<div dir="ltr"><div><div>To test further I loaded up two more identical servers with EL 6.3 and the same package versions originally indicated. The difference here is that I did not turn these into ovirt nodes. EG: installing VDSM.<br>
<br></div><div>- All configurations were left at defaults on both servers<br></div><div>- iptables and selinux disabled on both servers<br></div><div>- verified full connectivty between both servers<br></div><div>- setup ssh (/root/authorized keys) between the servers --> this turned out to be the key!<br>
</div><div><br></div>Then using syntax found here: <a href="http://libvirt.org/migration.html#flowpeer2peer">http://libvirt.org/migration.html#flowpeer2peer</a><br></div>EG: From the source server I issued the following:<br>
<pre style="border:1px solid rgb(153,153,153);background-color:rgb(238,238,238);color:rgb(0,0,0);padding:1em;font-style:normal;font-variant:normal;font-weight:normal;letter-spacing:normal;line-height:normal;text-align:start;text-indent:0px;text-transform:none;word-spacing:0px">
virsh migrate --p2p sl63 qemu+ssh://<a href="http://192.168.1.2/system">192.168.1.2/system</a><br></pre><div class="gmail_extra">It fails in exactly the same way as previously indicated when the destination server does not have an ssh rsa pub ID from the source system in it's /root/.ssh/authorized_keys file.<br>
</div><div class="gmail_extra">However once the ssh rsa pub ID is in place on the destination system all is well and migrations work as expected.<br><br></div><div class="gmail_extra">Next I tried the same on the identical servers acting as ovirt nodes. (EG: installed with and running VDSM) The above did not do the trick, still fails the same exact way. Thus this leads me to believe something with VDSM or a configuration alteration made by it is to blame.<br>
</div><div class="gmail_extra"><br></div><div class="gmail_extra">I should note that I have SSL=disabled on my engine/nodes<br>EG: vdc_options --> SSLEnabled = false, UseSecureConnectionWithServers = false, EnableSpiceRootCertificateValidation = false<br>
</div><div class="gmail_extra"><br>vdsm.conf (same on both nodes):<br>[addresses]<br>management_port = 54321<br><br>[vars]<br>ssl = false<br><br></div><div class="gmail_extra">libvirtd.conf alterations by VDSM (same on both nodes excluding host_uuid)<br>
<br></div><div class="gmail_extra">## beginning of configuration section by vdsm-4.9.11 <-- BTW this does not match the running build of VDSM on the system which is actually build from commit: <span style="text-indent:0px;letter-spacing:normal;font-variant:normal;text-align:start;font-style:normal;display:inline!important;font-weight:normal;float:none;line-height:normal;text-transform:none;font-size:12px;white-space:normal;font-family:monospace;word-spacing:0px">c343e1833f7b6e5428dd90f14f7807dca1baa0b4 (</span>vdsm-4.10.2-12.el6.x86_64, "-12" is my own internal counter)<br>
listen_addr="0.0.0.0"<br>unix_sock_group="kvm"<br>unix_sock_rw_perms="0770"<br>auth_unix_rw="sasl"<br>host_uuid="1d465e80-1e48-474f-b52d-f5aeda9f6a7a"<br>log_outputs="1:file:/var/log/libvirtd.log"<br>
log_filters="1:libvirt 3:event 3:json 1:util 1:qemu"<br>auth_tcp="none"<br>listen_tcp=1<br>listen_tls=0<br>## end of configuration section by vdsm-4.9.11 <-- Does not match running VDSM version#<br>
<br></div><div class="gmail_extra">qemu.conf alterations by VDSM (same on both nodes)</div><div class="gmail_extra"><br>## beginning of configuration section by vdsm-4.9.11 <-- Does not match running VDSM version#<br>dynamic_ownership=0<br>
spice_tls=0<br>save_image_format="lzop"<br>lock_manager="sanlock"<br>auto_dump_path="/var/log/core"<br>## end of configuration section by vdsm-4.9.11 <-- Does not match running VDSM version#<br>
<br></div><div class="gmail_extra">- DHC<br></div><div class="gmail_extra"><br><div class="gmail_quote">On Fri, Feb 1, 2013 at 10:47 AM, Dead Horse <span dir="ltr"><<a href="mailto:deadhorseconsulting@gmail.com" target="_blank">deadhorseconsulting@gmail.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><div dir="ltr"><div><div><div>Both nodes are identical and can fully communicate with each other.<br>
</div>Since the normal non p2p live migration works both hosts can reach each other via the connection URI.<br></div>Perhaps I am missing something here?<br>
</div>- DHC <br></div>
</blockquote></div><br></div></div>