusterReadyNodesCount(KubernetesClusterUtil.java:290)
> >
> >  at 
> > com.cloud.kubernetes.cluster.actionworkers.KubernetesClusterStartWorker.startKubernetesClusterOnCreate(KubernetesClusterStartWorker.java:552)
> >
> >  at 
> > com.cloud.kubernetes.cluster.KubernetesClusterManagerImpl.startKubernetesCluster(KubernetesClusterManagerImpl.java:1321)
> >
> >  at 
> > org.apache.cloudstack.api.command.user.kubernetes.cluster.CreateKubernetesClusterCmd.execute(CreateKubernetesClusterCmd.java:294)
> >
> >  at com.cloud.api.ApiDispatcher.dispatch(ApiDispatcher.java:172)
> >
> >  at 
> > com.cloud.api.ApiAsyncJobDispatcher.runJob(ApiAsyncJobDispatcher.java:112)
> >
> >  at 
> > org.apache.cloudstack.framework.jobs.impl.AsyncJobManagerImpl$5.runInContext(AsyncJobManagerImpl.java:654)
> >
> >  at 
> > org.apache.cloudstack.managed.context.ManagedContextRunnable$1.run(ManagedContextRunnable.java:48)
> >
> >  at 
> > org.apache.cloudstack.managed.context.impl.DefaultManagedContext$1.call(DefaultManagedContext.java:55)
> >
> >  at 
> > org.apache.cloudstack.managed.context.impl.DefaultManagedContext.callWithContext(DefaultManagedContext.java:102)
> >
> >  at 
> > org.apache.cloudstack.managed.context.impl.DefaultManagedContext.runWithContext(DefaultManagedContext.java:52)
> >
> >  at 
> > org.apache.cloudstack.managed.context.ManagedContextRunnable.run(ManagedContextRunnable.java:45)
> >
> >  at 
> > org.apache.cloudstack.framework.jobs.impl.AsyncJobManagerImpl$5.run(AsyncJobManagerImpl.java:602)
> >
> >  at 
> > java.base/java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:515)
> >  
> > https://java.base/java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:515)
> >
> >  at java.base/java.util.concurrent.FutureTask.run(FutureTask.java:264) 
> > https://java.base/java.util.concurrent.FutureTask.run(FutureTask.java:264)
> >
> >  at 
> > java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1

Re: No network if VR and VM are on different hosts

[Wei ZHOU]

Hi,

This seems to be a very typical issue for cloud platforms. The switch ports
need to be configured as trunk mode.

-Wei

On Tuesday, July 23, 2024, Alexandru Stan
 wrote:

> Hello. I am dealing with a weird networking issue that I never experienced
> before and I really can't find anything relevant in logs or else. The setup
> is like this:
>
>   *   Kvm hosts with 2 slave interfaces (for redundancy) under a master
> bridge called br0
>   *   The 2 interfaces are connected to 2 stacked Cisco switches
>   *   Traffic for management, guest, public, etc. goes through this bridge
> only
>   *   ACS zone added with advanced network, br0 label set on each traffic
> type
>
> Everything seems fine, the system vms are up & running, hosts are added
> without issues, etc. The cloud0 bridge is created on each host as it
> should. Now, if I add a vm on a certain host and the virtual router
> (simple, isolated network) is on the same host, everything works fine, the
> vm gets its own ip, dns, internet conectivity, etc. But if I add a vm to a
> different host than where the VR is hosted, I don't get any network for the
> vm. The virtual interfaces are created on the host but the cloud0 bridge
> status is either down or unknown.
> Could this be related to the hardware setup or it's something ACS related?
>
> Thank you!
>

Re: Root Disk Controller Global Setting

[Wei ZHOU]

for vms on kvm, the disk controller (virtio/ide/virtio-scsi) is determined
by os type. It can be overwritten by vm settings. Users can change os type
for each vm as another option.

If you have Windows vm with virtio driver installed, you can change the the
OS type to "Windows PV".

IMO, It is not needed to have global settings for kvm vms, which will bring
more trouble than benefits. If the value in global settings is not
supported by the vm(e.g. driver is not installed), vm won't boot up.



-Wei

On Tuesday, July 23, 2024, Jordan Wolfson 
wrote:

> Hello,
>
> Thank you, but I am asking about a Global Setting that can be enabled or
> disabled. I am aware that I can add specific root/data controllers for
> Instances but those settings are not being honored inside the Windows OS
> even with VirtIO drivers installed. I am inquiring about a Global Setting
> that can be toggled for KVM Instances. Thank you.
>
> Jordan
>
> -Original Message-
> From: Wei ZHOU 
> Sent: Tuesday, July 23, 2024 9:35 AM
> To: jwolf...@ussignal.com.invalid
> Cc: users@cloudstack.apache.org
> Subject: Re: Root Disk Controller Global Setting
>
> EXTERNAL
>
> Hi,
>
> You can add vm settings for the root/data disk controller.
>
>
> -Wei
>
>
> On Tue, Jul 23, 2024 at 3:29 PM Jordan Wolfson
>  wrote:
> >
> > Good Morning,
> >
> > I am troubleshooting some Root and Data disk controller settings in our
> KVM/CloudStack deployment and I have noticed that there is a global setting
> for "Vmware root disk controller' for Instances but no such setting to
> assign a default KVM Root or Data disk controller to Instances. Is there a
> setting that I am missing or something else that I need to enable? Thank
> you.
> >
> > [photo]<http://www.ussignal.com/>
> >
> > Jordan Wolfson
> > Professional Services Engineer, US Signal
> >
> > 616.233.5032  |
> > http://www.ussignal.com<https://www.ussignal.com>  |
> > jwolf...@ussignal.com<mailto:jwolf...@ussignal.com>
> >
> > 201 Ionia Ave SW, Grand Rapids, MI
> > 49503<https://urldefense.com/v3/__https://maps.google.com/?q=201*20Ion
> > ia*20Ave*20SW,*20Grand*20Rapids,*20MI*2049503__;JSUlJSUlJQ!!P9cq_d3Gyw
> > !ljwFgSMEXIP0piGRApbxF-py-ulecCAFzVeTqyqX1MatYgmY4NPI5AXsLK-1vBgDjRBa-
> > sv5WMZqZHj_tNbKjw$ >
> >
> > [linkedin]<https://urldefense.com/v3/__https://www.linkedin.com/compan
> > y/us-signal/__;!!P9cq_d3Gyw!ljwFgSMEXIP0piGRApbxF-py-ulecCAFzVeTqyqX1M
> > atYgmY4NPI5AXsLK-1vBgDjRBa-sv5WMZqZHirG7qkbA$ >
> >
> > [facebook]<https://urldefense.com/v3/__https://www.facebook.com/ussign
> > alcom/__;!!P9cq_d3Gyw!ljwFgSMEXIP0piGRApbxF-py-ulecCAFzVeTqyqX1MatYgmY
> > 4NPI5AXsLK-1vBgDjRBa-sv5WMZqZHg42ATsaQ$ >
> >
> > [youtube]<https://urldefense.com/v3/__https://www.youtube.com/channel/
> > UCaFBGFfXmHziWGTFqjGzaWw__;!!P9cq_d3Gyw!ljwFgSMEXIP0piGRApbxF-py-ulecC
> > AFzVeTqyqX1MatYgmY4NPI5AXsLK-1vBgDjRBa-sv5WMZqZHgI-WzhSg$ >
> >
> > IMPORTANT: The contents of this email are confidential. Information is
> intended for the named recipient(s) only. If you have received this email
> by mistake, please notify the sender immediately and do not disclose the
> contents to anyone or make copies thereof.
> >
> >
>

Re: Root Disk Controller Global Setting

[Wei ZHOU]

Hi,

You can add vm settings for the root/data disk controller.


-Wei


On Tue, Jul 23, 2024 at 3:29 PM Jordan Wolfson
 wrote:
>
> Good Morning,
>
> I am troubleshooting some Root and Data disk controller settings in our 
> KVM/CloudStack deployment and I have noticed that there is a global setting 
> for "Vmware root disk controller' for Instances but no such setting to assign 
> a default KVM Root or Data disk controller to Instances. Is there a setting 
> that I am missing or something else that I need to enable? Thank you.
>
> [photo]
>
> Jordan Wolfson
> Professional Services Engineer, US Signal
>
> 616.233.5032  |  www.ussignal.com 
>  |  jwolf...@ussignal.com
>
> 201 Ionia Ave SW, Grand Rapids, MI 
> 49503
>
> [linkedin]
>
> [facebook]
>
> [youtube]
>
> IMPORTANT: The contents of this email are confidential. Information is 
> intended for the named recipient(s) only. If you have received this email by 
> mistake, please notify the sender immediately and do not disclose the 
> contents to anyone or make copies thereof.
>
>

Re: Setting up network bridge for public traffic

[Wei ZHOU]

Hi,

I think you can create a bridge without a vlan, and specify the public
vlan when you add public IP range.

-Wei

On Tue, Jul 23, 2024 at 1:36 AM Fariborz Navidan  wrote:
>
> Hello All,,
>
> My KVM host has only one NIC which is connected to a router. My datacenter
> has routed public IPv4 subnet via a tagged VLAN. My question is that should
> I add primary interface eth0 as bridge slave to the bridge interface, or I
> should create a VLAN tagged interface and add it to the bridge?
>
> Please advise.
>
> Thank you.

Re: systemvm 4.19.1

[Wei ZHOU]

Hi,

Can you share the file `/etc/cloudstack-release` inside the system vms
? and the output of `ls -lrt /usr/local/cloud/systemvm/cloud*jar`
please ?

Have you upgraded the cloudstack-agent package on the kvm hosts as well ?


-Wei

On Mon, Jul 22, 2024 at 1:35 PM Jimmy Huybrechts  wrote:
>
> For cloudstack itself?
>
> http://packages.shapeblue.com/cloudstack/upstream/debian/4.19
>
> --
> Jimmy
>
> From: Wei ZHOU 
> Date: Monday, 22 July 2024 at 13:33
> To: users@cloudstack.apache.org 
> Subject: Re: systemvm 4.19.1
> Which repo do you use ?
>
>
> -Wei
>
> On Mon, Jul 22, 2024 at 1:22 PM Jimmy Huybrechts  wrote:
> >
> > Hi Alex,
> >
> > Destroying one should do the same as patching it, patching I did also try, 
> > but it’s  like I’m missing something or forgot something to do after 
> > upgrading.
> >
> > --
> > Jimmy
> >
> > From: Alex Dietrich 
> > Date: Monday, 22 July 2024 at 13:15
> > To: users@cloudstack.apache.org 
> > Subject: Re: systemvm 4.19.1
> > Hello Jimmy,
> >
> > There should be the option to “Patch System VMs” from the instance menu in 
> > each System VM. There is a pretty good article on this process in the docs 
> > that I found particularly helpful.
> >
> > https://eur04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdocs.cloudstack.apache.org%2Fen%2Flatest%2Fupgrading%2Fupgrade%2Fupgrade-4.18.html&data=05%7C02%7Cjimmy%40linservers.com%7C0c6a2131947243102a5608dcaa42206f%7C6611e9df91314823a28204e95dba%7C0%7C0%7C638572448211098685%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=JCOI2loNeYQSntb24%2B5YjkTBVFOJ7raPn113rwK3LF4%3D&reserved=0<https://eur04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdocs.cloudstack.apache.org%2Fen%2Flatest%2Fupgrading%2Fupgrade%2Fupgrade-4.18.html&data=05%7C02%7Cjimmy%40linservers.com%7C0c6a2131947243102a5608dcaa42206f%7C6611e9df91314823a28204e95dba%7C0%7C0%7C63857244825432%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=2ZKT2O7DmI7EY7WVv0DTtjSRvxVk6niuKkwOC%2BL1GxU%3D&reserved=0><https://docs.cloudstack.apache.org/en/latest/upgrading/upgrade/upgrade-4.18.html>
> >
> > Thanks,
> > Alex
> >
> > [photo]<https://eur04.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.ussignal.com%2F&data=05%7C02%7Cjimmy%40linservers.com%7C0c6a2131947243102a5608dcaa42206f%7C6611e9df91314823a28204e95dba%7C0%7C0%7C638572448211128915%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=HTXHay%2BDEW0EoXCw6vgiom%2FIinriqAT8Xjfpc5GAl5M%3D&reserved=0>
> >
> > Alex Dietrich
> > Senior Network Engineer, US Signal
> >
> > 616-233-5094  |  
> > https://eur04.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.ussignal.com%2F&data=05%7C02%7Cjimmy%40linservers.com%7C0c6a2131947243102a5608dcaa42206f%7C6611e9df91314823a28204e95dba%7C0%7C0%7C638572448211138105%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=NFVt27NvoshAlHBQKpYXkjSD1M%2Fyfjcpy1w31Q%2FHCSE%3D&reserved=0<https://eur04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ussignal.com%2F&data=05%7C02%7Cjimmy%40linservers.com%7C0c6a2131947243102a5608dcaa42206f%7C6611e9df91314823a28204e95dba%7C0%7C0%7C638572448211144663%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=GJIyzwq5Ml9CXw1mb%2BxAkx63HBHj1IpRXTsnsWTUTZk%3D&reserved=0><https://eur04.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.ussignal.com%2F&data=05%7C02%7Cjimmy%40linservers.com%7C0c6a2131947243102a5608dcaa42206f%7C6611e9df91314823a28204e95dba%7C0%7C0%7C638572448211149729%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=n%2FSnSqrjTAVt%2B6eZUBwHnqELNUSRLPACbSKOEhO5AfM%3D&reserved=0><http://www.ussignal.com/>
> >   |  adietr...@ussignal.com<mailto:adietr...@ussignal.com>
> >
> > 201 Ionia Ave SW, Grand Rapids, MI 
> > 49503<https://eur04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fmaps.google.com%2F%3Fq%3D201%2520Ionia%2520Ave%2520SW%2C%2520Grand%2520Rapids%2C%2520MI%252049503&data=05%7C02%7Cjimmy%40linservers.com%7C0c6a2131947243102a5608dcaa42206f%7C6611e9df91314823a28204e95dba%7C0%7C0%7C638572448211154541%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=V6UYVJJfZJ78%2BrepogpIdiP9T5BdbUlMLQdmX5XMNKQ%3D&reserved=0<https://eur04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fmaps.g

Re: Agent Hooks: Groovy object is not received from script

[Wei ZHOU]

You may refer to https://github.com/apache/cloudstack/pull/3839


-Wei

On Mon, Jul 22, 2024 at 1:09 PM R A  wrote:
>
> Any idea?
>
> -Original Message-
> From: R A 
> Sent: Samstag, 20. Juli 2024 01:49
> To: users@cloudstack.apache.org
> Subject: RE: Agent Hooks: Groovy object is not received from script
>
> Maybe someone can give me just an example of a working script so I can get a 
> better understanding how to get this work?
>
> -Original Message-
> From: R A 
> Sent: Freitag, 19. Juli 2024 02:31
> To: users@cloudstack.apache.org
> Subject: Agent Hooks: Groovy object is not received from script
>
> Hi,
>
> i am trying to add a agent hook but I am facing some problems getting it 
> working.
>
> 2024-07-19 02:25:30,580 WARN  [kvm.resource.LibvirtKvmAgentHook] 
> (agentRequest-Handler-3:null) (logid:e1ef6296) Groovy object is not received 
> from script 'libvirt-vm-xml-transformer.groovy'.
>
> I guess it's a simple problem. Maybe someone can give me some advice.
>
> This is how the scripts look like:
>
>
> [root@elektra ~]# cat 
> /etc/cloudstack/agent/hooks/libvirt-vm-xml-transformer.groovy
> println "VM Transform script executed"
>
> def transform(xml) {
> println "VM started with XML: ${xml}"
>return xml;
> }
>
>
>
> [root@elektra ~]# cat 
> /etc/cloudstack/agent/hooks/libvirt-vm-state-change.groovy
> println "VM state change script executed"
>
> def onStart(xml) {
> println "VM started with XML: ${xml}"
> return xml
> }
>
> def onStop(xml) {
> println "VM stopped with XML: ${xml}"
> return xml
> }
>
>
> [root@elektra ~]# cat /etc/cloudstack/agent/agent.properties
> #Storage
> #Fri Jul 19 02:25:00 CEST 2024
> cluster=1
> agent.hooks.basedir=/etc/cloudstack/agent/hooks
> pod=1
> agent.hooks.libvirt_vm_on_start.method=onStart
> domr.scripts.dir=scripts/network/domr/kvm
> guest.cpu.mode=host-model
> agent.hooks.libvirt_vm_on_start.script=libvirt-vm-state-change.groovy
> agent.hooks.libvirt_vm_xml_transformer.method=transform
> guest.network.device=cloudbr-guest
> hypervisor.type=kvm
> zone=1
> public.network.device=cloudbr-guest
> local.storage.uuid=2b89aefa-704b-4b53-9c36-0e84ad5d4f85
> host=172.17.10.10@static
> vm.video.hardware=virtio
> workers=5
> guest.cpu.features=vmx
> vm.video.ram=16384
> resource=com.cloud.hypervisor.kvm.resource.LibvirtComputingResource
> private.network.device=cloudbr-mgmt
> agent.hooks.libvirt_vm_on_stop.method=onStop
> keystore.passphrase=BO2aVz2cvqTmDBQ2
> agent.hooks.libvirt_vm_xml_transformer.script=libvirt-vm-xml-transformer.groovy
> agent.hooks.libvirt_vm_on_stop.script=libvirt-vm-state-change.groovy
> port=8250
> guid=7e59f3ee-6112-301e-a361-ee475c63215a
> LibvirtComputingResource.id=7
> iscsi.session.cleanup.enabled=false
> vm.migrate.wait=3600
> [root@elektra ~]#
>
>
>
> 2024-07-19 02:25:26,233 INFO  [kvm.storage.LibvirtStorageAdaptor] 
> (agentRequest-Handler-5:null) (logid:aea6755b) Trying to fetch storage pool 
> c14a04e8-0d16-3af1-80b4-019fee0568a2 from libvirt
> 2024-07-19 02:25:26,255 INFO  [kvm.storage.LibvirtStorageAdaptor] 
> (agentRequest-Handler-5:null) (logid:aea6755b) Asking libvirt to refresh 
> storage pool c14a04e8-0d16-3af1-80b4-019fee0568a2
> 2024-07-19 02:25:30,110 INFO  [kvm.storage.LibvirtStorageAdaptor] 
> (agentRequest-Handler-3:null) (logid:e1ef6296) Trying to fetch storage pool 
> c14a04e8-0d16-3af1-80b4-019fee0568a2 from libvirt
> 2024-07-19 02:25:30,174 INFO  [kvm.storage.LibvirtStorageAdaptor] 
> (agentRequest-Handler-3:null) (logid:e1ef6296) Trying to fetch storage pool 
> c14a04e8-0d16-3af1-80b4-019fee0568a2 from libvirt
> 2024-07-19 02:25:30,580 WARN  [kvm.resource.LibvirtKvmAgentHook] 
> (agentRequest-Handler-3:null) (logid:e1ef6296) Groovy object is not received 
> from script 'libvirt-vm-xml-transformer.groovy'.
> 2024-07-19 02:25:32,126 WARN  [kvm.resource.LibvirtKvmAgentHook] 
> (agentRequest-Handler-3:null) (logid:e1ef6296) Groovy object is not received 
> from script 'libvirt-vm-state-change.groovy'.
>
>
>
> BR
> Reza

Re: systemvm 4.19.1

[Wei ZHOU]

Which repo do you use ?


