o CA certificates:
>
> 1- is for my management server UI portal which is a FQDN named
> certificate
> 2- for the console proxy as a wildcard certificate.
>
> Should I have two different certs or should I have used the wildcard for
> both the UI portal and console proxy vm???
Our documented procedure for updating console proxy SSL is:
1. Load cert through CloudStack UI, wait for Console Proxy VMs to restart
2. If this is the first installation of SSL certificate, ensure Settings
consoleproxy.sslEnabled and consoleproxy.url.domain are set correctly
3. Restar
Do you have a redundant network (2 VRs)? If so, you cannot
communicate with the password server on the shared .1 IP - you need to
use the VR's unique IP address (this is why the scripts are trying to
find the DHCP server address - this is the only way to find this IP).
Also note that there's a lo
The database upgrade does not happen unless the systemVM templates have
been added, so nothing non-reversible has happened yet. You can just use
yum to downgrade to 4.11.2 and you'll be fine (we've also accidentally done
this at some point!).
I'd recommend disabling your cloudstack yum repo so th
You may find it easier to modify the template build script rather than
perform manual changes to an existing template. We use this approach to
building our own system VMs and it's worked well.
Building the templates isn't tricky - look in tools/appliance in the
source. If you want to run additio
If your console windows are still opening but not in SSL, then I would
first try restarting the management server (I believe this is required
after you change the consoleproxy.sslEnabled settings). Restart the
consoleproxy after. If that doesn't work, destroy the consoleproxy and it
will get recr
The error message suggests that the database hasn't been updated, so you
should be able to reinstall 4.11.2 and have it start working again. Then
you can add the system VM image before retrying the upgrade.
Regards,
Richard
On Sun, 16 Feb 2020, 16:08 Pratik Chandrakar,
wrote:
> Hello,
> We have
What did you do leading up to this problem? Is this a new
install/upgrade? If upgrade, from what to what? I presume 192.168.30.2 is
your mgmt server - what are 192.168.30.53/.58?
You can temporarily disable strictness which is akin to disabling SSL
validation by changing the setting ca.plugin.r
.19 09:31, Richard Lawley wrote:
> > Then simply restart the management server. When it connects to that
> host,
> > it will perform the initial setup procedures again.
> >
> > We use this procedure to roll out a customised SystemVM ISO, but it
> should
> > also
Andrija,
A simpler solution to this is to force ACS to set the host up again. To do
this:
Remove the tag which indicates the host has been set up:
xe host-param-remove uuid=HOSTUUID param-name=tags param-key=
vmops-version-com.cloud.hypervisor.xenserver.resource.XenServer650R
Then simply restar
;
> Melanie
>
> Am Montag, den 04.11.2019, 15:45 + schrieb Richard Lawley:
> > There's nothing in the API or the UI. We just change it in the DB.
> >
> > On Mon, 4 Nov 2019 at 13:48, Melanie Desaive
> > wrote:
> > > Hi Richard,
> > >
t find anything in the documentation.
>
> Kind regards,
>
> Melanie
>
>
>
> Am Freitag, den 01.11.2019, 09:25 + schrieb Richard Lawley:
> > Melanie,
> >
> > > Maybe the procedure for resetting the System Offering for Virtual
> > > Routers diffe
Melanie,
> Maybe the procedure for resetting the System Offering for Virtual
> Routers differs from that for SSVM and CP and I missed some point?
The System Offering for Virtual Routers is not taken from the same
place as SSVM/CP - it's set on the Network Offering instead, so you
can have differe
I'm having a bit of difficulty getting my logfiles to be cleared up
using the basic logging configuration supplied in Cloudstack. From
what I can tell, I should be adding the MaxBackupIndex parameter, but
cannot seem to get this to work.
I've tried...
I've just added a second management server to my setup, but I'm
getting an SSL handshake error when the mgmt servers try to talk to
each other on port 8250. My reading of the error suggests that the
certificate has the IP of the mgmt server as an Alternative Name - the
problem is here that we chan
I've just run up a clean instance of CloudStack 4.11.2 against 2
XenServer 7.1 CU2 Hosts (running in VMs). I was unable to get the VMs
to boot, with errors about HVM required. I spotted the log message
"no guest OS type, start it as HVM guest", which indicates that Xen is
being told to use the "O
I've deployed a fairly simple VPC (one tier, one VM) with a private
gateway, but keep getting both VRs in MASTER state. Upon
investigating, I can see that the reason is that keepalived is being
configured to use the private gateway interface (eth2). Since private
gateway interface shares a virtua
> The last version we used is JunOS 10.x only.
Do you mean that you're not using them anymore?
> You can check the xml config files at the code path
> scripts/network/juniper/, in JunOS 15 to see configuration differences.
Unfortunately it's not as simple as that - the scripts file can be
edi
Jayapal
>
>
> On 07-Jun-2019, at 12:45 PM, Richard Lawley
> mailto:rich...@richardlawley.com>> wrote:
>
> Hi,
>
> We've recently added a couple of Juniper SRXs, but are finding that
> the integration with CloudStack is very broken. So far there have
> been a
Hi,
We've recently added a couple of Juniper SRXs, but are finding that
the integration with CloudStack is very broken. So far there have
been a number of things which just don't work:
* Adding Static NAT Rules
* Adding Port Forwarding Rules
* Removing Port Forwarding Rules
I've found and fixed
, Dag Sonstebo wrote:
>
> Hi Richard - this is just a historical thing. Keep in mind you still have
> user/"roadwarrior" VPN on normal isolated networks.
>
> Regards,
> Dag Sonstebo
> Cloud Architect
> ShapeBlue
>
>
> On 29/05/2019, 23:09, "Richard
In our installations we primarily use advanced (non-VPC) networks, but
I've become aware of the site-to-site VPN available on VPCs. I just
wondered if there was a reason this was VPC-only, or whether there was
a good reason these have never been implemented for non-VPC networks?
Regards,
Richard
If you're doing this because the official repo doesn't contain the
latest version then you can use this repo instead to get el6 packages
http://packages.shapeblue.com/cloudstack/upstream/centos/4.11/
On Mon, 22 Apr 2019, 11:04 Vladimir Melnik, wrote:
> Dear colleagues,
>
> I'm trying to build t
les
>
>
> paul.an...@shapeblue.com
> www.shapeblue.com
> Amadeus House, Floral Street, London WC2E 9DPUK
> @shapeblue
>
>
>
>
> -Original Message-
> From: Richard Lawley
> Sent: 29 March 2019 12:29
> To: users@cloudstack.apache.org
> Subject: NetS
I've recently upgraded a couple of installations from 4.8 to 4.11.2.
Since the upgrade, I am unable to perform certain operations, such as
adding a Network Offering, via the UI. This shows up as getting a
Session Expired message, and kicking me out. I've checked the
underlying requests, and it se
25 matches
Mail list logo
