I have already given permissions to ping and ssh.<div><br></div><div><div>output from euca-describe-group:</div><div>GROUP<span class="Apple-tab-span" style="white-space:pre"> </span>myproject<span class="Apple-tab-span" style="white-space:pre"> </span>default<span class="Apple-tab-span" style="white-space:pre"> </span>default</div>
<div>PERMISSION<span class="Apple-tab-span" style="white-space:pre"> </span>myproject<span class="Apple-tab-span" style="white-space:pre"> </span>default<span class="Apple-tab-span" style="white-space:pre"> </span>ALLOWS<span class="Apple-tab-span" style="white-space:pre"> </span>tcp<span class="Apple-tab-span" style="white-space:pre"> </span>22<span class="Apple-tab-span" style="white-space:pre"> </span>22<span class="Apple-tab-span" style="white-space:pre"> </span>FROM<span class="Apple-tab-span" style="white-space:pre"> </span>CIDR<span class="Apple-tab-span" style="white-space:pre"> </span><a href="http://0.0.0.0/0">0.0.0.0/0</a></div>
<div>PERMISSION<span class="Apple-tab-span" style="white-space:pre"> </span>myproject<span class="Apple-tab-span" style="white-space:pre"> </span>default<span class="Apple-tab-span" style="white-space:pre"> </span>ALLOWS<span class="Apple-tab-span" style="white-space:pre"> </span>icmp<span class="Apple-tab-span" style="white-space:pre"> </span>-1<span class="Apple-tab-span" style="white-space:pre"> </span>-1<span class="Apple-tab-span" style="white-space:pre"> </span>FROM<span class="Apple-tab-span" style="white-space:pre"> </span>CIDR<span class="Apple-tab-span" style="white-space:pre"> </span><a href="http://0.0.0.0/0">0.0.0.0/0</a></div>
<br><div class="gmail_quote">On Tue, Jan 10, 2012 at 4:17 PM, Brebner, Gavin <span dir="ltr"><<a href="mailto:gavin.brebner@hp.com">gavin.brebner@hp.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div lang="EN-US" link="blue" vlink="purple"><div><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"><u></u> <u></u></span></p><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">In my experience this usually this means you have forgotten to set up a security group – you need to run euca-authorize / nova secgroup commands. By default<u></u><u></u></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d">there is no network access.<u></u><u></u></span></p><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"><u></u> <u></u></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"> Gavin<u></u><u></u></span></p><p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri","sans-serif";color:#1f497d"><u></u> <u></u></span></p>
<div style="border:none;border-left:solid blue 1.5pt;padding:0in 0in 0in 4.0pt"><div><div style="border:none;border-top:solid #b5c4df 1.0pt;padding:3.0pt 0in 0in 0in"><p class="MsoNormal"><b><span style="font-size:10.0pt;font-family:"Tahoma","sans-serif"">From:</span></b><span style="font-size:10.0pt;font-family:"Tahoma","sans-serif""> openstack-bounces+gavin.brebner=<a href="mailto:hp.com@lists.launchpad.net" target="_blank">hp.com@lists.launchpad.net</a> [mailto:<a href="mailto:openstack-bounces%2Bgavin.brebner" target="_blank">openstack-bounces+gavin.brebner</a>=<a href="mailto:hp.com@lists.launchpad.net" target="_blank">hp.com@lists.launchpad.net</a>] <b>On Behalf Of </b>Leander Bessa<br>
<b>Sent:</b> Tuesday, January 10, 2012 5:08 PM<br><b>To:</b> <a href="mailto:openstack@lists.launchpad.net" target="_blank">openstack@lists.launchpad.net</a><br><b>Subject:</b> [Openstack] Can't pimg<u></u><u></u></span></p>
</div></div><div><div class="h5"><p class="MsoNormal"><u></u> <u></u></p><p class="MsoNormal">Hello, <br><br>I'm having trouble accessing the instances that are being launched. I have two nodes a controller and a compute. They are both running Ubuntu 11.10 (64bits) and using KVM as hypervisor. When i launch an instance, i can see the instances is launched with the command euca-describe-instances, however i can neither ping or ssh into it through the controller node. I've checked the nova-network and nova-manage logs and didn't find anything out of the ordinary. I've also check the libvirt logs in the compute node and can't seem to find anything wrong with it.<u></u><u></u></p>
<div><p class="MsoNormal"><u></u> <u></u></p></div><div><p class="MsoNormal">Previously i had a single node with qemu and everything worked fine. Now that i switched to a multi-node environment with KVM things stopped working. The controller has the ip 192.168.82.24 and the compute 192.168.111.220. Floating range for public IPs is 192.168.111.236-240.<u></u><u></u></p>
<div><p class="MsoNormal"><u></u> <u></u></p></div><div><div><p class="MsoNormal">Any ideas?<u></u><u></u></p></div><div><div><p class="MsoNormal"><u></u> <u></u></p></div><div><p class="MsoNormal">The controller the following nova.conf file:<u></u><u></u></p>