-Wei

On Mon, Jul 22, 2024 at 1:22 PM Jimmy Huybrechts  wrote:
>
> Hi Alex,
>
> Destroying one should do the same as patching it, patching I did also try, 
> but it’s  like I’m missing something or forgot something to do after 
> upgrading.
>
> --
> Jimmy
>
> From: Alex Dietrich 
> Date: Monday, 22 July 2024 at 13:15
> To: users@cloudstack.apache.org 
> Subject: Re: systemvm 4.19.1
> Hello Jimmy,
>
> There should be the option to “Patch System VMs” from the instance menu in 
> each System VM. There is a pretty good article on this process in the docs 
> that I found particularly helpful.
>
> https://eur04.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdocs.cloudstack.apache.org%2Fen%2Flatest%2Fupgrading%2Fupgrade%2Fupgrade-4.18.html&data=05%7C02%7Cjimmy%40linservers.com%7Cedd9a13fb5f74d6a1e2b08dcaa3f9e0c%7C6611e9df91314823a28204e95dba%7C0%7C0%7C638572437412450448%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=NJ4hoQAAzRXZ2hN6c11J2XOHvrhZWwEaBt6Lib%2FM3fo%3D&reserved=0
>
> Thanks,
> Alex
>
> [photo]
>
> Alex Dietrich
> Senior Network Engineer, US Signal
>
> 616-233-5094  |  
> https://eur04.safelinks.protection.outlook.com/?url=http%3A%2F%2Fwww.ussignal.com%2F&data=05%7C02%7Cjimmy%40linservers.com%7Cedd9a13fb5f74d6a1e2b08dcaa3f9e0c%7C6611e9df91314823a28204e95dba%7C0%7C0%7C638572437412465087%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C0%7C%7C%7C&sdata=oU7WdN%2FrXEOXfUoDGR9EjgFl3ZarGdc2%2B2LVfFm55Dw%3D&reserved=0
>   |  adietr...@ussignal.com
>
> 201 Ionia Ave SW, Grand Rapids, MI 
> 49503>
>
> [linkedin]
>
> [facebook]
>
> [youtube]
>
> IMPORTANT: The contents of this email are confidential. Information is 
> intended for the named recipient(s) only. If you have received this email by 
> mistake, please notify the sender immediately and do not disclose the 
> contents to anyone or make copies thereof.
>
>
> [__tpx__]
>
> 
> From: Jimmy Huybrechts 
> Sent: Monday, July 22, 2024 6:37:17 AM
> To: users@cloudstack.apache.org 
> Subject: systemvm 4.19.1
>
> EXTERNAL
>
> I just updated the management server to 4.19.1.0.
>
> I can see the new system vm tem

Re: Unable to add host to CS 4.18

[Wei ZHOU]

Does cloudbr0 have a master interface?



On Sunday, July 21, 2024, Fariborz Navidan  wrote:

> I have tried following commands but unfortunately state of cloudbr0 cannot
> become UP:
>
> nmcli con up cloudbr0
> ip link set up cloudbr0
>
> What is wrong with my network config?
>
> Please help me.
>
> Thank you
>
> On Sun, Jul 21, 2024 at 9:36 AM Wei ZHOU  wrote:
>
> > ip link set cloudbr0 up?
> >
> >
> >
> > On Sunday, July 21, 2024, Fariborz Navidan 
> wrote:
> >
> > > I have found new warning in the management-server.log. Please see new
> > logh
> > > entries below. The new warning says cloudbr0 cannot be found but it
> > exists.
> > > Please see the output of "ip a" and "brctl show" commands at the end.
> > >
> > > agent.log:
> > > 2024-07-20 14:41:55,510 ERROR [kvm.resource.LibvirtConnection]
> > > (Agent-Handler-1:null) (logid:) Connection with libvirtd is broken:
> > invalid
> > > connection pointer in virConnectGetVersion
> > > 2024-07-20 14:41:55,459 ERROR [utils.linux.KVMHostInfo]
> > > (Agent-Handler-1:null) (logid:) Unable to retrieve the CPU speed from
> > > lscpu.
> > > 2024-07-21 00:39:20,270 WARN  [cloud.agent.Agent]
> (Agent-Handler-2:null)
> > > (logid:) Threw away a startup answer because we're reconnecting.
> > > 2024-07-21 00:39:20,289 WARN  [cloud.agent.Agent]
> (Agent-Handler-4:null)
> > > (logid:04ac4783) Unable to send response: null
> > >
> > > management-server:
> > > 2024-07-21 00:38:27,899 WARN  [c.c.a.AlertManagerImpl]
> > > (AgentConnectTaskPool-101:ctx-113ad44d) (logid:a216) alertType=[7]
> > > dataCenterId=[1] podId=[1] clusterId=[null] message=[Incorrect Network
> > > setup on agent, Reinitialize agent after network names are setup,
> > details :
> > > Can not find network: cloudbr0].
> > > 2024-07-21 00:39:21,755 ERROR [c.c.u.n.Link]
> > > (AgentManager-SSLHandshakeHandler-19:null) (logid:) Failed to send
> > > server's
> > > CLOSE message due to socket channel's failure.
> > >
> > > I have setup network using nmcli with following commands:
> > >
> > > nmcli connection add type vlan con-name vlan427 ifname vlan427
> > vlan.parent
> > > eth0 vlan.id 427
> > > nmcli con up vlan427
> > > nmcli con add ifname cloudbr0 type bridge con-name cloudbr0 autoconnect
> > yes
> > > nmcli con add type bridge-slave ifname vlan427 master cloudbr0
> > autoconnect
> > > yes con-name br-vlan427
> > > nmcli connection up cloudbr0
> > >
> > > Below is output of "ip a" and "brctl show" commands:
> > >
> > > # ip a
> > > 1: lo:  mtu 65536 qdisc noqueue state UNKNOWN
> group
> > > default qlen 1000
> > > link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00
> > > inet 127.0.0.1/8 scope host lo
> > >valid_lft forever preferred_lft forever
> > > inet6 ::1/128 scope host
> > >valid_lft forever preferred_lft forever
> > > 2: eth0:  mtu 1500 qdisc fq_codel
> state
> > > UP
> > > group default qlen 1000
> > > link/ether 3c:7c:3f:bb:16:88 brd ff:ff:ff:ff:ff:ff
> > > altname enp5s0
> > > inet 149.50.116.112/24 brd 149.50.116.255 scope global
> noprefixroute
> > > eth0
> > >valid_lft forever preferred_lft forever
> > > inet6 2a03:cfc0:8000:2e::9532:7470/64 scope global noprefixroute
> > >valid_lft forever preferred_lft forever
> > > inet6 fe80::3e7c:3fff:febb:1688/64 scope link noprefixroute
> > >valid_lft forever preferred_lft forever
> > > 4: cloudbr0:  mtu 1500 qdisc
> noqueue
> > > state DOWN group default qlen 1000
> > > link/ether e6:5e:4e:b9:48:e3 brd ff:ff:ff:ff:ff:ff
> > > inet 192.168.1.1/24 brd 192.168.1.255 scope global noprefixroute
> > > cloudbr0
> > >valid_lft forever preferred_lft forever
> > > 6: cloud0:  mtu 1500 qdisc noqueue
> state
> > > UNKNOWN group default qlen 1000
> > > link/ether 4e:63:4a:80:21:74 brd ff:ff:ff:ff:ff:ff
> > > inet 169.254.0.1/16 scope global cloud0
> > >valid_lft forever preferred_lft forever
> > > inet6 fe80::4c63:4aff:fe80:2174/64 scope link
> > >valid_lft forever preferred_lft forever
> > >
> > > # brctl show
> > > bridge name bridge id   STP enabled   interfaces
> 

Re: Unable to add host to CS 4.18

[Wei ZHOU]

stem/cpu/cpu0/cpufreq/base_frequency]
> >> 2024-07-20 14:41:35,120 ERROR [kvm.resource.LibvirtConnection]
> >> (Agent-Handler-1:null) (logid:) Connection with libvirtd is broken:
> invalid
> >> connection pointer in virConnectGetVersion
> >>
> >> Management server and agent are running on the same node.
> >>
> >> Kindly someone help me. All our systems are down for a week as our old
> >> provider has stopped providing service. We need to setup this server
> ASAP.
> >>
> >> On Sat, Jul 20, 2024 at 2:36 AM Fariborz Navidan  >
> >> wrote:
> >>
> >>> I have successfully ran cloudstack-setup-agent but still getting error
> >>> "connection with libvirtd is broken". What should I check?
> >>>
> >>> Please help me.
> >>>
> >>> On Fri, Jul 19, 2024 at 1:47 PM Fariborz Navidan <
> mdvlinqu...@gmail.com>
> >>> wrote:
> >>>
> >>>> Any idea?
> >>>>
> >>>> On Fri, 19 Jul 2024, 11:18 Fariborz Navidan, 
> >>>> wrote:
> >>>>
> >>>>> I have two other errors in agent.lo. Please see below:
> >>>>>
> >>>>>
> >>>>> 2024-07-19 01:47:57,960 ERROR [utils.nio.NioClient]
> >>>>> (Agent-Handler-1:null) (logid:) SSL Handshake failed while
> connecting to
> >>>>> host: 149.50.116.112 port: 8250
> >>>>> 2024-07-19 01:47:57,960 ERROR [utils.nio.NioConnection]
> >>>>> (Agent-Handler-1:null) (logid:) Unable to initialize the threads.
> >>>>> 2024-07-19 01:47:59,514 ERROR [kvm.resource.LibvirtConnection]
> >>>>> (Agent-Handler-1:null) (logid:) Connection with libvirtd is broken:
> invalid
> >>>>> connection pointer in virConnectGetVersion
> >>>>>
> >>>>> Please help me.
> >>>>>
> >>>>> On Fri, Jul 19, 2024 at 11:01 AM Fariborz Navidan <
> >>>>> mdvlinqu...@gmail.com> wrote:
> >>>>>
> >>>>>> Hello everyone,
> >>>>>>
> >>>>>> I'm in a situation where I really need to put CS work on my new
> >>>>>> server as my old server provider has stopped providing service. I
> have
> >>>>>> migrated all VMs as templates to the new server but still cannot
> deploy
> >>>>>> them. All my systems are down for a long time. Should I downgrade
> to CentOS
> >>>>>> 8?
> >>>>>>
> >>>>>> I'm really stuck. Please help me ASAP.
> >>>>>>
> >>>>>> On Fri, Jul 19, 2024 at 2:15 AM Muhammad Hanis Irfan Mohd Zaid <
> >>>>>> hanisirfan.w...@gmail.com> wrote:
> >>>>>>
> >>>>>>> Actually, can someone point us to an article or documentation of a
> >>>>>>> production ready deployment method and steps for the KVM agent? The
> >>>>>>> CloudStack documentation seems to be a bit hard to follow and might
> >>>>>>> not
> >>>>>>> work with RHEL 9 derivatives.
> >>>>>>>
> >>>>>>> I can try to contribute in the docs however I can.
> >>>>>>>
> >>>>>>> On Fri, 19 Jul 2024, 05:47 Fariborz Navidan, <
> mdvlinqu...@gmail.com>
> >>>>>>> wrote:
> >>>>>>>
> >>>>>>> > I ran the command and rebooted the server but no luck :( :( I
> have
> >>>>>>> the same
> >>>>>>> > error in the agent.log:
> >>>>>>> >
> >>>>>>> > 2024-07-18 23:41:56,370 ERROR [kvm.resource.LibvirtConnection]
> >>>>>>> > (Agent-Handler-1:null) (logid:) Connection with libvirtd is
> >>>>>>> broken: invalid
> >>>>>>> > connection pointer in virConnectGetVersion
> >>>>>>> >
> >>>>>>> > On Thu, Jul 18, 2024 at 11:54 PM Wei ZHOU  >
> >>>>>>> wrote:
> >>>>>>> >
> >>>>>>> > > systemctl mask virtqemud.socket virtqemud-ro.socket
> >>>>>>> > > virtqemud-admin.socket virtqemud virtnetworkd virtstoraged
> >>>>>>> > >
> >>>>>>> > >
> >

Re: Unable to add host to CS 4.18

[Wei ZHOU]

systemctl mask virtqemud.socket virtqemud-ro.socket
virtqemud-admin.socket virtqemud virtnetworkd virtstoraged



On Thursday, July 18, 2024, Fariborz Navidan  wrote:

> Could you please send me commands for virtqemud.socket and others?
>
> On Thu, Jul 18, 2024 at 11:30 PM Wei ZHOU  wrote:
>
> > The services to mark is not libvirtd, but virtqemud.socket and etc
> >
> > Have you tried the same command as mentioned before ?
> >
> >
> >
> > On Thursday, July 18, 2024, Fariborz Navidan 
> > wrote:
> >
> > > Hi
> > >
> > > Masking libvirtd service caused cloustack agent not to be able to start
> > or
> > > restart. I unmasked libvirtd service and  now in dead status restarting
> > it
> > > does not bring it up.
> > >
> > > On Thu, 18 Jul 2024, 09:34 Wei ZHOU,  wrote:
> > >
> > > > Hi,
> > > >
> > > > Can you try the following command ?
> > > >
> > > > systemctl mask virtqemud.socket virtqemud-ro.socket
> > > > virtqemud-admin.socket virtqemud virtnetworkd virtstoraged
> > > >
> > > >
> > > > -Wei
> > > >
> > > > On Wed, Jul 17, 2024 at 10:23 PM Fariborz Navidan <
> > mdvlinqu...@gmail.com
> > > >
> > > > wrote:
> > > > >
> > > > > Thank you. cloudstack-setup-agent exists but it requires me to put
> > > > network
> > > > > configuration in /etc/sysconfig/network-scripts directory which
> seems
> > > > that
> > > > > no longer supported in AlmaLinux 9. I already have bridges created
> > > using
> > > > > NetworkManager via nmcli command.
> > > > >
> > > > > What do you advise?
> > > > >
> > > > > On Wed, 17 Jul 2024, 21:56 Wei ZHOU, 
> wrote:
> > > > >
> > > > > > The command should exist on kvm hosts
> > > > > >
> > > > > > I meant is the systemctl mask command in the pull request
> > > > > >
> > > > > >
> > > > > > On Wednesday, July 17, 2024, Fariborz Navidan <
> > mdvlinqu...@gmail.com
> > > >
> > > > > > wrote:
> > > > > >
> > > > > > > Thank you Wei,
> > > > > > >
> > > > > > > Unfortunately your given commands cannot be found.
> > > > > > >
> > > > > > > bash: cloudstack-setup-agent:: command not found
> > > > > > >
> > > > > > > Any idea?
> > > > > > >
> > > > > > > Thanks.
> > > > > > >
> > > > > > > On Wed, 17 Jul 2024, 20:33 Wei ZHOU, 
> > > wrote:
> > > > > > >
> > > > > > > > Maybe the following commands help
> > > > > > > >
> > > > > > > > https://github.com/apache/cloudstack/pull/7114/files
> > > > > > > >
> > > > > > > >
> > > > > > > > -Wei
> > > > > > > >
> > > > > > > > On Wed, Jul 17, 2024 at 6:30 PM Fariborz Navidan <
> > > > > > mdvlinqu...@gmail.com>
> > > > > > > > wrote:
> > > > > > > > >
> > > > > > > > > To add on this, my host OS is AlmaLinux 9. Any idea on this
> > > > issue?
> > > > > > > > >
> > > > > > > > > Please help me.
> > > > > > > > >
> > > > > > > > > On Wed, 17 Jul 2024, 18:28 Muhammad Hanis Irfan Mohd Zaid,
> <
> > > > > > > > > hanisirfan.w...@gmail.com> wrote:
> > > > > > > > >
> > > > > > > > > > To add on this, I've also experienced the same error when
> > > > adding a
> > > > > > > > host. I
> > > > > > > > > > can also confirm that the status of libvirtd from
> systemctl
> > > > that
> > > > > > it's
> > > > > > > > > > running fine. I can add the host only after doing a
> couple
> > of
> > > > > > reboots
> > > > > > > > to
> > > > > > > > > > the while the add host process is running in the UI.
> > > 

Re: Static Routes

[Wei ZHOU]

That's the only way for now I think.

I will see if I can find some time on it in the coming weeks.

On Thursday, July 18, 2024, Marty Godsey  wrote:

> A VM in the same account. So, to get around it I am just adding a static
> route on the local servers. Which is not ideal but works for now.
>
> From: Wei ZHOU 
> Date: Thursday, July 18, 2024 at 4:10 PM
> To: users@cloudstack.apache.org 
> Subject: Re: Static Routes
> WARNING: This email originated from outside of the organization. Do not
> click links or open attachments unless you recognize the sender and know
> the content is safe.
>
>
> We have a roadmap task to decouple the static routes with private gateways.
> It should be included in 4.21.
>
> In your use case, what could be the next hop of the static routes? A vm, or
> specific public ip or guest network ip ?
>
>
> -Wei
>
> On Thursday, July 18, 2024, Marty Godsey  wrote:
>
> > There is no way to add static routes to the VR, is there? I know about
> the
> > private gateway, but that’s not my use case. A VM running in this
> person's
> > cloud creates a site-to-site tunnel, and they need to send a specific
> > subnet to this device to be routed. This can quickly be done with a
> static
> > route, but I don’t see a way.
> >
> > Am I missing something?
> >
>

Re: Static Routes

[Wei ZHOU]

We have a roadmap task to decouple the static routes with private gateways.
It should be included in 4.21.

In your use case, what could be the next hop of the static routes? A vm, or
specific public ip or guest network ip ?


-Wei

On Thursday, July 18, 2024, Marty Godsey  wrote:

> There is no way to add static routes to the VR, is there? I know about the
> private gateway, but that’s not my use case. A VM running in this person's
> cloud creates a site-to-site tunnel, and they need to send a specific
> subnet to this device to be routed. This can quickly be done with a static
> route, but I don’t see a way.
>
> Am I missing something?
>

Re: Unable to add host to CS 4.18

[Wei ZHOU]

The services to mark is not libvirtd, but virtqemud.socket and etc

Have you tried the same command as mentioned before ?



