问题描述
当尝试通过ssh连接到正在运行的corda节点时,连接被卡住并因超时而关闭。也许有人可以帮忙吗? docker似乎工作正常,但无法通过ssh连接到它。
user@host:~$ ssh -v localhost -p 2222 -l users
OpenSSH_7.6p1 Ubuntu-4ubuntu0.3,OpenSSL 1.0.2n 7 Dec 2017
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 19: Applying options for *
debug1: Connecting to localhost [127.0.0.1] port 2222.
debug1: connect to address 127.0.0.1 port 2222: Connection timed out
ssh: connect to host localhost port 2222: Connection timed out
Corda节点正在由swarm中的docker stack运行。
user@host:~$ docker service ls
ID NAME MODE REPLICAS IMAGE PORTS
umifcjj1qutf stack_users replicated 1/1 repository/node:latest *:2222->2222/tcp,*:10006->10201/tcp
服务定义。
// docker-stack.yml
services:
users:
image: ${DOCKER_REGISTRY}/node:latest
volumes:
- users-persistance:/opt/corda/persistance:rw
configs:
- source: users_config
target: /etc/corda/node.conf
- source: users_certificate_nodekeystore
target: /opt/corda/certificates/nodekeystore.jks
- source: users_certificate_sslkeystore
target: /opt/corda/certificates/sslkeystore.jks
- source: users_certificate_truststore
target: /opt/corda/certificates/truststore.jks
- source: users_add_node_info_1
target: /opt/corda/additional-node-infos/nodeInfo-71FB94D0663EEB32054F04AA0F0554EA8AA2CA684CA9A75D2689F854BAC7C814
- source: users_add_node_info_2
target: /opt/corda/additional-node-infos/nodeInfo-777DA369F066FE34BEDE3E6334A1006A4026A02DD76AFA798204BD015C9965DE
- source: users_network_parameters
target: /opt/corda/network-parameters
ports:
- 10006:10201
- 2222:2222
请注意,一切正常,我的意思是事务在该节点上运行正常,但是我不能仅连接到该节点。
有趣的事实是,当使用docker-compose运行节点时,它可以正常工作,我可以连接到节点。
docker-compose.yml定义
users:
build:
context: ./blockchain/node
target: api_platform_node_development
image: ${DOCKER_REGISTRY}/node:latest
volumes:
- ./blockchain/build/nodes/Users/node.conf:/etc/corda/node.conf
- ./blockchain/build/nodes/Users/certificates:/opt/corda/certificates
- ./blockchain/build/nodes/Users/logs:/opt/corda/logs
- ./blockchain/build/nodes/Users/persistence:/opt/corda/persistence
- ./blockchain/build/nodes/Users/cordapps:/opt/corda/cordapps
- ./blockchain/build/nodes/Users/network-parameters:/opt/corda/network-parameters
- ./blockchain/build/nodes/Users/additional-node-infos:/opt/corda/additional-node-infos
- ./blockchain/build/nodes/Users/drivers:/opt/corda/drivers
ports:
- 10006:10201
- 2222:2222
Docker版本19.03.12,内部版本48a66213fe
docker-compose版本1.21.2,内部版本a133471
docker-compose.yml版本:“ 3.4”
UPD: node.conf
dataSourceProperties {
dataSource {
url="jdbc:h2:file:./persistence/persistence;DB_CLOSE_ON_EXIT=FALSE;WRITE_DELAY=0;LOCK_TIMEOUT=10000"
}
}
detectPublicIp=false
devMode=false
myLegalName="O=Users,L=London,C=GB"
p2pAddress="users:10200"
rpcSettings {
address="0.0.0.0:10201"
adminAddress="0.0.0.0:10202"
}
security {
authService {
dataSource {
type=INMEMORY
users=[
{
password=password
permissions=[
ALL
]
user=users
}
]
}
}
}
sshd {
port=2222
}
UPD 2。节点Dockerfile
我正在为节点使用标准的corda/corda-zulu-java1.8-4.4
码头工人镜像
FROM corda/corda-zulu-java1.8-4.4 AS api_platform_node_development
FROM corda/corda-zulu-java1.8-4.4 AS api_platform_node_production
COPY --from=repository/blockchain_build:latest /usr/blockchain/src/build/nodes/Users/cordapps /opt/corda/cordapps
解决方法
希望对其他人有帮助。问题实际上出在docker堆栈行为上,默认情况下它不会在外部发布端口,它们仅在群集内可用,因此,如果要使其在群集外可用,则需要另外做
docker service update stack_users --publish-add 2222:2222