Stefan G. Weichinger
2013-Oct-04 05:12 UTC
[libvirt-users] failing connections w/ virt-manager
Greetings ...
I already spent quite some time to debug this ...
See the thread on gentoo-user ml for reference:
http://permalink.gmane.org/gmane.linux.gentoo.user/270091
basically I get dropped connections when I try to edit a VM via
virt-manager. Tested from my gentoo workstation and a fresh ubuntu
installation inside a VM at my office.
The server is a new and shiny gentoo box with (gentoo release-numbers):
libvirt-1.1.2-r3
qemu-1.5.3
openssh-5.9_p1-r4
...
64bit, lots of RAM and CPUs .. installed last week ... so no obvious
cruft on there.
plain ssh sessions work fine for me.
I access the server over an IPSEC-VPN terminated on my pfsense-router
and on the customers side there is a firewall. This firewall allows full
access for my private subnet, TCP/UDP ports 1:65535 ... so there should
be no restrictions.
Another issue: the server runs with systemd-204-r1 ... maybe important.
# systemctl status libvirtd
libvirtd.service - Virtualization daemon
Loaded: loaded (/usr/lib64/systemd/system/libvirtd.service; enabled)
Active: active (running) since Do 2013-10-03 17:39:37 CEST; 13h ago
Main PID: 1242 (libvirtd)
CGroup: name=systemd:/system/libvirtd.service
└─1242 /usr/sbin/libvirtd --listen
Okt 03 17:39:38 jupiter libvirtd[1242]: [251B blob data]
Okt 03 17:39:38 jupiter libvirtd[1242]: [254B blob data]
Okt 03 17:39:38 jupiter libvirtd[1242]: [301B blob data]
Okt 03 17:39:38 jupiter libvirtd[1242]: firewall tools were not found or
cannot be used
Okt 03 17:39:41 jupiter libvirtd[1242]: [338B blob data]
Okt 03 17:39:41 jupiter libvirtd[1242]: failed to add iptables rule to
allow DHCP requests from 'virbr0'
Okt 03 17:41:07 jupiter libvirtd[1242]: No response from client
0x7fe8b0c19450 after 5 keepalive messages in 31 seconds
Okt 04 06:35:28 jupiter libvirtd[1242]: No response from client
0x7fe8b0c171a0 after 5 keepalive messages in 32 seconds
Okt 04 06:40:05 jupiter libvirtd[1242]: No response from client
0x7fe8b0c164e0 after 5 keepalive messages in 31 seconds
Okt 04 06:58:36 jupiter libvirtd[1242]: No response from client
0x7fe8b0c17050 after 5 keepalive messages in 31 seconds
What to install for the "firewall tools"? Gentoo didn't pull
anything
related ... Is that relevant?
What about these keepalive messages, I assume this is responsible for my
failing virt-manager-connections.
Thanks for any help on this, I am quite stuck here already ...
Stefan
Stefan G. Weichinger
2013-Oct-04 09:26 UTC
Re: [libvirt-users] failing connections w/ virt-manager
Am 04.10.2013 07:12, schrieb Stefan G. Weichinger:> Thanks for any help on this, I am quite stuck here already ...managed to edit the xml so far that I can boot from an iso ... still have to edit stuff ... In virt-viewer and virt-manager I don't have valid keyboard ... what could be the reason? I somehow wonder if the sockets used are somehow closed down or something ... ? S
Stefan G. Weichinger
2013-Oct-04 14:03 UTC
Re: [libvirt-users] failing connections w/ virt-manager
Am 04.10.2013 11:26, schrieb Stefan G. Weichinger:> Am 04.10.2013 07:12, schrieb Stefan G. Weichinger: > >> Thanks for any help on this, I am quite stuck here already ... > > managed to edit the xml so far that I can boot from an iso ... still > have to edit stuff ... > > In virt-viewer and virt-manager I don't have valid keyboard ... what > could be the reason? > > I somehow wonder if the sockets used are somehow closed down or > something ... ?Additional thought: could it have to do with some IPv4/IPv6 topic? The connection is IPv4 only ... but maybe the keepalive messages get lost because the server tries to talk back via IPv6?? I dont know anything about that ... I will try that as soon as I have access again. Right now I am on the road ... Thanks for any help on this ...