I should have added, this is the 2011.3-0ubuntu6 version running on Ubuntu Oneiric, installed from the Ubuntu archives.<br clear="all"><br>Thanks,<br>Kiall<br>
<br><br><div class="gmail_quote">On Mon, Oct 10, 2011 at 10:32 AM, Kiall Mac Innes <span dir="ltr"><<a href="mailto:kiall@managedit.ie">kiall@managedit.ie</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex;">
<div>Hiya,</div><div><br></div><div>After deleting a security group, new instances fail to create due to the error below, I've restored the group via the DB (its the "puppet" group with id 6) and all is well again.</div>
<div><br></div><div>Is this expected/a known issue/etc or am I doing something wrong? If I'm not, can you let me know so I can file a bug :)</div><div><br></div><div>Thanks!</div><div>Kiall</div><div><br></div><div>(The new instance was in the "web" group, if that matters!)</div>
<div><br></div><div><blockquote class="gmail_quote" style="margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0.8ex;border-left-width:1px;border-left-color:rgb(204, 204, 204);border-left-style:solid;padding-left:1ex">
$ euca-describe-groups<br>GROUP<span style="white-space:pre-wrap"> </span>kohana<span style="white-space:pre-wrap"> </span>default<span style="white-space:pre-wrap"> </span>default<br>
PERMISSION<span style="white-space:pre-wrap"> </span>kohana<span style="white-space:pre-wrap"> </span>default<span style="white-space:pre-wrap"> </span>ALLOWS<span style="white-space:pre-wrap"> </span>icmp<span style="white-space:pre-wrap"> </span>-1<span style="white-space:pre-wrap"> </span>-1<span style="white-space:pre-wrap"> </span>FROM<span style="white-space:pre-wrap"> </span>CIDR<span style="white-space:pre-wrap"> </span><a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a><br>
PERMISSION<span style="white-space:pre-wrap"> </span>kohana<span style="white-space:pre-wrap"> </span>default<span style="white-space:pre-wrap"> </span>ALLOWS<span style="white-space:pre-wrap"> </span>tcp<span style="white-space:pre-wrap"> </span>22<span style="white-space:pre-wrap"> </span>22<span style="white-space:pre-wrap"> </span>FROM<span style="white-space:pre-wrap"> </span>CIDR<span style="white-space:pre-wrap"> </span><a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a><br>
PERMISSION<span style="white-space:pre-wrap"> </span>kohana<span style="white-space:pre-wrap"> </span>default<span style="white-space:pre-wrap"> </span>ALLOWS<span style="white-space:pre-wrap"> </span>tcp<span style="white-space:pre-wrap"> </span>80<span style="white-space:pre-wrap"> </span>80<span style="white-space:pre-wrap"> </span>FROM<span style="white-space:pre-wrap"> </span>CIDR<span style="white-space:pre-wrap"> </span><a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a><br>
GROUP<span style="white-space:pre-wrap"> </span>managedit<span style="white-space:pre-wrap"> </span>default<span style="white-space:pre-wrap"> </span>default<br>PERMISSION<span style="white-space:pre-wrap"> </span>managedit<span style="white-space:pre-wrap"> </span>default<span style="white-space:pre-wrap"> </span>ALLOWS<span style="white-space:pre-wrap"> </span>icmp<span style="white-space:pre-wrap"> </span>-1<span style="white-space:pre-wrap"> </span>-1<span style="white-space:pre-wrap"> </span>FROM<span style="white-space:pre-wrap"> </span>CIDR<span style="white-space:pre-wrap"> </span><a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a><br>
PERMISSION<span style="white-space:pre-wrap"> </span>managedit<span style="white-space:pre-wrap"> </span>default<span style="white-space:pre-wrap"> </span>ALLOWS<span style="white-space:pre-wrap"> </span>tcp<span style="white-space:pre-wrap"> </span>22<span style="white-space:pre-wrap"> </span>22<span style="white-space:pre-wrap"> </span>FROM<span style="white-space:pre-wrap"> </span>CIDR<span style="white-space:pre-wrap"> </span><a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a><br>
GROUP<span style="white-space:pre-wrap"> </span>managedit<span style="white-space:pre-wrap"> </span>mysql<span style="white-space:pre-wrap"> </span>MySQL Servers<br>PERMISSION<span style="white-space:pre-wrap"> </span>managedit<span style="white-space:pre-wrap"> </span>mysql<span style="white-space:pre-wrap"> </span>ALLOWS<span style="white-space:pre-wrap"> </span>tcp<span style="white-space:pre-wrap"> </span>22<span style="white-space:pre-wrap"> </span>22<span style="white-space:pre-wrap"> </span>FROM<span style="white-space:pre-wrap"> </span>CIDR<span style="white-space:pre-wrap"> </span><a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a><br>
