Page MenuHomeVyOS Platform
Create Task
Maniphest T5157

Containers are inaccessable on vyos-1.4-rolling-202304070317
Closed, ResolvedPublicBUG
Actions

Description

I updated vyos to vyos-1.4-rolling-202304070317 successfully, however, all my containers became inaccessible. status shows they're up, however, can't ping them via assigned ip-address. so I had to reroll back to version 1.4-rolling-202303270317, and all containers worked flawlessly.

Details

Difficulty level
Unknown (require assessment)
Version
1.4-rolling-202303270317
Why the issue appeared?
Will be filled on close
Is it a breaking change?
Unspecified (possibly destroys the router)
Issue type
Infrastructure issue or change

Event Timeline

HappyShr00m renamed this task from Containers are inaccessable on 1.4-rolling-202303270317 to Containers are inaccessable on vyos-1.4-rolling-202304070317.Apr 13 2023, 9:24 PM
HappyShr00m created this task.
HappyShr00m updated the task description. (Show Details)
sarthurdev added a subscriber: sarthurdev.Apr 13 2023, 9:29 PM

Can you share container config section?

HappyShr00m added a comment.EditedApr 13 2023, 9:47 PM
In T5157#146979, @sdev wrote:

Can you share container config section?

I have few containers, including NginxProxyManager, AdGuardHome, all are configured similarly, this code is for my adguard container.

image docker.io/adguard/adguardhome:edge
memory 2000
network netcon {
    address 10.80.80.80
}
restart always
volume conf {
    destination /opt/adguardhome/conf
    source /config/pods/adguard/conf
}
volume work {
    destination /opt/adguardhome/work
    source /config/pods/adguard/work
}

and in the firewall zone 'lan'

i have added:

interface cni-netcon

Viacheslav added a subscriber: Viacheslav.Apr 14 2023, 7:41 AM

It uses other names in the newest versions, not cni-xxx

HappyShr00m closed this task as Resolved.Apr 14 2023, 8:20 AM
HappyShr00m claimed this task.
In T5157#147001, @Viacheslav wrote:

It uses other names in the newest versions, not cni-xxx

alright thanks for that clarification. for people who might get confused, now it changed from 'cni-networkName' to 'podman-networkName'

sarthurdev added a comment.Apr 14 2023, 8:23 AM

Just to clarify, it changes again to pod-networkname in https://github.com/vyos/vyos-1x/commit/2a876059826927ef204e359a40395955f27503ce (next rolling image) to avoid name constraint issues.

HappyShr00m added a comment.Apr 14 2023, 8:26 AM
In T5157#147008, @sdev wrote:

Just to clarify, it changes again to pod-networkname in https://github.com/vyos/vyos-1x/commit/2a876059826927ef204e359a40395955f27503ce (next rolling image) to avoid name constraint issues.

Clear. much appreciated.

pasik added a subscriber: pasik.Apr 15 2023, 9:51 AM