stackoom
  简体   繁体   中英

Can't SSH into Google Cloud VM

 原文  2020-06-10 18:10:57       google-cloud-platform/ ssh/ google-compute-engine/ error-code

Question

I was able to successfully SSH into the Google Cloud VM I had set up yesterday, but today for some reason I can't, and I didn't mess with any of the settings, especially not the Firewall settings. It keeps giving me these errors now:

Connection via Cloud Identity-Aware Proxy Failed Code: 4003 Reason: failed to connect to backend You may be able to connect without using the Cloud Identity-Aware Proxy.

Then when I click on "Connect without Identity-Aware Proxy" I get the following error:

Connection Failed We are unable to connect to the VM on port 22. Learn more about possible causes of this issue.

I don't know what happened. Yesterday it was working fine and now it's not.

3 answers

solution1
 1  2020-06-11 03:18:15

Beased on these error messages, I guess that your project has Identity-Aware Proxy (IAP) enabled , which sometimes may affect the ability to SSH into an instance, depending on the configuration.

In order to rule out this, you may try the following:

solution2
 1  2020-10-16 06:54:44

At first, try to disable Cloud Identity-Aware Proxy and connect to the VM instance via web Console.

After that, check logs:

  • Go to Compute Engine -> VM instances -> click on NAME_OF_YOUR_VM -> at the VM instance details find section Logs and click on Serial port 1 (console)
  • Reboot your VM instance.
  • Check full boot log for any errors or/and warnings.

If your VM instance doesn't start up verify that your disk has a valid file system and a valid master boot record (MBR) by following the documentation General troubleshooting .

If you found errors/warning related to disk space you can try to resize it accordingly to the documentation Resizing a zonal persistent disk , also accordingly to the article Recovering an inaccessible instance or a full boot disk :

If an instance is completely out of disk space or if it is not running a Linux guest environment, then automatically resizing your root filesystem isn't possible, even after you've increased the size of the persistent disk that backs it. If you can't connect to your instance, or your boot disk is full and you can't resize it, you must create a new instance and recreate the boot disk from a snapshot to resize it.

Otherwise try get access to your VM instance via serial console:

  • Enable serial console connection with gcloud command:

     gcloud compute instances add-metadata NAME_OF_YOUR_VM_INSTANCE \ --metadata serial-port-enable=TRUE

    or go to Compute Engine -> VM instances -> click on NAME_OF_YOUR_VM_INSTANCE -> click on EDIT -> go to section Remote access and check Enable connecting to serial ports

  • Create temporary user and password to login: shutdown your VM and set a startup script by adding at the section Custom metadata key startup-script and value:

     useradd --groups google_sudoers tempuser echo "tempuser:password" | chpasswd

    and then start your VM.

  • Connect to your VM via serial port with gcloud command:

     gcloud compute connect-to-serial-port NAME_OF_YOUR_VM_INSTANCE

    or go to Compute Engine -> VM instances -> click on NAME_OF_YOUR_VM_INSTANCE -> and click on Connect to serial console

  • Check what went wrong.

  • Disable access via serial port with gcloud command:

     gcloud compute instances add-metadata NAME_OF_YOUR_VM_INSTANCE \ --metadata serial-port-enable=FALSE

    or go to Compute Engine -> VM instances -> click on NAME_OF_YOUR_VM_INSTANCE -> click on EDIT -> go to section Remote access and uncheck Enable connecting to serial ports . Keep in mind that accordingly to the documentation Interacting with the serial console :

    Caution : The interactive serial console does not support IP-based access restrictions such as IP whitelists. If you enable the interactive serial console on an instance, clients can attempt to connect to that instance from any IP address. Anybody can connect to that instance if they know the correct SSH key, username, project ID, zone, and instance name. Use firewall rules to control access to your network and specific ports.

If you weren't able to connect via serial console, try follow the documentation Troubleshooting SSH section Inspect the VM instance without shutting it down and inspect the disk of your VM on another VM. Same way you can transfer your data to another working VM instance.

solution3
 0  2021-05-29 08:20:58

I had had the same issue while running composer update.

In my case an rebooting of the VM-Instance has solved it.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Can't SSH to Google Cloud VM After Installing MySQL Lost access to Mongo running on Google Cloud VM and can't ssh to it Why can't VM with VPC networks, static internal IP, connect to SSH in Google Cloud Platform Web Console? SSH tunnel to VM created on Google Cloud Platform doesn't work Can't find files on Google Cloud VM How can we SSH to a Google Cloud VM from Mac terminal using public key generated on the VM? Unable to ssh to master node of Google Cloud Dataproc, but can ssh to Compute Engine VM Unable to SSH into VM instance on Google Cloud Platform Cannot ssh to Google Cloud VM Instance How to view a plot in Google Cloud VM (SSH)
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM