Iptables won't start after upgrade to 1.4.3

fra · June 23, 2021, 7:28am

Hello, how can I debug the reason that iptables won’t start after upgrade to 1.4.3?

this is related to my installation, I have an other installation and iptables run ok

thanks!

damohost · June 24, 2021, 7:25am

same problem.

eris · June 24, 2021, 7:28am

Run
cat /usr/lib/networkd-dispatcher/routable.d/10-hestia-iptables

It should show something like:

#!/bin/sh

if [ “$IFACE” = “eno3” ]; then
[ -x “/sbin/ipset” ] && /usr/local/hestia/bin/v-update-firewall-ipset
/sbin/iptables-restore < /etc/iptables.rules
fi

exit 0
eno3 = is in this case the ethernet port

Check if that is the correct and active ethernet port

fra · June 24, 2021, 7:59am

the directory

/usr/lib/networkd-dispatcher is not present al all.

Also/etc/networkd-dispatcher does not exist

what does it mean?

eris · June 24, 2021, 8:10am

You are using netplan?

fra · June 24, 2021, 8:17am

yes, even on an other hestia installation where iptables works and /usr/lib/networkd-dispatcher/routable.d/10-hestia-iptables exists with content

#!/bin/sh

if [ “$IFACE” = “ens160” ]; then
[ -x “/usr/sbin/ipset” ] && /usr/local/hestia/bin/v-update-firewall-ipset
/sbin/iptables-restore < /etc/iptables.rules
fi

exit 0

eris · June 24, 2021, 8:25am

Is http://manpages.ubuntu.com/manpages/cosmic/man8/networkd-dispatcher.8.html installed?

fra · June 24, 2021, 8:38am

yes installed

networkd-dispatcher is already the newest version (2.0.1-1).

fra · July 5, 2021, 6:59am

Hi, any other idea to solve the issue?

eris · July 5, 2021, 9:08am

Is the server using Netplan or systemd for the network configuration?

fra · July 5, 2021, 9:39am

installation is a default ubuntu 20.04, I set the IP address in /etc/netplan
how to get the right answer for you? thanks!

eris · July 5, 2021, 10:45am

You might need to try this

fra · July 6, 2021, 1:51pm

it seems that running v-stop-firewall 1 time, then starting service from hestia panel worked!