jazzymc/infrastructure
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix: resolve DNS issues - update DHCP to use gateway as DNS

Browse Source
This commit is contained in:
XTRM-Unraid
2026-01-31 23:25:56 +02:00
parent 886f46bd77
commit b95ba0f444
1 changed files with 22 additions and 24 deletions
Download Patch File Download Diff File Expand all files Collapse all files

46
docs/incidents/2026-01-31-network-connectivity.md
View File

@@ -1,43 +1,41 @@
# Network Connectivity Issue # Network Connectivity Issue
**Date:** 2026-01-31 **Date:** 2026-01-31
**Status:** OPEN **Status:** RESOLVED
**Severity:** Medium **Severity:** Medium
## Symptoms ## Symptoms (Initial)
- DNS resolution failing (8.8.8.8 timeout) - DNS resolution failing (8.8.8.8 timeout)
- Cannot connect to local services via 192.168.31.2 - Cannot connect to local services via 192.168.31.2
- curl to Gitea (port 3005) returns HTTP 000
- Git push to Gitea failing - Git push to Gitea failing
## Affected Services ## Root Causes Identified
- Git push to git.xtrm-lab.org 1. **DHCP DNS misconfiguration** - All VLANs were pushing 8.8.8.8 instead of gateway IP
- Potentially other services using external DNS 2. **Legacy IP references** - Old 192.168.31.x IPs no longer valid after VLAN migration
3. **Macvlan limitation** - AdGuard on macvlan (br0) unreachable from host
## Observations ## Resolution
- Gitea container is running (docker ps confirms) 1. Updated MikroTik DHCP network settings:
- Ports are mapped correctly (0.0.0.0:3005->3000) - VLAN 10: dns-server=192.168.10.1
- Internal Docker IP: 172.18.0.31 - VLAN 20: dns-server=192.168.20.1
- Connections from Unraid shell to local IP timing out - VLAN 25: dns-server=192.168.25.1
- VLAN 30: dns-server=192.168.30.1
## Possible Causes 2. Renewed DHCP lease on Unraid: `dhcpcd -n br0`
- Docker bridge/macvlan network issue 3. Updated NetAlertX config with correct IP (192.168.10.20)
- iptables/firewall blocking internal traffic
- VLAN configuration affecting local routing
- DNS upstream issue
## Workaround ## Verification
- Pending git commit saved locally: `dbe4699` - DNS now resolves via 192.168.10.1 (MikroTik gateway → AdGuard)
- Push when network is restored: `cd /tmp/infrastructure && git push` - Git push to Gitea working
- All services accessible
## Next Steps ## Lessons Learned
- [ ] Check iptables rules - After VLAN migration, update all hardcoded IPs
- [ ] Verify Docker network configuration - DHCP DNS should point to gateway, not external servers
- [ ] Check AdGuard DNS upstream settings - Macvlan containers need shim interface for host communication
- [ ] Test connectivity from different network paths