PERMISSION<span style="white-space:pre-wrap"> </span>managedit<span style="white-space:pre-wrap"> </span>mysql<span style="white-space:pre-wrap"> </span>ALLOWS<span style="white-space:pre-wrap"> </span>icmp<span style="white-space:pre-wrap"> </span>-1<span style="white-space:pre-wrap"> </span>-1<span style="white-space:pre-wrap"> </span>FROM<span style="white-space:pre-wrap"> </span>CIDR<span style="white-space:pre-wrap"> </span><a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a><br>
PERMISSION<span style="white-space:pre-wrap"> </span>managedit<span style="white-space:pre-wrap"> </span>mysql<span style="white-space:pre-wrap"> </span>ALLOWS<span style="white-space:pre-wrap"> </span>tcp<span style="white-space:pre-wrap"> </span>3306<span style="white-space:pre-wrap"> </span>3306<span style="white-space:pre-wrap"> </span>GRPNAME<span style="white-space:pre-wrap"> </span>web<br>
GROUP<span style="white-space:pre-wrap"> </span>managedit<span style="white-space:pre-wrap"> </span>puppet<span style="white-space:pre-wrap"> </span>Puppet Servers<br>
PERMISSION<span style="white-space:pre-wrap"> </span>managedit<span style="white-space:pre-wrap"> </span>puppet<span style="white-space:pre-wrap"> </span>ALLOWS<span style="white-space:pre-wrap"> </span>tcp<span style="white-space:pre-wrap"> </span>22<span style="white-space:pre-wrap"> </span>22<span style="white-space:pre-wrap"> </span>FROM<span style="white-space:pre-wrap"> </span>CIDR<span style="white-space:pre-wrap"> </span><a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a><br>
PERMISSION<span style="white-space:pre-wrap"> </span>managedit<span style="white-space:pre-wrap"> </span>puppet<span style="white-space:pre-wrap"> </span>ALLOWS<span style="white-space:pre-wrap"> </span>icmp<span style="white-space:pre-wrap"> </span>-1<span style="white-space:pre-wrap"> </span>-1<span style="white-space:pre-wrap"> </span>FROM<span style="white-space:pre-wrap"> </span>CIDR<span style="white-space:pre-wrap"> </span><a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a><br>
PERMISSION<span style="white-space:pre-wrap"> </span>managedit<span style="white-space:pre-wrap"> </span>puppet<span style="white-space:pre-wrap"> </span>ALLOWS<span style="white-space:pre-wrap"> </span>tcp<span style="white-space:pre-wrap"> </span>8140<span style="white-space:pre-wrap"> </span>8140<span style="white-space:pre-wrap"> </span>GRPNAME<span style="white-space:pre-wrap"> </span>web<br>
PERMISSION<span style="white-space:pre-wrap"> </span>managedit<span style="white-space:pre-wrap"> </span>puppet<span style="white-space:pre-wrap"> </span>ALLOWS<span style="white-space:pre-wrap"> </span>tcp<span style="white-space:pre-wrap"> </span>8140<span style="white-space:pre-wrap"> </span>8140<span style="white-space:pre-wrap"> </span>GRPNAME<span style="white-space:pre-wrap"> </span>mysql<br>
GROUP<span style="white-space:pre-wrap"> </span>managedit<span style="white-space:pre-wrap"> </span>web<span style="white-space:pre-wrap"> </span>Web Servers<br>PERMISSION<span style="white-space:pre-wrap"> </span>managedit<span style="white-space:pre-wrap"> </span>web<span style="white-space:pre-wrap"> </span>ALLOWS<span style="white-space:pre-wrap"> </span>icmp<span style="white-space:pre-wrap"> </span>-1<span style="white-space:pre-wrap"> </span>-1<span style="white-space:pre-wrap"> </span>FROM<span style="white-space:pre-wrap"> </span>CIDR<span style="white-space:pre-wrap"> </span><a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a><br>
PERMISSION<span style="white-space:pre-wrap"> </span>managedit<span style="white-space:pre-wrap"> </span>web<span style="white-space:pre-wrap"> </span>ALLOWS<span style="white-space:pre-wrap"> </span>tcp<span style="white-space:pre-wrap"> </span>22<span style="white-space:pre-wrap"> </span>22<span style="white-space:pre-wrap"> </span>FROM<span style="white-space:pre-wrap"> </span>CIDR<span style="white-space:pre-wrap"> </span><a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a><br>
PERMISSION<span style="white-space:pre-wrap"> </span>managedit<span style="white-space:pre-wrap"> </span>web<span style="white-space:pre-wrap"> </span>ALLOWS<span style="white-space:pre-wrap"> </span>tcp<span style="white-space:pre-wrap"> </span>80<span style="white-space:pre-wrap"> </span>80<span style="white-space:pre-wrap"> </span>FROM<span style="white-space:pre-wrap"> </span>CIDR<span style="white-space:pre-wrap"> </span><a href="http://0.0.0.0/0" target="_blank">0.0.0.0/0</a></blockquote>
