Home > Clouds > CloudStack > SSH into a CloudStack Server

MindTouch
Copyright (c) 2006-2014 MindTouch Inc.
http://mindtouch.com

This file and accompanying files are licensed under the MindTouch Master Subscription Agreement (MSA).

At any time, you shall not, directly or indirectly: (i) sublicense, resell, rent, lease, distribute, market, commercialize or otherwise transfer rights or usage to: (a) the Software, (b) any modified version or derivative work of the Software created by you or for you, or (c) MindTouch Open Source (which includes all non-supported versions of MindTouch-developed software), for any purpose including timesharing or service bureau purposes; (ii) remove or alter any copyright, trademark or proprietary notice in the Software; (iii) transfer, use or export the Software in violation of any applicable laws or regulations of any government or governmental agency; (iv) use or run on any of your hardware, or have deployed for use, any production version of MindTouch Open Source; (v) use any of the Support Services, Error corrections, Updates or Upgrades, for the MindTouch Open Source software or for any Server for which Support Services are not then purchased as provided hereunder; or (vi) reverse engineer, decompile or modify any encrypted or encoded portion of the Software.

A complete copy of the MSA is available at http://www.mindtouch.com/msa

SSH into a CloudStack Server

Objective

To SSH into a running Cloud.com CloudStack server.

Table of Contents

Prerequisites

  • A RightScale account that has access to use a Cloud.com CloudStack.  See Add a Cloud.com CloudStack to a RightScale Account.
  • 'server_login' user role privileges in the RightScale account. 
  • A running instance in a CloudStack that supports the ability to define port forwarding rules for public IP addresses.  IP port forwarding is only supported on CloudStack's using "Virtual Networking."  CloudStack's using "Direct Attached Networking" support the use of security groups and do not support port forwarding rules.

Steps

Before you can successfully SSH into a public server, you must first assign it a public IP address with the appropriate port forward rules (firewall permissions). If you are attempting to SSH into a private server, you'll need to disable port forwarding as well as multiple subnets. 

Public SSH

Acquire a New Public IP

Only the CloudStack administrator can provision public IP addresses. You can associate a public IP to any running server, but it cannot be associated to more than one server at a time.  If an unassigned public IP address is not available, contact the CloudStack administrator.

Create and Apply a Port Forwarding Rule
  1. Log into the RightScale Dashboard. 
  2. Go to Clouds > CloudStack > IP Addresses.  A list of all assigned and unassigned public IP addresses will be listed.  If a new IP address was provisioned by the Cloud Administrator, it may take a few minutes before the new IP address is listed in the Dashboard. 
  3. Go to CloudsCloudStack> Port Forwarding Rules. Click New.
    screen-NewPortForwardingRule-v1.png
    • Instance - Select the instance that you want to assign the IP address.
    • IP Address - Select the (public) IP address that you want to assign to the selected instance.
    • Public port - Specify the public port for which you're going to forward traffic.  To provide SSH access, enter 22 into this field.
    • Private port - Specify the private port to which you're going to forward traffic from the public port specified above.  So if you want to forward a request to port 22 on the public IP to port 22 on the private IP, you will need to enter '22' for both port fields.  To provide SSH access, enter 22 into this field.
    • Protocol - Select the protocol for the public/private ports listed above.  To provide SSH access, enter TCP into this field.
  4. If you want to open up another port, you will need to repeat the process.  Be sure to select the same Instance and IP Address.

 

Note: Port forwarding rules apply to an IP address and not to the running instance.  So, if you terminate an instance that was assigned an IP (e.g. 115.112.236.111), which had port forwarding rules for TCP ports 22 and 80, and then you assign the same public IP to a new server, it will automatically apply its existing port forwarding rules. 

Private SSH

Disable Port Fowarding and Multiple Subnets

To be able to SSH into a private IP, you will need to disable port fowarding rules and multiple subnets.

  1. Log into the RightScale Dashboard. 
  2. Go to Settings > Administered Clouds > your CloudStack Cloud > Cloud Capabilities.

File:09-Clouds/CloudStack/SSH_into_a_CloudStack_Server/screen_CloudStack-DisablePortForwarding.png

  1. Under Actions, click "Disable" for Port Forwarding and Multiple Subnets. 
  2. Once disabled, you'll be able to SSH into your private cloud. For more information, see SSH into a Private Cloud.
You must to post a comment.
Last Modified
09:41, 14 Oct 2014

Tags

This page has no custom tags.

Classifications

This page has no classifications.

Announcements

None

Glossary | 用語용어 Site Map | Site Help Community Corporate Site Get Support Dashboard Login
Doc Feedback Product Feedback Resources MultiCloud Marketplace Forums

Dashboard Status


© 2006-2014 RightScale, Inc. All rights reserved.
RightScale is a registered trademark of RightScale, Inc. All other products and services may be trademarks or servicemarks of their respective owners.