Impossible to start yunohost firewall - impossible de démarrer le firewall yunhost

Support
, ,
1

What type of hardware are you using: Raspberry Pi 3, 4+
What YunoHost version are you running: 12.0.16
How are you able to access your server: The webadmin
Are you in a special context or did you perform specific tweaking on your YunoHost instance ?: Je change de serveur (ancien en i386), j’ai mis un hdd externe de 6To (en suivant cette procédure: Ajouter un stockage externe à son serveur | Yunohost ). I am changing servers (old one with i386), I have added a 6TB external HDD (following this procedure: Add external storage to your server | Yunohost).

Describe your issue

Bonjour, Hello,

J’ai 2 problèmes:

Le firewall ne fonctionne pas
Le DNS ne veut pas se mettre à jour HTTPSConnectionPool(host=‘paste.yunohost.org’, port=443): Max retries exceeded with url: /documents (Caused by NewConnectionError(‘: Failed to establish a new connection: [Errno -3] Temporary failure in name resolution’))

I have two problems:

The firewall isn’t working.

The DNS won’t update. HTTPSConnectionPool(host=‘paste.yunohost.org’, port=443): Max retries exceeded with url: /documents (Caused by NewConnectionError(‘: Failed to establish a new connection: [Errno -3] Temporary failure in name resolution’))

Merci d’avance, Thanks in advance

Share relevant logs or error messages

Could not start the service ‘yunohost-firewall’

