This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

DNS issue after UTM reboot

Hello,

 

I experience some issues with Sophos UTM 9 after a reboot. I am connecting to ISP via pppoe , if the system rebooted I do not have a connection to internet even if the pppoe interface is showing to be up. If i reconnect the interface everything seems fine and working.The only error I see in the logs is " DNS server failed to contact!".I've followed all DNS related guidelines from this forum with no success.

Is there any workaround to push a pppoe reconnect after 5 minutes after reboot or do you know how to fix this issue? Thank you in advance.

 

Logs below:

System messages: 

017:02:11-09:52:58 UTM dns-resolver[7015]: DNS server failed to contact!
2017:02:11-09:52:59 UTM dns-resolver[7015]: Adding REF_DefaultSophosUTMSupportHost
2017:02:11-09:52:59 UTM dns-resolver[7015]: Adding REF_NetDnsIPrep1t
2017:02:11-09:52:59 UTM dns-resolver[7015]: Adding REF_NetDnsIPrep5t
2017:02:11-09:52:59 UTM dns-resolver[7015]: Adding REF_NetDnsResolver2a
2017:02:11-09:52:59 UTM dns-resolver[7015]: Adding REF_NetDnsIPrep4t
2017:02:11-09:52:59 UTM dns-resolver[7015]: Adding REF_NetDnsIPrep2t
2017:02:11-09:52:59 UTM dns-resolver[7015]: Adding REF_NetDnsResolver4a
2017:02:11-09:52:59 UTM dns-resolver[7015]: Adding REF_NetDnsIPrep3t
2017:02:11-09:52:59 UTM dns-resolver[7015]: Adding REF_NetDnsResolver3a
2017:02:11-09:52:59 UTM dns-resolver[7015]: Adding REF_NetDnsResolver1a
2017:02:11-09:52:59 UTM dns-resolver[7015]: Adding REF_NetDnsResolver5a
2017:02:11-09:52:59 UTM dns-resolver[7015]: Adding REF_NetDnsSophoLivec
2017:02:11-09:52:59 UTM dns-resolver[7015]: Adding REF_NtpPool
2017:02:11-09:52:59 UTM dns-resolver[7015]: DNS server failed to contact!
2017:02:11-09:53:59 UTM dns-resolver[7015]: DNS server failed to contact!

 

pppoe logs:

2017:02:11-09:52:29 UTM pppd-pppoe[6895]: sent [LCP ProtRej id=0x2 80 57 01 01 00 0e 01 0a 00 00 00 00 00 00 00 01]
2017:02:11-09:52:29 UTM pppd-pppoe[6895]: rcvd [IPCP ConfNak id=0x1 <addr x.x.x.x> <ms-dns1 193.232.253.1> <ms-dns2 213.154.126.1>]
2017:02:11-09:52:29 UTM pppd-pppoe[6895]: sent [IPCP ConfReq id=0x2 <addr x.x.x.x> <ms-dns1 193.232.253.1> <ms-dns2 213.154.126.1>]
2017:02:11-09:52:29 UTM pppd-pppoe[6895]: rcvd [IPCP ConfAck id=0x2 <addr x.x.x.x> <ms-dns1 193.232.253.1> <ms-dns2 213.154.126.1>]
2017:02:11-09:52:29 UTM pppd-pppoe[6895]: local IP address "x.x.x.x" (just hidden my IP :)
2017:02:11-09:52:29 UTM pppd-pppoe[6895]: remote IP address 10.1.1.1
2017:02:11-09:52:29 UTM pppd-pppoe[6895]: primary DNS address 193.232.253.1
2017:02:11-09:52:29 UTM pppd-pppoe[6895]: secondary DNS address 213.154.126.1
2017:02:11-09:52:29 UTM pppd-pppoe[6895]: Script /etc/ppp/ip-up started (pid 7006)
2017:02:11-09:52:30 UTM pppd-pppoe[6895]: Script /etc/ppp/ip-up finished (pid 7006), status = 0x0

 

Thank you in advance. 

Gheb



This thread was automatically locked due to age.
Parents
  • Gheb, if we were going to see anything in the DNS logs, it would be named lines before the ones you posted

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • Just copied a part of the DNS proxy log and all the logs from PPPoE .

