iaas구축 운영가이드 교재 질문] vm에 ssh 접근이 불가합니다 > 질문답변

본문 바로가기

사이트 내 전체검색

뒤로가기 질문답변

iaas구축 운영가이드 교재 질문] vm에 ssh 접근이 불가합니다

페이지 정보

작성자 devmes0105 작성일 22-12-23 01:05 조회 2,572 댓글 0

본문

교재 내용대로 vm 생성했는데 22 connection time out으로 접속이 불가합니다.

 

===========

(kolla) [user@controller ~]$ ip a

1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000

    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00

    inet 127.0.0.1/8 scope host lo

       valid_lft forever preferred_lft forever

    inet6 ::1/128 scope host

       valid_lft forever preferred_lft forever

2: ens192: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP group default qlen 1000

    link/ether 00:0c:29:46:03:86 brd ff:ff:ff:ff:ff:ff

    altname enp11s0

    inet 192.168.200.10/24 brd 192.168.200.255 scope global noprefixroute ens192

       valid_lft forever preferred_lft forever

    inet6 fe80::20c:29ff:fe46:386/64 scope link noprefixroute

       valid_lft forever preferred_lft forever

3: ens224: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP group default qlen 1000

    link/ether 00:0c:29:46:03:90 brd ff:ff:ff:ff:ff:ff

    altname enp19s0

    inet 192.168.210.10/24 brd 192.168.210.255 scope global noprefixroute ens224

       valid_lft forever preferred_lft forever

    inet6 fe80::20c:29ff:fe46:390/64 scope link noprefixroute

       valid_lft forever preferred_lft forever

4: docker0: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue state DOWN group default

    link/ether 02:42:ea:f0:c6:a1 brd ff:ff:ff:ff:ff:ff

    inet 172.17.0.1/16 brd 172.17.255.255 scope global docker0

       valid_lft forever preferred_lft forever

==========

[user@network ~]$ ip a

1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000

    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00

    inet 127.0.0.1/8 scope host lo

       valid_lft forever preferred_lft forever

    inet6 ::1/128 scope host

       valid_lft forever preferred_lft forever

2: ens192: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP group default qlen 1000

    link/ether 00:0c:29:b3:20:e3 brd ff:ff:ff:ff:ff:ff

    altname enp11s0

    inet 192.168.200.40/24 brd 192.168.200.255 scope global noprefixroute ens192

       valid_lft forever preferred_lft forever

    inet 192.168.200.150/32 scope global ens192

       valid_lft forever preferred_lft forever

    inet6 fe80::20c:29ff:feb3:20e3/64 scope link noprefixroute

       valid_lft forever preferred_lft forever

3: ens224: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP group default qlen 1000

    link/ether 00:0c:29:b3:20:ed brd ff:ff:ff:ff:ff:ff

    altname enp19s0

    inet 192.168.210.40/24 brd 192.168.210.255 scope global noprefixroute ens224

       valid_lft forever preferred_lft forever

    inet 192.168.210.250/32 scope global ens224

       valid_lft forever preferred_lft forever

    inet6 fe80::20c:29ff:feb3:20ed/64 scope link noprefixroute

       valid_lft forever preferred_lft forever

4: ens256: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq master ovs-system state UP group default qlen 1000

    link/ether 00:0c:29:b3:20:f7 brd ff:ff:ff:ff:ff:ff

    altname enp27s0

    inet 192.168.200.51/24 brd 192.168.200.255 scope global dynamic noprefixroute ens256

       valid_lft 75311sec preferred_lft 75311sec

    inet6 fe80::20c:29ff:feb3:20f7/64 scope link noprefixroute

       valid_lft forever preferred_lft forever

5: docker0: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue state DOWN group default

    link/ether 02:42:fc:a3:4b:85 brd ff:ff:ff:ff:ff:ff

    inet 172.17.0.1/16 brd 172.17.255.255 scope global docker0

       valid_lft forever preferred_lft forever

6: ovs-system: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN group default qlen 1000

    link/ether f2:e3:c9:f0:20:61 brd ff:ff:ff:ff:ff:ff

7: br-ex: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN group default qlen 1000

    link/ether 00:0c:29:b3:20:f7 brd ff:ff:ff:ff:ff:ff

8: br-int: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN group default qlen 1000

    link/ether 6a:8d:56:e5:49:40 brd ff:ff:ff:ff:ff:ff

9: br-tun: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN group default qlen 1000

