Hi Fernando, all,
we just discovered two unknown/suspicious VMs in status active, on Genoa
node.
As far as we know, as administrators of Fiware Lab Genoa node,
we are the only ones in charge to allocate VMs requests (replying
specific FIWARE FLUA-XXXX tickets).
That's correct?
Any tenant without an explicit ticket flow request, have to be
considered not authorized.
That's correct?
At the moment, we put VMs in status suspended:
root at controller01:~# nova list --all-tenants
+--------------------------------------+----------------+----------------------------------+-----------+------------+-------------+------------------------------------------------------------+
| ID | Name | Tenant ID
| Status | Task State | Power State | Networks
|
+--------------------------------------+----------------+----------------------------------+-----------+------------+-------------+------------------------------------------------------------+
| 4f68086a-968c-43f5-9a83-68f7d5786b27 | Hima1 |
d5275af31d724a40ac8be3c68c38858a | SUSPENDED | - | Running
| node-int-net-01=172.18.1.176, 130.251.135.187 |
| 87756965-5402-4bf0-9785-04d736d1db49 | iotul |
d5275af31d724a40ac8be3c68c38858a | SUSPENDED | - | Running
| node-int-net-01=172.18.1.191 |
+--------------------------------------+----------------+----------------------------------+-----------+------------+-------------+------------------------------------------------------------+
VMs details here below:
root at controller01:~# nova show 4f68086a-968c-43f5-9a83-68f7d5786b27
+--------------------------------------+-------------------------------------------------------------+
| Property | Value
|
+--------------------------------------+-------------------------------------------------------------+
| OS-DCF:diskConfig | MANUAL
|
| OS-EXT-AZ:availability_zone | nova
|
| OS-EXT-SRV-ATTR:host | compute02.domain.tld
|
| OS-EXT-SRV-ATTR:hypervisor_hostname | compute02.domain.tld
|
| OS-EXT-SRV-ATTR:instance_name | instance-00004bed
|
| OS-EXT-STS:power_state | 1
|
| OS-EXT-STS:task_state | -
|
| OS-EXT-STS:vm_state | active
|
| OS-SRV-USG:launched_at | 2017-03-15T19:09:49.000000
|
| OS-SRV-USG:terminated_at | -
|
| accessIPv4 |
|
| accessIPv6 |
|
| config_drive |
|
| created | 2017-03-15T19:08:30Z
|
| flavor | m1.large (4)
|
| hostId |
aea193f566c67314b0fdf88a6bad0b12f9c3319119373770630ac724 |
| id |
4f68086a-968c-43f5-9a83-68f7d5786b27 |
| image | orion-psb-image-R5.4
(c894ce60-b9a2-48be-b1e2-c28185908fb0) |
| key_name | hima
|
| metadata | {"region": "Genoa", "nid":
"344"} |
| name | Hima1
|
| node-int-net-01 network | 172.18.1.176, 130.251.135.187
|
| os-extended-volumes:volumes_attached | []
|
| progress | 0
|
| security_groups | default
|
| status | ACTIVE
|
| tenant_id |
d5275af31d724a40ac8be3c68c38858a |
| updated | 2017-03-15T19:09:49Z
|
| user_id | mostafa-hisham
|
+--------------------------------------+-------------------------------------------------------------+
root at controller01:~# nova show 87756965-5402-4bf0-9785-04d736d1db49
+--------------------------------------+----------------------------------------------------------+
| Property | Value
|
+--------------------------------------+----------------------------------------------------------+
| OS-DCF:diskConfig | MANUAL
|
| OS-EXT-AZ:availability_zone | nova
|
| OS-EXT-SRV-ATTR:host | compute03.domain.tld
|
| OS-EXT-SRV-ATTR:hypervisor_hostname | compute03.domain.tld
|
| OS-EXT-SRV-ATTR:instance_name | instance-0000460e
|
| OS-EXT-STS:power_state | 1
|
| OS-EXT-STS:task_state | -
|
| OS-EXT-STS:vm_state | active
|
| OS-SRV-USG:launched_at | 2017-02-28T16:58:58.000000
|
| OS-SRV-USG:terminated_at | -
|
| accessIPv4 |
|
| accessIPv6 |
|
| config_drive |
|
| created | 2017-02-28T16:57:40Z
|
| flavor | m1.medium (3)
|
| hostId |
7d3e4c05dd8d58708387259119b5aefe2058623abc4b3f758070299e |
| id |
87756965-5402-4bf0-9785-04d736d1db49 |
| image | base_debian_7
(b66abb99-f08d-4880-9139-b2d6b5e3d3a8) |
| key_name | ultk
|
| metadata | {"region": "Genoa"}
|
| name | iotul
|
| node-int-net-01 network | 172.18.1.191
|
| os-extended-volumes:volumes_attached | []
|
| progress | 0
|
| security_groups | default
|
| status | ACTIVE
|
| tenant_id |
d5275af31d724a40ac8be3c68c38858a |
| updated | 2017-02-28T16:58:59Z
|
| user_id | mostafa-hisham
|
+--------------------------------------+----------------------------------------------------------+
How do you suggest to proceed?
Thanks & regards
giorgio
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.fiware.org/private/fiware-lab-federation-nodes/attachments/20170316/392545a2/attachment-0001.html>
You can get more information about our cookies and privacy policies clicking on the following links: Privacy policy Cookies policy