Recent service logs:Jan 18 17:06:58 systemd[1]: Starting yunohost-firewall.service - YunoHost Firewall…
Jan 18 17:07:07 yunohost[3633]: SUCCESS Firewall reloaded
Jan 18 17:07:07 yunohost[3633]: opened_ports:
Jan 18 17:07:07 yunohost[3633]: - 22
Jan 18 17:07:07 yunohost[3633]: - 25
Jan 18 17:07:07 yunohost[3633]: - 53
Jan 18 17:07:07 yunohost[3633]: - 80
Jan 18 17:07:07 yunohost[3633]: - 443
Jan 18 17:07:07 yunohost[3633]: - 587
Jan 18 17:07:07 yunohost[3633]: - 993
Jan 18 17:07:07 yunohost[3633]: - 1900
Jan 18 17:07:07 yunohost[3633]: - 5222
Jan 18 17:07:07 yunohost[3633]: - 5269
Jan 18 17:07:07 yunohost[3633]: - 5353
Jan 18 17:07:08 systemd[1]: Finished yunohost-firewall.service - YunoHost Firewall.
– Boot 35a899a6962d4ba58e9f572adf3a511e –
Jan 18 18:47:45 systemd[1]: Starting yunohost-firewall.service - YunoHost Firewall…
Jan 18 18:47:47 yunohost[884]: Traceback (most recent call last):
Jan 18 18:47:47 yunohost[884]: File “/usr/bin/yunohost”, line 108, in
Jan 18 18:47:47 yunohost[884]: main()
Jan 18 18:47:47 yunohost[884]: File “/usr/bin/yunohost”, line 97, in main
Jan 18 18:47:47 yunohost[884]: yunohost.cli(
Jan 18 18:47:47 yunohost[884]: File “/usr/lib/python3/dist-packages/yunohost/init.py”, line 41, in cli
Jan 18 18:47:47 yunohost[884]: ret = moulinette.cli(
Jan 18 18:47:47 yunohost[884]: ^^^^^^^^^^^^^^^
Jan 18 18:47:47 yunohost[884]: File “/usr/lib/python3/dist-packages/moulinette/init.py”, line 140, in cli
Jan 18 18:47:47 yunohost[884]: ).run(args, output_as=output_as, timeout=timeout)
Jan 18 18:47:47 yunohost[884]: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
Jan 18 18:47:47 yunohost[884]: File “/usr/lib/python3/dist-packages/moulinette/interfaces/cli.py”, line 521, in run
Jan 18 18:47:47 yunohost[884]: ret = self.actionsmap.process(args, timeout=timeout)
Jan 18 18:47:47 yunohost[884]: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
Jan 18 18:47:47 yunohost[884]: File “/usr/lib/python3/dist-packages/moulinette/actionsmap.py”, line 579, in process
Jan 18 18:47:47 yunohost[884]: return func(**arguments)
Jan 18 18:47:47 yunohost[884]: ^^^^^^^^^^^^^^^^^
Jan 18 18:47:47 yunohost[884]: File “/usr/lib/python3/dist-packages/yunohost/firewall.py”, line 253, in firewall_reload
Jan 18 18:47:47 yunohost[884]: if ssh_port not in firewall_list()[“opened_ports”]:
Jan 18 18:47:47 yunohost[884]: ^^^^^^^^^^^^^^^
Jan 18 18:47:47 yunohost[884]: File “/usr/lib/python3/dist-packages/yunohost/firewall.py”, line 212, in firewall_list
Jan 18 18:47:47 yunohost[884]: f = firewall[i]
Jan 18 18:47:47 yunohost[884]: ~~~~~~~~^^^
Jan 18 18:47:47 yunohost[884]: KeyError: ‘ipv4’
Jan 18 18:47:48 systemd[1]: yunohost-firewall.service: Main process exited, code=exited, status=1/FAILURE
Jan 18 18:47:48 systemd[1]: yunohost-firewall.service: Failed with result ‘exit-code’.
Jan 18 18:47:48 systemd[1]: Failed to start yunohost-firewall.service - YunoHost Firewall.
– Boot 19e6bc9888a549d7a7accd32833d2799 –
Jan 18 18:50:48 systemd[1]: Starting yunohost-firewall.service - YunoHost Firewall…
Jan 18 18:50:49 yunohost[898]: Traceback (most recent call last):
Jan 18 18:50:49 yunohost[898]: File “/usr/bin/yunohost”, line 108, in
Jan 18 18:50:49 yunohost[898]: main()
Jan 18 18:50:49 yunohost[898]: File “/usr/bin/yunohost”, line 97, in main
Jan 18 18:50:49 yunohost[898]: yunohost.cli(
Jan 18 18:50:49 yunohost[898]: File “/usr/lib/python3/dist-packages/yunohost/init.py”, line 41, in cli
Jan 18 18:50:49 yunohost[898]: ret = moulinette.cli(
