Project

General

Profile

Actions
Copy link

Support #22053

closed

Sepia Lab Access Request

Added by Ben England over 6 years ago. Updated over 6 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
David Galloway
Category:
User access
Target version:
-
% Done:

0%

Tags:
Reviewed:
Affected Versions:

Description

1) Do you just need VPN access or will you also be running teuthology jobs?

just VPN access

2) Desired Username:

bengland
I had this username before, I lost my VPN credentials and have to re-establish, what do I need to do?

3) Alternate e-mail address(es) we can reach you at:

4) If you don't already have an established history of code contributions to Ceph, is there an existing community or core developer you've worked with who has reviewed your work and can vouch for your access request?

Patrick Donnelly

If you answered "No" to # 4, please answer the following (paste directly below the question to keep indentation):

4a) Paste a link to a Blueprint or planning doc of yours that was reviewed at a Ceph Developer Monthly.

4b) Paste a link to an accepted pull request for a major patch or feature.

4c) If applicable, include a link to the current project (planning doc, dev branch, or pull request) that you are looking to test.

5) Paste your SSH public key(s) between the pre tags

ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQC93wGgyyQmTxa7f+BZcYPUapTH2N1mnV1ikl9nzJzHhgrtJ6pv00LhtH1HqGhvoqnqZjBD5XRAKyjMRcMBT5MYcXXep5RqZ9sJ6Xz8rHkBjfl/OOQUeZ/ZyG/Ksr1jpGraN2xtr
jQQzbqN1YvirCqfLk2exPvVeEk4CGnNybwKwCWob1uKV46ASrYeQK8pfHxrW7pTo+xdErHOvb7uumZm89/YisUJGicO1qSHBeuw1MxjhnD+fIcxHKWY5NNJ4qScW6a5AABk1JJsoHkh9IGCVaf/zJv8D3gil5SiM8LIBKaNa1fn6o
ObPl/Ky/wkiIo2gmUZawvAVA8iJnX9eUPl ben@bene-laptop

6) Paste your hashed VPN credentials between the pre tags (Format: user@hostname 22CharacterSalt 65CharacterHashedPassword)

bengland@bene-laptop k9r9q3li+6NP6KXW4YVlMQ fae30cf7d17340e0009dedc4b78188ec2cd5737e634ba16070088f7698b3654e

Actions
Copy link
 #1

Updated by David Galloway over 6 years ago

  • Status changed from New to In Progress
  • Assignee set to David Galloway

Ben,

I pushed your new VPN credentials to the VPN server. Please try to connect now and let me know if you're all set.

Actions
Copy link
 #2

Updated by Ben England over 6 years ago

no joy. I'm running Fedora 26. I created a VPN connection called "sepia VPN", with gateway vpn.sepia.ceph.com, username bengland@bene-laptop, and the password was the one in my secret file on line 2. Is that right?

