infomaniak IPv6 issues
-
@girish I think I have very interesting new information to narrow down the possibilities for the root cause. What I did is that I tried to restart every component/service I could, starting from the most specific (mail container) to the most general (full system reboot):
Service / Component restarted Result sudo docker restart mailNOK sudo systemctl restart boxNOK sudo systemctl restart dockerNOK – I had to restart apps manually due to bad gateway / 500 errors. sudo systemctl restart unboundNOK sudo systemctl restart systemd-resolvedNOK sudo systemctl restart systemd-networkdNOK sudo netplan applyNOK sudo rebootOK – PTR6 works again. So I asked myself: what could exist between the NOK and OK state that I hadn't tried?
I decided to target the IPv6 stack of the OS directly. I ran:
sudo ip -6 neigh flush all sudo sysctl -w net.ipv6.conf.all.disable_ipv6=1 sleep 2 sudo sysctl -w net.ipv6.conf.all.disable_ipv6=0
️ After this, it was still NOK, but interestingly it reported the PTR6 = null state instantly, instead of the usual 1–2 minute delay. That suggested something was cleared or reset => Makes sense as I flushed.After flushing the IPv6 neighbours and disabling / re-enabling the ipv6 module I've restarted netplan and docker :
sudo netplan apply sudo systemctl restart docker️ Again, after restarting Docker I had to manually restart all apps (some with bad gateway / nginx errors like n8n). But...
IT WORKED!
The PTR6 value was immediately resolved again and Cloudron no longer shows
null. So this suggests that the root cause may lie somewhere in the interaction between the kernel IPv6 stack and Docker’s networking layer ? particularly after updates...What do you think @girish ? What could be the root cause ?
-
Not sure, but in many VPS , IPv6 and related networking are simply not that reliable . It's hard to point at the root cause without debugging the setups. Which VPS are you using, if you don't mind sharing?
-
@Gengar should I use https://www.infomaniak.com/en/hosting/vps-lite ? Can't make out if those have IPv6
-
@Gengar should I use https://www.infomaniak.com/en/hosting/vps-lite ? Can't make out if those have IPv6
-
@Gengar should I use https://www.infomaniak.com/en/hosting/vps-lite ? Can't make out if those have IPv6
-
@Gengar I have created a ticket now to set the PTR records. But going back to your original issue:
"host -t PTR <ipv6> 127.0.0.150 always fails instantly." This works just fine on my VPS. Maybe you have some firewall rules? I just allowed everything incoming in firewall.
ubuntu@ov-9503b4:~$ host -t PTR 45.55.2.141 127.0.0.150 Using domain server: Name: 127.0.0.150 Address: 127.0.0.150#53 Aliases: 141.2.55.45.in-addr.arpa domain name pointer my.cloudron.io. ubuntu@ov-9503b4:~$ host -t PTR 2604:a880:1:4a::2:7000 127.0.0.150 Using domain server: Name: 127.0.0.150 Address: 127.0.0.150#53 Aliases: 0.0.0.7.2.0.0.0.0.0.0.0.0.0.0.0.a.4.0.0.1.0.0.0.0.8.8.a.4.0.6.2.ip6.arpa domain name pointer my.cloudron.io. -
@Gengar I have created a ticket now to set the PTR records. But going back to your original issue:
"host -t PTR <ipv6> 127.0.0.150 always fails instantly." This works just fine on my VPS. Maybe you have some firewall rules? I just allowed everything incoming in firewall.
ubuntu@ov-9503b4:~$ host -t PTR 45.55.2.141 127.0.0.150 Using domain server: Name: 127.0.0.150 Address: 127.0.0.150#53 Aliases: 141.2.55.45.in-addr.arpa domain name pointer my.cloudron.io. ubuntu@ov-9503b4:~$ host -t PTR 2604:a880:1:4a::2:7000 127.0.0.150 Using domain server: Name: 127.0.0.150 Address: 127.0.0.150#53 Aliases: 0.0.0.7.2.0.0.0.0.0.0.0.0.0.0.0.a.4.0.0.1.0.0.0.0.8.8.a.4.0.6.2.ip6.arpa domain name pointer my.cloudron.io. -
@Gengar I have created a ticket now to set the PTR records. But going back to your original issue:
"host -t PTR <ipv6> 127.0.0.150 always fails instantly." This works just fine on my VPS. Maybe you have some firewall rules? I just allowed everything incoming in firewall.
