Networking issue?

[juju4]

I tried to use this action in my ansible role test workflow but have issue with network. can't reach Internet.
https://github.com/juju4/ansible-MISP/actions/runs/6441408680/job/17491174418

Could you advise where to look?

I initially considered a conflict with docker0 and delete interface but it does not seem so.
And it seems you are already handling a workaround.
ip address, route and nftables seems fine both inside container and for host lxdbr0 (see lxd information section from workflow run).
is dhclient call required after image launch? seems so with distribution variation (ex: debian https://github.com/juju4/ansible-MISP/actions/runs/6441458364/job/17491273105 vs https://github.com/juju4/ansible-MISP/actions/runs/6441458364/job/17491273160).

Thanks

[simondeziel]

@juju4 unfortunately those actions runs have since expired. If you still run into networking issues, could please provide provide access to fresh logs?

[juju4]

I triggered a new action run
https://github.com/juju4/ansible-MISP/actions/runs/9049980407

[simondeziel]

@juju4 thanks for adding those debug steps to your workflow. It seems the guest instance doesn't get any IPv4, just IPv6:

2024-05-12T08:15:28.6588868Z �[36;1msudo lxc exec $LXDGUEST -- ip address�[0m
...
2024-05-12T08:15:30.7014350Z 6: eth0@if7: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
2024-05-12T08:15:30.7015393Z     link/ether 00:16:3e:9e:89:38 brd ff:ff:ff:ff:ff:ff link-netnsid 0
2024-05-12T08:15:30.7021452Z     inet6 fd42:cd5a:a2c1:db1e:216:3eff:fe9e:8938/64 scope global tentative dynamic mngtmpaddr 
2024-05-12T08:15:30.7022102Z        valid_lft forever preferred_lft forever
2024-05-12T08:15:30.7027067Z     inet6 fe80::216:3eff:fe9e:8938/64 scope link 
2024-05-12T08:15:30.7027824Z        valid_lft forever preferred_lft forever

It's still unclear (to me) why they couldn't get a DHCP lease from dnsmasq as the firewall rules seem to allow DHCP requests made on lxdbr0 (iifname "lxdbr0" udp dport 67 accept).