Bug #2966

multi-wan: wan enable/disable failure

Added by Filippo Carletti over 6 years ago. Updated over 6 years ago.

Status:CLOSEDStart date:
Priority:HighDue date:
Assignee:-% Done:

100%

Category:nethserver-firewall-base
Target version:v6.5
Security class: Resolution:
Affected version:v6.5 NEEDINFO:No

Description

When a multi wan uplink fails, a script (/etc/e-smith/events/actions/nethserver-shorewall-wan-update) disables the interface.
The script fails with an error:

/etc/e-smith/events/wan-uplink-update/S50nethserver-shorewall-wan-update: line 61: /sbin/shorewall: No such file or directory

The latest shorewall update changed the path for the command.

Associated revisions

Revision 0e72a0b0
Added by Filippo Carletti over 6 years ago

shorewall-wan-update: use correct shorewall path. Refs: #2966

History

#1 Updated by Filippo Carletti over 6 years ago

  • Status changed from NEW to TRIAGED
  • % Done changed from 0 to 20

#2 Updated by Filippo Carletti over 6 years ago

  • Status changed from TRIAGED to MODIFIED
  • % Done changed from 20 to 60

#3 Updated by Giacomo Sanchietti over 6 years ago

  • Target version set to v6.5

#4 Updated by Giacomo Sanchietti over 6 years ago

  • Status changed from MODIFIED to ON_QA
  • % Done changed from 60 to 70
Package in nethserver-testing:
  • nethserver-firewall-base-2.2.1-1.1git0e72a0b.ns6.noarch.rpm

Please, add a test case.

#5 Updated by Filippo Carletti over 6 years ago

Before update:

grep shorewall /etc/e-smith/events/actions/nethserver-shorewall-wan-update

shoud show
/sbin/shorewall enable...

After update:
/usr/sbin/shorewall...

#6 Updated by Giacomo Sanchietti over 6 years ago

  • Assignee set to Giacomo Sanchietti

#7 Updated by Giacomo Sanchietti over 6 years ago

  • Status changed from ON_QA to VERIFIED
  • Assignee deleted (Giacomo Sanchietti)
  • % Done changed from 70 to 90

When switching off a provider:

Dec  1 13:08:54 nethsecurityng lsm[19629]: link wimax1 down event
Dec  1 13:08:54 nethsecurityng lsm[19629]: name = wimax1, replied = 93, waiting = 7, timeout = 6, late reply = 0, cons rcvd = 0, cons wait = 6, cons miss = 6,
 avg_rtt = 86.611, seq = 2051
Dec  1 13:08:54 nethsecurityng lsm[19629]: seq                                                           *                                                
Dec  1 13:08:54 nethsecurityng lsm[19629]: used       1111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111
Dec  1 13:08:54 nethsecurityng lsm[19629]: wait       0000000000000000000000000000000000000000000011111110000000000000000000000000000000000000000000000000
Dec  1 13:08:54 nethsecurityng lsm[19629]: replied    1111111111111111111111111111111111111111111100000001111111111111111111111111111111111111111111111111
Dec  1 13:08:54 nethsecurityng lsm[19629]: timeout    0000000000000000000000000000000000000000000011111100000000000000000000000000000000000000000000000000
Dec  1 13:08:54 nethsecurityng lsm[19629]: error      0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000
Dec  1 13:08:54 nethsecurityng lsm[19629]: group wimax down event

After the provider is up:

Dec  1 13:16:51 nethsecurityng esmith::event[17222]: Event: wan-uplink-update SUCCESS
Dec  1 13:17:04 nethsecurityng lsm[19629]: name = fweb1, replied = 100, waiting = 0, timeout = 0, late reply = 0, cons rcvd = 100, cons wait = 0, cons miss = 
0, avg_rtt = 16.578, seq = 2148
Dec  1 13:17:04 nethsecurityng lsm[19629]: seq                                                        *                                                   
Dec  1 13:17:04 nethsecurityng lsm[19629]: used       1111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111
Dec  1 13:17:04 nethsecurityng lsm[19629]: wait       0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000
Dec  1 13:17:04 nethsecurityng lsm[19629]: replied    1111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111
Dec  1 13:17:04 nethsecurityng lsm[19629]: timeout    0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000
Dec  1 13:17:04 nethsecurityng lsm[19629]: error      0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000
Dec  1 13:17:04 nethsecurityng lsm[19629]: name = wimax1, replied = 94, waiting = 6, timeout = 6, late reply = 0, cons rcvd = 93, cons wait = 0, cons miss = 0
, avg_rtt = 89.294, seq = 2148
Dec  1 13:17:04 nethsecurityng lsm[19629]: seq                                                        *                                                   
Dec  1 13:17:04 nethsecurityng lsm[19629]: used       1111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111111
Dec  1 13:17:04 nethsecurityng lsm[19629]: wait       0000000000000000000000000000000000000000000000001111110000000000000000000000000000000000000000000000
Dec  1 13:17:04 nethsecurityng lsm[19629]: replied    1111111111111111111111111111111111111111111111110000001111111111111111111111111111111111111111111111
Dec  1 13:17:04 nethsecurityng lsm[19629]: timeout    0000000000000000000000000000000000000000000000001111110000000000000000000000000000000000000000000000
Dec  1 13:17:04 nethsecurityng lsm[19629]: error      0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000

VERIFIED

#8 Updated by Filippo Carletti over 6 years ago

Link down:

Dec 1 13:08:54 nethsecurityng lsm19629: group wimax down event
Dec 1 13:08:54 nethsecurityng esmith::event16554: Event: wan-uplink-update SUCCESS

Nothing logged to firewall.log.
ip rules are updated:
10000: from all fwmark 0x10000/0xf0000 lookup fweb

Link up:
Dec 1 13:16:50 nethsecurityng lsm19629: group wimax up event
Dec 1 13:16:50 nethsecurityng esmith::event17222: Event: wan-uplink-update up wimax NA NA root 0 0 0 0 0 0 0 0 NA down 1417436210
Dec 1 13:16:50 nethsecurityng esmith::event17223: Event: wan-uplink-update up wimax1 5.133.56.1 eth2 root 92 8 8 0 91 0 0 89374 1
92.168.254.1 down 1417436210
Dec 1 13:16:50 nethsecurityng esmith::event17223: Action: /etc/e-smith/events/wan-uplink-update/S50nethserver-shorewall-wan-updat
e SUCCESS [0.009677]
Dec 1 13:16:50 nethsecurityng esmith::event17223: Event: wan-uplink-update SUCCESS

10000: from all fwmark 0x10000/0xf0000 lookup fweb
10001: from all fwmark 0x20000/0xf0000 lookup wimax

#9 Updated by Giacomo Sanchietti over 6 years ago

  • Status changed from VERIFIED to CLOSED
  • % Done changed from 90 to 100
Released in nethserver-updates:
  • nethserver-firewall-base-2.2.2-1.ns6.noarch.rpm

Also available in: Atom PDF