On Thursday, July 18, 2024, Fariborz Navidan  wrote:

> Hi
>
> Masking libvirtd service caused cloustack agent not to be able to start or
> restart. I unmasked libvirtd service and  now in dead status restarting it
> does not bring it up.
>
> On Thu, 18 Jul 2024, 09:34 Wei ZHOU,  wrote:
>
> > Hi,
> >
> > Can you try the following command ?
> >
> > systemctl mask virtqemud.socket virtqemud-ro.socket
> > virtqemud-admin.socket virtqemud virtnetworkd virtstoraged
> >
> >
> > -Wei
> >
> > On Wed, Jul 17, 2024 at 10:23 PM Fariborz Navidan  >
> > wrote:
> > >
> > > Thank you. cloudstack-setup-agent exists but it requires me to put
> > network
> > > configuration in /etc/sysconfig/network-scripts directory which seems
> > that
> > > no longer supported in AlmaLinux 9. I already have bridges created
> using
> > > NetworkManager via nmcli command.
> > >
> > > What do you advise?
> > >
> > > On Wed, 17 Jul 2024, 21:56 Wei ZHOU,  wrote:
> > >
> > > > The command should exist on kvm hosts
> > > >
> > > > I meant is the systemctl mask command in the pull request
> > > >
> > > >
> > > > On Wednesday, July 17, 2024, Fariborz Navidan  >
> > > > wrote:
> > > >
> > > > > Thank you Wei,
> > > > >
> > > > > Unfortunately your given commands cannot be found.
> > > > >
> > > > > bash: cloudstack-setup-agent:: command not found
> > > > >
> > > > > Any idea?
> > > > >
> > > > > Thanks.
> > > > >
> > > > > On Wed, 17 Jul 2024, 20:33 Wei ZHOU, 
> wrote:
> > > > >
> > > > > > Maybe the following commands help
> > > > > >
> > > > > > https://github.com/apache/cloudstack/pull/7114/files
> > > > > >
> > > > > >
> > > > > > -Wei
> > > > > >
> > > > > > On Wed, Jul 17, 2024 at 6:30 PM Fariborz Navidan <
> > > > mdvlinqu...@gmail.com>
> > > > > > wrote:
> > > > > > >
> > > > > > > To add on this, my host OS is AlmaLinux 9. Any idea on this
> > issue?
> > > > > > >
> > > > > > > Please help me.
> > > > > > >
> > > > > > > On Wed, 17 Jul 2024, 18:28 Muhammad Hanis Irfan Mohd Zaid, <
> > > > > > > hanisirfan.w...@gmail.com> wrote:
> > > > > > >
> > > > > > > > To add on this, I've also experienced the same error when
> > adding a
> > > > > > host. I
> > > > > > > > can also confirm that the status of libvirtd from systemctl
> > that
> > > > it's
> > > > > > > > running fine. I can add the host only after doing a couple of
> > > > reboots
> > > > > > to
> > > > > > > > the while the add host process is running in the UI.
> > > > > > > >
> > > > > > > > On Wed, 17 Jul 2024, 22:03 Fariborz Navidan, <
> > > > mdvlinqu...@gmail.com>
> > > > > > > > wrote:
> > > > > > > >
> > > > > > > > > Yes. Output of command systemctl status libvirtd shows
> > service is
> > > > > > active
> > > > > > > > > and running.
> > > > > > > > >
> > > > > > > > > Please advise.
> > > > > > > > >
> > > > > > > > > Thanks
> > > > > > > > >
> > > > > > > > > On Wed, 17 Jul 2024, 16:48 Wei ZHOU, <
> ustcweiz...@gmail.com>
> > > > > wrote:
> > > > > > > > >
> > > > > > > > > > is libvirtd running well ?
> > > > > > > > > >
> > > > > > > > > >
> > > > > > > > > > On Wed, Jul 17, 2024 at 3:07 PM Fariborz Navidan <
> > > > > > > > mdvlinqu...@gmail.com>
> > > > > > > > > > wrote:
> > > > > > > > > > >
> > > > 

Re: Unable to add host to CS 4.18

[Wei ZHOU]

Hi,

Can you try the following command ?

systemctl mask virtqemud.socket virtqemud-ro.socket
virtqemud-admin.socket virtqemud virtnetworkd virtstoraged


-Wei

On Wed, Jul 17, 2024 at 10:23 PM Fariborz Navidan  wrote:
>
> Thank you. cloudstack-setup-agent exists but it requires me to put network
> configuration in /etc/sysconfig/network-scripts directory which seems that
> no longer supported in AlmaLinux 9. I already have bridges created using
> NetworkManager via nmcli command.
>
> What do you advise?
>
> On Wed, 17 Jul 2024, 21:56 Wei ZHOU,  wrote:
>
> > The command should exist on kvm hosts
> >
> > I meant is the systemctl mask command in the pull request
> >
> >
> > On Wednesday, July 17, 2024, Fariborz Navidan 
> > wrote:
> >
> > > Thank you Wei,
> > >
> > > Unfortunately your given commands cannot be found.
> > >
> > > bash: cloudstack-setup-agent:: command not found
> > >
> > > Any idea?
> > >
> > > Thanks.
> > >
> > > On Wed, 17 Jul 2024, 20:33 Wei ZHOU,  wrote:
> > >
> > > > Maybe the following commands help
> > > >
> > > > https://github.com/apache/cloudstack/pull/7114/files
> > > >
> > > >
> > > > -Wei
> > > >
> > > > On Wed, Jul 17, 2024 at 6:30 PM Fariborz Navidan <
> > mdvlinqu...@gmail.com>
> > > > wrote:
> > > > >
> > > > > To add on this, my host OS is AlmaLinux 9. Any idea on this issue?
> > > > >
> > > > > Please help me.
> > > > >
> > > > > On Wed, 17 Jul 2024, 18:28 Muhammad Hanis Irfan Mohd Zaid, <
> > > > > hanisirfan.w...@gmail.com> wrote:
> > > > >
> > > > > > To add on this, I've also experienced the same error when adding a
> > > > host. I
> > > > > > can also confirm that the status of libvirtd from systemctl that
> > it's
> > > > > > running fine. I can add the host only after doing a couple of
> > reboots
> > > > to
> > > > > > the while the add host process is running in the UI.
> > > > > >
> > > > > > On Wed, 17 Jul 2024, 22:03 Fariborz Navidan, <
> > mdvlinqu...@gmail.com>
> > > > > > wrote:
> > > > > >
> > > > > > > Yes. Output of command systemctl status libvirtd shows service is
> > > > active
> > > > > > > and running.
> > > > > > >
> > > > > > > Please advise.
> > > > > > >
> > > > > > > Thanks
> > > > > > >
> > > > > > > On Wed, 17 Jul 2024, 16:48 Wei ZHOU, 
> > > wrote:
> > > > > > >
> > > > > > > > is libvirtd running well ?
> > > > > > > >
> > > > > > > >
> > > > > > > > On Wed, Jul 17, 2024 at 3:07 PM Fariborz Navidan <
> > > > > > mdvlinqu...@gmail.com>
> > > > > > > > wrote:
> > > > > > > > >
> > > > > > > > > Hello everyone,
> > > > > > > > >
> > > > > > > > > I'm in a situation where I need to migrate my infrastructure
> > to
> > > > new
> > > > > > > > servers
> > > > > > > > > as soon as possible. I have installed CS 4.18 management and
> > > > agent on
> > > > > > > the
> > > > > > > > > same node. I have gone through the installation guide and
> > > > configured
> > > > > > > > > libvirtd based on documentation.  However, I am unable to
> > add a
> > > > KVM
> > > > > > > host.
> > > > > > > > > Below is the error I am getting in the agent.log file. Please
> > > > note
> > > > > > > that I
> > > > > > > > > have set all required parameters in libvirt config file.
> > > > > > > > >
> > > > > > > > > 2024-07-17 14:54:59,872 ERROR [cloud.agent.AgentShell]
> > > > (main:null)
> > > > > > > > (logid:)
> > > > > > > > > Unable to start agent:
> > > > > > > > > com.cloud.utils.exception.CloudRuntimeException: Failed to
> > > > connect
> > > > > > > socket
> > > > > > > > > to '/var/run/libvirt/virtqemud-sock': Connection refused
> > > > > > > > > at
> > > > > > > > >
> > > > > > > >
> > > > > > >
> > > > > >
> > > > com.cloud.hypervisor.kvm.resource.LibvirtComputingResource.configure(
> > > LibvirtComputingResource.java:1097)
> > > > > > > > > at com.cloud.agent.Agent.(Agent.java:191)
> > > > > > > > > at
> > > > > > > com.cloud.agent.AgentShell.launchNewAgent(AgentShell.java:452)
> > > > > > > > > at
> > > > > > > > >
> > > > > > >
> > > >
> > com.cloud.agent.AgentShell.launchAgentFromClassInfo(AgentShell.java:431)
> > > > > > > > > at
> > > > > > com.cloud.agent.AgentShell.launchAgent(AgentShell.java:415)
> > > > > > > > > at com.cloud.agent.AgentShell.
> > > start(AgentShell.java:511)
> > > > > > > > > at com.cloud.agent.AgentShell.
> > > main(AgentShell.java:541)
> > > > > > > > >
> > > > > > > > > It says that agent is unable to connect libvirt.
> > > > > > > > >
> > > > > > > > > Please advise.
> > > > > > > > >
> > > > > > > > > Thanks.
> > > > > > > >
> > > > > > >
> > > > > >
> > > >
> > >
> >

Re: Unable to add host to CS 4.18

[Wei ZHOU]

The command should exist on kvm hosts

I meant is the systemctl mask command in the pull request


On Wednesday, July 17, 2024, Fariborz Navidan  wrote:

> Thank you Wei,
>
> Unfortunately your given commands cannot be found.
>
> bash: cloudstack-setup-agent:: command not found
>
> Any idea?
>
> Thanks.
>
> On Wed, 17 Jul 2024, 20:33 Wei ZHOU,  wrote:
>
> > Maybe the following commands help
> >
> > https://github.com/apache/cloudstack/pull/7114/files
> >
> >
> > -Wei
> >
> > On Wed, Jul 17, 2024 at 6:30 PM Fariborz Navidan 
> > wrote:
> > >
> > > To add on this, my host OS is AlmaLinux 9. Any idea on this issue?
> > >
> > > Please help me.
> > >
> > > On Wed, 17 Jul 2024, 18:28 Muhammad Hanis Irfan Mohd Zaid, <
> > > hanisirfan.w...@gmail.com> wrote:
> > >
> > > > To add on this, I've also experienced the same error when adding a
> > host. I
> > > > can also confirm that the status of libvirtd from systemctl that it's
> > > > running fine. I can add the host only after doing a couple of reboots
> > to
> > > > the while the add host process is running in the UI.
> > > >
> > > > On Wed, 17 Jul 2024, 22:03 Fariborz Navidan, 
> > > > wrote:
> > > >
> > > > > Yes. Output of command systemctl status libvirtd shows service is
> > active
> > > > > and running.
> > > > >
> > > > > Please advise.
> > > > >
> > > > > Thanks
> > > > >
> > > > > On Wed, 17 Jul 2024, 16:48 Wei ZHOU, 
> wrote:
> > > > >
> > > > > > is libvirtd running well ?
> > > > > >
> > > > > >
> > > > > > On Wed, Jul 17, 2024 at 3:07 PM Fariborz Navidan <
> > > > mdvlinqu...@gmail.com>
> > > > > > wrote:
> > > > > > >
> > > > > > > Hello everyone,
> > > > > > >
> > > > > > > I'm in a situation where I need to migrate my infrastructure to
> > new
> > > > > > servers
> > > > > > > as soon as possible. I have installed CS 4.18 management and
> > agent on
> > > > > the
> > > > > > > same node. I have gone through the installation guide and
> > configured
> > > > > > > libvirtd based on documentation.  However, I am unable to add a
> > KVM
> > > > > host.
> > > > > > > Below is the error I am getting in the agent.log file. Please
> > note
> > > > > that I
> > > > > > > have set all required parameters in libvirt config file.
> > > > > > >
> > > > > > > 2024-07-17 14:54:59,872 ERROR [cloud.agent.AgentShell]
> > (main:null)
> > > > > > (logid:)
> > > > > > > Unable to start agent:
> > > > > > > com.cloud.utils.exception.CloudRuntimeException: Failed to
> > connect
> > > > > socket
> > > > > > > to '/var/run/libvirt/virtqemud-sock': Connection refused
> > > > > > > at
> > > > > > >
> > > > > >
> > > > >
> > > >
> > com.cloud.hypervisor.kvm.resource.LibvirtComputingResource.configure(
> LibvirtComputingResource.java:1097)
> > > > > > > at com.cloud.agent.Agent.(Agent.java:191)
> > > > > > > at
> > > > > com.cloud.agent.AgentShell.launchNewAgent(AgentShell.java:452)
> > > > > > > at
> > > > > > >
> > > > >
> > com.cloud.agent.AgentShell.launchAgentFromClassInfo(AgentShell.java:431)
> > > > > > > at
> > > > com.cloud.agent.AgentShell.launchAgent(AgentShell.java:415)
> > > > > > > at com.cloud.agent.AgentShell.
> start(AgentShell.java:511)
> > > > > > > at com.cloud.agent.AgentShell.
> main(AgentShell.java:541)
> > > > > > >
> > > > > > > It says that agent is unable to connect libvirt.
> > > > > > >
> > > > > > > Please advise.
> > > > > > >
> > > > > > > Thanks.
> > > > > >
> > > > >
> > > >
> >
>

Re: Unable to add host to CS 4.18

[Wei ZHOU]

Maybe the following commands help

https://github.com/apache/cloudstack/pull/7114/files


-Wei

On Wed, Jul 17, 2024 at 6:30 PM Fariborz Navidan  wrote:
>
> To add on this, my host OS is AlmaLinux 9. Any idea on this issue?
>
> Please help me.
>
> On Wed, 17 Jul 2024, 18:28 Muhammad Hanis Irfan Mohd Zaid, <
> hanisirfan.w...@gmail.com> wrote:
>
> > To add on this, I've also experienced the same error when adding a host. I
> > can also confirm that the status of libvirtd from systemctl that it's
> > running fine. I can add the host only after doing a couple of reboots to
> > the while the add host process is running in the UI.
> >
> > On Wed, 17 Jul 2024, 22:03 Fariborz Navidan, 
> > wrote:
> >
> > > Yes. Output of command systemctl status libvirtd shows service is active
> > > and running.
> > >
> > > Please advise.
> > >
> > > Thanks
> > >
> > > On Wed, 17 Jul 2024, 16:48 Wei ZHOU,  wrote:
> > >
> > > > is libvirtd running well ?
> > > >
> > > >
> > > > On Wed, Jul 17, 2024 at 3:07 PM Fariborz Navidan <
> > mdvlinqu...@gmail.com>
> > > > wrote:
> > > > >
> > > > > Hello everyone,
> > > > >
> > > > > I'm in a situation where I need to migrate my infrastructure to new
> > > > servers
> > > > > as soon as possible. I have installed CS 4.18 management and agent on
> > > the
> > > > > same node. I have gone through the installation guide and configured
> > > > > libvirtd based on documentation.  However, I am unable to add a KVM
> > > host.
> > > > > Below is the error I am getting in the agent.log file. Please note
> > > that I
> > > > > have set all required parameters in libvirt config file.
> > > > >
> > > > > 2024-07-17 14:54:59,872 ERROR [cloud.agent.AgentShell] (main:null)
> > > > (logid:)
> > > > > Unable to start agent:
> > > > > com.cloud.utils.exception.CloudRuntimeException: Failed to connect
> > > socket
> > > > > to '/var/run/libvirt/virtqemud-sock': Connection refused
> > > > > at
> > > > >
> > > >
> > >
> > com.cloud.hypervisor.kvm.resource.LibvirtComputingResource.configure(LibvirtComputingResource.java:1097)
> > > > > at com.cloud.agent.Agent.(Agent.java:191)
> > > > > at
> > > com.cloud.agent.AgentShell.launchNewAgent(AgentShell.java:452)
> > > > > at
> > > > >
> > > com.cloud.agent.AgentShell.launchAgentFromClassInfo(AgentShell.java:431)
> > > > > at
> > com.cloud.agent.AgentShell.launchAgent(AgentShell.java:415)
> > > > > at com.cloud.agent.AgentShell.start(AgentShell.java:511)
> > > > > at com.cloud.agent.AgentShell.main(AgentShell.java:541)
> > > > >
> > > > > It says that agent is unable to connect libvirt.
> > > > >
> > > > > Please advise.
> > > > >
> > > > > Thanks.
> > > >
> > >
> >

Re: Unable to add host to CS 4.18

[Wei ZHOU]

is libvirtd running well ?


On Wed, Jul 17, 2024 at 3:07 PM Fariborz Navidan  wrote:
>
> Hello everyone,
>
> I'm in a situation where I need to migrate my infrastructure to new servers
> as soon as possible. I have installed CS 4.18 management and agent on the
> same node. I have gone through the installation guide and configured
> libvirtd based on documentation.  However, I am unable to add a KVM host.
> Below is the error I am getting in the agent.log file. Please note that I
> have set all required parameters in libvirt config file.
>
> 2024-07-17 14:54:59,872 ERROR [cloud.agent.AgentShell] (main:null) (logid:)
> Unable to start agent:
> com.cloud.utils.exception.CloudRuntimeException: Failed to connect socket
> to '/var/run/libvirt/virtqemud-sock': Connection refused
> at
> com.cloud.hypervisor.kvm.resource.LibvirtComputingResource.configure(LibvirtComputingResource.java:1097)
> at com.cloud.agent.Agent.(Agent.java:191)
> at com.cloud.agent.AgentShell.launchNewAgent(AgentShell.java:452)
> at
> com.cloud.agent.AgentShell.launchAgentFromClassInfo(AgentShell.java:431)
> at com.cloud.agent.AgentShell.launchAgent(AgentShell.java:415)
> at com.cloud.agent.AgentShell.start(AgentShell.java:511)
> at com.cloud.agent.AgentShell.main(AgentShell.java:541)
>
> It says that agent is unable to connect libvirt.
>
> Please advise.
>
> Thanks.

Re: Networking issue with VLAN setup

[Wei ZHOU]

It looks like there is no physical interface (ethX/bondX) added to the
bridge for guest networks (cloudbrX).

-Wei



On Wed, Jul 17, 2024 at 10:07 AM Alexandru Stan
 wrote:
>
> Hi everyone. I have a specific network setup that doesn't seem to be working 
> with CS for some reason, I think it's a missconfiguration on my part. So, 
> there are 2 interfaces on the host, one it's a bond interface and one it's a 
> vlan interface that's a member of the bond. Since I need a bridge for CS, I 
> added one, with the ipv4 settings and everything, and made the vlan interface 
> the slave of the bridge. When I tried to add the zone (advanced) I set the 
> bridge label on the management interface and added the ip range with untagged 
> traffic, but it couldn't add the hosts correctly, they all had alert status. 
> Removing the label from the management interface seems to work somehow, the 
> hosts are up and running, the system vms are up and connected, etc. I added 
> an isolated network and tried to create a vm, but this is where the main 
> issue starts, I cannot deploy any vm, they all fail with the same error and 
> it has something to do with networking. The error on the host is this 
> (obviously the device name varies):
>
> Process [206176] for command 
> [/usr/share/cloudstack-common/scripts/vm/network/vnet/modifyvlan.sh -v 1277 
> -p  -b br-1277 -o add ] encountered the error: [Cannot find device 
> "br-1277"/usr/share/cloudstack-common/scripts/vm/network/vnet/modifyvlan.sh: 
> line 37: /proc/sys/net/ipv6/conf/br-1277.1277/disable_ipv6: No such file or 
> directoryCannot find device "br-1277.1277"Failed to create vlan 1277 on pif: 
> br-1277.].
>
> Does anyone have a clue about what could be wrong here?
>
> Thank you!

Re: stored procedures and versions (Was: [VOTE] Apache CloudStack 4.19.1.0 (RC1))

[Wei ZHOU]

+1

procedures can be created before db upgrades

-Wei

On Fri, Jul 12, 2024 at 1:40 PM Daan Hoogland  wrote:
>
> This is a bit off topic, so renaming the thread. Can we instate a
> similar procedure as for views for stored procedures?
>
> it seems to me we can de exactly the same for those stored procedures
> and maybe even hijack the views dir so no issues occur with those in
> the future. It would guarantee these are recreated on every update and
> also always have the latest version as needed.
>
> On Fri, Jul 12, 2024 at 11:37 AM Suresh Kumar Anaparti
>  wrote:
> ...
> > > 
> > > From: Nux 
> > > Sent: Friday, July 12, 2024 02:44
> > > To: d...@cloudstack.apache.org 
> > > Cc: users 
> > > Subject: Re: [VOTE] Apache CloudStack 4.19.1.0 (RC1)
> > >
> > > Rohit,
> > >
> > > That's a very good point about the routines, thanks for sharing how to
> > > restore them.
> ...
> > > On 2024-07-11 12:52, Rohit Yadav wrote:
> ...
> > > >  *
> > > > I hit an issue with idempotent routines missing on cloud_usage db
> > > > (borrowed them from mbx env with: mysqldump --no-create-db
> > > > --no-create-info --no-data --routines cloud_usage >
> > > > cloud_usage-routines.sql ; and applied this in my homelab env; likely
> > > > my fault while moving DB servers and forgot the -R option where I
> > > > forgot to backup the routines)
>
> --
> Daan

Re: Missing bridge/device network configuration

[Wei ZHOU]

On CloudStack GUI, go to zone-> Physical Network -> click the name ->
click the 4th icon "Update traffic labels" on the top-right.


