Yunohost-firewall status:failed

Support
,
1

:uk: :us:
What type of hardware are you using: Virtual machine
What YunoHost version are you running: 12.0.6
How are you able to access your server: The webadmin
SSH
Direct access via physical keyboard/screen
Are you in a special context or did you perform specific tweaking on your YunoHost instance ?: Proxmox Container - No modification

Describe your issue

Test machine only in Ipv6.
Yunohost in a proxmox container:

yunohost service start yunohost-firewall
Success! Service 'yunohost-firewall' started

But status is failed :

yunohost service status yunohost-firewall
configuration: unknown
description: Manages open and close connection ports to services
last_state_change: 2024-11-08 12:55:40
start_on_boot: enabled
status: failed

iptable-save is empty at boot and includes this rules after reboot yunohost-firewall service :

# Generated by iptables-save v1.8.9 (nf_tables) on Fri Nov  8 13:11:59 2024
*filter
:INPUT DROP [101:16599]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-A INPUT -i lo -j ACCEPT
-A INPUT -p icmp -j ACCEPT
COMMIT
# Completed on Fri Nov  8 13:11:59 2024

But even after a restart of yunohost-firewall service, status is always “Failed”

:fr:

Sur une machine de test installée comme conteneur dans proxmox accessible uniquement en ipv6:

yunohost service start yunohost-firewall
Success! Service 'yunohost-firewall' started```
mais pourtant le status est failed :
```yunohost service status yunohost-firewall
configuration: unknown
description: Manages open and close connection ports to services
last_state_change: 2024-11-08 12:55:40
start_on_boot: enabled
status: failed

iptable-save est vide au démarrage et a ce contenu après un redémarrage :

*filter
:INPUT DROP [101:16599]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
-A INPUT -i lo -j ACCEPT
-A INPUT -p icmp -j ACCEPT
COMMIT
# Completed on Fri Nov  8 13:11:59 2024

Mais même après un redémarrage du service yunohost-firewall, le status est toujours “failed”.

Share relevant logs or error messages

Rien de particulier dans les logs du service récupéré dans la webadmin
Nothing special in the logs retrieved from the webadmin :

Nov 08 12:55:40 yunohost[1977]: SUCCESS Firewall reloaded
Nov 08 12:55:40 yunohost[1977]: opened_ports:
Nov 08 12:55:40 yunohost[1977]:   - 80
Nov 08 12:55:40 yunohost[1977]:   - 443
Nov 08 12:55:40 yunohost[1977]:   - 996
Nov 08 12:55:40 systemd[1]: Finished yunohost-firewall.service - YunoHost Firewall.
2

Sounds like something else on the machine is tweaking iptable rules …

3

How can i find what is tweaking iptable rules?

Yunohost is not customize, it’s an original installation on a debian. Before migration in Yunohost 12, the problem was the same, i was hoping that migration would have solved it.

It’s a test machine, so i can delete it and do another one but i don’t understand this error. For information, i installed it with a promox VE Helper, perhaps is it the reason? But the helper script should only perform the container configuration and the installation of yunohost on it.

4

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.