Hi all,
I have a weird problem (or so it seems).
I can’t download the following URL from a Vyos1.1.8:
http://download.proxmox.com/debian/pve/dists/stretch/pve-no-subscription/binary-amd64/Packages
The above is an example of a URL which I can’t download from vyos itself or a device connected to it (vyos acts as a router). Here are the clues to build the case:
- It is not a firewall problem. I have removed all the firewalls from interfaces
- The vyos has an internet-facing interface with a public IP and a default gateway.
- Vyos actualy opens the TCP connection with the ‘[color=#111111][size=small][font=Tahoma,Verdana,Arial,Sans-Serif]download.proxmox.com[/font][/size]’ host… I have captured a TCPDUMP and I can see the initial packet exchange. The exchange stops when the server [color=#111111][size=small][font=Tahoma,Verdana,Arial,Sans-Serif]download.proxmox.com[/font][/size] starts sending the data packets of the ‘packages’ file. I never see the packets in tcpdump.[/color][/color]
- The same happens with an debian installation that is behind Vyos. The debian has also public IP, so it is not a NAT thing. The debian succeeds to download the url, when I replace the Vyos router with another device.
- The ‘[color=#111111][size=small][font=Tahoma,Verdana,Arial,Sans-Serif]download.proxmox.com[/font][/size]’ is really working. I have downloaded the file from the debian and other machines, when vyos is not in the middle (is not the router).[/color]
- I can download from Vyos other URLs fine.
- The Vyos is in production and does not seem to have any other problems.
It is very weird. It must be something very obvious or something very evil…
Any ideas?
Spiros
Vyos 1.1.8 (it happens on earlier versions too).