-Wei


On Thu, Jul 11, 2024 at 11:02 AM Piotr Pisz  wrote:
>
> Yes, that is the reason.
> When creating the zone, the network label remained unchanged (even though I 
> provided the appropriate names).
> Is it possible to update it without deleting the zone?
>
> Piotr
>
> -Original Message-
> From: Wei ZHOU 
> Sent: Thursday, July 11, 2024 10:40 AM
> To: users@cloudstack.apache.org
> Subject: Re: Missing bridge/device network configuration
>
> In addition to what Rohit said, it looks like there are some bridges already 
> created.
> you can update the traffic label of physical networks to guest0 ,
> public0 or ceph0.
> The default traffic labels are cloudbr0/cloudbr1 which might not be what you 
> plan to use.
>
> -Wei
>
> On Thu, Jul 11, 2024 at 10:22 AM Rohit Yadav  
> wrote:
> >
> > Piotr,
> >
> > I see you don't have a cloudbr0 or similar bridge which is default. If you 
> > want to use custom bridge, then you need to configure your zone's physical 
> > network's traffic type with such traffic labels before adding the KVM host.
> >
> > You can cross-check this against the KVM host (where it failed) 
> > agent.properties file, where in it has private/public/guest network device 
> > which isn't setup on your KVM host.
> >
> > References:
> > https://docs.cloudstack.apache.org/en/4.19.0.2/installguide/configurat
> > ion.html#id4
> > https://docs.cloudstack.apache.org/en/4.19.0.2/adminguide/troubleshoot
> > ing.html#trouble-shooting-steps
> > https://www.shapeblue.com/networking-kvm-for-cloudstack/
> >
> >
> >
> > Regards.
> >
> >
> >
> >
> > 
> > From: Piotr Pisz 
> > Sent: Thursday, July 11, 2024 12:29
> > To: users@cloudstack.apache.org 
> > Subject: Missing bridge/device network configuration
> >
> > Hi,
> >
> > I'm trying to add a host with ubuntu22 and a network generated by netplan, 
> > unfortunately I have the problem as below, have I missed something?
> >
> > SSH command output:Starting to configure your system:
> > Configure Host ...[OK]
> > Configure Apparmor ...[OK]
> > Configure Network ... [Failed]
> > Missing bridge/device network configuration, need to add your network
> > configuration into /etc/network/interfaces at first Try to restore your 
> > system:
> > Restore Host ...  [OK]
> > Restore Apparmor ...  [OK]
> > Restore Network ...   [OK]
> >
> > Agetn setup.log:
> >
> > DEBUG:root:execute:uname -r
> > DEBUG:root:execute:uname -m
> > DEBUG:root:execute:hostname -f
> > DEBUG:root:execute:kvm-ok
> > DEBUG:root:execute:awk '/MemTotal/ { printf "%.3f \n", $2/1024 }'
> > /proc/meminfo DEBUG:root:execute:ip a | grep "^\w" | grep -iv "^lo" |
> > wc -l DEBUG:root:execute:service apparmor status
> > DEBUG:root:execute:apparmor_status |grep libvirt DEBUG:root:Failed to
> > execute:
> > DEBUG:root:cloudbr0 is not a network device, is it down?
> > DEBUG:root:execute:sudo /usr/sbin/service network-manager status
> > DEBUG:root:Failed to execute:Unit network-manager.service could not be 
> > found.
> > DEBUG:root:execute:route -n|awk '/^0.0.0.0/ {print $2,$8}'
> > DEBUG:root:execute:ifconfig host0
> > DEBUG:root:Found default network device:host0
> > DEBUG:root:execute:ifconfig host0.101 DEBUG:root:execute:sudo
> > update-rc.d -f apparmor remove DEBUG:root:execute:sudo update-rc.d -f
> > apparmor defaults DEBUG:root:execute:sudo /usr/sbin/service apparmor
> > status DEBUG:root:execute:sudo /usr/sbin/service apparmor start
> > DEBUG:root:execute:sudo /usr/sbin/service apparmor status
> > DEBUG:root:execute:sudo /usr/sbin/service apparmor start
> > DEBUG:root:execute:sudo update-rc.d -f network-manager remove
> > DEBUG:root:execute:sudo update-rc.d -f network-manager defaults
> > DEBUG:root:Failed to execute:update-rc.d: error: unable to read
> > /etc/init.d/network-manager DEBUG:root:execute:sudo /usr/sbin/service
> > network-manager status DEBUG:root:Failed to execute:Unit 
> > network-manager.service could not be found.
> > DEBUG:root:execute:sudo /usr/sbin/service network-manager start
> > DEBUG:root:Failed to execute:Failed to start network-manager.service: Unit 
> > network-manager.service not found.
> > DEBUG:root:

Re: Missing bridge/device network configuration

[Wei ZHOU]

In addition to what Rohit said, it looks like there are some bridges
already created.
you can update the traffic label of physical networks to guest0 ,
public0 or ceph0.
The default traffic labels are cloudbr0/cloudbr1 which might not be
what you plan to use.

-Wei

On Thu, Jul 11, 2024 at 10:22 AM Rohit Yadav  wrote:
>
> Piotr,
>
> I see you don't have a cloudbr0 or similar bridge which is default. If you 
> want to use custom bridge, then you need to configure your zone's physical 
> network's traffic type with such traffic labels before adding the KVM host.
>
> You can cross-check this against the KVM host (where it failed) 
> agent.properties file, where in it has private/public/guest network device 
> which isn't setup on your KVM host.
>
> References:
> https://docs.cloudstack.apache.org/en/4.19.0.2/installguide/configuration.html#id4
> https://docs.cloudstack.apache.org/en/4.19.0.2/adminguide/troubleshooting.html#trouble-shooting-steps
> https://www.shapeblue.com/networking-kvm-for-cloudstack/
>
>
>
> Regards.
>
>
>
>
> 
> From: Piotr Pisz 
> Sent: Thursday, July 11, 2024 12:29
> To: users@cloudstack.apache.org 
> Subject: Missing bridge/device network configuration
>
> Hi,
>
> I'm trying to add a host with ubuntu22 and a network generated by netplan, 
> unfortunately I have the problem as below, have I missed something?
>
> SSH command output:Starting to configure your system:
> Configure Host ...[OK]
> Configure Apparmor ...[OK]
> Configure Network ... [Failed]
> Missing bridge/device network configuration, need to add your network 
> configuration into /etc/network/interfaces at first
> Try to restore your system:
> Restore Host ...  [OK]
> Restore Apparmor ...  [OK]
> Restore Network ...   [OK]
>
> Agetn setup.log:
>
> DEBUG:root:execute:uname -r
> DEBUG:root:execute:uname -m
> DEBUG:root:execute:hostname -f
> DEBUG:root:execute:kvm-ok
> DEBUG:root:execute:awk '/MemTotal/ { printf "%.3f \n", $2/1024 }' 
> /proc/meminfo
> DEBUG:root:execute:ip a | grep "^\w" | grep -iv "^lo" | wc -l
> DEBUG:root:execute:service apparmor status
> DEBUG:root:execute:apparmor_status |grep libvirt
> DEBUG:root:Failed to execute:
> DEBUG:root:cloudbr0 is not a network device, is it down?
> DEBUG:root:execute:sudo /usr/sbin/service network-manager status
> DEBUG:root:Failed to execute:Unit network-manager.service could not be found.
> DEBUG:root:execute:route -n|awk '/^0.0.0.0/ {print $2,$8}'
> DEBUG:root:execute:ifconfig host0
> DEBUG:root:Found default network device:host0
> DEBUG:root:execute:ifconfig host0.101
> DEBUG:root:execute:sudo update-rc.d -f apparmor remove
> DEBUG:root:execute:sudo update-rc.d -f apparmor defaults
> DEBUG:root:execute:sudo /usr/sbin/service apparmor status
> DEBUG:root:execute:sudo /usr/sbin/service apparmor start
> DEBUG:root:execute:sudo /usr/sbin/service apparmor status
> DEBUG:root:execute:sudo /usr/sbin/service apparmor start
> DEBUG:root:execute:sudo update-rc.d -f network-manager remove
> DEBUG:root:execute:sudo update-rc.d -f network-manager defaults
> DEBUG:root:Failed to execute:update-rc.d: error: unable to read 
> /etc/init.d/network-manager
> DEBUG:root:execute:sudo /usr/sbin/service network-manager status
> DEBUG:root:Failed to execute:Unit network-manager.service could not be found.
> DEBUG:root:execute:sudo /usr/sbin/service network-manager start
> DEBUG:root:Failed to execute:Failed to start network-manager.service: Unit 
> network-manager.service not found.
> DEBUG:root:execute:sudo /usr/sbin/service network-manager status
> DEBUG:root:Failed to execute:Unit network-manager.service could not be found.
> DEBUG:root:execute:sudo /usr/sbin/service network-manager start
> DEBUG:root:Failed to execute:Failed to start network-manager.service: Unit 
> network-manager.service not found.
> DEBUG:root:execute:/etc/init.d/networking stop
> DEBUG:root:Failed to execute:/bin/sh: 1: /etc/init.d/networking: not found
> DEBUG:root:execute:/etc/init.d/networking start
> DEBUG:root:Failed to execute:/bin/sh: 1: /etc/init.d/networking: not found
>
> Bridges and netplan config:
>
> root@sdc ~# brctl show
> bridge name bridge id   STP enabled interfaces
> ceph0   8000.963d69ccc23e   no  ceph0.102
> docker0 8000.02428faeaa58   no
> guest0  8000.dab6e62ba668   no  guest0.103
> host0   8000.32335383ebbb   no  host0.101
> public0 8000.aa725a4be728   no  public0.227
> virbr0  8000.525400a74ecc   yes
>
> network:
>   version: 2
>   renderer: networkd
>   bonds:
> bond0:
>   interfaces:
>   - eno49
>   - eno50
>   parameters:
> lacp-rate: fast
> mode: 802.3ad
> transmit-hash-policy: layer3+4
>   mtu: 9000
>   ethernets:
> eno1: {}
> eno2: {}
> eno3: {}
> eno4: {}
> eno49:
>   mtu: 9000
> eno50:
>

Re: Unable to create new VMs or Console Proxy

[Wei ZHOU]

77b) VM instance {"id":712,"instanceName":"s-712-VM","type":"
> SecondaryStorageVm","uuid":"6254087a-bae5-4bfa-9e50-0379317b5599"} state
> transited from [Starting] to [Starting] with event [OperationRetry]. VM's
> original host: null, new host: Host {"id":7,"name":"csc-n3","type"
> :"Routing","uuid":"d007845a-be22-401c-9d7a-c14ff4223c15"}, host before
> state transition: Host {"id":5,"name":"csc-n1","type"
> :"Routing","uuid":"52950eed-9931-410e-a482-7df361b14a50"}
>
> From: Marty Godsey 
> Date: Tuesday, July 9, 2024 at 3:10 PM
> To: users@cloudstack.apache.org 
> Subject: Re: Unable to create new VMs or Console Proxy
> WARNING: This email originated from outside of the organization. Do not
> click links or open attachments unless you recognize the sender and know
> the content is safe.
>
>
> The storage is not having issues. All the currently running VMs are
> running, I can create new VMs via XOA on that cluster using the primary SR.
>
> So, if the template is missing, and since I do not have a secondary server
> to download a new template, I acted like this was a new install and mounted
> the secondary storage on the Cloudstack server and ran the script for the
> template. This connected and ran without issue. I changed the system VM
> setting back to the default, since I thought this would this template and
> still no go.
>
> Whats the best way to go about replacing them template or determine if
> that is the real reason?
>
> From: Marty Godsey 
> Date: Tuesday, July 9, 2024 at 9:55 AM
> To: users@cloudstack.apache.org 
> Subject: Re: Unable to create new VMs or Console Proxy
> WARNING: This email originated from outside of the organization. Do not
> click links or open attachments unless you recognize the sender and know
> the content is safe.
>
>
> So the template shows as downloaded and ready in the console. What would
> be the best way to redownload this to the same ID if it is missing?
>
> From: Slavka Peleva 
> Date: Tuesday, July 9, 2024 at 4:47 AM
> To: users@cloudstack.apache.org 
> Subject: Re: Unable to create new VMs or Console Proxy
> WARNING: This email originated from outside of the organization. Do not
> click links or open attachments unless you recognize the sender and know
> the content is safe.
>
>
> Hi Marty,
>
> My guess here is that the template `13f86c22-a422-459b-90d2-450a145724b3`
> from which you are creating a VM is missing on your primary storage, but
> CloudStack has the information that it is there. To confirm this you can
> check:
> - if `13f86c22-a422-459b-90d2-450a145724b3` exist on your primary storage
> - from the CloudStack DB check if the template was downloaded on your
> primary storage - `select * from template_spool_ref where
> local_path="13f86c22-a422-459b-90d2-450a145724b3";`
> Best regards,
> Slavka
>
> On Tue, Jul 9, 2024 at 10:39 AM Wei ZHOU  wrote:
>
> > Hi Marty,
> >
> > It looks like the issue is not caused by server capacity, but storage.
> >
> > 2024-07-09 06:57:20,304 DEBUG [o.a.c.s.a.AbstractStoragePoolAllocator]
> > (Work-Job-Executor-4:ctx-61e43dea job-7483/job-7492 ctx-440bf369)
> > (logid:c56ddd5b) ClusterScopeStoragePoolAllocator is returning [0]
> > suitable storage pools [[]].
> > 2024-07-09 06:57:20,306 DEBUG [o.a.c.s.a.ZoneWideStoragePoolAllocator]
> > (Work-Job-Executor-4:ctx-61e43dea job-7483/job-7492 ctx-440bf369)
> > (logid:c56ddd5b) Could not find any zone wide storage pool that
> > matched with any of the following tags [[]].
> > 2024-07-09 06:57:20,308 DEBUG [o.a.c.s.a.AbstractStoragePoolAllocator]
> > (Work-Job-Executor-4:ctx-61e43dea job-7483/job-7492 ctx-440bf369)
> > (logid:c56ddd5b) ZoneWideStoragePoolAllocator is returning [0]
> > suitable storage pools [[]].
> > 2024-07-09 06:57:20,308 DEBUG [c.c.d.DeploymentPlanningManagerImpl]
> > (Work-Job-Executor-4:ctx-61e43dea job-7483/job-7492 ctx-440bf369)
> > (logid:c56ddd5b) No suitable pools found for volume:
> > Vol[1000|name=ROOT-598|vm=598|ROOT] under cluster: 3
> > 2024-07-09 06:57:20,308 DEBUG [c.c.d.DeploymentPlanningManagerImpl]
> > (Work-Job-Executor-4:ctx-61e43dea job-7483/job-7492 ctx-440bf369)
> > (logid:c56ddd5b) No suitable pools found
> > 2024-07-09 06:57:20,308 DEBUG [c.c.d.DeploymentPlanningManagerImpl]
> > (Work-Job-Executor-4:ctx-61e43dea job-7483/job-7492 ctx-440bf369)
> > (logid:c56ddd5b) No suitable storagePools found under this Cluster: 3
> >
> >
> >
> > On Tue, Ju

Re: Unable to create new VMs or Console Proxy

[Wei ZHOU]

Hi Marty,

It looks like the issue is not caused by server capacity, but storage.

2024-07-09 06:57:20,304 DEBUG [o.a.c.s.a.AbstractStoragePoolAllocator]
(Work-Job-Executor-4:ctx-61e43dea job-7483/job-7492 ctx-440bf369)
(logid:c56ddd5b) ClusterScopeStoragePoolAllocator is returning [0]
suitable storage pools [[]].
2024-07-09 06:57:20,306 DEBUG [o.a.c.s.a.ZoneWideStoragePoolAllocator]
(Work-Job-Executor-4:ctx-61e43dea job-7483/job-7492 ctx-440bf369)
(logid:c56ddd5b) Could not find any zone wide storage pool that
matched with any of the following tags [[]].
2024-07-09 06:57:20,308 DEBUG [o.a.c.s.a.AbstractStoragePoolAllocator]
(Work-Job-Executor-4:ctx-61e43dea job-7483/job-7492 ctx-440bf369)
(logid:c56ddd5b) ZoneWideStoragePoolAllocator is returning [0]
suitable storage pools [[]].
2024-07-09 06:57:20,308 DEBUG [c.c.d.DeploymentPlanningManagerImpl]
(Work-Job-Executor-4:ctx-61e43dea job-7483/job-7492 ctx-440bf369)
(logid:c56ddd5b) No suitable pools found for volume:
Vol[1000|name=ROOT-598|vm=598|ROOT] under cluster: 3
2024-07-09 06:57:20,308 DEBUG [c.c.d.DeploymentPlanningManagerImpl]
(Work-Job-Executor-4:ctx-61e43dea job-7483/job-7492 ctx-440bf369)
(logid:c56ddd5b) No suitable pools found
2024-07-09 06:57:20,308 DEBUG [c.c.d.DeploymentPlanningManagerImpl]
(Work-Job-Executor-4:ctx-61e43dea job-7483/job-7492 ctx-440bf369)
(logid:c56ddd5b) No suitable storagePools found under this Cluster: 3



On Tue, Jul 9, 2024 at 9:27 AM Marty Godsey  wrote:
>
> I am also getting this which is strange: Whey does it say there is not enough 
> capacity.
>
> 2024-07-09 01:08:22,201 DEBUG [c.c.c.CapacityManagerImpl] 
> (Work-Job-Executor-81:ctx-db736df7 job-6013/job-6205 ctx-fa9daf4b) 
> (logid:7fa21822) VM instance 
> {"id":466,"instanceName":"v-466-VM","type":"ConsoleProxy","uuid":"94f2f2cc-15c9-41a7-a678-a9d1cd65d14a"}
>  state transited from [Starting] to [Starting] with event [OperationRetry]. 
> VM's original host: null, new host: Host 
> {"id":5,"name":"csc-n1","type":"Routing","uuid":"52950eed-9931-410e-a482-7df361b14a50"},
>  host before state transition: null
> 2024-07-09 01:08:22,214 DEBUG [c.c.c.CapacityManagerImpl] 
> (Work-Job-Executor-81:ctx-db736df7 job-6013/job-6205 ctx-fa9daf4b) 
> (logid:7fa21822) Hosts's actual total CPU: 193600 and CPU after applying 
> overprovisioning: 387200
> 2024-07-09 01:08:22,214 DEBUG [c.c.c.CapacityManagerImpl] 
> (Work-Job-Executor-81:ctx-db736df7 job-6013/job-6205 ctx-fa9daf4b) 
> (logid:7fa21822) We are allocating VM, increasing the used capacity of this 
> host:5
> 2024-07-09 01:08:22,214 DEBUG [c.c.c.CapacityManagerImpl] 
> (Work-Job-Executor-81:ctx-db736df7 job-6013/job-6205 ctx-fa9daf4b) 
> (logid:7fa21822) Current Used CPU: 41400 , Free CPU:345800 ,Requested CPU: 500
> 2024-07-09 01:08:22,214 DEBUG [c.c.c.CapacityManagerImpl] 
> (Work-Job-Executor-81:ctx-db736df7 job-6013/job-6205 ctx-fa9daf4b) 
> (logid:7fa21822) Current Used RAM: (49.00 GB) 52613349376 , Free RAM:(687.04 
> GB) 737701920768 ,Requested RAM: (1.00 GB) 1073741824
> 2024-07-09 01:08:22,214 DEBUG [c.c.c.CapacityManagerImpl] 
> (Work-Job-Executor-81:ctx-db736df7 job-6013/job-6205 ctx-fa9daf4b) 
> (logid:7fa21822) CPU STATS after allocation: for host: 5, old used: 41400, 
> old reserved: 0, actual total: 193600, total with overprovisioning: 387200; 
> new used:41900, reserved:0; requested cpu:500,alloc_from_last:false
> 2024-07-09 01:08:22,214 DEBUG [c.c.c.CapacityManagerImpl] 
> (Work-Job-Executor-81:ctx-db736df7 job-6013/job-6205 ctx-fa9daf4b) 
> (logid:7fa21822) RAM STATS after allocation: for host: 5, old used: (49.00 
> GB) 52613349376, old reserved: (0 bytes) 0, total: (736.04 GB) 790315270144; 
> new used: (50.00 GB) 53687091200, reserved: (0 bytes) 0; requested mem: (1.00 
> GB) 1073741824,alloc_from_last:false
> 2024-07-09 01:08:22,217 DEBUG [c.c.c.CapacityManagerImpl] 
> (Work-Job-Executor-81:ctx-db736df7 job-6013/job-6205 ctx-fa9daf4b) 
> (logid:7fa21822) Host: 5 has cpu capability (cpu:88, speed:2200) to support 
> requested CPU: 1 and requested speed: 500
> 2024-07-09 01:08:22,217 DEBUG [c.c.c.CapacityManagerImpl] 
> (Work-Job-Executor-81:ctx-db736df7 job-6013/job-6205 ctx-fa9daf4b) 
> (logid:7fa21822) Checking if host: 5 has enough capacity for requested CPU: 
> 500 and requested RAM: (1.00 GB) 1073741824 , cpuOverprovisioningFactor: 2.0
> 2024-07-09 01:08:22,218 DEBUG [c.c.c.CapacityManagerImpl] 
> (Work-Job-Executor-81:ctx-db736df7 job-6013/job-6205 ctx-fa9daf4b) 
> (logid:7fa21822) Hosts's actual total CPU: 193600 and CPU after applying 
> overprovisioning: 387200
> 2024-07-09 01:08:22,218 DEBUG [c.c.c.CapacityManagerImpl] 
> (Work-Job-Executor-81:ctx-db736df7 job-6013/job-6205 ctx-fa9daf4b) 
> (logid:7fa21822) We need to allocate to the last host again, so checking if 
> there is enough reserved capacity
> 2024-07-09 01:08:22,219 DEBUG [c.c.c.CapacityManagerImpl] 
> (Work-Job-Executor-81:ctx-db736df7 job-6013/job-6205 ctx-fa9daf4b) 
> (logid:7fa21822) Reserved CPU: 0 , Requested CPU: 500
> 2024

Re: List of IP Address are not showing

[Wei ZHOU]

Hi,

if you use Shared network, the issue could be same as
https://github.com/apache/cloudstack/issues/8622 which has been fixed in
upcoming 4.19.1 by https://github.com/apache/cloudstack/pull/8624

-Wei

On Mon, Jul 8, 2024 at 3:37 PM Nixon Varghese K S 
wrote:

> Hello,
>
> We are not receiving a list of IP addresses from the guest network when
> using CloudStack 4.19.0.1. Additionally, when we try to add a secondary IP
> to a NIC, it is not listed. Has anyone else noticed the same thing, and if
> so, is there a solution or workaround?
>
> [image: image.png]
> With Regards,
> Nixon Varghese
>

Re: CPU and Memory hot plug

[Wei ZHOU]

Hi,

As far as I know, yes & yes

please refer to
https://github.com/apache/cloudstack/pull/4878
https://github.com/apache/cloudstack/pull/4534



-Wei

On Mon, Jun 24, 2024 at 12:09 PM Ahmed Awlaqi  wrote:
>
> Hi,
>
> I was wondering if CloudStack supports CPU and Memory hot plug. I know that
> KVM supports that but I'm not sure about CloudStack. Also does CloudStack
> support live migration between KVM clusters?

