VMware vSphere

 View Only
Expand all | Collapse all

vCenter Server Appliance port 5480

  • 1.  vCenter Server Appliance port 5480

    Posted Sep 22, 2016 08:23 PM

       Hi,

    I try to configure vcenter server virtual (version 5.5) appliance and i can't loggin to web page for configure vcenter. I deploy and ova file. I don't have dhcp server, so, i configure Ip address manually with command vami_confg_net. I can ping the vcenter server, but when i put in the web browser https://public_ip:5480 i get error

    I ran netstat command and i not see tcp 5480 port open

    localhost:/etc/init.d # netstat -anopl

    Active Internet connections (servers and established)

    Proto Recv-Q Send-Q Local Address           Foreign Address         State       PID/Program name    Timer

    tcp        0      0 0.0.0.0:22              0.0.0.0:*               LISTEN      2759/sshd           off (0.00/0/0)

    tcp        0    148 190.104.203.59:22       190.12.96.11:14423      ESTABLISHED 2819/0              on (0.24/0/0)

    tcp        0      0 :::5488                 :::*                    LISTEN      2338/vami-sfcbd     off (0.00/0/0)

    tcp        0      0 :::5489                 :::*                    LISTEN      2338/vami-sfcbd     off (0.00/0/0)

    tcp        0      0 :::22                   :::*                    LISTEN      2759/sshd           off (0.00/0/

    Do you have any idea ehats happend?

    Thanks in advanced!

    Regrads!



  • 2.  RE: vCenter Server Appliance port 5480

    Posted Sep 22, 2016 08:42 PM

    Welcome to the community.

    What is the error message you are getting?



  • 3.  RE: vCenter Server Appliance port 5480

    Posted Sep 23, 2016 01:55 PM

    Hi,

    The error is that can't connect to web page of vcenter appliance. In the output of netstat command i can not see port 5480 open. I don't understand why the port 5480 is close.

    Regards!



  • 4.  RE: vCenter Server Appliance port 5480

    Posted Sep 23, 2016 06:12 PM

    First I would try a reboot of the appliance, then try to login to the console



  • 5.  RE: vCenter Server Appliance port 5480

    Posted Sep 23, 2016 06:50 PM

    Hi,

    I rebooted much times. I can log to console without any problem. Later i try to install another version of vcenter appliance 5.5 and a can get the same error.



  • 6.  RE: vCenter Server Appliance port 5480

    Posted Sep 23, 2016 06:57 PM

    Okay, so to confirm you have deployed a new appliance and you get the same issue?



  • 7.  RE: vCenter Server Appliance port 5480

    Posted Sep 23, 2016 07:09 PM

    First step is to try another browser or press ALT F5 to refresh the SSL certificate in the browser

    If that does not help, login to the console and run service vami-lighttp restart

    Report back with the output from the above command



  • 8.  RE: vCenter Server Appliance port 5480

    Posted Sep 26, 2016 02:05 PM

    Hi,

    Attached  output of vami-lighttp restart

    localhost:~ # service vami-lighttp restart

    Shutting down vami-lighttpd:done.

    Starting vami-lighttpd:2016-09-26 14:02:14: (/build/mts/release/bora-1191928/vadk/src/vami/apps/lighttpd/1.4.29/src/configfile.c.930) source: /opt/vmware/etc/lighttpd/lighttpd.conf line: 244 pos: 21 parser failed somehow near here: (EOL)

    failed.

    localhost:~ #

    Regards!



  • 9.  RE: vCenter Server Appliance port 5480

    Posted Sep 26, 2016 02:14 PM

    I attached file lighttpd.conf



  • 10.  RE: vCenter Server Appliance port 5480

    Posted Sep 26, 2016 05:53 PM

    Hello,

    Okay so the problem is that the VAMI web server is unable to start. I do not see the logs attached, could you try again?

