Cannot mount Hetzner storage box for backups using SSHFS
-
Trying to connect a hetzner storagebox as Volume. I keep having the the error:
'Failed to mount (inactive): read: Connection reset by peer'I followed the guidline: https://docs.hetzner.com/robot/storage-box/backup-space-ssh-keys/#uploading-authorized_keys
- Hetzner Robot: SSH-Support enabled
- generated the key with oppenssh, uploaded the authorized_keys file.
- SFTP is working
Any idea?
-
@solarsimon are you able to manually mount this using a custom line in /etc/fstab or a sshfs mount command?
For reference in my Cloudron, which also uses Hetzner SSHFS for backups, the Cloudron generates the following systemd mount unit at
/etc/systemd/system/mnt-cloudronbackup.mount
:[Unit] Description=backup [Mount] What=u193526@u193526.your-storagebox.de:. Where=/mnt/cloudronbackup Options=allow_other,port=23,IdentityFile=/home/yellowtent/platformdata/sshfs/id_rsa_u193526.your-storagebox.de,StrictHostKeyChecking=no,reconnect Type=fuse.sshfs [Install] WantedBy=multi-user.target
-
@nebulon said in Cannot mount Hetzner storage box for backups using SSHFS:
using a custom line in /etc/fstab
From the basic knowlege i have, i tried doing that.
I followed some tutorials i found.
(https://ivan.reallusiondesign.com/mount-sshfs-volumes-in-fstab-with-ssh-key/ and https://www.bveml.net/de/news/hetzner-backup-space-inkrementelles-backup-mit-rsnapshot.html)- I added ssh key to /home/.ssh
- added fstap: sshfs#uxxxxx5@uxxxxxx5.your-storagebox.de:/home /mnt/backup/ fuse IdentityFile=/home/.ssh/id_rsa,uid=0,gid=0,users,idmap=user,noatime,allow_other,_netdev,reconnect,ro 0 0
- restarted the server
I find a folder mnt/backup/ without content. I placed some files in the storeagebox/home. No content in /media/
I'm a basic user coming from windows Trying my best^^
-
@solarsimon what you did seems to be correct from a quick glance. So looks like this is independent of Cloudron as such. Maybe the permissions of the SSH key file is too open? The permissions should be
-rw-------
so can you for a start try to runchmod 600 /home/.ssh/id_rsa
?Further are there any logs in the system logs while attempting to mount? Once you have the
/etc/fstab
line, you can usemount /mnt/backup
andumount /mnt/backup
without having to reboot the server. Logs may be found injournalctl --system
-
I made a clean installation of cloudron on a ubuntu hetzner server.
After that I could mount the storage box with the procedure I tried before without problems.So I dont know what was wrong. But now everything working fine.
Thanks -
@girish
I tried this exact same setup. I was able to connect to the storage via SFTP and my SSH key and I copied my private SSH key as instructed to Cloudron.When I now try to save the backup settings using SSHFS it keeps working and never finishes. The log says
Jan 14 11:40:33 box:shell addMount spawn: /usr/bin/sudo -S /home/yellowtent/box/src/scripts/addmount.sh [Unit]\nDescription=backup\n\nRequires=unbound.service\nAfter=unbound.service\nBefore=docker.service\n\n\n[Mount]\nWhat=uxxxxx@uxxxxx.your-storagebox.de:/\nWhere=/mnt/cloudronbackup\nOptions=allow_other,port=23,IdentityFile=/home/yellowtent/platformdata/sshfs/id_rsa_uxxxxx.your-storagebox.de,StrictHostKeyChecking=no,reconnect\nType=fuse.sshfs\n\n[Install]\nWantedBy=multi-user.target\n\n 10 Jan 14 11:40:44 box:shell addMount (stdout): Failed to mount Jan 14 11:40:44 box:shell addMount code: 3, signal: null Jan 14 11:42:04 box:shell removeMount spawn: /usr/bin/sudo -S /home/yellowtent/box/src/scripts/rmmount.sh /mnt/cloudronbackup
Not sure what else I can try.
Edit: magically and waiting one night it works now.
-
I'm sorry to reopen this, but I've been trying to connect Hetzner volumes and I'm stuck with the key-gen command at the server. I'm pretty sure there's something I'm understanding poorly, but I would like to connect the Volumes with my Cloudron instance, but there's no way I can run key-gen on the Volumes via SSH to get them connected.
