Hi,
In checking the /var/log/firewalld I see a bunch of fails to iptables. Most
of those are for docker, which isn't running on the system but the
interface is there. There are a couple of other fails about bad rules for:
/usr/sbin/iptables -w10 -t nat -D PREROUTING
/usr/sbin/iptables -w10 -t nat -D OUTPUT
something about "does a matching rule exist in that chain?"
I checked both /etc/firewalld and /usr/lib/firewalld zones and the
interfaces that it tries to add to zone 'public' are not in the public.xml
in either place. How do I figure out where that is being defined?
How would I tell if I'm using NetworkManager?
Thanks,
Rob
On Fri, Mar 4, 2022 at 10:16 AM Eric Garver <egarver(a)redhat.com> wrote:
On Thu, Mar 03, 2022 at 02:00:19PM -0000, Rob Marshall wrote:
> Hi,
>
> I have an issue where, after a system reboot (Oracle Linux 7),
> communications to the node are not working correctly. If i stop and
> start (often a restart doesn't work) the firewalld service the network
> will work correctly. While things were broken I did a: 'firewall-cmd
> --list-all' and noticed that two of the interfaces were missing. Where
> can I look to determine what may be going wrong when firewalld starts
> after a reboot?
You can check /var/log/firewalld for errors. That will give clues about
what's going on.
Are you using NetworkManager?