Re: comments with weird caracters

[Wei ZHOU]

"%2d" is the url-encoded value of "-".
Never faced this issue before.
Might it be caused by copy-paste on terminal/browser?


On Wednesday, June 19, 2024, Suresh Kumar Anaparti <
sureshkumar.anapa...@gmail.com> wrote:

> Hi Francisco,
>
> I checked list hosts and storage pools with invalid uuid, and didn't notice
> such chars in the response. Are the resource id (uuid) passed to APIs
> without %2D?
>
> (testenv) > list hosts id=80f71346-f343-4d0d-a765-8316f928bd78
>
> Error: (HTTP 431, error code ) Unable to execute API command listhosts
> due to invalid value. Invalid parameter id
> value=80f71346-f343-4d0d-a765-8316f928bd78 due to incorrect long value
> format, or entity does not exist or due to incorrect parameter annotation
> for the field in api cmd class.
>
> (testenv) >
>
> (testenv) > list hosts id=80f71346-f343-4d0d-a765%2D8316f928bd73
>
> Error: (HTTP 431, error code ) Unable to execute API command listhosts
> due to invalid value. Invalid parameter id
> value=80f71346-f343-4d0d-a765%2D8316f928bd73 due to incorrect long value
> format, or entity does not exist or due to incorrect parameter annotation
> for the field in api cmd class.
>
> (testenv) >
>
> (testenv) > list storagepools id=335fee9d-d853-3a4c-a9a5-333dffd6b5c9
>
> Error: (HTTP 431, error code ) Unable to execute API command
> liststoragepools due to invalid value. Invalid parameter id
> value=335fee9d-d853-3a4c-a9a5-333dffd6b5c9 due to incorrect long value
> format, or entity does not exist or due to incorrect parameter annotation
> for the field in api cmd class.
>
>
> Regards,
> Suresh
>
> On Wed, Jun 19, 2024 at 7:03 PM Francisco Arencibia Quesada <
> arencibia.franci...@gmail.com> wrote:
>
> > Good morning guys,
> >
> > All comments in my cloudstack are looking like this:
> > nodo%2Dc
> >
> > with %2D everywhere and also I'm having this error:
> >
> > Unable to execute API command listhosts due to invalid value. Invalid
> > parameter id value=19709264%2D2d95%2D4b0b%2Da847%2Dbd3db7c4de61 due to
> > incorrect long value format, or entity does not exist or due to incorrect
> > parameter annotation for the field in api cmd class.
> > something is wrong with the encoding.
> >
> > Cloudstack 4.19 with kvm hypervisors.
> >
> > Kind regards
> > Thanks in advance guys.
> >
> >
> > --
> > *Francisco Arencibia Quesada.*
> > *DevOps Engineer*
> >
>

Re: [VOTE] Apache CloudStack Kubernetes Provider 1.1.0 RC1

[Wei ZHOU]

+1 (binding)

Verified via the following steps

1. create a CKS cluster with k8s 1.30.0 and weavenet 2.8.1

2. delete cloudstack-kubernetes-provider 1.0.0
kubectl delete -f
https://raw.githubusercontent.com/apache/cloudstack-kubernetes-provider/main/deployment.yaml

3.  install 1.1.0-rc1
kubectl apply -f
https://github.com/apache/cloudstack-kubernetes-provider/releases/download/v1.1.0-rc1/deployment.yaml

4. create nginx pod and service with type=LoadBalancer.
Public IP is acquired, LB rules are added

5. delete the nginx service.
Public IP is released


Thanks Vishesh, great job !


-Wei

On Wed, Jun 19, 2024 at 8:13 AM Vishesh Jindal
 wrote:
>
> Hi All,
>
> I made a mistake and didn't create the release on dist.apache.org. Please 
> discard my previous email.
>
> I've created a new CloudStack Kubernetes Provider 1.1.0 release (RC1), with 
> the following artifacts up for a vote:
>
> Git Branch and Commit SHA:
> https://github.com/apache/cloudstack-kubernetes-provider/tree/59c3e7b21c39eefb2306bb8504bcef901a9d
> Commit: 59c3e7b21c39eefb2306bb8504bcef901a9d
>
> Source release (checksums and signatures are available at the same location):
> https://dist.apache.org/repos/dist/dev/cloudstack/kubernetes-provider-1.1.0/
>
> PGP release keys (signed using 5ED1E1122DC5E8A4A45112C2484248210EE3D884):
> https://dist.apache.org/repos/dist/release/cloudstack/KEYS
>
> For users convenience:
> * docker hub - 
> https://hub.docker.com/r/apache/cloudstack-kubernetes-provider/tags
>
> * Kubernetes manifest for the rc release: 
> https://github.com/apache/cloudstack-kubernetes-provider/releases/download/v1.1.0-rc1/deployment.yaml
>
> Vote will be open for 120 hours.
>
> For sanity in tallying the vote, can PMC members please be sure to indicate 
> "(binding)" with their vote?
>
> [ ] +1  approve
> [ ] +0  no opinion
> [ ] -1  disapprove (and reason why)
>
> Regards
> Vishesh
>
> 
>
>
>
> From: Vishesh Jindal
> Sent: Tuesday, June 18, 2024 6:36 PM
> To: users@cloudstack.apache.org ; 
> d...@cloudstack.apache.org 
> Subject: [VOTE] Apache CloudStack Kubernetes Provider 1.1.0 RC1
>
> Hi All,
>
> I've created a 1.1.0 release (RC1) for Apache CloudStack Kubernetes Provider, 
> with the following artifacts up for
> a vote:
>
> Git Branch and Commit SH:
> https://github.com/apache/cloudstack-kubernetes-provider/tree/v1.1.0-rc1
>
> Commit: 774a144876d2c875c61becab00e0487692130302
>
> Deployment manifest:
> https://github.com/apache/cloudstack-kubernetes-provider/releases/download/v1.1.0-rc1/deployment.yaml
>
> Docker image:
> apache/cloudstack-kubernetes-provider:v1.1.0-rc1
>
> Docker image manifest digest:
> sha256:38dc0a4413657b9c88cdcb28ef330e49aee6fb972a4cbc4055a0608b9f8bf7b8
>
> You can check the changelog for the release 
> here:https://github.com/apache/cloudstack-kubernetes-provider/releases/tag/v1.1.0-rc1
>
> Vote will be open for 120 hours.
>
> For sanity in tallying the vote, can PMC members please be sure to indicate
> "(binding)" with their vote?
>
> [ ] +1  approve
> [ ] +0  no opinion
> [ ] -1  disapprove (and reason why)
>
> Regards
> Vishesh

Re: Strange issue with listGuestVlans

[Wei ZHOU]

The broadcast_uri is NULL in my testing environments. The API works well.
Also, according to the code, it should not be a problem if the
broadcast_uri is NULL.

Strange.

On Sat, Jun 15, 2024 at 1:37 PM Curious Pandora  wrote:
>
> All entries from  select id,vnet from op_dc_vnet_alloc are populated.
>
> For the second query we have the same results as before:
>
> +-+-+---+
> | id  | name| broadcast_uri |
> +-+-+---+
> | 200 | NULL| NULL  |
> | 201 | NULL| NULL  |
> | 202 | NULL| NULL  |
> | 203 | NULL| NULL  |
>
> select
> id,name,broadcast_uri,broadcast_domain_type,guru_name,state,gateway,cidr
> from networks where id < 204;
> +-+--+---+---+-+---+-++
> | id  | name | broadcast_uri | broadcast_domain_type | guru_name
> | state | gateway | cidr   |
> +-+--+---+---+-+---+-++
> | 200 | NULL | NULL  | Vxlan | PublicNetworkGuru
> | Setup | NULL| NULL   |
> | 201 | NULL | NULL  | Vxlan | PodBasedNetworkGuru
> | Setup | NULL| NULL   |
> | 202 | NULL | NULL  | LinkLocal | ControlNetworkGuru
>  | Setup | 169.254.0.1 | 169.254.0.0/16 |
> | 203 | NULL | NULL  | Native| StorageNetworkGuru
>  | Setup | NULL| NULL   |
> +-+--+---+---+-+---+-++
>
> By doing this:
> update networks set set broadcast_uri='vlan://untagged' where id<204;
> the problem goes away. If i remember correctly the broadcast_uri for
> PublicNetworkGuru, PodBasedNetworkGuru, ControlNetworkGuru and
> StorageNetworkGuru is null by default.

Re: Strange issue with listGuestVlans

[Wei ZHOU]

from the code
https://github.com/apache/cloudstack/blob/cb9b3134f7fff972b63d8565a4d021f8ea918903/engine/schema/src/main/java/com/cloud/network/dao/NetworkDaoImpl.java#L464

it looks like either broadcast_uri of a network or vnet of a record
op_dc_vnet_alloc is null or unsupported.

can you share the following ?

select id,vnet from op_dc_vnet_alloc;
select id,broadcast_uri from networks where data_center_id is not null
and broadcast_uri is not null;


-Wei

On Fri, Jun 14, 2024 at 1:39 PM Curious Pandora  wrote:
>
> @Wei ZHOU any thoughts ?
>
> On Thu, Jun 13, 2024 at 9:29 PM Curious Pandora  wrote:
>
> > There are indeed 4 networks with NULL broadcast_uri that are causing the
> > problem.  I think those are systemic for cloudstack.
> > +-+-+---+
> > | id  | name| broadcast_uri |
> > +-+-+---+
> > | 200 | NULL| NULL  |
> > | 201 | NULL| NULL  |
> > | 202 | NULL| NULL  |
> > | 203 | NULL| NULL  |
> >
> > select
> > id,name,broadcast_uri,broadcast_domain_type,guru_name,state,gateway,cidr
> > from networks where id < 204;
> >
> > +-+--+---+---+-+---+-++
> > | id  | name | broadcast_uri | broadcast_domain_type | guru_name
> > | state | gateway | cidr   |
> >
> > +-+--+---+---+-+---+-++
> > | 200 | NULL | NULL  | Vxlan | PublicNetworkGuru
> > | Setup | NULL| NULL   |
> > | 201 | NULL | NULL  | Vxlan | PodBasedNetworkGuru
> > | Setup | NULL| NULL   |
> > | 202 | NULL | NULL  | LinkLocal | ControlNetworkGuru
> >  | Setup | 169.254.0.1 | 169.254.0.0/16 |
> > | 203 | NULL | NULL  | Native| StorageNetworkGuru
> >  | Setup | NULL| NULL   |
> >
> > +-+--+---+---+-+---+-++
> >
> > I can see some vnics associated with them:
> >
> > select instance_id,network_id,state,broadcast_uri,isolation_uri from nics
> > where network_id<204 and removed is null;
> > +-++--+-+-+
> > | instance_id | network_id | state| broadcast_uri   | isolation_uri   |
> > +-++--+-+-+
> > |1649 |202 | Reserved | NULL| NULL|
> > |1649 |200 | Reserved | vlan://untagged | vlan://untagged |
> > |1650 |202 | Reserved | NULL| NULL|
> > |1650 |200 | Reserved | vlan://untagged | vlan://untagged |
> > |1651 |202 | Reserved | NULL| NULL|
> > |1651 |200 | Reserved | vlan://untagged | vlan://untagged |
> > |1653 |202 | Reserved | NULL| NULL|
> > |1653 |200 | Reserved | vlan://untagged | vlan://untagged |
> > |1656 |202 | Reserved | NULL| NULL|
> > |1656 |200 | Reserved | vlan://untagged | vlan://untagged |
> > |1659 |202 | Reserved | NULL| NULL|
> > |1659 |200 | Reserved | vlan://untagged | vlan://untagged |
> > |1669 |200 | Reserved | vlan://untagged | vlan://untagged |
> > |1669 |202 | Reserved | NULL| NULL|
> > |1669 |201 | Reserved | NULL| NULL|
> > |1670 |200 | Reserved | vlan://untagged | vlan://untagged |
> > |1670 |202 | Reserved | NULL| NULL|
> > |1670 |201 | Reserved | NULL| NULL|
> > |1671 |202 | Reserved | NULL| NULL|
> > |1671 |200 | Reserved | vlan://untagged | vlan://untagged |
> > |1672 |202 | Reserved | NULL| NULL|
> > |1672 |200 | Reserved | vlan://untagged | vlan://untagged |
> > |1673 |202 | Reserved | NULL| NULL|
> > | 

Re: Strange issue with listGuestVlans

[Wei ZHOU]

16 |
> | 18485 | 54998 | 200 |  2 |
> 87d967c6-4972-47dc-b55c-2ff740aa9293 |  8 | 2020-01-07 14:15:14 |
>16 |
> | 18489 | 54997 | 200 |  2 |
> fb62bd1d-7314-4a7b-a3b8-a53036916e01 |  8 | 2020-01-15 20:17:10 |
>16 |
> | 19215 | 30999 | 200 |  2 |
> 9e4f1ae0-064d-4400-b1b5-d12b5a350ba6 | 89 | 2023-12-23 05:40:11 |
>  NULL |
> | 35639 | 55000 | 200 |  2 |
> e4fc5468-6739-4ffc-970f-1a6a77d6c9e7 |  8 | 2020-01-15 20:16:26 |
>16 |
> +---+---+-+----+--++-+-+
>
> select count(*) from  op_dc_vnet_alloc;
> +--+
> | count(*) |
> +--+
> |25001 |
> +--+
>
>
> On Thu, Jun 13, 2024 at 11:50 AM Wei ZHOU  wrote:
>
> > can you check "op_dc_vnet_alloc" table if there is a record with empty
> > "vnet" ?
> >
> > select * from op_dc_vnet_alloc where vnet IS NULL;
> >
> >
> > -Wei
> >
> > On Thu, Jun 13, 2024 at 10:02 AM Curious Pandora 
> > wrote:
> > >
> > > Hello,
> > >
> > > we get a 503 error when trying to list guest vlans (both from web and api
> > > call).
> > >
> > > The relevant error log in the management server is:
> > >
> > > ERROR [c.c.a.ApiServer] (qtp1278254413-1728:ctx-d3eec0e8 ctx-7b04643e)
> > > (logid:6a2d2a44) unhandled exception executing api command:
> > > [Ljava.lang.String;@1a84b3d5
> > > java.lang.NullPointerException
> > > at
> > >
> > com.cloud.network.dao.NetworkDaoImpl.listByZoneAndUriAndGuestType(NetworkDaoImpl.java:464)
> > > at jdk.internal.reflect.GeneratedMethodAccessor666.invoke(Unknown
> > > Source)
> > > at
> > >
> > java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
> > > at java.base/java.lang.reflect.Method.invoke(Method.java:566)
> > > at
> > >
> > org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:344)
> > > at
> > >
> > org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:198)
> > > at
> > >
> > org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:163)
> > > at
> > >
> > com.cloud.utils.db.TransactionContextInterceptor.invoke(TransactionContextInterceptor.java:34)
> > > at
> > >
> > org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:175)
> > > at
> > >
> > org.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:97)
> > > at
> > >
> > org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:186)
> > > at
> > >
> > org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:215)
> > > at com.sun.proxy.$Proxy52.listByZoneAndUriAndGuestType(Unknown
> > > Source)
> > > at
> > >
> > com.cloud.api.ApiResponseHelper.createGuestVlanResponse(ApiResponseHelper.java:4943)
> > > at
> > >
> > org.apache.cloudstack.api.command.admin.network.ListGuestVlansCmd.execute(ListGuestVlansCmd.java:98)
> > > at com.cloud.api.ApiDispatcher.dispatch(ApiDispatcher.java:172)
> > > at com.cloud.api.ApiServer.queueCommand(ApiServer.java:803)
> > > at com.cloud.api.ApiServer.handleRequest(ApiServer.java:624)
> > > at
> > > com.cloud.api.ApiServlet.processRequestInContext(ApiServlet.java:342)
> > > at com.cloud.api.ApiServlet$1.run(ApiServlet.java:149)
> > > at
> > >
> > org.apache.cloudstack.managed.context.impl.DefaultManagedContext$1.call(DefaultManagedContext.java:55)
> > > at
> > >
> > org.apache.cloudstack.managed.context.impl.DefaultManagedContext.callWithContext(DefaultManagedContext.java:102)
> > > at
> > >
> > org.apache.cloudstack.managed.context.impl.DefaultManagedContext.runWithContext(DefaultManagedContext.java:52)
> > > at com.cloud.api.ApiServlet.processRequest(ApiServlet.java:146)
> &g

Re: Strange issue with listGuestVlans

[Wei ZHOU]

can you check "op_dc_vnet_alloc" table if there is a record with empty "vnet" ?

select * from op_dc_vnet_alloc where vnet IS NULL;


