Hi Patrick,The ovirt-vmconsole is a for emulated serial connections (via a ssh tunnel).The VNC ports are the same range as spice5900 - 6923.Do you have encryption enabled for VNC?Regards,Paul S.From: Patrick Hibbs <hibbsncc1701@gmail.com>
Sent: 14 December 2021 22:53
To: Staniforth, Paul <P.Staniforth@leedsbeckett.ac.uk>
Cc: oVirt Users Mailing List <users@ovirt.org>
Subject: Re: [ovirt-users] Re: remote-viewer VNC mode issueCaution External Mail: Do not click any links or open any attachments unless you trust the sender and know that the content is safe.
Hello,Well a quick check of the hosts say that they have ovirt-vmconsole enabled on their firewall, but there doesn't seem to be any logs for the vmconsoles on them. Running wireshark on one of the end-user machines shows that the host does send packets back and forth but then the end-user machine TCP resets the connection. (I assume due to the credential failure.) So it doesn't seem to be a firewall issue.Is there anything I can do to get some more logs from the vmconsoles on the Host?Thanks.-Patrick HibbsOn Tue, 2021-12-14 at 12:56 +0000, Staniforth, Paul wrote:Hello Patrick,with noVNC the connection is made via the websocket-poxy service (probably on the engine server).The remote-viewer connects directly from the client machine to the virtual host the VM is running on. Maybe check the network/firewall between the client and the host, also the OTP expires after 120 seconds.Regards,Paul S.From: Strahil Nikolov via Users <users@ovirt.org>
Sent: 14 December 2021 12:12
To: hibbsncc1701@gmail.com <hibbsncc1701@gmail.com>; oVirt Users Mailing List <users@ovirt.org>
Subject: [ovirt-users] Re: remote-viewer VNC mode issueCaution External Mail: Do not click any links or open any attachments unless you trust the sender and know that the content is safe.
The most common problem is the CA of oVirt not trusted in the web browser of the client.Best Regards,Strahil NikolovOn Sun, Dec 12, 2021 at 0:00, Patrick Hibbs<hibbsncc1701@gmail.com> wrote:Hello,As oVirt unfortuately now requires VNC for the VM consoles,I've been attempting to get VNC mode working on my end user clients.The noVNC browser client works just fine, but for some reasonthe default download to remote-viewer fails on the same hosts.All the end-user gets is a quick flash of the remote-viewer window ontheir screen.Running remote-viewer in debug mode I get this:---log snip---$ remote-viewer -v --debug Downloads/console.vv(remote-viewer:4056): virt-viewer-DEBUG: 16:35:35.906: Opening displayto Downloads/console.vv(remote-viewer:4056): virt-viewer-DEBUG: 16:35:35.906: Guest (null) hasa vnc displayGuest (null) has a vnc display(remote-viewer:4056): virt-viewer-DEBUG: 16:35:35.952: Spice foreignmenu updated(remote-viewer:4056): virt-viewer-DEBUG: 16:35:35.952: After openconnection callback fd=-1(remote-viewer:4056): virt-viewer-DEBUG: 16:35:35.952: Openingconnection to display at Downloads/console.vvOpening connection to display at Downloads/console.vv(remote-viewer:4056): virt-viewer-DEBUG: 16:35:35.953: fullscreendisplay 0: 0(remote-viewer:4056): virt-viewer-DEBUG: 16:35:35.953: notebook showstatus 0x560a419d2280(remote-viewer:4056): virt-viewer-DEBUG: 16:35:36.032: notebook showstatus 0x560a419d2280(remote-viewer:4056): virt-viewer-DEBUG: 16:35:36.032: Insert display 00x560a423fa1e0(remote-viewer:4056): virt-viewer-DEBUG: 16:35:36.032: notebook showstatus 0x560a419d2280(remote-viewer:4056): virt-viewer-DEBUG: 16:35:36.052: Allocated1024x740(remote-viewer:4056): virt-viewer-DEBUG: 16:35:36.052: Child allocate1024x640(remote-viewer:4056): virt-viewer-DEBUG: 16:35:36.053: Got VNCcredential request for 1 credential(s)(remote-viewer:4056): virt-viewer-DEBUG: 16:35:36.067: Not removingmain window 0 0x560a4195d910(remote-viewer:4056): virt-viewer-DEBUG: 16:35:36.067: Disconnected(remote-viewer:4056): virt-viewer-DEBUG: 16:35:36.067: closevnc=0x560a419fc220(remote-viewer:4056): virt-viewer-DEBUG: 16:35:36.068: notebook showstatus 0x560a419d2280(remote-viewer:4056): virt-viewer-DEBUG: 16:35:36.068: Guest (null)display has disconnected, shutting downGuest (null) display has disconnected, shutting down---log snip---It seems to be failing a credential request, but I'm not sure why. Theengine logs only show the VM console ticket being created, but does notshow any connection attempts unless noVNC is used.---log snip---2021-12-11 16:48:23,402-05 INFO[org.ovirt.engine.core.bll.SetVmTicketCommand] (default task-16)[68b90cfe] Running command: SetVmTicketCommand internal: false.Entities affected : ID: bb05ab12-91e5-4ab6-92b1-b911ed78f64f Type:VMAction group CONNECT_TO_VM with role type USER2021-12-11 16:48:23,414-05 INFO[org.ovirt.engine.core.vdsbroker.vdsbroker.SetVmTicketVDSCommand](default task-16) [68b90cfe] START, SetVmTicketVDSCommand(HostName = --REDACTED--, SetVmTicketVDSCommandParameters:{hostId='1fdd841b-477f-4d13-9935-7908924dd5a1', vmId='bb05ab12-91e5-4ab6-92b1-b911ed78f64f',protocol='VNC', ticket='ocziPsEOF4km', validTime='120', userName='--REDACTED--@--REDACTED--', userId='e83ab2b3-c464-49a4-a0ab-4e62e8131304', disconnectAction='LOCK_SCREEN'}), log id: f6dccdd2021-12-11 16:48:23,435-05 INFO[org.ovirt.engine.core.vdsbroker.vdsbroker.SetVmTicketVDSCommand](default task-16) [68b90cfe] FINISH, SetVmTicketVDSCommand, return: ,log id: f6dccdd2021-12-11 16:48:23,461-05 INFO[org.ovirt.engine.core.dal.dbbroker.auditloghandling.AuditLogDirector](default task-16) [68b90cfe] EVENT_ID: VM_SET_TICKET(164), User --REDACTED--@--REDACTED--@--REDACTED-- initiated console session for VMTest#---log snip---What else can I do to troubleshoot this?- Patrick Hibbs_______________________________________________Users mailing list -- users@ovirt.orgTo unsubscribe send an email to users-leave@ovirt.orgPrivacy Statement: https://www.ovirt.org/privacy-policy.htmloVirt Code of Conduct: https://www.ovirt.org/community/about/community-guidelines/To view the terms under which this email is distributed, please go to:-To view the terms under which this email is distributed, please go to:-