Hi readers,
I have issues with some nodes. Some appear to have key-issues.
I don't understand, if I fix one with IP and corresponding nodename
for example, the issue moves to another one. Fix it on that one and the the issues moves to the following node (and back). It's an infinite loop.
I've tried the
with the
and with
commands on all nodes, and restarted in between and after, and resolved an apparent issue with ssh_known file that was an link
If I take a look at all known_hosts files they all have the same content.
But I just don't get things straight. I have 4 nodes and are all up to date.
Does anyone have an idea??
[edit]
Funny thing is,
from node1 I can access shell of node1, but not the shell of node2 and node 3
but
from node 3 I can access the shell of node1 and node3, but not node2.
Best regards,
I have issues with some nodes. Some appear to have key-issues.
Code:
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be eavesdropping on you right now (man-in-the-middle attack)!
It is also possible that a host key has just been changed.
The fingerprint for the RSA key sent by the remote host is
SHA256:OUhPxO9rQJiYF+G3kUjdl2A4NaRkeptZK0ec9Js6NuY.
Please contact your system administrator.
Add correct host key in /root/.ssh/known_hosts to get rid of this message.
Offending RSA key in /etc/ssh/ssh_known_hosts:6
remove with:
ssh-keygen -f "/etc/ssh/ssh_known_hosts" -R "192.168.2.8"
RSA host key for 192.168.2.8 has changed and you have requested strict checking.
Host key verification failed.I don't understand, if I fix one with IP and corresponding nodename
Code:
ssh-keygen -f "/etc/ssh/ssh_known_hosts" -R 192.168.2.8
ssh-keygen -f "/etc/ssh/ssh_known_hosts" -R node1I've tried the
Code:
cd /root/.ssh
mv id_rsa id_rsa.old
mv id_rsa.pub id_rsa.pub.old
mv config config.oldwith the
Code:
pvecm updatecertsand with
Code:
systemctl restart pvedaemon pveproxy pve-clustercommands on all nodes, and restarted in between and after, and resolved an apparent issue with ssh_known file that was an link
Code:
ssh_known_hosts.old-> /etc/pve/priv/known_hostsIf I take a look at all known_hosts files they all have the same content.
But I just don't get things straight. I have 4 nodes and are all up to date.
Does anyone have an idea??
[edit]
Funny thing is,
from node1 I can access shell of node1, but not the shell of node2 and node 3
but
from node 3 I can access the shell of node1 and node3, but not node2.
Best regards,
Last edited: