Support #57291
openSepia Lab Access Request
0%
Description
1) Do you just need VPN access or will you also be running teuthology jobs? Run teuthology jobs
2) Desired Username: tobias-urdin
3) Alternate e-mail address(es) we can reach you at: tobias.urdin@gmail.com / tobias.urdin@binero.com
4) If you don't already have an established history of code contributions to Ceph, is there an existing community or core developer you've worked with who has reviewed your work and can vouch for your access request? Casey Bodley, please refer to https://github.com/ceph/ceph/pull/45395
If you answered "No" to # 4, please answer the following (paste directly below the question to keep indentation):
4a) Paste a link to a Blueprint or planning doc of yours that was reviewed at a Ceph Developer Monthly.
4b) Paste a link to an accepted pull request for a major patch or feature.
4c) If applicable, include a link to the current project (planning doc, dev branch, or pull request) that you are looking to test.
See this, need to get tests working for this https://github.com/ceph/ceph/pull/45395
5) Paste your SSH public key(s) between the pre
tags
ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIAvcS+MxlG7+0/5C5cNPc2ZvGF198Z1Z9hzk/NRZwJ41 tobias-urdin@MacBook-Pro
6) Paste your hashed VPN credentials between the pre
tags (Format: user@hostname 22CharacterSalt 65CharacterHashedPassword
)
tobias-urdin@MacBook-Pro iIc/e7YQ6hCP0i2J+fwOMQ 004bbddaf384803da5043e0ede184645b35373c86c2012b8ae153e5767ffdc6e
Updated by adam kraitman over 1 year ago
- Category set to User access
- Status changed from New to In Progress
- Assignee set to adam kraitman
Updated by adam kraitman over 1 year ago
Hey, Casey Bodley can you vouch for Tobias's access request?
Thanks
Updated by Casey Bodley over 1 year ago
adam kraitman wrote:
Hey, Casey Bodley can you vouch for Tobias's access request?
Thanks
i will gladly vouch. thanks Adam
Updated by Tobias Urdin over 1 year ago
Hello Adam, have you had time to look into this?
Updated by adam kraitman over 1 year ago
Hey Tobias Urdin,
You should have access to the Sepia lab now. Please verify you're able to connect to the vpn and ssh tobias-urdin@teuthology.front.sepia.ceph.com using the private key matching the pubkey you provided.
Be sure to check out the following links for final workstation setup steps:
https://wiki.sepia.ceph.com/doku.php?id=vpnaccess#vpn_client_access
https://wiki.sepia.ceph.com/doku.php?id=testnodeaccess#ssh_config
Most developers choose to schedule runs from the shared teuthology VM. For information on that, see http://docs.ceph.com/teuthology/docs/intro_testers.html
If you plan on scheduling tests, one of the options you'll need to set with teuthology-suite is -p, --priority. Please refrain from using a priority lower than 101 (lower number = higher priority). When a high priority is used, it locks up too many testnodes at once and prevents other developers from testing changes.
Thanks.
Updated by Tobias Urdin over 1 year ago
Hello,
I'm trying to connect using the username and password in the sepha/secret file but I get auth failed:
2022-09-14 11:06:02.105155 Control Channel: TLSv1.2, cipher TLSv1.2 ECDHE-RSA-AES256-GCM-SHA384, peer certificate: 2432 bit RSA, signature: RSA-SHA256 2022-09-14 11:06:02.105364 [openvpn-sepia] Peer Connection Initiated with [AF_INET]8.43.84.129:1194 2022-09-14 11:06:03.205748 MANAGEMENT: >STATE:1663146363,GET_CONFIG,,,,,, 2022-09-14 11:06:03.206060 SENT CONTROL [openvpn-sepia]: 'PUSH_REQUEST' (status=1) 2022-09-14 11:06:03.366700 AUTH: Received control message: AUTH_FAILED 2022-09-14 11:06:03.371712 SIGUSR1[soft,auth-failure] received, process restarting
Any ideas?
