Issues with IPv4/IPv6 not stable

Support
, , ,
1

What type of hardware are you using: VPS bought online
What YunoHost version are you running: 12.0.6
How are you able to access your server: SSH
Are you in a special context or did you perform specific tweaking on your YunoHost instance ?: N/A

Describe your issue

Yesterday I’ve received some automatic diagnosis mails related to some issues with IPv4 (see logs).

I haven’t done anything recently so I don’t understand why I get this. It happened to me already some weeks/months ago and I think it solved by itself but it can be annoying and I’d like to understand the root cause and how I could solve this.

Looking at the webadmin I’ve ran the diagnosis and sometimes I have issues with IPv6 and sometimes IPv4. It doesn’t seem stable.

Share relevant logs or error messages

=================================
Base system (basesystem)

[INFO] Server hardware architecture is kvm amd64

  • Server model is QEMU Standard PC (i440FX + PIIX, 1996)

[INFO] Server is running Linux kernel 6.1.0-27-amd64

[INFO] Server is running Debian 12.8

[INFO] Server is running YunoHost 12.0.6 (stable)

  • yunohost version: 12.0.6 (stable)
  • yunohost-admin version: 12.0.3.5 (stable)
  • yunohost-portal version: 12.0.6 (stable)
  • moulinette version: 12.0.3 (stable)
  • ssowat version: 12.0.3 (stable)

=================================
Internet connectivity (ip)

[SUCCESS] Domain name resolution is working!

[ERROR] The server does not have working IPv4.

[SUCCESS] The server is connected to the Internet through IPv6!

  • Global IP: xx:xx:xx:xx:xx:xx
  • Local IP: xx:xx:xx:xx:xx:xx

=================================
DNS records (dnsrecords)

[SUCCESS] DNS records are correctly configured for domain maindomain.tld (category basic)

[SUCCESS] DNS records are correctly configured for domain maindomain.tld (category mail)

[WARNING] Some DNS records are missing or incorrect for domain maindomain.tld (category extra)

  • Please check the documentation at DNS zone configuration | Yunohost Documentation if you need help configuring DNS records.
  • According to the recommended DNS configuration, you should add a DNS record with the following info.
    Type: AAAA
    Name: *
    Value: xx:xx:xx:xx:xx:xx

[SUCCESS] Your domains are registered and not going to expire anytime soon.

  • maindomain.tld expires in 55 days.

=================================
Ports exposure (ports)

[WARNING] Could not diagnose if ports are reachable from outside in IPv4.

  • Error: HTTPSConnectionPool(host=‘diagnosis.yunohost.org’, port=443): Max retries exceeded with url: /check-ports (Caused by ConnectTimeoutError(, ‘Connection to diagnosis.yunohost.org timed out. (connect timeout=30)’))

=================================
Web (web)

[SUCCESS] Domain maindomain.tld is reachable through HTTP from outside the local network.

[ERROR] Domain drive.maindomain.tld appears unreachable through HTTP from outside the local network.

  • It looks like another machine (maybe your internet router) answered instead of your server.
    1. The most common cause for this issue is that port 80 (and 443) are not correctly forwarded to your server.
    2. On more complex setups: make sure that no firewall or reverse-proxy is interfering.

[SUCCESS] Domain mail.maindomain.tld is reachable through HTTP from outside the local network.

[ERROR] Domain sso.maindomain.tld appears unreachable through HTTP from outside the local network.

  • It looks like another machine (maybe your internet router) answered instead of your server.
    1. The most common cause for this issue is that port 80 (and 443) are not correctly forwarded to your server.
    2. On more complex setups: make sure that no firewall or reverse-proxy is interfering.

[SUCCESS] Domain sync.maindomain.tld is reachable through HTTP from outside the local network.

=================================
Email (mail)

[ERROR] The SMTP mail server cannot send emails to other servers because outgoing port 25 is blocked in IPv4.

  • You should first try to unblock outgoing port 25 in your internet router interface or your hosting provider interface. (Some hosting providers may require you to send them a support ticket for this).
  • Some providers won’t let you unblock outgoing port 25 because they don’t care about Net Neutrality.
    • Some of them provide the alternative of using a mail server relay though it implies that the relay will be able to spy on your email traffic.
    • A privacy-friendly alternative is to use a VPN with a dedicated public IP to bypass these kinds of limits. See Advantages of a VPN for self-hosting | Yunohost Documentation
    • You can also consider switching to a more net neutrality-friendly provider

[SUCCESS] The SMTP mail server is reachable from the outside and therefore is able to receive emails!

[SUCCESS] Your reverse DNS is correctly configured!

[SUCCESS] The IPs and domains used by this server do not appear to be blacklisted

[SUCCESS] 0 pending emails in the mail queues

=================================
Services status check (services)

[SUCCESS] Service dnsmasq is running!

[SUCCESS] Service dovecot is running!

[SUCCESS] Service fail2ban is running!

[SUCCESS] Service mysql is running!

[SUCCESS] Service nginx is running!

[SUCCESS] Service opendkim is running!

[SUCCESS] Service php7.4-fpm is running!

[SUCCESS] Service php8.3-fpm is running!

[SUCCESS] Service postfix is running!

[SUCCESS] Service redis-server is running!

[SUCCESS] Service slapd is running!

[SUCCESS] Service ssh is running!

[SUCCESS] Service syncthing is running!

[SUCCESS] Service yunohost-api is running!

[SUCCESS] Service yunohost-firewall is running!

[SUCCESS] Service yunohost-portal-api is running!

[SUCCESS] Service yunomdns is running!

=================================
System resources (systemresources)

[SUCCESS] The system still has 2.3 GiB (60%) RAM available out of 3.8 GiB.

[INFO] The system has no swap at all. You should consider adding at least 512 MiB of swap to avoid situations where the system runs out of memory.

  • Please be careful and aware that if the server is hosting swap on an SD card or SSD storage, it may drastically reduce the life expectancy of the device.

[SUCCESS] Storage / (on device /dev/sda1) still has 15 GiB (54%) space left (out of 28 GiB)!

=================================
System configurations (regenconf)

[SUCCESS] All configuration files are in line with the recommended configuration!

=================================
Applications (apps)

[SUCCESS] All installed apps respect basic packaging practices

2

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.