Comments (8)
johnnyq
commented on May 21, 2024
1
I may have found the fix. I spun up another Ubuntu 18.04 LXC Container. When you click new LXC container uncheck Unpriviledged container. I'm not sure why this fixes the problem with iptables but ill investigate further in the afternoon.
from hestiacp.
johnnyq
commented on May 21, 2024
Proxmox 5.3 recently switched to Unpriviledged containers as a default option when LXCs are created. This has happened recently with an update from proxmox. Fresh install of proxmox 5.3 doesn't give that option and by default uses priviledged containers. I believe the problem is with proxmox. but it wouldn't hurt to have known issues and quick fixes added to the hestiaCP readme. Especially for people using proxmox and its LXC containers.
from hestiacp.
ioannidesalex
commented on May 21, 2024
Can you confirm thst with a priviledged container the issue does not exist?
from hestiacp.
johnnyq
commented on May 21, 2024
Yes with priviledged containers the problem does not exist
from hestiacp.
ScIT-Raphael
commented on May 21, 2024
Just checked up this issue and can confirm it also: As soon as "Unprivileged Container" is set, the dns communication stops. After disable iptables, the dns communication will work again:
iptables-save > /root/firewall.txt
iptables -X
iptables -t nat -F
iptables -t nat -X
iptables -t mangle -F
iptables -t mangle -X
iptables -P INPUT ACCEPT
iptables -P FORWARD ACCEPT
iptables -P OUTPUT ACCEPT
We will search the issue and work on a fix.
from hestiacp.
ScIT-Raphael
commented on May 21, 2024
Small update: I checked it now double and can't confirm, that the checkbox "Unprivileged Container" does change anything - as soon as the installation is done, dns stops working on proxmox systems.
from hestiacp.
ScIT-Raphael
commented on May 21, 2024
Bug is now fixed on beta branch: 21a310b
If you want to recover the communication before a new release, place the file above under /usr/local/hestia/data/firewall/custom.sh and reboot the server.
Please feel free to reopen the issue, if there is anything that not work properly.
from hestiacp.
ScIT-Raphael
commented on May 21, 2024
found the source issue and fixed it with the following commit: ad75b42
If you want to fix a running system, you need to download the actual beta v-update-firewall and run it once.
from hestiacp.
Related Issues (20)
- [Bug] Error in Apache2 with SSL HOT 1
- [Bug] HestiaCP forum not sending email verifications HOT 2
- [Feature] MariaDB incremental backup HOT 1
- [Bug] Crontab editor opening existing cron that has a ; in the command HOT 3
- [Feature] Hestia Repair Tool HOT 11
- [Bug] database remote failed HOT 5
- [Bug] Exim4 cannot receive email due to bad permissions of /var/log/dovecot.log file HOT 3
- [Feature]: Add ID in Response of v-add-dns-domain HOT 3
- [Feature] Configurable max_size and inactive parameters for fastcgi cache
- [Feature] hostname check for according to RFC1178 HOT 6
- [Bug] v-change-domain-owner ---> Error: Target domain doesn't belong to the new user
- [Bug] SnappyMail Installation fails (Novel way)
- [Bug] Can't access snappymail admin panel
- [Feature] Change language of File Manager when panel language is changed
- Roundcube doesn't work in Hestiacp. [Bug]
- phpmyadmin is not working in Hestiacp. [Bug] HOT 2
- Hestiacp phpmyadmin not working. (Debian 12) [Bug] HOT 2
- [Feature] Choose which Web Apps will be available to users depending on the hosting plan
- [Feature] : Create Subdomain HOT 2
- [Bug] Spamhaus DNS-Resolver Blocks all incoming email HOT 5
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from hestiacp.