Best regards
Tobias
Updated by adam kraitman over 1 year ago
If you re-run the new-client script, It's unfortunately not idempotent so if you re-ran it and still have the output, we'll need the new string it printed. If you don't have the output, please re-run it again and send the new string.
Updated by Tobias Urdin over 1 year ago
I haven't executed it again, but let me try that and send you the new output, see below.
tobias-urdin@MacBook-Pro Jijg1mTKw8qdNhKZ6cwTBw 6f6765f213c03e8014269ff02749a526e14662f240f271813d05f68f0c9e4376
Updated by adam kraitman over 1 year ago
You can try to restart the vpn service and try again
sudo service openvpn restart
OR
sudo systemctl restart openvpn@sepia
OR
sudo systemctl restart openvpn-client@sepia
Updated by Tobias Urdin over 1 year ago
Getting there, now I can connect but not access the host. I can also see in the OpenVPN log that it's reconnecting after a while due to inactivity timeout.
Can you see anythign in the server logs?
tobias.urdin@MacBook-Pro ~ % netstat -nr | grep 172.21 172.21/20 172.21.49.161 UGSc utun5 172.21.32/20 172.21.49.161 UGSc utun5 172.21.48.1/32 172.21.49.161 UGSc utun5 172.21.49.161 172.21.49.162 UH utun5 172.21.64/24 172.21.49.161 UGSc utun5 172.21.65/24 172.21.49.161 UGSc utun5 172.21.66/24 172.21.49.161 UGSc utun5 172.21.67/24 172.21.49.161 UGSc utun5 tobias.urdin@MacBook-Pro ~ % dig teuthology.front.sepia.ceph.com +short 172.21.0.51 tobias.urdin@MacBook-Pro ~ % ssh tobias-urdin@teuthology.front.sepia.ceph.com ^C tobias.urdin@MacBook-Pro ~ % nc -v -w 10 teuthology.front.sepia.ceph.com 22 nc: connectx to teuthology.front.sepia.ceph.com port 22 (tcp) failed: Operation timed out tobias.urdin@MacBook-Pro ~ % route -n get 172.21.0.51 route to: 172.21.0.51 destination: 172.21.0.51 gateway: 172.21.49.161 interface: utun5 flags: <UP,GATEWAY,HOST,DONE,WASCLONED,IFSCOPE,IFREF> recvpipe sendpipe ssthresh rtt,msec rttvar hopcount mtu expire 0 0 0 0 0 0 1500 0 tobias.urdin@MacBook-Pro ~ % ping -c3 172.21.0.51 PING 172.21.0.51 (172.21.0.51): 56 data bytes Request timeout for icmp_seq 0 Request timeout for icmp_seq 1 --- 172.21.0.51 ping statistics --- 3 packets transmitted, 0 packets received, 100.0% packet loss tobias.urdin@MacBook-Pro ~ % ping -c3 172.21.49.161 PING 172.21.49.161 (172.21.49.161): 56 data bytes Request timeout for icmp_seq 0 Request timeout for icmp_seq 1 --- 172.21.49.161 ping statistics --- 3 packets transmitted, 0 packets received, 100.0% packet loss tobias.urdin@MacBook-Pro ~ % ping -c3 172.21.49.162 PING 172.21.49.162 (172.21.49.162): 56 data bytes Request timeout for icmp_seq 0 Request timeout for icmp_seq 1 --- 172.21.49.162 ping statistics --- 3 packets transmitted, 0 packets received, 100.0% packet loss
Updated by adam kraitman over 1 year ago
Please send me the output of those commands
openvpn --config /etc/openvpn/sepia.conf --cd /etc/openvpn --verb 5
OR
openvpn --config /etc/openvpn/client/sepia.conf --cd /etc/openvpn/client --verb 5
and
sudo systemctl status openvpn@sepia
OR
sudo systemctl status openvpn-client@sepia
Updated by Tobias Urdin over 1 year ago
I was able to get it working, sorry for the noise.
tobias-urdin@teuthology:~$ hostname teuthology tobias-urdin@teuthology:~$ whoami tobias-urdin