You are browsing a read-only backup copy of Wikitech. The live site can be found at wikitech.wikimedia.org

Difference between revisions of "Help:Access to Cloud VPS instances with PuTTY and WinSCP"

From Wikitech
Jump to navigation Jump to search
imported>Bstorm
(Add a note for Windows 10 users to use the included OpenSSH tools instead.)
imported>SRodlund
 
Line 1: Line 1:
 +
{{Note|type=warning|'''This method is for older versions of the Windows operating system'''<br/> The following information is the best option if you use Windows of an earlier version than Windows 10, April 2018 release.<br/> If you are using a more recent version of Windows 10, your user experience use the built-in OpenSSH client, which includes scp and even OpenSSH Agent, by following the documentation here: [[Help:Access#Accessing_instances_with_ProxyJump_ssh_option_(recommended)]] }}
 +
 +
{{Cloud VPS nav}}
 +
 +
== Overview ==
 
This page documents methods for accessing your Cloud VPS instances '''using PuTTY and WinSCP'''.
 
This page documents methods for accessing your Cloud VPS instances '''using PuTTY and WinSCP'''.
 
There are [[Help:Access to Toolforge instances with PuTTY and WinSCP|extra instructions for accessing Toolforge]] with them.
 
There are [[Help:Access to Toolforge instances with PuTTY and WinSCP|extra instructions for accessing Toolforge]] with them.
  
{{Note|type=warning|'''This method may be deprecated if you use recent versions of Windows:'''<br/>The following information is the best option if you use Windows of an earlier version than Windows 10, April 2018 release. If you are using a more recent version of Windows 10, your user experience will likely be better using the built-in OpenSSH client, which includes scp and even OpenSSH Agent, by following the documentation here [[Help:Access#Accessing_instances_with_ProxyJump_ssh_option_(recommended)]] }}
+
With appropriate proxy respectively tunnel settings via the bastion server. With the correct settings,  
  
With appropriate proxy respectively tunnel settings via the bastion server. With the correct settings, a single click connection or file transfer is possible, and no command line input trouble is needed.
 
pmt
 
 
== Prerequisites ==
 
== Prerequisites ==
  
Line 22: Line 25:
  
 
== How to set up PuTTY for proxying through bastion.wmflabs.org to your instance ==
 
== How to set up PuTTY for proxying through bastion.wmflabs.org to your instance ==
 +
{{note| The following screenshots may be out of date.}}
  
 
{{note|'''Important:'''<br/>You have to manually make your first connection from bastion to your instance (i.e. not using the methods on this page). This in order to see and accept the server fingerprint!
 
{{note|'''Important:'''<br/>You have to manually make your first connection from bastion to your instance (i.e. not using the methods on this page). This in order to see and accept the server fingerprint!
Line 67: Line 71:
 
* [[Help:Access]]
 
* [[Help:Access]]
 
* [[Help:Putty]]
 
* [[Help:Putty]]
 +
 +
{{:Help:Cloud Services communication}}
  
 
[[Category:Cloud VPS]]
 
[[Category:Cloud VPS]]
 +
[[Category:Documentation]]
 +
[[Category:Cloud Services]]

Latest revision as of 20:10, 13 February 2020


Overview

This page documents methods for accessing your Cloud VPS instances using PuTTY and WinSCP. There are extra instructions for accessing Toolforge with them.

With appropriate proxy respectively tunnel settings via the bastion server. With the correct settings,

Prerequisites

  • username: your shell username on Cloud Services, Gerrit, bastion and your instance (you may find it at Special:Preferences)
  • instance: your instance name like in the server name instance.eqiad.wmflabs, e.g. openid-wiki.eqiad.wmflabs
  • PuTTY
  • plink.exe (part of PuTTY suite)
  • Pageant (PuTTY authentication agent)
  • your generated and loaded-in-Pageant ssh key
  • WinSCP

See reference section for further information about tunnels and proxies.

How to set up PuTTY for proxying through bastion.wmflabs.org to your instance

20130118-2224-PuTTY Configuration.png

20130118-2235-PuTTY Configuration.png

20130118-2236-PuTTY Configuration.png
The following uses an intermediate local proxy, part of the PuTTY suite.[2]

20130118-2240-PuTTY Configuration.png

plink.exe bastion.wmflabs.org -l <username> -agent -nc %host:%port

20130119-2156-PuTTY Configuration.png

20130119-2158-PuTTY Configuration.png

Hint: Make sure the proxy server (here: bastion) is already known to Putty before using it as a proxy. Otherwise you might just get a blank screen. If you are still getting the blank screen, you can run the plink command written above from the shell command line and accept the fingerprint. Then connect again with PuTTY as described above. Note that the proxied connection takes longer to establish than regular one (ie. you can wait 5 sec to get the remote prompt).

How to set up WinSCP for tunneling through bastion.wmflabs.org to your instance

Setting up WinSCP is very easy compared to setting up PuTTY.

20130118-2309-WinSCP Login.png
20130118-2313-WinSCP Login.png
20130118-2311-WinSCP Login.png
20130118-2312-WinSCP Login.png

Troubleshooting

SSH2_MSG_UNIMPLEMENTED

If you receive an error message similar to "Disconnected: Server protocol violation: unexpected SSH2_MSG_UNIMPLEMENTED packet", upgrade your PuTTY and plink.exe to a newer version. Older versions of PuTTY try to use encryption algorithms (ciphers) that are not supported by newer verisons of openssh.

Also ensure that in Connection->SSH->Kex section you have Diffie-Hellman group 14 set as the very first on the list "Algorithm selection policy".

References

Communication and support

We communicate and provide support through several primary channels. Please reach out with questions and to join the conversation.

Communicate with us
Connect Best for
Phabricator Workboard #Cloud-Services Task tracking and bug reporting
IRC Channel #wikimedia-cloud connect General discussion and support
Mailing List cloud@ Information about ongoing initiatives, general discussion and support
Announcement emails cloud-announce@ Information about critical changes (all messages mirrored to cloud@)
News wiki page News Information about major near-term plans
Blog Clouds & Unicorns Learning more details about some of our work