-Wei

On Thu, Jun 13, 2024 at 10:02 AM Curious Pandora  wrote:
>
> Hello,
>
> we get a 503 error when trying to list guest vlans (both from web and api
> call).
>
> The relevant error log in the management server is:
>
> ERROR [c.c.a.ApiServer] (qtp1278254413-1728:ctx-d3eec0e8 ctx-7b04643e)
> (logid:6a2d2a44) unhandled exception executing api command:
> [Ljava.lang.String;@1a84b3d5
> java.lang.NullPointerException
> at
> com.cloud.network.dao.NetworkDaoImpl.listByZoneAndUriAndGuestType(NetworkDaoImpl.java:464)
> at jdk.internal.reflect.GeneratedMethodAccessor666.invoke(Unknown
> Source)
> at
> java.base/jdk.internal.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
> at java.base/java.lang.reflect.Method.invoke(Method.java:566)
> at
> org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:344)
> at
> org.springframework.aop.framework.ReflectiveMethodInvocation.invokeJoinpoint(ReflectiveMethodInvocation.java:198)
> at
> org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:163)
> at
> com.cloud.utils.db.TransactionContextInterceptor.invoke(TransactionContextInterceptor.java:34)
> at
> org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:175)
> at
> org.springframework.aop.interceptor.ExposeInvocationInterceptor.invoke(ExposeInvocationInterceptor.java:97)
> at
> org.springframework.aop.framework.ReflectiveMethodInvocation.proceed(ReflectiveMethodInvocation.java:186)
> at
> org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:215)
> at com.sun.proxy.$Proxy52.listByZoneAndUriAndGuestType(Unknown
> Source)
> at
> com.cloud.api.ApiResponseHelper.createGuestVlanResponse(ApiResponseHelper.java:4943)
> at
> org.apache.cloudstack.api.command.admin.network.ListGuestVlansCmd.execute(ListGuestVlansCmd.java:98)
> at com.cloud.api.ApiDispatcher.dispatch(ApiDispatcher.java:172)
> at com.cloud.api.ApiServer.queueCommand(ApiServer.java:803)
> at com.cloud.api.ApiServer.handleRequest(ApiServer.java:624)
> at
> com.cloud.api.ApiServlet.processRequestInContext(ApiServlet.java:342)
> at com.cloud.api.ApiServlet$1.run(ApiServlet.java:149)
> at
> org.apache.cloudstack.managed.context.impl.DefaultManagedContext$1.call(DefaultManagedContext.java:55)
> at
> org.apache.cloudstack.managed.context.impl.DefaultManagedContext.callWithContext(DefaultManagedContext.java:102)
> at
> org.apache.cloudstack.managed.context.impl.DefaultManagedContext.runWithContext(DefaultManagedContext.java:52)
> at com.cloud.api.ApiServlet.processRequest(ApiServlet.java:146)
> at com.cloud.api.ApiServlet.doGet(ApiServlet.java:100)
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:645)
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:750)
> at
> org.eclipse.jetty.servlet.ServletHolder$NotAsync.service(ServletHolder.java:1450)
> at
> org.eclipse.jetty.servlet.ServletHolder.handle(ServletHolder.java:799)
> at
> org.eclipse.jetty.servlet.ServletHandler.doHandle(ServletHandler.java:554)
> at
> org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:143)
> at
> org.eclipse.jetty.security.SecurityHandler.handle(SecurityHandler.java:600)
> at
> org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127)
> at
> org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:235)
> at
> org.eclipse.jetty.server.session.SessionHandler.doHandle(SessionHandler.java:1624)
> at
> org.eclipse.jetty.server.handler.ScopedHandler.nextHandle(ScopedHandler.java:233)
> at
> org.eclipse.jetty.server.handler.ContextHandler.doHandle(ContextHandler.java:1440)
> at
> org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:188)
> at
> org.eclipse.jetty.servlet.ServletHandler.doScope(ServletHandler.java:505)
> at
> org.eclipse.jetty.server.session.SessionHandler.doScope(SessionHandler.java:1594)
> at
> org.eclipse.jetty.server.handler.ScopedHandler.nextScope(ScopedHandler.java:186)
> at
> org.eclipse.jetty.server.handler.ContextHandler.doScope(ContextHandler.java:1355)
> at
> org.eclipse.jetty.server.handler.ScopedHandler.handle(ScopedHandler.java:141)
> at
> org.eclipse.jetty.server.handler.gzip.GzipHandler.handle(GzipHandler.java:772)
> at
> org.eclipse.jetty.server.handler.HandlerCollection.handle(HandlerCollection.java:146)
> at
> org.eclipse.jetty.server.handler.HandlerWrapper.handle(HandlerWrapper.java:127)
>

Re: VM serialnumber in KVM

[Wei ZHOU]

I tried the following

- stop the vm
- enable extra config in global setting "enable.additional.vm.configuration"
- change account setting "allow.additional.vm.configuration.list.kvm"
to "sysinfo,system,entry", of course you can change global or domain
settings.
- update extra config of vm
cmk update virtualmachine id=2446f9d9-83ad-4b4c-bf3e-df041a390fcf
extraconfig="   MISERIAL  "
- start the vm

vm has the following setting, which looks ok


  

  MISERIAL

  
  

  Apache Software Foundation
  CloudStack KVM Hypervisor
  2446f9d9-83ad-4b4c-bf3e-df041a390fcf

  



-Wei

On Wed, Jun 12, 2024 at 4:47 PM Francisco Arencibia Quesada
 wrote:
>
> I tried with this but it stuck libvirt
> https://github.com/atomspring/KVM-BIOS-SerialNo
> :(
>
> On Wed, Jun 12, 2024 at 9:59 AM Francisco Arencibia Quesada <
> arencibia.franci...@gmail.com> wrote:
>
> > yes that would be great.
> >
> > On Wed, Jun 12, 2024 at 9:58 AM Wido den Hollander  wrote:
> >
> >> (Back to the list)
> >>
> >> Op 12/06/2024 om 09:56 schreef Francisco Arencibia Quesada:
> >> > I need to set the serial number, manually, or automatically but it
> >> needs
> >> > to be sticky, licensing purposes.
> >>
> >> If CloudStack would always set the same serial for the same VM, would
> >> that be OK?
> >>
> >> Wido
> >>
> >> >
> >> > :)
> >> >
> >> > On Wed, Jun 12, 2024 at 9:50 AM Wido den Hollander  >> > > wrote:
> >> >
> >> >
> >> >
> >> > Op 11/06/2024 om 16:29 schreef Francisco Arencibia Quesada:
> >> >  > Good morning guys,
> >> >  >
> >> >  > When I run on Windows wmic bios get serialnumber, I receive a
> >> > blank serial
> >> >  > number, I have tried
> >> >  > running virsh edit VM, and setting :
> >> >  >
> >> >  > 
> >> >  >
> >> >  >  Apache Software
> >> Foundation
> >> >  >  CloudStack KVM Hypervisor
> >> >  >  MISERIAL
> >> >  >   >> name='uuid'>166f6f56-a8a3-4ab9-82f3-467bf90b0126
> >> >  >
> >> >  > 
> >> >  >
> >> >  > but still the same.
> >> >  > Any guidance? For us it is important to have the serial number
> >> > field for
> >> >  > licensing purposes.
> >> >  >
> >> >
> >> > Do you want to be able to set the serialnumber manually or could the
> >> > UUID be sufficient here?
> >> >
> >> > Wido
> >> >
> >> >  > Thanks in advance.
> >> >  > Regards
> >> >  >
> >> >
> >> >
> >> >
> >> > --
> >> > *Francisco Arencibia Quesada.*
> >> > *DevOps Engineer*
> >>
> >
> >
> > --
> > *Francisco Arencibia Quesada.*
> > *DevOps Engineer*
> >
>
>
> --
> *Francisco Arencibia Quesada.*
> *DevOps Engineer*

Re: VM serialnumber in KVM

[Wei ZHOU]

I think you can add extraconfig to the vm

   
 
  MISERIAL

  


-Wei



On Tue, Jun 11, 2024 at 4:29 PM Francisco Arencibia Quesada
 wrote:
>
> Good morning guys,
>
> When I run on Windows wmic bios get serialnumber, I receive a blank serial
> number, I have tried
> running virsh edit VM, and setting :
>
> 
>   
> Apache Software Foundation
> CloudStack KVM Hypervisor
> MISERIAL
> 166f6f56-a8a3-4ab9-82f3-467bf90b0126
>   
> 
>
> but still the same.
> Any guidance? For us it is important to have the serial number field for
> licensing purposes.
>
> Thanks in advance.
> Regards
>
> --
> *Francisco Arencibia Quesada.*
> *DevOps Engineer*

Re: [PROPOSE] RM for cloudstack-kubernetes-provider v1.1.0

[Wei ZHOU]

Thanks Vishesh for the volunteering.
There was no cloudstack-kubernetes-provider release in the past 3
years, glad to see there are some new commits in the last weeks. Great
job !

no specific PRs/issues are needed for me.
looking forward to the new release


-Wei


On Tue, Jun 11, 2024 at 11:26 AM Vishesh Jindal
 wrote:
>
> Hi all,
>
> Cloudstack kuberentes provider is due for a release since the last release 
> was in 2021. I would like to propose myself as a Release Manager for the 
> v1.1.0 release.
>
> You can check the PRs merged since the last release here: 
> https://github.com/apache/cloudstack-kubernetes-provider/compare/v1.0.0...main
>
> Let me know if there is any specific issue/PR which needs to be addressed. If 
> there are no additional changes, I will cut an RC next week.
>
> Thanks!
> Vishesh
>
>
>

Re: [Proposal] Storage Filesystem as a First Class Feature

[Wei ZHOU]

> @Wei Zhou If the network into which the StorageVM runs IPv6 (as per your 
> implementation of IPv6) it should automatically get an IPv6 IP, correct?

yes,it should get Ipv6 addr advertised by cloudstack VR. @Alexblue.com
we need to make sure IPv6 is enabled in the storagefs vm (Ipv6 is
disabled by default in systemvm template as far as I know), and proper
firewall rules are applied.

> @Wido den Hollander @Wei ZhouHow much effort do you guys thing it would it 
> take to add support to VirtioFS?  I'm not super aware of it, what would the 
> benefits be? (I've quickly looked at Wido's links, but I rather get info from 
> you guys directly).
I see the benefits . However I do not know a strong use case of it.
maybe @wido can advise ?

On Thu, Jun 6, 2024 at 11:01 AM Alex Mattioli
 wrote:
>
>
> @Wei Zhou If the network into which the StorageVM runs IPv6 (as per your 
> implementation of IPv6) it should automatically get an IPv6 IP, correct?
>
> @Wido den Hollander @Wei ZhouHow much effort do you guys thing it would it 
> take to add support to VirtioFS?  I'm not super aware of it, what would the 
> benefits be? (I've quickly looked at Wido's links, but I rather get info from 
> you guys directly).
>
> Cheers
> Alex
>
>
>
>
> -Original Message-
> From: Wei ZHOU 
> Sent: Thursday, June 6, 2024 10:50 AM
> To: d...@cloudstack.apache.org
> Cc: Abhisar Sinha 
> Subject: Re: [Proposal] Storage Filesystem as a First Class Feature
>
> Hi Wido,
>
> Thanks for your feedback.
>
> It is a great idea to support virtio-fs. We could add VIRTIOFS as a valid 
> value of enum ExportProtocol, and implement it in a separate plugin in the 
> future.
> Have you tested virtio-fs before ? Could you share more info if possible?
> - is it supported by libvirt-java ?
> - does it support hot plug or hot unplug ?
>
> I agree with you that we should consider IPv6 (ip and firewall rules) in 
> storagefs vm.
> cc abhisar.si...@shapeblue.com
>
>
> Kind regards,
> Wei
>
> On Thu, Jun 6, 2024 at 6:43 AM Wido den Hollander  
> wrote:
> >
> >
> >
> > Op 04/06/2024 om 06:04 schreef Abhisar Sinha:
> > > Hi,
> > >
> > > I would like to propose supporting storage filesystem as a first-class 
> > > feature in Cloudstack.
> > > The File Share can be associated with one or more guest networks or vpc 
> > > tiers and can be used by any VM on the network in a shared manner. It is 
> > > designed to be resizable and highly available. This feature can later be 
> > > used as integration endpoints with the CSI driver, go-sdk, Terraform, 
> > > Ansible and others.
> > >
> > > The draft functional spec is here :
> > > https://cwiki.apache.org/confluence/display/CLOUDSTACK/Storage+Files
> > > ystem+as+a+First+Class+Feature
> > >
> > > Looking forward to your comments and suggestions.
> > >
> >
> > I think this is great! Especially the Storage VM. Few things to keep
> > in
> > mind:
> >
> > - Have we thought about passthrough of FileSystems coming from the HV
> > and being passed through to the VM [0]
> > - The StorageFsVm, can we make sure it supports IPv6 from the start,
> > best would be if it. Make sure all the code at least supports this for
> > ACLs and such. The VM itself should obtain an IPv6 address when
> > possible and open the proper ports in it's firewall
> >
> > Wido
> >
> > [0]:
> > - https://virtio-fs.gitlab.io/
> > - https://chrisirwin.ca/posts/sharing-host-files-with-kvm/
> >
> >
> > > Thanks,
> > > Abhisar
> > >
> > >
> > >
> > >

Re: System VM static IPs

[Wei ZHOU]

As Nischal said, currently ACS does not reserve IPs for system vms. The
workaround is, create or dedicate a public Ip range (with at least 2 IPs)
to system vms.

I think it is a valid feature request to reserve IPs (not ip range) for
system vms. But we also need to consider what if some users want to change
the system vm IPs (to a random public ip or specific public ip)

-Wei

On Tuesday, June 4, 2024, Marty Godsey  wrote:

> Hello Nischal,
>
> That’s why I ask about reservations; it doesn’t. For example, I destroyed
> and recreated a console proxy yesterday, and when it was recreated, it
> grabbed another IP. I am 100% confident that the IP that it just had about
> 30 seconds prior was not taken by a customer.
>
> This is a 4.19.0.1 install. If this is not normal behavior, where can I
> look to troubleshoot this?
>
> From: Nischal P 
> Date: Tuesday, June 4, 2024 at 9:51 AM
> To: users@cloudstack.apache.org 
> Subject: Re: System VM static IPs
> WARNING: This email originated from outside of the organization. Do not
> click links or open attachments unless you recognize the sender and know
> the content is safe.
>
>
> Hi Wei,
>
> We won't be able to reserve for specific systems, but we do reserve 2 IPs
> which would be used for SSVM and CPVM, the only thing we follow is that we
> Destroy 1 systemVM at a time so that it would take the same IP each time.
>
>
> Thanks & Regards
> Nischal
>
> On Tue, 4 Jun, 2024, 3:49 pm Wei ZHOU,  wrote:
>
> > This should works.
> > I am wondering if we can reserve specific IP for system vms, like ACS
> does
> > for virtual routers.
> >
> > -Wei
> >
> >
> > On Tuesday, June 4, 2024, Nischal P  wrote:
> >
> > > HI Marty
> > >
> > > You could technically reserve the IPs for System VMs to grab the IPs
> > using
> > > the DB, by updating the table  user_ip_address
> > >
> > > update user_ip_address set forsystemvms=1 where
> > > public_ip_address='172.16.16.171';
> > >
> > > Please remember if you reserve more  IPs for SystemVms they may pick up
> > any
> > > in that reserved list.
> > >
> > >
> > > Thanks & Regards
> > > Nischal
> > >
> > > On Tue, Jun 4, 2024 at 12:18 PM Marty Godsey  wrote:
> > >
> > > > When the system vms boot they are given an IP like
> > > 22-76-87-56.domain.com.
> > > > Is this able to be changed.
> > > > 
> > > > From: Wei ZHOU 
> > > > Sent: Tuesday, June 4, 2024 1:29:40 AM
> > > > To: users@cloudstack.apache.org 
> > > > Cc: Marty Godsey 
> > > > Subject: Re: System VM static IPs
> > > >
> > > >
> > > > WARNING: This email originated from outside of the organization. Do
> not
> > > > click links or open attachments unless you recognize the sender and
> > know
> > > > the content is safe.
> > > >
> > > >
> > > > When system vms are destroyed, ACS will recreate new system vms.
> Mostly
> > > > new vms will get the same IPs. However, if the IPs are allocated
> during
> > > the
> > > > period, new vms will get different IPs.
> > > >
> > > > In this case, If users do not use wildcard DNS, they have to update
> the
> > > > DNS records.
> > > >
> > > > -Wei
> > > >
> > > >
> > > > On Tuesday, June 4, 2024, Wido den Hollander  >
> > > > wrote:
> > > >
> > > >
> > > > Op 04/06/2024 om 06:29 schreef Marty Godsey:
> > > > Hello All,
> > > >
> > > > I want the system VMs always to grab the same IP.  Is this possible?
> > > >
> > > >
> > > > What is it that you want to achieve exactly? Why do you want/need
> this?
> > > >
> > > > Wido
> > > >
> > >
> >
>

Re: System VM static IPs

[Wei ZHOU]

This should works.
I am wondering if we can reserve specific IP for system vms, like ACS does
for virtual routers.

-Wei


On Tuesday, June 4, 2024, Nischal P  wrote:

> HI Marty
>
> You could technically reserve the IPs for System VMs to grab the IPs using
> the DB, by updating the table  user_ip_address
>
> update user_ip_address set forsystemvms=1 where
> public_ip_address='172.16.16.171';
>
> Please remember if you reserve more  IPs for SystemVms they may pick up any
> in that reserved list.
>
>
> Thanks & Regards
> Nischal
>
> On Tue, Jun 4, 2024 at 12:18 PM Marty Godsey  wrote:
>
> > When the system vms boot they are given an IP like
> 22-76-87-56.domain.com.
> > Is this able to be changed.
> > 
> > From: Wei ZHOU 
> > Sent: Tuesday, June 4, 2024 1:29:40 AM
> > To: users@cloudstack.apache.org 
> > Cc: Marty Godsey 
> > Subject: Re: System VM static IPs
> >
> >
> > WARNING: This email originated from outside of the organization. Do not
> > click links or open attachments unless you recognize the sender and know
> > the content is safe.
> >
> >
> > When system vms are destroyed, ACS will recreate new system vms. Mostly
> > new vms will get the same IPs. However, if the IPs are allocated during
> the
> > period, new vms will get different IPs.
> >
> > In this case, If users do not use wildcard DNS, they have to update the
> > DNS records.
> >
> > -Wei
> >
> >
> > On Tuesday, June 4, 2024, Wido den Hollander 
> > wrote:
> >
> >
> > Op 04/06/2024 om 06:29 schreef Marty Godsey:
> > Hello All,
> >
> > I want the system VMs always to grab the same IP.  Is this possible?
> >
> >
> > What is it that you want to achieve exactly? Why do you want/need this?
> >
> > Wido
> >
>

Re: System VM static IPs

[Wei ZHOU]

When system vms are destroyed, ACS will recreate new system vms. Mostly new
vms will get the same IPs. However, if the IPs are allocated during the
period, new vms will get different IPs.

In this case, If users do not use wildcard DNS, they have to update the DNS
records.

-Wei


On Tuesday, June 4, 2024, Wido den Hollander  wrote:

>
>
> Op 04/06/2024 om 06:29 schreef Marty Godsey:
>
>> Hello All,
>>
>> I want the system VMs always to grab the same IP.  Is this possible?
>>
>>
> What is it that you want to achieve exactly? Why do you want/need this?
>
> Wido
>

Re: ostypedid not longer available on list volumes and list snapshots

[Wei ZHOU]

Slavka has created a pr for it
https://github.com/apache/cloudstack/pull/9150



On Thursday, May 30, 2024, Ricardo Pertuz 
wrote:

> guys any advice?, we have an api integration that uses the ostypeid read
> from the volumes and snapshots but the field is not longer available :(
>
>
> Atte,
>
> Ricardo Pertuz
>
>
> On 29 May 2024 at 5:46 PM -0500, Ricardo Pertuz 
> ,
> wrote:
> > Hi Guys
> >
> > Since version 4.19 the field ostypeid is no longer available when
> listing volumes and snapshots, is there a way to add those field in the
> json result.
> >
> >
> > Atte,
> >
> > Ricardo Pertuz
> >
> >
>

Re: HA for management server

[Wei ZHOU]

good to know it. Thanks for sharing.
It is better to update the cloudstack document.