ubuntu@ov-9503b4:~$ host -t PTR 45.55.2.141 127.0.0.150 Using domain server: Name: 127.0.0.150 Address: 127.0.0.150#53 Aliases: 141.2.55.45.in-addr.arpa domain name pointer my.cloudron.io. ubuntu@ov-9503b4:~$ host -t PTR 2604:a880:1:4a::2:7000 127.0.0.150 Using domain server: Name: 127.0.0.150 Address: 127.0.0.150#53 Aliases: 0.0.0.7.2.0.0.0.0.0.0.0.0.0.0.0.a.4.0.0.1.0.0.0.0.8.8.a.4.0.6.2.ip6.arpa domain name pointer my.cloudron.io.@girish Okay so here it doesn't work the same. For example I've rebooted my server this morning (like 2 hours ago) beceause my PTR6 was null.
And I've tried again and yeah, I have a communication error during the 1st try that you don't have. But each time it resolve it even with the communication error and the 2nd time it always works. And I have this exact behavior each time.
That's weird.
My firewall is setup like this :
-
OK, i'm gonna say it: It's something to do with infomaniak, and it's time to move to a different VPS provider.
-
@scooke 🥲 I really like Infomaniak especially their commitment to ecology https://www.infomaniak.com/en/ecology ... If I have no other choices maybe I will switch to another hosting provider... We will see...
@Gengar
Just read the Hetzner page: https://www.hetzner.com/unternehmen/nachhaltigkeit/
If you are looking for an eco-friendly provider, Hetzner is pretty good. -
@Gengar
Just read the Hetzner page: https://www.hetzner.com/unternehmen/nachhaltigkeit/
If you are looking for an eco-friendly provider, Hetzner is pretty good. -
@BrutalBirdie Oh thanks for the link ! I will read what they do
@Gengar I have a spreadsheet with a bunch of Eco VPS providers here:
I should add Informaniak!
But yeah Hetzner is probably the best option overall imho, great value and great UX. I tried Netcup because they are even cheaper, but 1) you have to pay 6 months in advance (whereas with Hetzner you can just pay for an hour if you cancel), 2) their default Ubuntu is stripped down and so installing Cloudron doesn't work until you mess around installing full Ubuntu first 3) their UI/ UX is just no way near as good as Hetzner's, etc.
-
@Gengar I have a spreadsheet with a bunch of Eco VPS providers here:
I should add Informaniak!
But yeah Hetzner is probably the best option overall imho, great value and great UX. I tried Netcup because they are even cheaper, but 1) you have to pay 6 months in advance (whereas with Hetzner you can just pay for an hour if you cancel), 2) their default Ubuntu is stripped down and so installing Cloudron doesn't work until you mess around installing full Ubuntu first 3) their UI/ UX is just no way near as good as Hetzner's, etc.
@jdaviescoates If it works with Infomaniak, it would be another cheap VPS and ecofriendly one yeah. They have their "VPS Light" that is cheap and atm, except the ptr6 value that switches to null after updates, that seems solid.
With hetzner , can you setup yourself your PTR ? For Infomaniak we need to open a ticket to their support.
-
@Gengar I have a spreadsheet with a bunch of Eco VPS providers here:
I should add Informaniak!
But yeah Hetzner is probably the best option overall imho, great value and great UX. I tried Netcup because they are even cheaper, but 1) you have to pay 6 months in advance (whereas with Hetzner you can just pay for an hour if you cancel), 2) their default Ubuntu is stripped down and so installing Cloudron doesn't work until you mess around installing full Ubuntu first 3) their UI/ UX is just no way near as good as Hetzner's, etc.
