Skip to main content

Hi all,

 

Is creating a new image from for ex. a VMDK uploaded to an ADFS container via allow/whitelist still a thing as described in KB-2622? Uploading the image works without issues, but creating an AHV image via the AHV Image Service from the disk already located on the very same Prism Element cluster apparently not.

All reference I found online was that source_url=nfs://127.0.0.1/<container>/foo.vmdk isn’t supposed to work anymore for security reasons (see KB-14160). In the KB it says to use a CVM IP instead. I however get the very same message on any of the CVM IPs as well:

foo-disk-import: InvalidArgument: Address <Any CVM IP> is not supported as Remote Host

Adding CVMs or AHVs IPs to the allowlist doesn’t make any difference - it just won’t work.
Using acli image.create or Prism Element UI also doesn’t make a difference.

 

Regards

 

This is the outcome of the Nutanix case:

There was further hardening on what is allowed on a CVM’s IP. In newer versions you have to define a cluster IP and the cluster IP must be used as nfs://<PE Cluster IP>/<container>/foo.vmdk for import.

This was undocumented, Nutanix promised to update the related KBs.

Terms & ConditionsAccessibility statement