Jan 18 18:50:49 yunohost[898]: ^^^^^^^^^^^^^^^
Jan 18 18:50:49 yunohost[898]: File “/usr/lib/python3/dist-packages/moulinette/init.py”, line 140, in cli
Jan 18 18:50:49 yunohost[898]: ).run(args, output_as=output_as, timeout=timeout)
Jan 18 18:50:49 yunohost[898]: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
Jan 18 18:50:49 yunohost[898]: File “/usr/lib/python3/dist-packages/moulinette/interfaces/cli.py”, line 521, in run
Jan 18 18:50:49 yunohost[898]: ret = self.actionsmap.process(args, timeout=timeout)
Jan 18 18:50:49 yunohost[898]: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
Jan 18 18:50:49 yunohost[898]: File “/usr/lib/python3/dist-packages/moulinette/actionsmap.py”, line 579, in process
Jan 18 18:50:49 yunohost[898]: return func(**arguments)
Jan 18 18:50:49 yunohost[898]: ^^^^^^^^^^^^^^^^^
Jan 18 18:50:49 yunohost[898]: File “/usr/lib/python3/dist-packages/yunohost/firewall.py”, line 253, in firewall_reload
Jan 18 18:50:49 yunohost[898]: if ssh_port not in firewall_list()[“opened_ports”]:
Jan 18 18:50:49 yunohost[898]: ^^^^^^^^^^^^^^^
Jan 18 18:50:49 yunohost[898]: File “/usr/lib/python3/dist-packages/yunohost/firewall.py”, line 212, in firewall_list
Jan 18 18:50:49 yunohost[898]: f = firewall[i]
Jan 18 18:50:49 yunohost[898]: ~~~~~~~~^^^
Jan 18 18:50:49 yunohost[898]: KeyError: ‘ipv4’
Jan 18 18:50:49 systemd[1]: yunohost-firewall.service: Main process exited, code=exited, status=1/FAILURE
Jan 18 18:50:49 systemd[1]: yunohost-firewall.service: Failed with result ‘exit-code’.
Jan 18 18:50:49 systemd[1]: Failed to start yunohost-firewall.service - YunoHost Firewall.
– Boot 5126fdaf3729448aa5ab87c13b61d457 –
Jan 18 18:56:25 systemd[1]: Starting yunohost-firewall.service - YunoHost Firewall…
Jan 18 18:56:26 yunohost[925]: Traceback (most recent call last):
Jan 18 18:56:26 yunohost[925]: File “/usr/bin/yunohost”, line 108, in
Jan 18 18:56:26 yunohost[925]: main()
Jan 18 18:56:26 yunohost[925]: File “/usr/bin/yunohost”, line 97, in main
Jan 18 18:56:26 yunohost[925]: yunohost.cli(
Jan 18 18:56:26 yunohost[925]: File “/usr/lib/python3/dist-packages/yunohost/init.py”, line 41, in cli
Jan 18 18:56:26 yunohost[925]: ret = moulinette.cli(
Jan 18 18:56:26 yunohost[925]: ^^^^^^^^^^^^^^^
Jan 18 18:56:26 yunohost[925]: File “/usr/lib/python3/dist-packages/moulinette/init.py”, line 140, in cli
Jan 18 18:56:26 yunohost[925]: ).run(args, output_as=output_as, timeout=timeout)
Jan 18 18:56:26 yunohost[925]: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
Jan 18 18:56:26 yunohost[925]: File “/usr/lib/python3/dist-packages/moulinette/interfaces/cli.py”, line 521, in run
Jan 18 18:56:26 yunohost[925]: ret = self.actionsmap.process(args, timeout=timeout)
Jan 18 18:56:26 yunohost[925]: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
Jan 18 18:56:26 yunohost[925]: File “/usr/lib/python3/dist-packages/moulinette/actionsmap.py”, line 579, in process
Jan 18 18:56:26 yunohost[925]: return func(**arguments)
Jan 18 18:56:26 yunohost[925]: ^^^^^^^^^^^^^^^^^
Jan 18 18:56:26 yunohost[925]: File “/usr/lib/python3/dist-packages/yunohost/firewall.py”, line 253, in firewall_reload
Jan 18 18:56:26 yunohost[925]: if ssh_port not in firewall_list()[“opened_ports”]:
Jan 18 18:56:26 yunohost[925]: ^^^^^^^^^^^^^^^
Jan 18 18:56:26 yunohost[925]: File “/usr/lib/python3/dist-packages/yunohost/firewall.py”, line 212, in firewall_list
Jan 18 18:56:26 yunohost[925]: f = firewall[i]