@jdaviescoates said in Email sending broken after updating to 8.2.x (due to IPv6 issues):
but 1) you have to pay 6 months in advance (whereas with Hetzner you can just pay for an hour if you cancel), 2) their default Ubuntu is stripped down and so installing Cloudron doesn't work until you mess around installing full Ubuntu first 3) their UI/ UX is just no way near as good as Hetzner's, etc.
Just to say, I used to be with Hetzner and I am now with Netcup and regarding: 1) you do NOT have to pay 6 months in advance (it's just cheaper if you do); 2) I had no such issue with their ubuntu version. I've installed Cloudron from blank ubuntu from Netcup and I've been running several Cloudron instances with no problems. Totally agree with 3), Hetzner UI is SO much better...but then their prices are also significantly higher so I'd rather get better hardware and a lesser friendly UI.
However on my servers, and despite following all the right steps, I kept having issue with IPv6. PTR records and DNS all check OK on Cloudron, MX checks etc, but I keep getting random email bounce from Gmail. The only final solution was to disable IPv6 completely. Perhaps Hetzner is better in that respect.
-
@jdaviescoates If it works with Infomaniak, it would be another cheap VPS and ecofriendly one yeah. They have their "VPS Light" that is cheap and atm, except the ptr6 value that switches to null after updates, that seems solid.
With hetzner , can you setup yourself your PTR ? For Infomaniak we need to open a ticket to their support.
@Gengar said in Email sending broken after updating to 8.2.x (due to IPv6 issues):
With hetzner , can you setup yourself your PTR
Yes, you can.
-
@jdaviescoates said in Email sending broken after updating to 8.2.x (due to IPv6 issues):
but 1) you have to pay 6 months in advance (whereas with Hetzner you can just pay for an hour if you cancel), 2) their default Ubuntu is stripped down and so installing Cloudron doesn't work until you mess around installing full Ubuntu first 3) their UI/ UX is just no way near as good as Hetzner's, etc.
Just to say, I used to be with Hetzner and I am now with Netcup and regarding: 1) you do NOT have to pay 6 months in advance (it's just cheaper if you do); 2) I had no such issue with their ubuntu version. I've installed Cloudron from blank ubuntu from Netcup and I've been running several Cloudron instances with no problems. Totally agree with 3), Hetzner UI is SO much better...but then their prices are also significantly higher so I'd rather get better hardware and a lesser friendly UI.
However on my servers, and despite following all the right steps, I kept having issue with IPv6. PTR records and DNS all check OK on Cloudron, MX checks etc, but I keep getting random email bounce from Gmail. The only final solution was to disable IPv6 completely. Perhaps Hetzner is better in that respect.
@avatar1024 said in Email sending broken after updating to 8.2.x (due to IPv6 issues):
- you do NOT have to pay 6 months in advance (it's just cheaper if you do)
I'm pretty sure I had to at the time, but perhaps it's just the default and I just missed something during the sign-up process. Or perhaps it was because I was a new customer
(I note that Hetzner makes new customers pre-pay €20 these days too)They refund you if you cancel before 6 months, but I still found it a bit annoying.
@avatar1024 said in Email sending broken after updating to 8.2.x (due to IPv6 issues):
- I had no such issue with their ubuntu version. I've installed Cloudron from blank ubuntu from Netcup and I've been running several Cloudron instances with no problems.
I originally had no problem either. But then something changed and I did. But perhaps enough people complained and they changed it back again? Or perhaps you installed your before the change?
I've so far not experienced any IPv6 weirdness nor email issues since I enabled the PTR6 on Hetzner.
-
@girish Okay so here it doesn't work the same. For example I've rebooted my server this morning (like 2 hours ago) beceause my PTR6 was null.
And I've tried again and yeah, I have a communication error during the 1st try that you don't have. But each time it resolve it even with the communication error and the 2nd time it always works. And I have this exact behavior each time.
That's weird.
My firewall is setup like this :
@Gengar infomaniak set it up today .
My firewall is more permissive than yours. Note that ICMPv6 is probably not included in your firewall. I cannot completely understand infomaniak settings to suggest one way or another. Unlike IPv4, IPv6 requires ICMPv6 and won't work without it.
-
G girish referenced this topic