    Thanks



  • 11.  RE: vCenter Server Appliance port 5480

    Posted Sep 27, 2016 06:24 PM

    Hello,

    I attache logs of vcenter appliance.

    Regards!



  • 12.  RE: vCenter Server Appliance port 5480
    Best Answer

    Posted Sep 27, 2016 08:56 PM

    Can you please restart VAMI again and check this file:

    \opt\vmware\var\log\lighttpd\error.log

    Then please check what the PID is that is referenced in the log, for example in the log you submitted I see:

    2016-09-22 11:45:26: (/build/mts/release/bora-1191928/vadk/src/vami/apps/lighttpd/1.4.29/src/log.c.166) server started

    2016-09-22 12:43:38: (/build/mts/release/bora-1191928/vadk/src/vami/apps/lighttpd/1.4.29/src/server.c.1519) server stopped by UID = 0 PID = 8153

    The other issue in the logs is that you have errors such as these:

    2016-09-22T11:45:02+00:00 localhost logger: vami_set_hostname, line 112: Host name has been set to localhost.localdom

    2016-09-22T11:45:02+00:00 localhost logger: vami_set_hostname, line 79: Inaccessible file: vami_access -rw /etc/mailname failed.

    2016-09-24T12:11:44+00:00 localhost sshd[13382]: Failed password for root from 174.50.122.234 port 58882 ssh2

    2016-09-24T12:11:50+00:00 localhost sshd[13384]: Failed password for root from 174.50.122.234 port 59332 ssh2

    2016-09-24T12:11:56+00:00 localhost sshd[13386]: Failed password for root from 174.50.122.234 port 59789 ssh2

    2016-09-24T12:12:01+00:00 localhost sshd[13388]: Failed password for root from 174.50.122.234 port 60253 ssh2

    2016-09-24T12:12:07+00:00 localhost sshd[13390]: Failed password for root from 174.50.122.234 port 60596 ssh2

    2016-09-24T12:12:13+00:00 localhost sshd[13392]: Failed password for root from 174.50.122.234 port 32816 ssh2

    2016-09-24T12:12:19+00:00 localhost sshd[13394]: Failed password for root from 174.50.122.234 port 33232 ssh2

    2016-09-24T12:12:25+00:00 localhost sshd[13396]: Failed password for root from 174.50.122.234 port 33671 ssh2

    2016-09-24T12:12:30+00:00 localhost sshd[13398]: Failed password for root from 174.50.122.234 port 34132 ssh2

    2016-09-24T12:12:37+00:00 localhost sshd[13400]: Failed password for root from 174.50.122.234 port 34549 ssh2

    2016-09-24T12:12:42+00:00 localhost sshd[13402]: Failed password for root from 174.50.122.234 port 35017 ssh2

    2016-09-24T12:12:48+00:00 localhost sshd[13404]: Failed password for root from 174.50.122.234 port 35433 ssh2

    2016-09-23T13:00:36+00:00 localhost sshd[7204]: reverse mapping checking getaddrinfo for 191-24-178-184.user.vivozap.com.br [191.24.178.184] failed - POSSIBLE BREAK-IN ATTEMPT!

    2016-09-23T14:02:22+00:00 localhost sshd[7429]: reverse mapping checking getaddrinfo for 179-129-251-56.user.vivozap.com.br [179.129.251.56] failed - POSSIBLE BREAK-IN ATTEMPT!

    2016-09-23T14:02:30+00:00 localhost sshd[7432]: reverse mapping checking getaddrinfo for 179-129-251-56.user.vivozap.com.br [179.129.251.56] failed - POSSIBLE BREAK-IN ATTEMPT!

    Are those IP addresses known to you as it suggests some form of malicious login attempts to your VC, please check that the VC is not publicly accessible and behind a firewall.

    I hope these logs excerpts are useful



  • 13.  RE: vCenter Server Appliance port 5480

    Posted Sep 28, 2016 07:00 PM

    Thanks for help!!

    Now i can configure vcenter server!

    REgards!