Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

gcloud compute ssh from one VM to another VM on Google Cloud

Tags:

ssh

google-compute-engine

google-cloud-platform

gcloud

I am trying to ssh into a VM from another VM in Google Cloud using the gcloud compute ssh command. It fails with the below message:

/usr/local/bin/../share/google/google-cloud-sdk/./lib/googlecloudsdk/compute/lib/base_classes.py:9: DeprecationWarning: the sets module is deprecated
  import sets

 Connection timed out
ERROR: (gcloud.compute.ssh) [/usr/bin/ssh] exited with return code [255]. See https://cloud.google.com/compute/docs/troubleshooting#ssherrors for troubleshooting hints.

I made sure the ssh keys are in place but still it doesn't work. What am I missing here?

like image 961
Tarun Chaudhary Avatar asked Nov 11 '15 08:11

Tarun Chaudhary

2 Answers

There is an assumption that you have connected to the externally-visible instance using SSH beforehand with gcloud.

From your local machine, start ssh-agent with the following command to manage your keys for you:

me@local:~$ eval `ssh-agent`

Call ssh-add to load the gcloud compute public keys from your local computer into the agent, and use them for all SSH commands for authentication:

me@local:~$ ssh-add ~/.ssh/google_compute_engine

Log into an instance with an external IP address while supplying the -A argument to enable authentication agent forwarding.

gcloud compute ssh --ssh-flag="-A" INSTANCE

source: https://cloud.google.com/compute/docs/instances/connecting-to-instance#sshbetweeninstances.

I am not sure about the 'flags' because it's not working for me bu maybe I have a different OS or Gcloud version and it will work for you.

like image 58
uh_big_mike_boi Avatar answered Oct 22 '22 03:10

uh_big_mike_boi

Here are the steps I ran on my Mac to connect to the Google Dataproc master VM and then hop onto a worker VM from the master MV. I ssh'd to the master VM to get the IP.

$ gcloud compute ssh cluster-for-cameron-m Warning: Permanently added '104.197.45.35' (ECDSA) to the list of known hosts.

I then exited. I enabled forwarding for that host.

$ nano ~/.ssh/config

Host 104.197.45.35 ForwardAgent yes

I added the gcloud key. $ ssh-add ~/.ssh/google_compute_engine

I then verified that it was added by listing the key fingerprints with ssh-add -l. I reconnected to the master VM and ran ssh-add -l again to verify that the keys were indeed forwarded. After that, connecting to the worker node worked just fine.

ssh cluster-for-cameron-w-0

like image 44
Cameron Taggart Avatar answered Oct 22 '22 05:10

Cameron Taggart
Sign in to Comment

Related questions

Git clone from remote ssh repository - change the machine on the remote network before executing the clone command
scp on OSX doesn't allow spaces in usernames?
Is there a KornShell (ksh) IDE for Windows?
Importing Key Pair into Amazon AWS - wrong fingerprint?
'xterm-new': unknown terminal type
Beyond compare remote with local file
How to fix 'packet_write_wait: Connection to ... Broken pipe' error in Git
need to use git behind firewall: trying ssh tunneling
sshpass not working properly
How can I execute Linux commands on a remote machine using Java?
How to include the private key in paramiko after fetching from string?
Bash Script to SSH into a machine without prompting password and without using keys
Vagrant up fails with stdin, start, ssh, stderr & stdout errors
Wrong colors in vim over ssh
gcloud compute ssh refuses connection (return code 255)
how to automatically run a bash script when my qsub jobs are finished on a server?
Two-step git import over ssh
GitLab: Can't push code to server?
Find currently connected port number SSH
Checking SFTP/SSH fingerprint in SSH.NET

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!