OpenVZ Forum


Home » General » Support » sshd (and other daemons) on OpenVZ HN resets connection
sshd (and other daemons) on OpenVZ HN resets connection [message #34641] Thu, 22 January 2009 19:51 Go to next message
Sixtus is currently offline  Sixtus
Messages: 7
Registered: January 2009
Location: Germany
Junior Member
Hi all,

my first post and question.

First my system:
OpenVZ running on DELL 2950 under Etch, kernel 2.6.18-14-fza-amd64, installed from repository.

4 network interfaces, OpenVZ is running on eth0 which is currently the only connected interface.
IP address is 10.150.127.61/255.255.224.0 so a pure internal network.
VEs have have IPs of the range 10.150.103.0/255.255.224.0 and work perfectly.

Well, sshd (and some other daemons) run on eth0 and they do not work well.

After rebooting the HN, everything is fine but if I start to copy a lot of files from another server in the network to a VE, and if I am connected to the HN via ssh, sshd tells me "connection reset by peer". Also another daemon, running on eth0 (snmpd) is unavailable.

Wierd thing: sshd on the HN is still accessible from a VE via 10.150.127.61.

But if no VE runs I have no chance to log in to the HN (and have to walk thru the building to the server room).

So I am sure there is a misconfiguration in the system but I have no idea where to look for.

Btw: IP forwarding is activated.

I hope someone will give me a hint Smile

Thanks and best regards,
Sixtus

Report message to a moderator

Re: sshd (and other daemons) on OpenVZ HN resets connection [message #34646 is a reply to message #34641] Fri, 23 January 2009 08:47 Go to previous messageGo to next message
maratrus is currently offline  maratrus
Messages: 1495
Registered: August 2007
Location: Moscow
Senior Member
Hello,

Quote:


But if no VE runs I have no chance to log in to the HN (and have to walk thru the building to the server room).



does it mean that sshd doesn't work at all i.e. it is impossible to login to HN from external host (except the VE)?
Does HN is reachable from external host e.g does ping work normally?
Please check your firewall rules. IMO iptables is the main suspect.
Please check logs on the HN and on the external node. Are there anything there?

And, of course recheck that sshd is running on the HN Razz

Report message to a moderator

Re: sshd (and other daemons) on OpenVZ HN resets connection [message #34648 is a reply to message #34646] Fri, 23 January 2009 09:16 Go to previous messageGo to next message
Sixtus is currently offline  Sixtus
Messages: 7
Registered: January 2009
Location: Germany
Junior Member
maratrus wrote on Fri, 23 January 2009 09:47

Hello,
does it mean that sshd doesn't work at all i.e. it is impossible to login to HN from external host (except the VE)?



Yes.

Quote:


Does HN is reachable from external host e.g does ping work normally?



Yes.

Quote:


Please check your firewall rules. IMO iptables is the main suspect.



All policies are set to ACCEPT (we are in a secure, internal environment)

Quote:


Please check logs on the HN and on the external node. Are there anything there?



Nothin unusual to find Sad

Quote:


And, of course recheck that sshd is running on the HN Razz




Hehe...as I said: connection from a VE to the HN (via IP of the HN) works.

But I have new information:
After I rebooted the HN (and so the VEs) by an at job last night, everything works.

I added a network interface and bound snmpd to the new interface.
Currently everything is working but I have to keep an eye on that HN.

Best,
Sixtus

Report message to a moderator

Re: sshd (and other daemons) on OpenVZ HN resets connection [message #34661 is a reply to message #34641] Sat, 24 January 2009 08:57 Go to previous message
n00b_admin is currently offline  n00b_admin
Messages: 77
Registered: July 2006
Location: Romania
Member
Ok, please correct me if i misunderstood your setup.

You are having problems with a ssh session from an external machine to a VE inside the HN or the HN itself ?

If you are doing a ssh to a VE check your beancounters for fail counts.

I had problems related to connection resets for VEs that were configured with more strict beancounter values by default.

Web traffic would fail with connection resets due to exceeded limits for tcp socket buffers.

Report message to a moderator

Previous Topic: unable to restore from vzdump
Next Topic: OpenVZ and ubuntu
Goto Forum:
  

[ Syndicate this forum (XML) ] [ RSS ] [ PDF ]

Current Time: Sat Aug 31 23:21:18 GMT 2024

Total time taken to generate the page: 0.13454 seconds
Powered by FUDforum Powered by Virtuozzo Containers