On Wed, Jan 30, 2019 at 9:59 PM Benjamin Selinger <blistovmhz@gmail.com> wrote:
Trying to get my ovirt cluster connected to my vSphere cluster to import my guests. When trying to connect, I get: "VDSM ovirt1 command GetVmsNamesFromExternalProviderVDS failed: internal error: curl_easy_perform() returned an error: Couldn't connect to server (7) : Failed connect to 10.0.0.55:443; Connection timed out"
ovirt1 node (192.168.1.195) is at location A while vSphere (10.0.0.55) is at location B. I added a static route on ovirt1 for 10.0.0.0/8 via 192.168.1.13, which has a VPN connection back to 10.0.0.0/8. ICMP from ovirt1 gets through just fine, but any other traffic never leaves ovirt1 (ie: 443 traffic never arrives at 1.13).
I'm assuming there's some firewall rule somewhere, blocking anything other than outbound ICMP, but I have been unable to find it. Any suggestions?
Maybe manually connect (with netcat or telnet) to port 443 on B? Does this work? If not, debug until it works, then try again. If you can, you can try sniffing both interfaces of the vpn gateway, to try and see what traffic does get through and what fails, in addition to sniffing the end points. Did you add a route to B? You might need one as well. (Also changing the subject) Good luck and best regards, -- Didi