-Wei

On Thu, May 30, 2024 at 1:22 PM Alexandru Stan
 wrote:
>
> I did not change anything on that file until today when I modified that 
> driver and all was fine after - so following that documentation for multiple 
> management servers deployment results in fail if we leave it with the 
> defaults. So I don't have an issue anymore, the HA is handled by galera for 
> the DB and by a load balancer for the management server instance. It works 
> fine.
>
>
> -----Original Message-
> From: Wei ZHOU 
> Sent: Thursday, May 30, 2024 1:12 PM
> To: users@cloudstack.apache.org
> Subject: Re: HA for management server
>
> I thought you did not change the db.properties.
>
> if you use mariadb driver, you can use "db.cloud.uri".
> the failover mode is not supported in db.properties, which could be the root 
> cause of your issue 
> https://mariadb.com/kb/en/failover-and-high-availability-with-mariadb-connector-j/
>
>
> -Wei
>
>
> On Thu, May 30, 2024 at 11:48 AM Alexandru Stan 
>  wrote:
> >
> > Hello,
> >
> > I actually managed to get it to work just by modifying the db.cloud.driver 
> > in db.properties on the management servers to jdbc:mariadb instead of the 
> > default jdbc:mysql. Maybe I didn't search properly but I really think this 
> > is not mentioned in any documentation of multi-management servers 
> > deployment. Anyway, all good now.
> >
> > Thank you!
> >
> >
> >
> > -Original Message-
> > From: Wei ZHOU 
> > Sent: Wednesday, May 29, 2024 11:29 PM
> > To: users@cloudstack.apache.org
> > Subject: Re: HA for management server
> >
> > Looks good
> > Can you try db.cloud.uri in db.properties?
> > See https://github.com/apache/cloudstack/pull/7895
> >
> > -Wei
> >
> >
> > On Wednesday, May 29, 2024, Alexandru Stan 
> >  wrote:
> >
> > > Yes. On the first management server with --deploy-as=root:password
> > > and on the second one without. All successful. The I ran
> > > cloudstack-setup-management and that was it. But in the browser I
> > > get the
> > > 503 error...
> > >
> > >
> > > -Original Message-
> > > From: Wei ZHOU 
> > > Sent: Wednesday, May 29, 2024 11:20 PM
> > > To: users@cloudstack.apache.org
> > > Subject: Re: HA for management server
> > >
> > > Have you setup the database by cloudstack-setup-database?
> > >
> > >
> > >
> > > On Wednesday, May 29, 2024, Alexandru Stan
> > > 
> > > wrote:
> > >
> > > > Yes, I can login with the cloud user just fine via the virtual ip.
> > > >
> > > >
> > > > -Original Message-
> > > > From: Wei ZHOU 
> > > > Sent: Wednesday, May 29, 2024 10:45 PM
> > > > To: users@cloudstack.apache.org
> > > > Subject: Re: HA for management server
> > > >
> > > > Yes.
> > > > Are you able to access the db vip or the two db nodes using mysql
> > > > command from management server?
> > > >
> > > >
> > > >
> > > > On Wednesday, May 29, 2024, Alexandru Stan
> > > > 
> > > > wrote:
> > > >
> > > > > You're right. This is the actual problem:
> > > > >
> > > > > Caused by: com.cloud.utils.exception.CloudRuntimeException:
> > > > > Unable to initialize a connection to the database for locking
> > > > > purposes Caused
> > > > > by: java.sql.SQLNonTransientConnectionException: Could not
> > > > > create connection to database server. Attempted reconnect 3 times. 
> > > > > Giving up.
> > > > >
> > > > > But everything seems right in the db.properties file. The host
> > > > > should be the virtual ip of the load balancer, right?
> > > > >
> > > > >
> > > > > -Original Message-
> > > > > From: Wei ZHOU 
> > > > > Sent: Wednesday, May 29, 2024 10:28 PM
> > > > > To: users@cloudstack.apache.org
> > > > > Subject: Re: HA for management server
> > > > >
> > > > > Hi,
> > > > >
> > > > > The exception is misleading
> > > > >
> > > > > You can check the real exception by grep Exception
> > > > > management-server.log 

Re: HA for management server

[Wei ZHOU]

I thought you did not change the db.properties.

if you use mariadb driver, you can use "db.cloud.uri".
the failover mode is not supported in db.properties, which could be
the root cause of your issue
https://mariadb.com/kb/en/failover-and-high-availability-with-mariadb-connector-j/


-Wei


On Thu, May 30, 2024 at 11:48 AM Alexandru Stan
 wrote:
>
> Hello,
>
> I actually managed to get it to work just by modifying the db.cloud.driver in 
> db.properties on the management servers to jdbc:mariadb instead of the 
> default jdbc:mysql. Maybe I didn't search properly but I really think this is 
> not mentioned in any documentation of multi-management servers deployment. 
> Anyway, all good now.
>
> Thank you!
>
>
>
> -Original Message-
> From: Wei ZHOU 
> Sent: Wednesday, May 29, 2024 11:29 PM
> To: users@cloudstack.apache.org
> Subject: Re: HA for management server
>
> Looks good
> Can you try db.cloud.uri in db.properties?
> See https://github.com/apache/cloudstack/pull/7895
>
> -Wei
>
>
> On Wednesday, May 29, 2024, Alexandru Stan 
>  wrote:
>
> > Yes. On the first management server with --deploy-as=root:password and
> > on the second one without. All successful. The I ran
> > cloudstack-setup-management and that was it. But in the browser I get
> > the
> > 503 error...
> >
> >
> > -Original Message-
> > From: Wei ZHOU 
> > Sent: Wednesday, May 29, 2024 11:20 PM
> > To: users@cloudstack.apache.org
> > Subject: Re: HA for management server
> >
> > Have you setup the database by cloudstack-setup-database?
> >
> >
> >
> > On Wednesday, May 29, 2024, Alexandru Stan
> > 
> > wrote:
> >
> > > Yes, I can login with the cloud user just fine via the virtual ip.
> > >
> > >
> > > -Original Message-
> > > From: Wei ZHOU 
> > > Sent: Wednesday, May 29, 2024 10:45 PM
> > > To: users@cloudstack.apache.org
> > > Subject: Re: HA for management server
> > >
> > > Yes.
> > > Are you able to access the db vip or the two db nodes using mysql
> > > command from management server?
> > >
> > >
> > >
> > > On Wednesday, May 29, 2024, Alexandru Stan
> > > 
> > > wrote:
> > >
> > > > You're right. This is the actual problem:
> > > >
> > > > Caused by: com.cloud.utils.exception.CloudRuntimeException: Unable
> > > > to initialize a connection to the database for locking purposes
> > > > Caused
> > > > by: java.sql.SQLNonTransientConnectionException: Could not create
> > > > connection to database server. Attempted reconnect 3 times. Giving up.
> > > >
> > > > But everything seems right in the db.properties file. The host
> > > > should be the virtual ip of the load balancer, right?
> > > >
> > > >
> > > > -Original Message-
> > > > From: Wei ZHOU 
> > > > Sent: Wednesday, May 29, 2024 10:28 PM
> > > > To: users@cloudstack.apache.org
> > > > Subject: Re: HA for management server
> > > >
> > > > Hi,
> > > >
> > > > The exception is misleading
> > > >
> > > > You can check the real exception by grep Exception
> > > > management-server.log | grep -v NoSuchBeanDefinitionException
> > > >
> > > > I guess the  root cause is database configuration or db.properties.
> > > >
> > > > By the way, it is better mariadb galera cluster have 3 servers.
> > > >
> > > >
> > > > -Wei
> > > >
> > > >
> > > > On Wednesday, May 29, 2024, Alexandru Stan
> > > > 
> > > > wrote:
> > > >
> > > > > Hello,
> > > > >
> > > > > There seems to be issues with installing the management server
> > > > > databases on a separate server, I setup a galera cluster with 2
> > > > > servers and tried to install the management server on a
> > > > > different server using (where it still
> > > > > applies) this guide: https://www.shapeblue.com/how-
> > > > > to-deploy-high-availability-cloudstack-with-mariadb-galera-clust
> > > > > er
> > > > > /
> > > > >
> > > > > However, while the database setup seems to be fine and
> > > > > everything after, the cloudstack-management service is running
> > > > > but th

Re: HA for management server

[Wei ZHOU]

Looks good
Can you try db.cloud.uri in db.properties?
See https://github.com/apache/cloudstack/pull/7895

-Wei


On Wednesday, May 29, 2024, Alexandru Stan
 wrote:

> Yes. On the first management server with --deploy-as=root:password and on
> the second one without. All successful. The I ran
> cloudstack-setup-management and that was it. But in the browser I get the
> 503 error...
>
>
> -Original Message-
> From: Wei ZHOU 
> Sent: Wednesday, May 29, 2024 11:20 PM
> To: users@cloudstack.apache.org
> Subject: Re: HA for management server
>
> Have you setup the database by cloudstack-setup-database?
>
>
>
> On Wednesday, May 29, 2024, Alexandru Stan 
> 
> wrote:
>
> > Yes, I can login with the cloud user just fine via the virtual ip.
> >
> >
> > -Original Message-
> > From: Wei ZHOU 
> > Sent: Wednesday, May 29, 2024 10:45 PM
> > To: users@cloudstack.apache.org
> > Subject: Re: HA for management server
> >
> > Yes.
> > Are you able to access the db vip or the two db nodes using mysql
> > command from management server?
> >
> >
> >
> > On Wednesday, May 29, 2024, Alexandru Stan
> > 
> > wrote:
> >
> > > You're right. This is the actual problem:
> > >
> > > Caused by: com.cloud.utils.exception.CloudRuntimeException: Unable
> > > to initialize a connection to the database for locking purposes
> > > Caused
> > > by: java.sql.SQLNonTransientConnectionException: Could not create
> > > connection to database server. Attempted reconnect 3 times. Giving up.
> > >
> > > But everything seems right in the db.properties file. The host
> > > should be the virtual ip of the load balancer, right?
> > >
> > >
> > > -Original Message-
> > > From: Wei ZHOU 
> > > Sent: Wednesday, May 29, 2024 10:28 PM
> > > To: users@cloudstack.apache.org
> > > Subject: Re: HA for management server
> > >
> > > Hi,
> > >
> > > The exception is misleading
> > >
> > > You can check the real exception by
> > > grep Exception management-server.log | grep -v
> > > NoSuchBeanDefinitionException
> > >
> > > I guess the  root cause is database configuration or db.properties.
> > >
> > > By the way, it is better mariadb galera cluster have 3 servers.
> > >
> > >
> > > -Wei
> > >
> > >
> > > On Wednesday, May 29, 2024, Alexandru Stan
> > > 
> > > wrote:
> > >
> > > > Hello,
> > > >
> > > > There seems to be issues with installing the management server
> > > > databases on a separate server, I setup a galera cluster with 2
> > > > servers and tried to install the management server on a different
> > > > server using (where it still
> > > > applies) this guide: https://www.shapeblue.com/how-
> > > > to-deploy-high-availability-cloudstack-with-mariadb-galera-cluster
> > > > /
> > > >
> > > > However, while the database setup seems to be fine and everything
> > > > after, the cloudstack-management service is running but there's no
> UI.
> > > > Checking the status shows this:
> > > >
> > > > Failed to start module [redfish] due to: [Error creating bean with
> > > > name 'org.springframework.beans.factory.config.
> > > PropertyPlaceholderConfigurer#0'
> > > > defined in URL [jar:file:/usr/share/cloudstack-management/lib/
> > > > cloudstack-4.19.0.1.jar!/META-INF/cloudstack/bootstrap/
> > > > spring-bootstrap-context-inheritable.xml]: Cannot resolve
> > > > reference to bean 'DefaultConfigResources' while setting bean
> > > > property 'locations'; nested exception is org.springframework.beans.
> factory.
> > > NoSuchBeanDefinitionException:
> > > > No bean named 'DefaultConfigResources' available].
> > > >
> > > > Any idea why this happens?
> > > >
> > > >
> > > > -Original Message-
> > > > From: Jayanth Babu A 
> > > > Sent: Monday, May 27, 2024 12:28 PM
> > > > To: users@cloudstack.apache.org
> > > > Subject: Re: HA for management server
> > > >
> > > > Hello,
> > > > Yes, DB clustering with Galera or some other sort should be looked
> > into.
> > > > I'm not sure if [1] has worked for someone so far.
> > >

Re: HA for management server

[Wei ZHOU]

Have you setup the database by cloudstack-setup-database?



On Wednesday, May 29, 2024, Alexandru Stan
 wrote:

> Yes, I can login with the cloud user just fine via the virtual ip.
>
>
> -Original Message-----
> From: Wei ZHOU 
> Sent: Wednesday, May 29, 2024 10:45 PM
> To: users@cloudstack.apache.org
> Subject: Re: HA for management server
>
> Yes.
> Are you able to access the db vip or the two db nodes using mysql command
> from management server?
>
>
>
> On Wednesday, May 29, 2024, Alexandru Stan 
> 
> wrote:
>
> > You're right. This is the actual problem:
> >
> > Caused by: com.cloud.utils.exception.CloudRuntimeException: Unable to
> > initialize a connection to the database for locking purposes Caused
> > by: java.sql.SQLNonTransientConnectionException: Could not create
> > connection to database server. Attempted reconnect 3 times. Giving up.
> >
> > But everything seems right in the db.properties file. The host should
> > be the virtual ip of the load balancer, right?
> >
> >
> > -Original Message-
> > From: Wei ZHOU 
> > Sent: Wednesday, May 29, 2024 10:28 PM
> > To: users@cloudstack.apache.org
> > Subject: Re: HA for management server
> >
> > Hi,
> >
> > The exception is misleading
> >
> > You can check the real exception by
> > grep Exception management-server.log | grep -v
> > NoSuchBeanDefinitionException
> >
> > I guess the  root cause is database configuration or db.properties.
> >
> > By the way, it is better mariadb galera cluster have 3 servers.
> >
> >
> > -Wei
> >
> >
> > On Wednesday, May 29, 2024, Alexandru Stan
> > 
> > wrote:
> >
> > > Hello,
> > >
> > > There seems to be issues with installing the management server
> > > databases on a separate server, I setup a galera cluster with 2
> > > servers and tried to install the management server on a different
> > > server using (where it still
> > > applies) this guide: https://www.shapeblue.com/how-
> > > to-deploy-high-availability-cloudstack-with-mariadb-galera-cluster/
> > >
> > > However, while the database setup seems to be fine and everything
> > > after, the cloudstack-management service is running but there's no UI.
> > > Checking the status shows this:
> > >
> > > Failed to start module [redfish] due to: [Error creating bean with
> > > name 'org.springframework.beans.factory.config.
> > PropertyPlaceholderConfigurer#0'
> > > defined in URL [jar:file:/usr/share/cloudstack-management/lib/
> > > cloudstack-4.19.0.1.jar!/META-INF/cloudstack/bootstrap/
> > > spring-bootstrap-context-inheritable.xml]: Cannot resolve reference
> > > to bean 'DefaultConfigResources' while setting bean property
> > > 'locations'; nested exception is org.springframework.beans.factory.
> > NoSuchBeanDefinitionException:
> > > No bean named 'DefaultConfigResources' available].
> > >
> > > Any idea why this happens?
> > >
> > >
> > > -Original Message-
> > > From: Jayanth Babu A 
> > > Sent: Monday, May 27, 2024 12:28 PM
> > > To: users@cloudstack.apache.org
> > > Subject: Re: HA for management server
> > >
> > > Hello,
> > > Yes, DB clustering with Galera or some other sort should be looked
> into.
> > > I'm not sure if [1] has worked for someone so far.
> > >
> > > [1] https://docs.cloudstack.apache.org/en/latest/
> > > adminguide/reliability.html#configuring-database-high-availability
> > >
> > > Thanks,
> > > Jayanth
> > > 
> > > From: Alexandru Stan 
> > > Sent: Monday, May 27, 2024 2:48 PM
> > > To: users@cloudstack.apache.org 
> > > Subject: RE: HA for management server
> > >
> > > Hi,
> > >
> > > Actually no, I'm just documenting the process so far, so nothing was
> > > done for the DB. For this I assume the info in the official
> > > documentation would be ok? Or something more advanced would be
> > > needed,
> > like a galera cluster?
> > >
> > >
> > >
> > > -Original Message-
> > > From: Jayanth Babu A 
> > > Sent: Monday, May 27, 2024 12:12 PM
> > > To: users@cloudstack.apache.org
> > > Subject: Re: HA for management server
> > >
> > > Hello Alexandru,
> > > Please s

Re: Using a seprarte router other than the virtual router

[Wei ZHOU]

indeed, some features are missing in the VR.

If you have other public ip range available, I would suggest
- create a shared network with the public ips
- create pfsense vm with WAN on the shared network and LANs on l2/isolated
network
- Configure dhcp/dns in pfsense vm if needed.

If you want to use port forwarding or load balancer, you can create rules
in pfsense manually.
If you want to use DNAT, add a secondary ip on shared network to the
pfsense vm, then configure 1:1 nat in pfsense vm.

We have plan to support VNF providers and replace VR with VNF appliance so
that some services can be configured automatically. However it highly
depends on the api/cli of the software. The pfsense API is not very good.

-Wei

On Wednesday, May 29, 2024, Marty Godsey  wrote:

> The VR works fine as a basic NATing firewall, but you can't do advanced
> next-gen functions like reverse proxies, SSL offloading, robust rule sets,
> IDS/IPS, etc.
>
> I have been setting it up manually. The other way is to have the users
> create their VR but then do a 1to1 NAT or a port forward of all ports to
> the virtual pfsense. The “WAN” of the pfsense sits in an isolated subnet.
> This does use another VLAN for the “WAN” network and is technically double
> NATing, but it works fine. I don’t think it scales the best, though, and
> may change it in the future.
>
> From: Wei ZHOU 
> Date: Wednesday, May 29, 2024 at 3:18 PM
> To: users@cloudstack.apache.org 
> Subject: Re: Using a seprarte router other than the virtual router
> WARNING: This email originated from outside of the organization. Do not
> click links or open attachments unless you recognize the sender and know
> the content is safe.
>
>
> I know some users deploy a pfsense or Linux vm as gateway in L2 network or
> isolated network without source nat.
> No matter which software/os is used, users have to configure the vms
> manually. Some features (e.g static nat, pf,lb, userdata) are not supported
> either.
> I think VR is still the best option with most supported services so far.
> What is the purpose of the router ? Gateway or other service provider?
>
> -Wei
>
> On Wednesday, May 29, 2024, Marty Godsey  wrote:
>
> > Hello All,
> >
> > What is the best way, or how are you providing a router for customers
> that
> > is not a virtual router? For example, if I have someone who wants to use
> > PfSense for their router instead of the virtual router, what’s the best
> way
> > to do this and make it as seamless as possible for the customer?
> >
> > I can see ways to do it, but I am curious to know how other people
> perform
> > this function.
> >
> > Thanks in advance. 😊
> >
>

Re: HA for management server

[Wei ZHOU]

Yes.
Are you able to access the db vip or the two db nodes using mysql command
from management server?