Nov 09 16:41:35 bene-laptop NetworkManager1100: <info> [1510263695.8080] audit: op="connection-activate" uuid="045a97fd-f9b4-4dab-be3e-cebd7d7ed43b" name="sepia VPN" pid=2228 uid=1000 result="success"
Nov 09 16:41:35 bene-laptop NetworkManager1100: <info> [1510263695.8176] vpn-connection[0x5606f09996b0,045a97fd-f9b4-4dab-be3e-cebd7d7ed43b,"sepia VPN",0]: Started the VPN service, PID 4001
Nov 09 16:41:35 bene-laptop NetworkManager1100: <info> [1510263695.8244] vpn-connection[0x5606f09996b0,045a97fd-f9b4-4dab-be3e-cebd7d7ed43b,"sepia VPN",0]: Saw the service appear; activating connection
Nov 09 16:41:35 bene-laptop NetworkManager1100: <info> [1510263695.9092] vpn-connection[0x5606f09996b0,045a97fd-f9b4-4dab-be3e-cebd7d7ed43b,"sepia VPN",0]: VPN connection: (ConnectInteractive) reply received
Nov 09 16:41:36 bene-laptop nm-l2tp-service4001: Check port 1701
Nov 09 16:41:36 bene-laptop nm-l2tp-service4001: xl2tpd started with pid 4009
Nov 09 16:41:36 bene-laptop NetworkManager1100: <info> [1510263696.1054] vpn-connection[0x5606f09996b0,045a97fd-f9b4-4dab-be3e-cebd7d7ed43b,"sepia VPN",0]: VPN plugin: state changed: starting (3)
Nov 09 16:41:36 bene-laptop NetworkManager1100: xl2tpd4009: Not looking for kernel SAref support.
Nov 09 16:41:36 bene-laptop NetworkManager1100: xl2tpd4009: Using l2tp kernel support.
Nov 09 16:41:36 bene-laptop NetworkManager1100: xl2tpd4009: xl2tpd version xl2tpd-1.3.8 started on bene-laptop PID:4009
Nov 09 16:41:36 bene-laptop NetworkManager1100: xl2tpd4009: Written by Mark Spencer, Copyright (C) 1998, Adtran, Inc.
Nov 09 16:41:36 bene-laptop NetworkManager1100: xl2tpd4009: Forked by Scott Balmos and David Stipp, (C) 2001
Nov 09 16:41:36 bene-laptop NetworkManager1100: xl2tpd4009: Inherited by Jeff McAdams, (C) 2002
Nov 09 16:41:36 bene-laptop NetworkManager1100: xl2tpd4009: Forked again by Xelerance (www.xelerance.com) (C) 2006-2016
Nov 09 16:41:36 bene-laptop NetworkManager1100: xl2tpd4009: Listening on IP address 0.0.0.0, port 1701
Nov 09 16:41:36 bene-laptop NetworkManager1100: xl2tpd4009: Connecting to host 8.43.84.129, port 1701
Nov 09 16:41:50 bene-laptop NetworkManager1100: xl2tpd4009: death_handler: Fatal signal 15 received
Nov 09 16:41:50 bene-laptop NetworkManager1100: xl2tpd4009: Connection 0 closed to 8.43.84.129, port 1701 (Server closing)
Nov 09 16:41:50 bene-laptop NetworkManager1100: <warn> [1510263710.1205] vpn-connection[0x5606f09996b0,045a97fd-f9b4-4dab-be3e-cebd7d7ed43b,"sepia VPN",0]: VPN plugin: failed: connect-failed (1)
Nov 09 16:41:50 bene-laptop NetworkManager1100: <warn> [1510263710.1207] vpn-connection[0x5606f09996b0,045a97fd-f9b4-4dab-be3e-cebd7d7ed43b,"sepia VPN",0]: VPN plugin: failed: connect-failed (1)
Nov 09 16:41:50 bene-laptop NetworkManager1100: <info> [1510263710.1210] vpn-connection[0x5606f09996b0,045a97fd-f9b4-4dab-be3e-cebd7d7ed43b,"sepia VPN",0]: VPN plugin: state changed: stopping (5)
Nov 09 16:41:50 bene-laptop NetworkManager1100: <info> [1510263710.1235] vpn-connection[0x5606f09996b0,045a97fd-f9b4-4dab-be3e-cebd7d7ed43b,"sepia VPN",0]: VPN service disappeared
Nov 09 16:43:06 bene-laptop csd-power2057: g_dbus_proxy_get_object_path: assertion 'G_IS_DBUS_PROXY (proxy)' failed
Nov 09 16:43:10 bene-laptop csd-power2057: g_dbus_proxy_get_object_path: assertion 'G_IS_DBUS_PROXY (proxy)' failed
Nov 09 16:45:02 bene-laptop dhclient2729: XMT: Renew on wlp58s0, interval 555940ms.
Nov 09 16:45:06 bene-laptop csd-power2057: g_dbus_proxy_get_object_path: assertion 'G_IS_DBUS_PROXY (proxy)' failed
Nov 09 16:45:10 bene-laptop csd-power2057: g_dbus_proxy_get_object_path: assertion 'G_IS_DBUS_PROXY (proxy)' failed

Actions
Copy link
 #3

Updated by Vasu Kulkarni over 6 years ago

Not sure you uncommented out user: nobody, group: nobody line in sepia.conf (it is there somwhere in doc )

my conf looks like

[vakulkar@vakulkar ~]$ cat /etc/openvpn/sepia.conf 
script-security 1
client
# TODO dns name
remote vpn.sepia.ceph.com 1194
dev tun
remote-random
resolv-retry infinite
nobind
#user nobody
#group nogroup
persist-tun
persist-key
comp-lzo
verb 2
mute 10
remote-cert-tls server
tls-auth sepia.client/tlsauth 1
ca sepia.client/ca.crt
auth-user-pass sepia.client/secret

Actions
Copy link
 #4

Updated by David Galloway over 6 years ago

@Vasu Kulkarni that's not it.

@Ben Webber, looks like your config has port 1701 as the OpenVPN gateway's port. It should be 1194.

Ping me on IRC and we can get this sorted more quickly.

Actions
Copy link
 #5

Updated by David Galloway over 6 years ago

  • Status changed from In Progress to Resolved
Actions
Copy link
 #6

Updated by Ben England over 6 years ago

Dave Galloway helped me, I had to do this:

bengland# su -
  1. cd /etc/openvpn
  2. openvpn --config sepia/client.conf
Actions
Copy link

Also available in: Atom PDF