XXXXXXXX /home > ssh-keygen Command not found. Use 'help' to get a list of available commands. XXXXXXXX /home > help +-----------------------------------------------------------------------------+ | The following commands are available: | | ls list directory content | | tree list directory content | | cd change current working directory | | pwd show current working directory | | mkdir create new directory | | rmdir delete directory | | du disk usage of files/directories | | df show disk usage | | dd read and write files | | cat output file content | | touch create new file | | cp copy files/directories | | rm delete files/directories | | unlink delete file/directory | | mv move files/directories | | chmod change file/directory permissions | | md5|sha1|sha256|sha512 create hash sum of file | | md5sum|sha1sum|sha256sum|sha512sum create hash sum of file | | head show first lines of file | | tail show last lines of file | | grep search for specific string in files | | stat stat files/directory | | | | Available as server side backend: | | borg | | rsync | | scp | | sftp | | rclone serve restic --stdio | | | | Please note that this is only a restricted shell which do not | | support shell features like redirects or pipes. | | | | You can find more information in our Docs: | | https://docs.hetzner.com/robot/storage-box/ | +-----------------------------------------------------------------------------+ XXXXXXXX /home >
-
@chetbaker said in Cannot mount Hetzner storage box for backups using SSHFS:
Hetzner Volumes
Hetzner Cloud Volumes are a very different product to their Storage Boxes.
I don't think you can access them in the same way.
You can definitely use them as a Cloudron Volume though. I think you just have to mount them on your VPS server using fstab first.
-
@jdaviescoates said in Cannot mount Hetzner storage box for backups using SSHFS:
@chetbaker said in Cannot mount Hetzner storage box for backups using SSHFS:
Hetzner Volumes
Hetzner Cloud Volumes are a very different product to their Storage Boxes.
I don't think you can access them in the same way.
You can definitely use them as a Cloudron Volume though. I think you just have to mount them on your VPS server using fstab first.
Oh I'm sorry, just to clarify, I'm trying to use Storage Boxes as Cloudron Volume.
-
@chetbaker said in Cannot mount Hetzner storage box for backups using SSHFS:
Oh I'm sorry, just to clarify, I'm trying to use Storage Boxes as Cloudron Volume.
Ah, OK. I've got that set-up but I've only ever used CIFS and not SSHFS so not sure what you have to do myself sorry.
-
@chetbaker said in Cannot mount Hetzner storage box for backups using SSHFS:
Please note that this is only a restricted shell
It says as much that it is a restricted shell. Not sure how to generate keys though, maybe a question for hetzner support.
-
@jdaviescoates said in Cannot mount Hetzner storage box for backups using SSHFS:
@chetbaker said in Cannot mount Hetzner storage box for backups using SSHFS:
Oh I'm sorry, just to clarify, I'm trying to use Storage Boxes as Cloudron Volume.
Ah, OK. I've got that set-up but I've only ever used CIFS and not SSHFS so not sure what you have to do myself sorry.
Ah, but Girish gave instructions above in this very thread!
As @robi said if you don't have ssh-keygen installed, install it.
-
For me. It's silly. All the guide is out of date. With new created storage box, there isn't sub dir and ssh pub key is not yet allowed in storage box and storage box's pub isn't in my pc known_hosts, I have to add my pub key to storage and run sshfs command once time to get pub key of storage box. So because of new user without subdirectory, the "remote dir path" after colon should be RELATIVE path or empty "" in this case not "/". uxxxxxx@uxxxxxx.your-storagebox.de: /mnt/local/mount/path -o port=23,IdentifyFile=/home/username/.ssh/id_rsa ....
-
-
Hey folks
I recently struggled a bit with those steps as well, but it was because I had set a passphrase for my SSH keys at creation time and Cloudron does not prompt for that anywhere.
Is that in the plans for the future @girish ?Thanks !
-
@SansGuidon how would automatic mounting on boot work if the ssh key had a passphrase? If you put the password in clear text in a config file, it's probably more insecure than having no password at all (especially if you reuse passwords or a part of it...).
-
@girish it could be an option to do it manually the first time for security reasons, with login keyring asked once.
I mean I'd like that the option is at least given , and of course not hardcoding the passphrase in the form. -
@SansGuidon yeah, maybe. Have to investigate Feel free to open a thread in https://forum.cloudron.io/category/97/feature-requests and we can see how much interest is there.