Jan 18 18:56:26 yunohost[925]: ~~~~~~~~^^^
Jan 18 18:56:26 yunohost[925]: KeyError: ‘ipv4’
Jan 18 18:56:27 systemd[1]: yunohost-firewall.service: Main process exited, code=exited, status=1/FAILURE
Jan 18 18:56:27 systemd[1]: yunohost-firewall.service: Failed with result ‘exit-code’.
Jan 18 18:56:27 systemd[1]: Failed to start yunohost-firewall.service - YunoHost Firewall.
– Boot c645218b0a594200ae67059172dc9d9a –
Jan 18 19:11:26 systemd[1]: Starting yunohost-firewall.service - YunoHost Firewall…
Jan 18 19:11:28 yunohost[927]: Traceback (most recent call last):
Jan 18 19:11:28 yunohost[927]: File “/usr/bin/yunohost”, line 108, in
Jan 18 19:11:28 yunohost[927]: main()
Jan 18 19:11:28 yunohost[927]: File “/usr/bin/yunohost”, line 97, in main
Jan 18 19:11:28 yunohost[927]: yunohost.cli(
Jan 18 19:11:28 yunohost[927]: File “/usr/lib/python3/dist-packages/yunohost/init.py”, line 41, in cli
Jan 18 19:11:28 yunohost[927]: ret = moulinette.cli(
Jan 18 19:11:28 yunohost[927]: ^^^^^^^^^^^^^^^
Jan 18 19:11:28 yunohost[927]: File “/usr/lib/python3/dist-packages/moulinette/init.py”, line 140, in cli
Jan 18 19:11:28 yunohost[927]: ).run(args, output_as=output_as, timeout=timeout)
Jan 18 19:11:28 yunohost[927]: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
Jan 18 19:11:28 yunohost[927]: File “/usr/lib/python3/dist-packages/moulinette/interfaces/cli.py”, line 521, in run
Jan 18 19:11:28 yunohost[927]: ret = self.actionsmap.process(args, timeout=timeout)
Jan 18 19:11:28 yunohost[927]: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
Jan 18 19:11:28 yunohost[927]: File “/usr/lib/python3/dist-packages/moulinette/actionsmap.py”, line 579, in process
Jan 18 19:11:28 yunohost[927]: return func(**arguments)
Jan 18 19:11:28 yunohost[927]: ^^^^^^^^^^^^^^^^^
Jan 18 19:11:28 yunohost[927]: File “/usr/lib/python3/dist-packages/yunohost/firewall.py”, line 253, in firewall_reload
Jan 18 19:11:28 yunohost[927]: if ssh_port not in firewall_list()[“opened_ports”]:
Jan 18 19:11:28 yunohost[927]: ^^^^^^^^^^^^^^^
Jan 18 19:11:28 yunohost[927]: File “/usr/lib/python3/dist-packages/yunohost/firewall.py”, line 212, in firewall_list
Jan 18 19:11:28 yunohost[927]: f = firewall[i]
Jan 18 19:11:28 yunohost[927]: ~~~~~~~~^^^
Jan 18 19:11:28 yunohost[927]: KeyError: ‘ipv4’
Jan 18 19:11:28 systemd[1]: yunohost-firewall.service: Main process exited, code=exited, status=1/FAILURE
Jan 18 19:11:28 systemd[1]: yunohost-firewall.service: Failed with result ‘exit-code’.
Jan 18 19:11:28 systemd[1]: Failed to start yunohost-firewall.service - YunoHost Firewall.
Jan 18 19:18:16 systemd[1]: Starting yunohost-firewall.service - YunoHost Firewall…
Jan 18 19:18:18 yunohost[1622]: Traceback (most recent call last):
Jan 18 19:18:18 yunohost[1622]: File “/usr/bin/yunohost”, line 108, in
Jan 18 19:18:18 yunohost[1622]: main()
Jan 18 19:18:18 yunohost[1622]: File “/usr/bin/yunohost”, line 97, in main
Jan 18 19:18:18 yunohost[1622]: yunohost.cli(
Jan 18 19:18:18 yunohost[1622]: File “/usr/lib/python3/dist-packages/yunohost/init.py”, line 41, in cli
Jan 18 19:18:18 yunohost[1622]: ret = moulinette.cli(
Jan 18 19:18:18 yunohost[1622]: ^^^^^^^^^^^^^^^
Jan 18 19:18:18 yunohost[1622]: File “/usr/lib/python3/dist-packages/moulinette/init.py”, line 140, in cli
Jan 18 19:18:18 yunohost[1622]: ).run(args, output_as=output_as, timeout=timeout)
Jan 18 19:18:18 yunohost[1622]: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
