Re: [FEATURE REQUEST] Enforcing local password policies

I suppose, the feature should be combined with old password confirmation when password change request is sent by user him/her-self. 2 окт. 2017 г. 22:11 пользователь "Rafael Weingärtner" < raf...@autonomiccs.com.br> написал: > This feature is interesting, I think it can help to improve ACS securi

Re: [FEATURE REQUEST] Enforcing local password policies

This feature is interesting, I think it can help to improve ACS security +1 On 10/2/2017 12:00 PM, Lotic Lists wrote: Guys, what you think about enforce password policies for local users? https://issues.apache.org/jira/browse/CLOUDSTACK-10082 Regards Marcelo -- Rafael Weingärt

[FEATURE REQUEST] Enforcing local password policies

Guys, what you think about enforce password policies for local users? https://issues.apache.org/jira/browse/CLOUDSTACK-10082 Regards Marcelo

Re: Primary interface on Windows templates

Hi, I believe that if you change os type to linux, you'll get it. But it could lead to problems with storage drivers as acs will announce it as virtio too. 2 окт. 2017 г. 19:58 пользователь "Dmitriy Kaluzhniy" < dmitriy.kaluzh...@gmail.com> написал: > Hello, > I was working with templates and fin

Re: Need to ask for help again (Migration in cloudstack)

Hi. Just, don't compare 1g vs 10g or even 40g infiniband network. It might look like linear bandwidth growth should lead to proportional time decrease, but migration can stuck forever with 1g and work seconds with 10g or 40g. But, Indeed, autoconvergence is a great feature. 2 окт. 2017 г. 20:32 п

Re: Need to ask for help again (Migration in cloudstack)

BTW, I went extreme and tested 24CPU/60GB busy VM migrate with dynamic auto-convergence (qemu2.5/libvirt1.3.1 and a nice patch to activate autoconverge flag inside ACS- thx to Mike Tutkowski !), where right after first migration cycle of 58G ram is finished (58GB RAM = Prime95 workload with all 24

Re: Need to ask for help again (Migration in cloudstack)

Hi Ivan, yes you are right, but it works like crap (from downtime perspective), because when we could not live migrate "normally" one 64GB client VM, we manually (instead of ACS doing it...) paused the VM via VIRSH, and then VM was in pauses state for 15min (yes it was only 1GBps management networ

Primary interface on Windows templates

Hello, I was working with templates and find out that Windows templates automatically gets E1000 interface. Is there any way to change it to Virtio? -- *​Best regards,Dmitriy Kaluzhniy+38 (073) 101 14 73*

Re: Need to ask for help again (Migration in cloudstack)

Hello! I want to say thanks to all! Nowadays I had no time to work on this, but I hope I will setup some test environment to try live migration + migration on non-shared. 2017-10-02 13:50 GMT+03:00 Ivan Kudryavtsev : > AFAIK ACS has VM suspend parameter in KVM agent which acts when ACS is > unabl

Re: one question network survey

Hi Daan, we have dedicated VLAN interface on all KVM hosts (bond0.XXX) which is used as VTEP for our VxLANs - we are ACS advanced networking, 4.8, were used also 4.5 previously). MLAG configured from NIC1/NIC2 (bond0) to 2xTOR switches... pure (no OVS) KVM/Ubuntu 14.04. On the host side, we had t

Re: Release packages for 4.9.3.0

I've updated jenkins and built packages for centos6 and Ubuntu. Packages have been copied on cloudstack.apt-get.eu automatically. I haven't tested them yet. Le 28 sept. 2017 20 h 19, "Pierre-Luc Dion" a écrit : I'll work something up this weekend... we need some work on 4.10 I think... On Thu

Re: Need to ask for help again (Migration in cloudstack)

AFAIK ACS has VM suspend parameter in KVM agent which acts when ACS is unable to migrate successfully. Also, I almost have no problem with 8core/16GB migration over 10G, but you are right. Sometimes it doesn't work as expected without autoconvergence and new Qemu/KVM does the work. 2017-10-02 17:4

Re: Need to ask for help again (Migration in cloudstack)

A bit late, and not directly related with original question - if you are doing any kind of KVM live migration (ACS or not), make sure you are using qemu 2.5 and libvirt 1.3+, to support dynamic auto-convergence (regular auto-convergence, almost useless, available from qemu 1.6+) - becase live migra

Re: CLOUDSTACK-8663 and CLOUDSTACK-4858

Hi Andrei, though I can not comment on the particular tickets you mentioned, we also had identical problems with using CEPH (imagine hourly snaps, which not deleted properly for some months...:) ) We have internally updated ACS code to actually "really" remove snapshots on CEPH when snap deleted

Re: Does browser-based template or volume upload work?

We are using 4.7.1 It works fine after some changes for example: 1. set max.account.secondary.storage in global setting to another value other than -1. 2. increase upload.operation.timeout, from default 10 min to larger value, eg 120. -Wei 2017-10-02 12:25 GMT+02:00 Andrija Panic : > Doesn't

Re: Cluster anti-affinity

We are using "User-dispersing" deployment algorithm in Compute Offerings, which should place VM (but doesn't guaranties... = I guess same as with anti-afinity rules) on different hosts. Not sure if this takes cluster into consideration though., For cluster anti-afinity - for i.e. 10 VMs, that

Re: Does browser-based template or volume upload work?

Doesn't also fully work on ACS 4.8, at least some issues definitively (we are using domain name as supposed to do, for SSVM, with proper SSL), but there is some timeout, that kicks in very soon, or similar. I can dig up/test again, if anyone needs info. CHeers On 27 September 2017 at 15:34, Rafae

Advise on multiple PODs network design

Hi guys, Sorry for long post below... I was wondering if someone could bring some light for me for multiple PODs networking design (L2 vs L3) - idea is to make smaller L2 broadcast domains (any other reason?) We might decide to transition from current single pod, single cluster (single zone) to

Re: Advice on converting zone-wide to cluster-wide storage

Hi guys, Thanks a lot for the good info! Will take look on this soon! Cheers, Andrija On Sep 30, 2017 14:26, "Tutkowski, Mike" wrote: > Good points, Sateesh! Thanks for chiming in. :) > > On Sep 30, 2017, at 4:03 AM, Sateesh Chodapuneedi accelerite.com