</div><div><br></div><div>And the nova-compute logs:</div><div><br></div><blockquote class="gmail_quote" style="margin-top:0px;margin-right:0px;margin-bottom:0px;margin-left:0.8ex;border-left-width:1px;border-left-color:rgb(204, 204, 204);border-left-style:solid;padding-left:1ex">
2011-10-10 10:22:46,129 DEBUG nova.compute.manager [-] image_id=2, image_size_bytes=1476395008, allowed_size_bytes=10737418240 from (pid=1156) _check_image_size /usr/lib/python2.7/dist-packages/nova/compute/manager.py:354<br>
2011-10-10 10:22:46,130 AUDIT nova.compute.manager [54fe14bf-142e-42d0-8001-b314f9e1a194 kiall managedit] instance 42: starting...<br>2011-10-10 10:22:46,292 DEBUG nova.rpc [-] Making asynchronous call on network ... from (pid=1156) multicall /usr/lib/python2.7/dist-packages/nova/rpc/impl_kombu.py:721<br>
2011-10-10 10:22:46,292 DEBUG nova.rpc [-] MSG_ID is 6dd965a7d04c43f5be475781541166dc from (pid=1156) multicall /usr/lib/python2.7/dist-packages/nova/rpc/impl_kombu.py:724<br>2011-10-10 10:22:46,706 ERROR nova.rpc [-] Exception during message handling<br>
(nova.rpc): TRACE: Traceback (most recent call last):<br>(nova.rpc): TRACE: File "/usr/lib/python2.7/dist-packages/nova/rpc/impl_kombu.py", line 620, in _process_data<br>(nova.rpc): TRACE: rval = node_func(context=ctxt, **node_args)<br>
(nova.rpc): TRACE: File "/usr/lib/python2.7/dist-packages/nova/exception.py", line 98, in wrapped<br>(nova.rpc): TRACE: return f(*args, **kw)<br>(nova.rpc): TRACE: File "/usr/lib/python2.7/dist-packages/nova/compute/manager.py", line 454, in run_instance<br>
(nova.rpc): TRACE: self._run_instance(context, instance_id, **kwargs)<br>(nova.rpc): TRACE: File "/usr/lib/python2.7/dist-packages/nova/compute/manager.py", line 393, in _run_instance<br>(nova.rpc): TRACE: requested_networks=requested_networks)<br>
(nova.rpc): TRACE: File "/usr/lib/python2.7/dist-packages/nova/network/api.py", line 162, in allocate_for_instance<br>(nova.rpc): TRACE: 'args': args})<br>(nova.rpc): TRACE: File "/usr/lib/python2.7/dist-packages/nova/rpc/__init__.py", line 45, in call<br>
(nova.rpc): TRACE: return get_impl().call(context, topic, msg)<br>(nova.rpc): TRACE: File "/usr/lib/python2.7/dist-packages/nova/rpc/impl_kombu.py", line 739, in call<br>(nova.rpc): TRACE: rv = list(rv)<br>
(nova.rpc): TRACE: File "/usr/lib/python2.7/dist-packages/nova/rpc/impl_kombu.py", line 703, in __iter__<br>(nova.rpc): TRACE: raise result<br>(nova.rpc): TRACE: RemoteError: SecurityGroupNotFound Security group 6 not found.<br>
(nova.rpc): TRACE: [u'Traceback (most recent call last):\n', u' File "/usr/lib/python2.7/dist-packages/nova/rpc/impl_kombu.py", line 620, in _process_data\n rval = node_func(context=ctxt, **node_args)\n', u' File "/usr/lib/python2.7/dist-packages/nova/network/manager.py", line 221, in allocate_for_instance\n ips = super(FloatingIP, self).allocate_for_instance(context, **kwargs)\n', u' File "/usr/lib/python2.7/dist-packages/nova/network/manager.py", line 444, in allocate_for_instance\n requested_networks=requested_networks)\n', u' File "/usr/lib/python2.7/dist-packages/nova/network/manager.py", line 171, in _allocate_fixed_ips\n vpn=vpn, address=address)\n', u' File "/usr/lib/python2.7/dist-packages/nova/network/manager.py", line 1032, in allocate_fixed_ip\n instance_id)\n', u' File "/usr/lib/python2.7/dist-packages/nova/network/manager.py", line 403, in _do_trigger_security_group_members_refresh_for_instance\n group_ids)\n', u' File "/usr/lib/python2.7/dist-packages/nova/compute/api.py", line 626, in trigger_security_group_members_refresh\n rule[\'parent_group_id\'])\n', u' File "/usr/lib/python2.7/dist-packages/nova/db/api.py", line 1058, in security_group_get\n return IMPL.security_group_get(context, security_group_id)\n', u' File "/usr/lib/python2.7/dist-packages/nova/db/sqlalchemy/api.py", line 119, in wrapper\n return f(*args, **kwargs)\n', u' File "/usr/lib/python2.7/dist-packages/nova/db/sqlalchemy/api.py", line 2700, in security_group_get\n security_group_id=security_group_id)\n', u'SecurityGroupNotFound: Security group 6 not found.\n']<br>
(nova.rpc): TRACE: <br>2011-10-10 10:23:24,017 INFO nova.compute.manager [-] Found 2 in the database and 1 on the hypervisor.</blockquote><br>Thanks,<br><font color="#888888">Kiall<br>
</font></blockquote></div><br>