On Wednesday, May 29, 2024, Alexandru Stan
 wrote:

> You're right. This is the actual problem:
>
> Caused by: com.cloud.utils.exception.CloudRuntimeException: Unable to
> initialize a connection to the database for locking purposes
> Caused by: java.sql.SQLNonTransientConnectionException: Could not create
> connection to database server. Attempted reconnect 3 times. Giving up.
>
> But everything seems right in the db.properties file. The host should be
> the virtual ip of the load balancer, right?
>
>
> -----Original Message-
> From: Wei ZHOU 
> Sent: Wednesday, May 29, 2024 10:28 PM
> To: users@cloudstack.apache.org
> Subject: Re: HA for management server
>
> Hi,
>
> The exception is misleading
>
> You can check the real exception by
> grep Exception management-server.log | grep -v
> NoSuchBeanDefinitionException
>
> I guess the  root cause is database configuration or db.properties.
>
> By the way, it is better mariadb galera cluster have 3 servers.
>
>
> -Wei
>
>
> On Wednesday, May 29, 2024, Alexandru Stan 
> 
> wrote:
>
> > Hello,
> >
> > There seems to be issues with installing the management server
> > databases on a separate server, I setup a galera cluster with 2
> > servers and tried to install the management server on a different
> > server using (where it still
> > applies) this guide: https://www.shapeblue.com/how-
> > to-deploy-high-availability-cloudstack-with-mariadb-galera-cluster/
> >
> > However, while the database setup seems to be fine and everything
> > after, the cloudstack-management service is running but there's no UI.
> > Checking the status shows this:
> >
> > Failed to start module [redfish] due to: [Error creating bean with
> > name 'org.springframework.beans.factory.config.
> PropertyPlaceholderConfigurer#0'
> > defined in URL [jar:file:/usr/share/cloudstack-management/lib/
> > cloudstack-4.19.0.1.jar!/META-INF/cloudstack/bootstrap/
> > spring-bootstrap-context-inheritable.xml]: Cannot resolve reference to
> > bean 'DefaultConfigResources' while setting bean property 'locations';
> > nested exception is org.springframework.beans.factory.
> NoSuchBeanDefinitionException:
> > No bean named 'DefaultConfigResources' available].
> >
> > Any idea why this happens?
> >
> >
> > -Original Message-
> > From: Jayanth Babu A 
> > Sent: Monday, May 27, 2024 12:28 PM
> > To: users@cloudstack.apache.org
> > Subject: Re: HA for management server
> >
> > Hello,
> > Yes, DB clustering with Galera or some other sort should be looked into.
> > I'm not sure if [1] has worked for someone so far.
> >
> > [1] https://docs.cloudstack.apache.org/en/latest/
> > adminguide/reliability.html#configuring-database-high-availability
> >
> > Thanks,
> > Jayanth
> > 
> > From: Alexandru Stan 
> > Sent: Monday, May 27, 2024 2:48 PM
> > To: users@cloudstack.apache.org 
> > Subject: RE: HA for management server
> >
> > Hi,
> >
> > Actually no, I'm just documenting the process so far, so nothing was
> > done for the DB. For this I assume the info in the official
> > documentation would be ok? Or something more advanced would be needed,
> like a galera cluster?
> >
> >
> >
> > -Original Message-
> > From: Jayanth Babu A 
> > Sent: Monday, May 27, 2024 12:12 PM
> > To: users@cloudstack.apache.org
> > Subject: Re: HA for management server
> >
> > Hello Alexandru,
> > Please see [1] and [2]. I assume your DB HA is taken care of.
> >
> > [1] https://checkpoint.url-protection.com/v1/url?o=https%
> > 3A//docs.cloudstack.apache.org/en/latest/adminguide/reliability.html&g
> > = ZmEwYjAwNmYwMjIxNTU5ZQ==&h=NmQyMzY5Nzc5YTU2ZDkyYjc4N2ExND
> > U4Y2Q0OWFkMjQ4OGRhMGZiZjdiNDA5N2NmNmRhM2EwYjUzZGEwMmI2Mg==&p=
> > Y3AxZTpueHRnZW5pbmZpbml0ZWRhdGFjZW50ZXI6YzpvOmY0ZWFkYmU5NDkz
> > MjMyMjdjY2EyM2IxN2YzOGZiMWE4OnYxOnA6VA==
> > [2] https://checkpoint.url-protection.com/v1/url?o=https%
> > 3A//github.com/apache/cloudstack/issues/8221&g=YzVlNDk3YjI5NTEwMTM5Mg=
> > =&h=
> > OTBmN2Q4ZjA3YzRlOTAxZDk1YzcwMmExMTAzYTY4N2VmYjg5MGZkZGQyMDE2
> > NTM3MTU4MGUxNDRjNzMzN2E0ZQ==&p=Y3AxZTpueHRnZW5pbmZpbml0ZWRhdG
> > FjZW50ZXI6YzpvOmY0ZWFkYmU5NDkzMjMyMjdjY2EyM2IxN2YzOGZiMWE4OnYxOnA6VA==
> >
> > Regards,
> > Jayanth Reddy
> > Engineerin

Re: HA for management server

[Wei ZHOU]

Hi,

The exception is misleading

You can check the real exception by
grep Exception management-server.log | grep -v NoSuchBeanDefinitionException

I guess the  root cause is database configuration or db.properties.

By the way, it is better mariadb galera cluster have 3 servers.


-Wei


On Wednesday, May 29, 2024, Alexandru Stan
 wrote:

> Hello,
>
> There seems to be issues with installing the management server databases
> on a separate server, I setup a galera cluster with 2 servers and tried to
> install the management server on a different server using (where it still
> applies) this guide: https://www.shapeblue.com/how-
> to-deploy-high-availability-cloudstack-with-mariadb-galera-cluster/
>
> However, while the database setup seems to be fine and everything after,
> the cloudstack-management service is running but there's no UI. Checking
> the status shows this:
>
> Failed to start module [redfish] due to: [Error creating bean with name
> 'org.springframework.beans.factory.config.PropertyPlaceholderConfigurer#0'
> defined in URL [jar:file:/usr/share/cloudstack-management/lib/
> cloudstack-4.19.0.1.jar!/META-INF/cloudstack/bootstrap/
> spring-bootstrap-context-inheritable.xml]: Cannot resolve reference to
> bean 'DefaultConfigResources' while setting bean property 'locations';
> nested exception is 
> org.springframework.beans.factory.NoSuchBeanDefinitionException:
> No bean named 'DefaultConfigResources' available].
>
> Any idea why this happens?
>
>
> -Original Message-
> From: Jayanth Babu A 
> Sent: Monday, May 27, 2024 12:28 PM
> To: users@cloudstack.apache.org
> Subject: Re: HA for management server
>
> Hello,
> Yes, DB clustering with Galera or some other sort should be looked into.
> I'm not sure if [1] has worked for someone so far.
>
> [1] https://docs.cloudstack.apache.org/en/latest/
> adminguide/reliability.html#configuring-database-high-availability
>
> Thanks,
> Jayanth
> 
> From: Alexandru Stan 
> Sent: Monday, May 27, 2024 2:48 PM
> To: users@cloudstack.apache.org 
> Subject: RE: HA for management server
>
> Hi,
>
> Actually no, I'm just documenting the process so far, so nothing was done
> for the DB. For this I assume the info in the official documentation would
> be ok? Or something more advanced would be needed, like a galera cluster?
>
>
>
> -Original Message-
> From: Jayanth Babu A 
> Sent: Monday, May 27, 2024 12:12 PM
> To: users@cloudstack.apache.org
> Subject: Re: HA for management server
>
> Hello Alexandru,
> Please see [1] and [2]. I assume your DB HA is taken care of.
>
> [1] https://checkpoint.url-protection.com/v1/url?o=https%
> 3A//docs.cloudstack.apache.org/en/latest/adminguide/reliability.html&g=
> ZmEwYjAwNmYwMjIxNTU5ZQ==&h=NmQyMzY5Nzc5YTU2ZDkyYjc4N2ExND
> U4Y2Q0OWFkMjQ4OGRhMGZiZjdiNDA5N2NmNmRhM2EwYjUzZGEwMmI2Mg==&p=
> Y3AxZTpueHRnZW5pbmZpbml0ZWRhdGFjZW50ZXI6YzpvOmY0ZWFkYmU5NDkz
> MjMyMjdjY2EyM2IxN2YzOGZiMWE4OnYxOnA6VA==
> [2] https://checkpoint.url-protection.com/v1/url?o=https%
> 3A//github.com/apache/cloudstack/issues/8221&g=YzVlNDk3YjI5NTEwMTM5Mg==&h=
> OTBmN2Q4ZjA3YzRlOTAxZDk1YzcwMmExMTAzYTY4N2VmYjg5MGZkZGQyMDE2
> NTM3MTU4MGUxNDRjNzMzN2E0ZQ==&p=Y3AxZTpueHRnZW5pbmZpbml0ZWRhdG
> FjZW50ZXI6YzpvOmY0ZWFkYmU5NDkzMjMyMjdjY2EyM2IxN2YzOGZiMWE4OnYxOnA6VA==
>
> Regards,
> Jayanth Reddy
> Engineering Manager
>
> From: Alexandru Stan 
> Date: Monday, 27 May 2024 at 2:38 PM
> To: users@cloudstack.apache.org 
> Subject: HA for management server
> Hello,
>
> Is there any documentation on deployment of multiple management servers in
> high availability? Or does anyone have good info on this? The official
> documentation does not contain anything relevant unfortunately.
>
> Thank you!
> Disclaimer *** This e-mail contains PRIVILEGED AND CONFIDENTIAL
> INFORMATION intended solely for the use of the addressee(s). If you are not
> the intended recipient, please notify the sender by e-mail and delete the
> original message. Further, you are not authorised to copy, disclose, or
> distribute this e-mail or its contents to any other person and any such
> actions are unlawful and strictly prohibited. This e-mail may contain
> viruses. NxtGen Datacenter & Cloud Technologies Private Ltd (“NxtGen”) has
> taken every reasonable precaution to minimize this risk but is not liable
> for any damage you may sustain as a result of any virus in this e-mail. You
> should carry out your own virus checks before opening the e-mail or
> attachment. NxtGen reserves the right to monitor and review the content of
> all messages sent to or from this e-mail address. Messages sent to or from
> this e-mail address may be stored on the NxtGen e-mail system. *** End of
> Disclaimer ***NXTGEN*** Disclaimer *** This e-mail contains PRIVILEGED AND
> CONFIDENTIAL INFORMATION intended solely for the use of the addressee(s).
> If you are not the intended recipient, please notify the sender by e-mail
> and delete the original message. Further, you are not authorised to 

Re: Using a seprarte router other than the virtual router

[Wei ZHOU]

I know some users deploy a pfsense or Linux vm as gateway in L2 network or
isolated network without source nat.
No matter which software/os is used, users have to configure the vms
manually. Some features (e.g static nat, pf,lb, userdata) are not supported
either.
I think VR is still the best option with most supported services so far.
What is the purpose of the router ? Gateway or other service provider?

-Wei

On Wednesday, May 29, 2024, Marty Godsey  wrote:

> Hello All,
>
> What is the best way, or how are you providing a router for customers that
> is not a virtual router? For example, if I have someone who wants to use
> PfSense for their router instead of the virtual router, what’s the best way
> to do this and make it as seamless as possible for the customer?
>
> I can see ways to do it, but I am curious to know how other people perform
> this function.
>
> Thanks in advance. 😊
>

Re: Set number of total projects for each account

[Wei ZHOU]

Yes Mevludin,

as Jayanth said, you can create an improvement request to support max
projects per domain or per account.



-Wei

On Mon, May 27, 2024 at 1:37 PM Mevludin Blazevic
 wrote:
>
> Thanks a lot, Wei!
>
> Shall I create an issue for this?
>
> - Mevludin
>
> Am 27.05.2024 um 13:33 schrieb Jayanth Babu A:
> > Thanks, Wei.
> > Would it be good to introduce something like “max.account.projects” into 
> > the Global Limits [1] as well?
> >
> > [1]https://docs.cloudstack.apache.org/en/latest/adminguide/usage.html#globally-configured-limits
> >
> > Regards,
> > Jayanth Reddy
> >
> > From: Wei ZHOU
> > Date: Monday, 27 May 2024 at 4:26 PM
> > To:users@cloudstack.apache.org  
> > Subject: Re: Set number of total projects for each account
> > This seems to be missing on UI
> >
> > it works via cloudmonkey
> >
> > (localcloud) 🐱 > update resourcelimit
> > domainid=37ff2485-cc1e-11ee-a4eb-1e00db000197 account=ACSUser
> > resourcetype=5 max=3
> > {
> >"resourcelimit": {
> >  "account": "ACSUser",
> >  "domain": "ROOT",
> >  "domainid": "37ff2485-cc1e-11ee-a4eb-1e00db000197",
> >  "max": 3,
> >  "resourcetype": "5",
> >  "resourcetypename": "project"
> >}
> > }
> >
> >
> > -Wei
> >
> > On Mon, May 27, 2024 at 10:23 AM Mevludin Blazevic
> >   wrote:
> >> Hi all,
> >>
> >> does anyone know how to set a fix number of projects for each account?
> >> In the ressources overview I can only see that there is an unlimited
> >> number of projects available for an account, but how can I set a value
> >> for this?
> >>
> >> - Mevludin
> >>
> > Disclaimer *** This e-mail contains PRIVILEGED AND CONFIDENTIAL INFORMATION 
> > intended solely for the use of the addressee(s). If you are not the 
> > intended recipient, please notify the sender by e-mail and delete the 
> > original message. Further, you are not authorised to copy, disclose, or 
> > distribute this e-mail or its contents to any other person and any such 
> > actions are unlawful and strictly prohibited. This e-mail may contain 
> > viruses. NxtGen Datacenter & Cloud Technologies Private Ltd (“NxtGen”) has 
> > taken every reasonable precaution to minimize this risk but is not liable 
> > for any damage you may sustain as a result of any virus in this e-mail. You 
> > should carry out your own virus checks before opening the e-mail or 
> > attachment. NxtGen reserves the right to monitor and review the content of 
> > all messages sent to or from this e-mail address. Messages sent to or from 
> > this e-mail address may be stored on the NxtGen e-mail system. *** End of 
> > Disclaimer ***NXTGEN***
>
>

Re: Set number of total projects for each account

[Wei ZHOU]

This seems to be missing on UI

it works via cloudmonkey

(localcloud) 🐱 > update resourcelimit
domainid=37ff2485-cc1e-11ee-a4eb-1e00db000197 account=ACSUser
resourcetype=5 max=3
{
  "resourcelimit": {
"account": "ACSUser",
"domain": "ROOT",
"domainid": "37ff2485-cc1e-11ee-a4eb-1e00db000197",
"max": 3,
"resourcetype": "5",
"resourcetypename": "project"
  }
}


-Wei

On Mon, May 27, 2024 at 10:23 AM Mevludin Blazevic
 wrote:
>
> Hi all,
>
> does anyone know how to set a fix number of projects for each account?
> In the ressources overview I can only see that there is an unlimited
> number of projects available for an account, but how can I set a value
> for this?
>
> - Mevludin
>

Re: Backup VM on Cloudstack

[Wei ZHOU]

thanks Jayanth.


On Mon, May 27, 2024 at 11:50 AM Jayanth Babu A
 wrote:
>
> Hello Wei,
> ACS v4.16; IIRC Veeam should be either v11 or v12.
>
> Thanks,
> Jayanth
>
> Sent on the move
>
> ________
> From: Wei ZHOU 
> Sent: Monday, May 27, 2024 3:16:36 pm
> To: users@cloudstack.apache.org 
> Subject: Re: Backup VM on Cloudstack
>
> great to know it.
> Can you share the acs/vmware/veeam version?
> Thanks
>
> On Monday, May 27, 2024, Jayanth Babu A 
> wrote:
>
> > Hello,
> > Veeam agent-based backups have worked for us so far.
> >
> > Regards,
> > Jayanth Reddy
> >
> > From: Khang Nguyen Phuc 
> > Date: Friday, 24 May 2024 at 1:03 PM
> > To: users@cloudstack.apache.org 
> > Subject: Backup VM on Cloudstack
> > Hello everyone,
> >
> > I'm looking for some advice on solutions for backing up VMs running on KVM
> > in Cloudstack. I found two plugins in the documentation, but they are both
> > paid. I also saw the dummy backup, but introductions to Cloudstack mention
> > that it is only for testing the API's functionality. Can I consider dummy
> > backup as a "native" backup solution for Cloudstack? I see two offerings,
> > 'Gold' and 'Silver,' but there is no information on how many backups it
> > makes or for how long...
> >
> > Can you suggest a backup solution for me or provide clearer documentation
> > about the dummy backup?
> >
> > Thank you very much.
> > Disclaimer *** This e-mail contains PRIVILEGED AND CONFIDENTIAL
> > INFORMATION intended solely for the use of the addressee(s). If you are not
> > the intended recipient, please notify the sender by e-mail and delete the
> > original message. Further, you are not authorised to copy, disclose, or
> > distribute this e-mail or its contents to any other person and any such
> > actions are unlawful and strictly prohibited. This e-mail may contain
> > viruses. NxtGen Datacenter & Cloud Technologies Private Ltd (“NxtGen”) has
> > taken every reasonable precaution to minimize this risk but is not liable
> > for any damage you may sustain as a result of any virus in this e-mail. You
> > should carry out your own virus checks before opening the e-mail or
> > attachment. NxtGen reserves the right to monitor and review the content of
> > all messages sent to or from this e-mail address. Messages sent to or from
> > this e-mail address may be stored on the NxtGen e-mail system. *** End of
> > Disclaimer ***NXTGEN***
> >
>
> Disclaimer *** This e-mail contains PRIVILEGED AND CONFIDENTIAL INFORMATION 
> intended solely for the use of the addressee(s). If you are not the intended 
> recipient, please notify the sender by e-mail and delete the original 
> message. Further, you are not authorised to copy, disclose, or distribute 
> this e-mail or its contents to any other person and any such actions are 
> unlawful and strictly prohibited. This e-mail may contain viruses. NxtGen 
> Datacenter & Cloud Technologies Private Ltd (“NxtGen”) has taken every 
> reasonable precaution to minimize this risk but is not liable for any damage 
> you may sustain as a result of any virus in this e-mail. You should carry out 
> your own virus checks before opening the e-mail or attachment. NxtGen 
> reserves the right to monitor and review the content of all messages sent to 
> or from this e-mail address. Messages sent to or from this e-mail address may 
> be stored on the NxtGen e-mail system. *** End of Disclaimer ***NXTGEN***

Re: Backup VM on Cloudstack

[Wei ZHOU]

great to know it.
Can you share the acs/vmware/veeam version?
Thanks

On Monday, May 27, 2024, Jayanth Babu A 
wrote:

> Hello,
> Veeam agent-based backups have worked for us so far.
>
> Regards,
> Jayanth Reddy
>
> From: Khang Nguyen Phuc 
> Date: Friday, 24 May 2024 at 1:03 PM
> To: users@cloudstack.apache.org 
> Subject: Backup VM on Cloudstack
> Hello everyone,
>
> I'm looking for some advice on solutions for backing up VMs running on KVM
> in Cloudstack. I found two plugins in the documentation, but they are both
> paid. I also saw the dummy backup, but introductions to Cloudstack mention
> that it is only for testing the API's functionality. Can I consider dummy
> backup as a "native" backup solution for Cloudstack? I see two offerings,
> 'Gold' and 'Silver,' but there is no information on how many backups it
> makes or for how long...
>
> Can you suggest a backup solution for me or provide clearer documentation
> about the dummy backup?
>
> Thank you very much.
> Disclaimer *** This e-mail contains PRIVILEGED AND CONFIDENTIAL
> INFORMATION intended solely for the use of the addressee(s). If you are not
> the intended recipient, please notify the sender by e-mail and delete the
> original message. Further, you are not authorised to copy, disclose, or
> distribute this e-mail or its contents to any other person and any such
> actions are unlawful and strictly prohibited. This e-mail may contain
> viruses. NxtGen Datacenter & Cloud Technologies Private Ltd (“NxtGen”) has
> taken every reasonable precaution to minimize this risk but is not liable
> for any damage you may sustain as a result of any virus in this e-mail. You
> should carry out your own virus checks before opening the e-mail or
> attachment. NxtGen reserves the right to monitor and review the content of
> all messages sent to or from this e-mail address. Messages sent to or from
> this e-mail address may be stored on the NxtGen e-mail system. *** End of
> Disclaimer ***NXTGEN***
>

Re: Login issue on new install

[Wei ZHOU]

Any "Exception" in the /var/log/cloudstack/management-server log?


On Friday, May 24, 2024, Ian Tobin  wrote:

>
> Tried that on different machines
>
> The server loads are also low
>
>
>
> -----Original Message-
> From: Wei ZHOU 
> Sent: 24 May 2024 17:33
> To: users@cloudstack.apache.org
> Subject: Re: Login issue on new install
>
> clear browser cache or incognito mode?
>
>
>
> On Friday, May 24, 2024, Ian Tobin  wrote:
>
> > Hi,
> >
> > We've just built a new management server (ubtunu 23.04) and db server.
> > Login page loads, enter user and pass, then the login box just spins,
> > it never times out either.
> >
> > Any idea what could be the issue or log to check?
> >
> > Thanks
> >
> > Ian
> >
> >
> >
>