Apt fails with errors and DNS resolution fails

Wokay I’m hella confused on why network manager would be installed, and where you saw that message about resolve1.service not found

So yes naively I would apt remove network-manager … Though you should pay attention that it doesn’t remove half your system for some other reason too

Also I would re-disable systemd-resolved.service with systemctl disable systemd-resolved.service --now

And then I would make sure to restart dnsmasq and make sure it’s running : systemctl restart dnsmasq

OK @Aleks

  1. did the remove of network-manager (system still running after that) :wink:

  2. re-disabled systemd-resolved.service

  3. Restarted dnsmasq and checked status: all runni8ng and OK

  4. Removed /etc/NetworkManager/conf.d/no-systemd-resolved.conf I had created
    Now I run apt update again and got these new errors:

    apt update
    Hit:1 http://download.bareos.org/bareos/release/19.2/Debian_10 InRelease
    Hit:2 http://ftp.debian.org/debian buster InRelease
    Hit:3 http://ftp.debian.org/debian buster-updates InRelease
    Err:4 https://deb.troglobit.com/debian stable InRelease Temporary failure resolving 'deb.troglobit.com'
    Err:5 http://forge.yunohost.org/debian buster InRelease Temporary failure resolving 'forge.yunohost.org'
    Err:6 http://security.debian.org/debian-security buster/updates InRelease Temporary failure resolving 'security.debian.org'
    Err:7 http://download.mono-project.com/repo/debian buster InRelease Temporary failure resolving 'download.mono-project.com'
    Err:8 http://repo.r1soft.com/apt stable InRelease Temporary failure resolving 'repo.r1soft.com'
    Reading package lists... Done
    Building dependency tree
    Reading state information... Done All packages are up to date.
    W: Failed to fetch http://forge.yunohost.org/debian/dists/buster/InRelease Temporary failure resolving 'forge.yunohost.org'
    W: Failed to fetch http://security.debian.org/debian-security/dists/buster/updates/InRelease Temporary failure resolving 'security.debian.org'
    W: Failed to fetch http://repo.r1soft.com/apt/dists/stable/InRelease Temporary failure resolving 'repo.r1soft.com'
    W: Failed to fetch http://download.mono-project.com/repo/debian/dists/buster/InRelease Temporary failure resolving 'download.mono-project.com'

Then let’s re-do these commands again (I’m expecting the result will be the same)

Also let’s validate that the service listening on port 53 is indeed dnsmasq with : netstat -tulpn | grep ":53 "

OK, the dig commands first:

dig +short wikipedia.org 91.198.174.192 root@liquorstane:/# dig +short wikipedia.org @8.8.8.8 91.198.174.192 root@liquorstane:/# dig +short wikipedia.org @127.0.0.1 91.198.174.192
The netstat command returned error:
# netstat -tulpn | grep ":53 " -bash: netstat: command not found

Can you make sure to run it as root, or prefix the command with sudo ?

I am root via ssh from my desktop. It is not there netstat
The only net* commands are
net
netcat
netkit-ftp
networkctl

Zblerg not sure why it’s not installed, but let’s install it with apt install net-tools

netstat -tulpn | grep ":53 " tcp 0 0 0.0.0.0:53 0.0.0.0:* LISTEN 6680/dnsmasq tcp6 0 0 :::53 :::* LISTEN 6680/dnsmasq udp 0 0 0.0.0.0:53 0.0.0.0:* 6680/dnsmasq udp6 0 0 :::53 :::* 6680/dnsmasq

Hmokay … and so apt update still displays DNS resolution issues …?

apt install net-tools failed but apt-get install net-tools worked.
Mostly errors of dns resolution of repos. Has this to do with fastlydns collapse last week??

yes here they are:
Err:11 http://download.mono-project.com/repo/debian buster InRelease Temporary failure resolving 'download.mono-project.com' Fetched 23.5 kB in 20s (1,172 B/s) Reading package lists... Done Building dependency tree Reading state information... Done 2 packages can be upgraded. Run 'apt list --upgradable' to see them. W: Failed to fetch http://download.mono-project.com/repo/debian/dists/buster/InRelease Temporary failure resolving 'download.mono-project.com'

I don’t know about r1soft and mono-project because I dont know these, but security.debian.org and forge.yunohost.org should definitely work …

What are they? Have they been loaded into my yunohost illegally? If you don’t know them I have no clue what they are…

Can’t tell much without knowing more about where your server comes from, what hardware / provider, …

Should I uninstall my apps:
Mattermost
Nextcloud
Wordpress
Invoiceninja
mailman
Maybe they use those repos??

I built my hardware myself and installed yunohost on a bare metal Intel Asus motherboard. None of my hardware “calls home”…

Well that’s just super weird, if you installed from the ISO then I see no reason that you’d have those bareos.org, troglobit.com, mono-project.com, or r1soft.com, apart if you installed some custom stuff or other apps in the past maybe

you are right there are some repos that come from old backup apps and .net frameworks.
I will just remove them from the server.
What I do not understand why network-manager was installed and why net-tools was not. I am now running on 4.2.5.3 (stable) after two upgrades . Maybe those removed or installed apps in debian(???)
Thanks for your help. I think we can call this Solved??

That whole thing about network-manager and net-tools is not super worrying, lots of stuff can happen directly or indirectly through apt / deb dependencies and stuff, especially if your server has some history. It’s not a huge problem per se, I just thought your server was more like a recent installation

Eh sure though it’s still not clear to me if there are some server timeouts or not

Ok, I shall keep testing things and removing repos from apt.
What else can I test to see if there are anymore server timeouts?
I am running apt upgrade and it is upgrading yunohost and yunohost-admin slowly. No more DNS resolution errors after removing those repos.
It run diagnosis and has returned internet connectivity issues. So, this stays open…