    DNS Proxy logs
    2017:03:12-09:11:22 UTM named[7001]: network unreachable resolving '*.android.com/A/IN': 192.203.230.10#53
    2017:03:12-09:11:22 UTM named[7001]: network unreachable resolving './NS/IN': 192.203.230.10#53
    2017:03:12-09:11:22 UTM named[7001]: network unreachable resolving './NS/IN': 192.5.5.241#53
    2017:03:12-09:11:22 UTM named[7001]: network unreachable resolving '*.android.com/A/IN': 192.228.79.201#53
    2017:03:12-09:11:22 UTM named[7001]: network unreachable resolving '*.android.com/A/IN': 198.41.0.4#53
    2017:03:12-09:11:22 UTM named[7001]: network unreachable resolving './NS/IN': 192.228.79.201#53
    2017:03:12-09:11:22 UTM named[7001]: network unreachable resolving './NS/IN': 198.41.0.4#53
    2017:03:12-09:11:22 UTM named[7001]: network unreachable resolving 'swscan.apple.com/A/IN': 8.8.4.4#53
    2017:03:12-09:11:22 UTM named[7001]: network unreachable resolving 'swscan.apple.com/A/IN': 199.7.83.42#53
    2017:03:12-09:11:22 UTM named[7001]: network unreachable resolving 'swscan.apple.com/A/IN': 202.12.27.33#53
    2017:03:12-09:11:22 UTM named[7001]: network unreachable resolving 'swscan.apple.com/A/IN': 192.36.148.17#53
    2017:03:12-09:11:22 UTM named[7001]: network unreachable resolving 'swscan.apple.com/A/IN': 192.33.4.12#53
    2017:03:12-09:11:22 UTM named[7001]: network unreachable resolving 'swscan.apple.com/A/IN': 199.7.91.13#53
    2017:03:12-09:11:22 UTM named[7001]: network unreachable resolving 'swscan.apple.com/A/IN': 193.0.14.129#53
    2017:03:12-09:11:22 UTM named[7001]: network unreachable resolving 'swscan.apple.com/A/IN': 192.112.36.4#53
    2017:03:12-09:11:22 UTM named[7001]: network unreachable resolving 'swscan.apple.com/A/IN': 192.58.128.30#53
    2017:03:12-09:11:22 UTM named[7001]: network unreachable resolving 'swscan.apple.com/A/IN': 128.63.2.53#53
    2017:03:12-09:11:22 UTM named[7001]: network unreachable resolving 'swscan.apple.com/A/IN': 192.5.5.241#53
    2017:03:12-09:11:22 UTM named[7001]: network unreachable resolving 'swscan.apple.com/A/IN': 192.203.230.10#53
    2017:03:12-09:11:22 UTM named[7001]: network unreachable resolving 'swscan.apple.com/A/IN': 192.228.79.201#53
    2017:03:12-09:11:22 UTM named[7001]: network unreachable resolving 'swscan.apple.com/A/IN': 198.41.0.4#53

    PPOE logs
    017:03:12-09:09:22 UTM pppd-pppoe[6873]: sent [LCP ProtRej id=0x2 80 57 01 01 00 0e 01 0a 00 00 00 00 00 00 00 01]
    2017:03:12-09:09:22 UTM pppd-pppoe[6873]: rcvd [IPCP ConfNak id=0x1 <addr x.x.x.x> <ms-dns1 193.232.252.5> <ms-dns2 213.154.124.2>]
    2017:03:12-09:09:22 UTM pppd-pppoe[6873]: sent [IPCP ConfReq id=0x2 <addr x.x.x.x> <ms-dns1 193.232.252.5> <ms-dns2 213.154.124.2>]
    2017:03:12-09:09:22 UTM pppd-pppoe[6873]: rcvd [IPCP ConfAck id=0x2 <addr x.x.x.x> <ms-dns1 193.232.252.5> <ms-dns2 213.154.124.2>]
    2017:03:12-09:09:22 UTM pppd-pppoe[6873]: local IP address x.x.x.x
    2017:03:12-09:09:22 UTM pppd-pppoe[6873]: remote IP address 10.0.0.1
    2017:03:12-09:09:22 UTM pppd-pppoe[6873]: primary DNS address 193.232.252.5
    2017:03:12-09:09:22 UTM pppd-pppoe[6873]: secondary DNS address 213.154.124.2
    2017:03:12-09:09:22 UTM pppd-pppoe[6873]: Script /etc/ppp/ip-up started (pid 6945)
    2017:03:12-09:09:23 UTM pppd-pppoe[6873]: Script /etc/ppp/ip-up finished (pid 6945), status = 0x0

    Thanks in advance for help

  • Your last post confirms that you asked the right questions in your first post.

    First, get the REF for the Interface.  Assuming it's named "External" and is defined as PPPoE, do as root:

    cc get_object_by_name interface pppoe External

    Assuming that returns REF_IntPppExternal, add the following line to /etc/crontab-static:

    @reboot root /usr/local/bin/confd-client.plx interface_ppp_reconnect REF_IntPppExternal

    In WebAdmin, to force the addition of your line to /etc/crontab, g to the 'Configuration' tab of 'Management >> Up2Date', change a value, [Apply], change it back to its original value and [Apply].

    Did that resolve your issue?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • Didn't work for me, cc returned 0 when I ran get_object_by_name

  • Please show a picture of the Edit of the Interface definition in WebAdmin.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • Hi Bob - this should do it. Dan

Reply Children
  • In that case, Dan, the command is more complicated as you need some REGEX-fu:

    cc get_object_by_name interface pppoe 'External \(WAN\)'

    Cheers - Bob
    Edit PS Just saw that you have a Realtek NIC.  If you have any issues, also see #7 in Rulz.

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • Of course, I didn't see the (WAN) element as I'd been looking at it for too long! That got it. Interestingly the get object pulls up the line:

    'reconnect_timeout' => 60,

    Which put me on to the advanced options in interfaces where I get to select 5s, 1min or 15mins. Do you know if there's a way to manually change the value to 300s on the command line as I have a suspicion that may help?

  • I'll assume in the following that you found REF_IntPppExternal, Dan.  "Standard warning about making changes from the command line."

    cc change_object REF_IntPppExternal reconnect_timeout 300

    Did that work?

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA