Solved: How to you make a Load Balancer reachable via SSH?

vmmed1 · ‎02-22-2018

I am able to reach one of our load balancers via SSH but the others I can't.

What enables an LB to be connected to via SSH rather than just the

NSX GUI?

smitmartijn · ‎02-22-2018

Hi,

It's the NSX Edge you enable SSH on. I wouldn't recommend enabling SSH, mostly because you create a new attack vector in your network. Troubleshooting and showing load balancer stats, can also be done from the Central CLI: NSX Central CLI for Operations & Troubleshooting

But, if you want to, you can do this at the time of deployment, by enabling "Enable SSH access" in the wizard.

https://docs.vmware.com/en/VMware-NSX-for-vSphere/6.4/com.vmware.nsx.troubleshooting.doc/images/GUID...

Manual: New NSX Edge (DLR)

Or when the Edge already has been deployed, enable it through the settings:

View solution in original post

smitmartijn · ‎02-22-2018

Hi,

It's the NSX Edge you enable SSH on. I wouldn't recommend enabling SSH, mostly because you create a new attack vector in your network. Troubleshooting and showing load balancer stats, can also be done from the Central CLI: NSX Central CLI for Operations & Troubleshooting

But, if you want to, you can do this at the time of deployment, by enabling "Enable SSH access" in the wizard.

https://docs.vmware.com/en/VMware-NSX-for-vSphere/6.4/com.vmware.nsx.troubleshooting.doc/images/GUID...

Manual: New NSX Edge (DLR)

Or when the Edge already has been deployed, enable it through the settings:

vmmed1 · ‎02-22-2018

Thanks much. Now I see an additional hurdle. Someone put port 22 onto an LB VIP. So

when I try to enable SSH to manage the edge I get an error that it's already in use.

All

How to you make a Load Balancer reachable via SSH?