    link/ether ea:e9:5b:ab:84:44 brd ff:ff:ff:ff:ff:ff

16: vxlan_sys_4789: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 65000 qdisc noqueue master ovs-system state UNKNOWN group default qlen 1000

    link/ether b2:1c:68:e6:b9:c3 brd ff:ff:ff:ff:ff:ff

    inet6 fe80::b01c:68ff:fee6:b9c3/64 scope link

       valid_lft forever preferred_lft forever

==========

[user@compute1 ~]$ ip a

1: lo: <LOOPBACK,UP,LOWER_UP> mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000

    link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00

    inet 127.0.0.1/8 scope host lo

       valid_lft forever preferred_lft forever

    inet6 ::1/128 scope host

       valid_lft forever preferred_lft forever

2: ens192: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP group default qlen 1000

    link/ether 00:0c:29:9c:00:58 brd ff:ff:ff:ff:ff:ff

    altname enp11s0

    inet 192.168.200.20/24 brd 192.168.200.255 scope global noprefixroute ens192

       valid_lft forever preferred_lft forever

    inet6 fe80::20c:29ff:fe9c:58/64 scope link noprefixroute

       valid_lft forever preferred_lft forever

3: ens224: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP group default qlen 1000

    link/ether 00:0c:29:9c:00:62 brd ff:ff:ff:ff:ff:ff

    altname enp19s0

    inet 192.168.210.20/24 brd 192.168.210.255 scope global noprefixroute ens224

       valid_lft forever preferred_lft forever

    inet6 fe80::20c:29ff:fe9c:62/64 scope link noprefixroute

       valid_lft forever preferred_lft forever

4: ens256: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc mq state UP group default qlen 1000

    link/ether 00:0c:29:9c:00:6c brd ff:ff:ff:ff:ff:ff

    altname enp27s0

    inet 192.168.220.20/24 brd 192.168.220.255 scope global noprefixroute ens256

       valid_lft forever preferred_lft forever

    inet6 fe80::20c:29ff:fe9c:6c/64 scope link noprefixroute

       valid_lft forever preferred_lft forever

5: docker0: <NO-CARRIER,BROADCAST,MULTICAST,UP> mtu 1500 qdisc noqueue state DOWN group default

    link/ether 02:42:91:c7:7e:50 brd ff:ff:ff:ff:ff:ff

    inet 172.17.0.1/16 brd 172.17.255.255 scope global docker0

       valid_lft forever preferred_lft forever

6: ovs-system: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN group default qlen 1000

    link/ether 02:f8:29:d3:87:e6 brd ff:ff:ff:ff:ff:ff

7: br-int: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN group default qlen 1000

    link/ether 2a:bc:6e:72:69:45 brd ff:ff:ff:ff:ff:ff

8: br-tun: <BROADCAST,MULTICAST> mtu 1500 qdisc noop state DOWN group default qlen 1000

    link/ether a2:0c:26:05:a3:40 brd ff:ff:ff:ff:ff:ff

==========

external은 192.168.200.0/24 인 라우터에 묶여있고 (nat로 외부 통신 가능)

internal은 192.168.210./24 대역 라우터에 묶여있고 (외부 통신 불가)

neutron-ex는 192.168.200.0/24인 라우터 (external과 다름) 로 묶여 있는 상태 입니다.

 

통신이 안되는 이유가 있을까요?

 

vm -> 10.10.10.253, 192.168.200.131

kolla-internal 10.10.10.0/24

kolla-exsubnet 192.168.200.0/24

 

kolla-security

IPv4 tcp to 0.0.0.0/0 허용

IPv4 icmp from 0.0.0.0/0 허용

IPv4 tcp from 0.0.0.0/0 허용

default

IPv6 to ::/0 허용

IPv4 to 0.0.0.0/0 허용

IPv4 from default 허용

IPv6 from default 허용

 

접근은 192.168.200.0/24 대역에서 진행했습니다 (external router)

확인 부탁드립니다

 

+ ssh 접근은 안되고 콘솔은 되는 상황이라 혹시 패스워드를 미리 지정해서 인스톨 하는 방식도 있을까요? 감사합니다

댓글목록 0

등록된 댓글이 없습니다.

Copyright © 소유하신 도메인. All rights reserved.

사이트 정보

회사명 : (주)리눅스데이타시스템 / 대표 : 정정모
서울본사 : 서울특별시 강남구 봉은사로 114길 40 홍선빌딩 2층 / tel : 02-6207-1160
대전지사 : 대전광역시 유성구 노은로174 도원프라자 5층 / tel : 042-331-1161

PC 버전으로 보기