Jan 18 19:18:18 yunohost[1622]: File “/usr/lib/python3/dist-packages/moulinette/interfaces/cli.py”, line 521, in run
Jan 18 19:18:18 yunohost[1622]: ret = self.actionsmap.process(args, timeout=timeout)
Jan 18 19:18:18 yunohost[1622]: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
Jan 18 19:18:18 yunohost[1622]: File “/usr/lib/python3/dist-packages/moulinette/actionsmap.py”, line 579, in process
Jan 18 19:18:18 yunohost[1622]: return func(**arguments)
Jan 18 19:18:18 yunohost[1622]: ^^^^^^^^^^^^^^^^^
Jan 18 19:18:18 yunohost[1622]: File “/usr/lib/python3/dist-packages/yunohost/firewall.py”, line 253, in firewall_reload
Jan 18 19:18:18 yunohost[1622]: if ssh_port not in firewall_list()[“opened_ports”]:
Jan 18 19:18:18 yunohost[1622]: ^^^^^^^^^^^^^^^
Jan 18 19:18:18 yunohost[1622]: File “/usr/lib/python3/dist-packages/yunohost/firewall.py”, line 212, in firewall_list
Jan 18 19:18:18 yunohost[1622]: f = firewall[i]
Jan 18 19:18:18 yunohost[1622]: ~~~~~~~~^^^
Jan 18 19:18:18 yunohost[1622]: KeyError: ‘ipv4’
Jan 18 19:18:18 systemd[1]: yunohost-firewall.service: Main process exited, code=exited, status=1/FAILURE
Jan 18 19:18:18 systemd[1]: yunohost-firewall.service: Failed with result ‘exit-code’.
Jan 18 19:18:18 systemd[1]: Failed to start yunohost-firewall.service - YunoHost Firewall.
Jan 18 19:21:18 systemd[1]: Starting yunohost-firewall.service - YunoHost Firewall…
Jan 18 19:21:20 yunohost[1768]: Traceback (most recent call last):
Jan 18 19:21:20 yunohost[1768]: File “/usr/bin/yunohost”, line 108, in
Jan 18 19:21:20 yunohost[1768]: main()
Jan 18 19:21:20 yunohost[1768]: File “/usr/bin/yunohost”, line 97, in main
Jan 18 19:21:20 yunohost[1768]: yunohost.cli(
Jan 18 19:21:20 yunohost[1768]: File “/usr/lib/python3/dist-packages/yunohost/init.py”, line 41, in cli
Jan 18 19:21:20 yunohost[1768]: ret = moulinette.cli(
Jan 18 19:21:20 yunohost[1768]: ^^^^^^^^^^^^^^^
Jan 18 19:21:20 yunohost[1768]: File “/usr/lib/python3/dist-packages/moulinette/init.py”, line 140, in cli
Jan 18 19:21:20 yunohost[1768]: ).run(args, output_as=output_as, timeout=timeout)
Jan 18 19:21:20 yunohost[1768]: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
Jan 18 19:21:20 yunohost[1768]: File “/usr/lib/python3/dist-packages/moulinette/interfaces/cli.py”, line 521, in run
Jan 18 19:21:20 yunohost[1768]: ret = self.actionsmap.process(args, timeout=timeout)
Jan 18 19:21:20 yunohost[1768]: ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
Jan 18 19:21:20 yunohost[1768]: File “/usr/lib/python3/dist-packages/moulinette/actionsmap.py”, line 579, in process
Jan 18 19:21:20 yunohost[1768]: return func(**arguments)
Jan 18 19:21:20 yunohost[1768]: ^^^^^^^^^^^^^^^^^
Jan 18 19:21:20 yunohost[1768]: File “/usr/lib/python3/dist-packages/yunohost/firewall.py”, line 253, in firewall_reload
Jan 18 19:21:20 yunohost[1768]: if ssh_port not in firewall_list()[“opened_ports”]:
Jan 18 19:21:20 yunohost[1768]: ^^^^^^^^^^^^^^^
Jan 18 19:21:20 yunohost[1768]: File “/usr/lib/python3/dist-packages/yunohost/firewall.py”, line 212, in firewall_list
Jan 18 19:21:20 yunohost[1768]: f = firewall[i]
Jan 18 19:21:20 yunohost[1768]: ~~~~~~~~^^^
Jan 18 19:21:20 yunohost[1768]: KeyError: ‘ipv4’
Jan 18 19:21:20 systemd[1]: yunohost-firewall.service: Main process exited, code=exited, status=1/FAILURE
Jan 18 19:21:20 systemd[1]: yunohost-firewall.service: Failed with result ‘exit-code’.
Jan 18 19:21:20 systemd[1]: Failed to start yunohost-firewall.service - YunoHost Firewall.

