Accessing Linux build worker via Secure Shell not working with macos build.
Hello,
it works very well with a linux build.
$ ssh [email blocked] -p 22147
The authenticity of host '[67.225.164.41]:22147 ([67.225.164.41]:22147)' can't be established.
ECDSA key fingerprint is SHA256:F1NuGMyA1XmIPXuky6isPYrIHlCt5wFNpaCDly2imUU.
Are you sure you want to continue connecting (yes/no/[fingerprint])? yes
Warning: Permanently added '[67.225.164.41]:22147' (ECDSA) to the list of known hosts.
Appveyor Worker
OS Ubuntu 20.04 LTS (GNU/Linux 5.8.0-1040-azure x86_64)
For a macos build:
$ ssh [email blocked] -p 22112
ssh: connect to host 199.38.81.89 port 22112: Connection timed out
I do exactly the same configuration in the appveyor.yml file for linux and macos ...
I can't understand what is wrong!
Any idea to fix it would be really welcome.
Comments are currently closed for this discussion. You can start a new one.
Keyboard shortcuts
Generic
? | Show this help |
---|---|
ESC | Blurs the current field |
Comment Form
r | Focus the comment reply box |
---|---|
^ + ↩ | Submit the comment |
You can use Command ⌘
instead of Control ^
on Mac
1 Posted by servoz on 29 Sep, 2021 11:11 AM
Ok I think I found the problem!
As often, with macos things are a bit more complicated...
With linux the SSH key generation can be just done with only
ssh-keygen -t rsa
.With macos we have to apply scrupulously the command given in the appveyor documentation!!!!
So for macos I did
ssh-keygen -t rsa -b 2048 -N "" -C appveyor -f /my_home/.ssh/ssh-key.key
and it works now!I close this question.
servoz closed this discussion on 29 Sep, 2021 11:12 AM.
servoz re-opened this discussion on 29 Sep, 2021 01:04 PM
2 Posted by servoz on 29 Sep, 2021 01:09 PM
Well, no, my previous answer is not the right one. I have the same problem again after lunch.
So with a linux build, it seems to work every time.
With a macos build it only worked once. I don't know why or how !!!!
Maybe we shouldn't stop for lunch :-)?
3 Posted by servoz on 29 Sep, 2021 01:58 PM
in macos build:
Support Staff 4 Posted by Feodor Fitsner on 29 Sep, 2021 02:19 PM
Thanks for reporting, we are looking into that.
5 Posted by servoz on 29 Sep, 2021 02:22 PM
oh it's seems to work again since few minutes ....
I investigate also in my side ...
6 Posted by servoz on 29 Sep, 2021 02:46 PM
I don't know if you have done anything on your end, but on my end it seems to be working perfectly now (I pushed a few commits and I was able to connect via ssh on the build).
It doesn't seem to be coming from my side.
Again, thanks for your support!
Can I close the ticket?
7 Posted by servoz on 30 Sep, 2021 03:05 PM
Today, I can't access by SSH either the linux build or the macos build...
This problem is really erratic and I can't figure out where the issue comes from.
It's very annoying.
Support Staff 8 Posted by Feodor Fitsner on 30 Sep, 2021 03:09 PM
That's weird as yesterday we fixed NATs on macOS machines, so it shouldn't be a problem on at least macOS. Can you drop a link to a linux build where you were unable to SSH?
9 Posted by servoz on 30 Sep, 2021 03:13 PM
This is for macos build, I'll send for linux build
Support Staff 10 Posted by Feodor Fitsner on 30 Sep, 2021 03:17 PM
And the link to a build please?
11 Posted by servoz on 30 Sep, 2021 03:18 PM
https://ci.appveyor.com/project/populse/populse-db-6gndf/builds/409...
Support Staff 12 Posted by Feodor Fitsner on 30 Sep, 2021 03:25 PM
I see that VM is accessible through that port via SSH, so NAT is OK, but, obviously, it fails to connect because of wrong SSH key. Could be a problem with a key on your side or some SSH settings?
13 Posted by servoz on 30 Sep, 2021 03:28 PM
OK I'll check it out right now!
14 Posted by servoz on 30 Sep, 2021 04:06 PM
I started the key generation several times, I was careful to copy the SSH key and it still doesn't work ... I really don't understand ... I continue to investigate !
15 Posted by servoz on 30 Sep, 2021 04:57 PM
I have really checked everything on my side and I don't see what could prevent ...
The last possibility is that my university filters out ... I've written to the IT service to find out, I don't know when they'll get back to me...
I'm going to go home and test (at least I'll be sure there are no filters).
I stay in touch !
Support Staff 16 Posted by Feodor Fitsner on 30 Sep, 2021 05:18 PM
It's highly possible there is something "in between". With SSH access to build VM the essential part is making a tunnel to VM's port 22 through NAT. That works. The rest could be anything. You can even use your own script to deploy a key to the VM, configure firewall (e.g. allow your IP only), etc.
Let me know how it worked from home.
17 Posted by servoz on 30 Sep, 2021 06:41 PM
I'm really sorry for the inconvenience I caused!!!
From home it works perfectly well for linux and macos builds.
I think that the university filters ... I have opened a ticket with the IT department.
In the meantime I'm going to work at home tomorrow!
Thanks a lot for your very reactive support. Good evening
Support Staff 18 Posted by Feodor Fitsner on 30 Sep, 2021 06:51 PM
No worries!
19 Posted by servoz on 01 Oct, 2021 10:37 AM
Hello,
The IT department is asking me, to make an opening access, on which addresses and ports SSH access are done
I guess it is not always 67.225.164.41 and port 22229 (example of my last connection).
Can you give me the address(es) and port(s) to open at the university level (for a linux and macos builds, I think they are not the same addresses in both cases!).
Again, thanks for your support!
Support Staff 20 Posted by Feodor Fitsner on 01 Oct, 2021 07:35 PM
You can see all IP addresses here (including macOS ones): https://www.appveyor.com/docs/build-environment/#ip-addresses
The range for the ports 22002-22254.
21 Posted by servoz on 02 Oct, 2021 01:40 PM
Thank you for the information which I will communicate to the IT department.
Have a nice weekend
Le vendredi 1 octobre 2021 à 21:35:25 UTC+2, Feodor Fitsner <[email blocked]> a écrit :
|
servoz closed this discussion on 21 Jun, 2023 02:09 PM.