</div><div><div><p class="MsoNormal">--daemonize=1<u></u><u></u></p></div><div><p class="MsoNormal">--dhcpbridge_flagfile=/etc/nova/nova.conf<u></u><u></u></p></div><div><p class="MsoNormal">--dhcpbridge=/usr/bin/nova-dhcpbridge<u></u><u></u></p>
</div><div><p class="MsoNormal">--logdir=/var/log/nova<u></u><u></u></p></div><div><p class="MsoNormal">--state_path=/var/lib/nova<u></u><u></u></p></div><div><p class="MsoNormal">--verbose<u></u><u></u></p></div><div><p class="MsoNormal">
--libvirt_type=kvm<u></u><u></u></p></div><div><p class="MsoNormal">--sql_connection=mysql://<a href="http://root:nova@192.168.82.24/nova" target="_blank">root:nova@192.168.82.24/nova</a><u></u><u></u></p></div><div><p class="MsoNormal">
--s3_host=192.168.82.24<u></u><u></u></p></div><div><p class="MsoNormal">--rabbit_host=192.168.82.24<u></u><u></u></p></div><div><p class="MsoNormal">--ec2_host=192.168.82.24<u></u><u></u></p></div><div><p class="MsoNormal">
--ec2_dmz_host=192.168.82.24<u></u><u></u></p></div><div><p class="MsoNormal">--ec2_url=<a href="http://192.168.82.24:8773/services/Cloud" target="_blank">http://192.168.82.24:8773/services/Cloud</a><u></u><u></u></p></div>
<div><p class="MsoNormal">--fixed_range=<a href="http://10.1.1.0/24" target="_blank">10.1.1.0/24</a><u></u><u></u></p></div><div><p class="MsoNormal">--network_size=64<u></u><u></u></p></div><div><p class="MsoNormal">--num_networks=1<u></u><u></u></p>
</div><div><p class="MsoNormal">--FAKE_subdomain=ec2<u></u><u></u></p></div><div><p class="MsoNormal">--public_interface=eth0<u></u><u></u></p></div><div><p class="MsoNormal">--state_path=/var/lib/nova<u></u><u></u></p></div>
<div><p class="MsoNormal">--lock_path=/var/lock/nova<u></u><u></u></p></div><div><p class="MsoNormal">--glance_host=192.168.82.24<u></u><u></u></p></div><div><p class="MsoNormal">--image_service=nova.image.glance.GlanceImageService<u></u><u></u></p>
</div><div><p class="MsoNormal">--glance_api_servers=<a href="http://192.168.82.24:9292" target="_blank">192.168.82.24:9292</a><u></u><u></u></p></div><div><p class="MsoNormal">--vlan_start=100<u></u><u></u></p></div><div>
<p class="MsoNormal">--vlan_interface=eth1<u></u><u></u></p></div><div><p class="MsoNormal">--iscsi_ip_prefix=192.168.<u></u><u></u></p></div><div><p class="MsoNormal"><u></u> <u></u></p></div></div><div><p class="MsoNormal">
<u></u> <u></u></p></div><div><p class="MsoNormal">The controller has this config file.<u></u><u></u></p></div><div><div><p class="MsoNormal">--daemonize=1<u></u><u></u></p></div><div><p class="MsoNormal">--dhcpbridge_flagfile=/etc/nova/nova.conf<u></u><u></u></p>
</div><div><p class="MsoNormal">--dhcpbridge=/usr/bin/nova-dhcpbridge<u></u><u></u></p></div><div><p class="MsoNormal">--logdir=/var/log/nova<u></u><u></u></p></div><div><p class="MsoNormal">--state_path=/var/lib/nova<u></u><u></u></p>
</div><div><p class="MsoNormal">--verbose<u></u><u></u></p></div><div><p class="MsoNormal">--libvirt_type=kvm<u></u><u></u></p></div><div><p class="MsoNormal">--sql_connection=mysql://<a href="http://root:nova@192.168.82.24/nova" target="_blank">root:nova@192.168.82.24/nova</a><u></u><u></u></p>
</div><div><p class="MsoNormal">--s3_host=192.168.82.24<u></u><u></u></p></div><div><p class="MsoNormal">--rabbit_host=192.168.82.24<u></u><u></u></p></div><div><p class="MsoNormal">--ec2_host=192.168.82.24<u></u><u></u></p>
</div><div><p class="MsoNormal">--ec2_dmz_host=192.168.82.24<u></u><u></u></p></div><div><p class="MsoNormal">--ec2_url=<a href="http://192.168.82.24:8773/services/Cloud" target="_blank">http://192.168.82.24:8773/services/Cloud</a><u></u><u></u></p>
</div><div><p class="MsoNormal">--fixed_range=<a href="http://10.1.1.0/24" target="_blank">10.1.1.0/24</a><u></u><u></u></p></div><div><p class="MsoNormal">--network_size=64<u></u><u></u></p></div><div><p class="MsoNormal">
--num_networks=1<u></u><u></u></p></div><div><p class="MsoNormal">--FAKE_subdomain=ec2<u></u><u></u></p></div><div><p class="MsoNormal">--public_interface=eth0<u></u><u></u></p></div><div><p class="MsoNormal">--state_path=/var/lib/nova<u></u><u></u></p>
</div><div><p class="MsoNormal">--lock_path=/var/lock/nova<u></u><u></u></p></div><div><p class="MsoNormal">--glance_host=192.168.82.24<u></u><u></u></p></div><div><p class="MsoNormal">--image_service=nova.image.glance.GlanceImageService<u></u><u></u></p>
</div><div><p class="MsoNormal">--glance_api_servers=<a href="http://192.168.82.24:9292" target="_blank">192.168.82.24:9292</a><u></u><u></u></p></div><div><p class="MsoNormal">--vlan_start=100<u></u><u></u></p></div><div>
<p class="MsoNormal">--vlan_interface=eth1<u></u><u></u></p></div></div></div></div></div><div><p class="MsoNormal"><u></u> <u></u></p></div><div><p class="MsoNormal">Regards,<u></u><u></u></p></div><div><p class="MsoNormal">
<br>Leander<u></u><u></u></p></div></div></div></div></div></div></blockquote></div><br></div>