2

Est-ce une toute nouvelle installation ou une restauration d’un serveur existant ?

3

ah ah toujours sur le pont :wink:

C’est une restauration

4

nftables a pris le relais de yunohost-firewall. SI tu as l’un (nftables), tu peux arrêter l’autre.

1 Like
5

je vois pas nftables dans les services (mais c’est peut être normal :man_shrugging: ?)

6

Cela dépend de la version qui est installée mais a priori ton problème ne vient donc pas de là si tu ne vois pas nftables dans les services. Il a dû remplacer yunohost-firewall sur une version supérieure (12.1 ?).

7

sur la webadmin c’est marqué “Propulsé par YunoHost 12.0.16 (stable)”

8

faut peut être que je retente une installation sans restauration puis restaurer une fois l’installation réalisée?
Au lieu d’une restauration à l’installation? (enfin si c’est possible)

9

Ton serveur a bien une ipv4?

10

Pas sûr :pensive_face:

Je peux vérifier comment (en sachant que je ne peux pas accéder au ssh et que je ne peux pas lancer de commande non plus en direct sur le serveur (il bloque à finished systemd-update-utmp-runlevel.service Record Runlevel Change in UTMP et je ne peux rien saisir ensuite )?

11

Là, honnêtement… dans l’interface de ta box, onglet dhcp (trouver le bail correspondant au nom de ta machine) ou onglet dns.

12

ah ok, oui j’ai une ip type 192.168.x.y

13

Deux éléments peuvent éclairer la situation :

  • Le diagnostic (utilises le bouton partager et partages le lien)
  • Le retour de yunohost tools regen-conf –dry-run –with-diff

Une migration vers 12.1 pourrait résoudre le problème mais dans un deuxième temps.

14

Hélas je ne peux faire aucun des deux. Yunopaste ne fonctionne pas et je ne peux pas accéder au ssh dans l’état actuel :pensive_face:

15

Il faudrait que tu indiques quelles étapes tu as suivies jusqu’à présent.
Quand tu dis

cela signifie que le serveur suit correctement sa phase de démarrage jusqu’à ce message ?
Apparemment tu es passé sur un rpi auquel tu as ajouté un HDD: est-ce que l(es) alim(s) est/sont suffisante(s) pour l’un et pour l’autre ? As-tu essayé de démarrer sans ?

16

*sans HDD, pas sans alim :grimacing:

17

oui c’est ça quand je démarre ça s’arrête à ce message. Ok je tente de démarrer sans

18

la seule chose qui change c’est une ligne qui montre qu’il cherche le HDD. Il n’est pas alimenté en externe, ça peut poser souci?

19

Donc tu as toujours la ligne systemd-update-utmp-runlevel.service Record Runlevel Change in UTMP ?

Je ne sais pas ce qu’il en est pour les derniers modèles de rpi mais sur les versions 2, 3 l’alim standard était faiblarde pour certains hdd.
En l’état n’as-tu accès à aucune console (et aucune possibilité de commenter la ligne du hdd dans le /etc/fstab) ?

20

oui c’est j’ai toujours cette ligne;

systemd-update-utmp-runlevel.service Record Runlevel Change in UTMP

et ça me bloque l’accès à tout sauf la webadmin en local (mais yunopaste ne fonctionne pas)