Issues with transfers timing out between different networks


Recommended Posts

Please see the latest updates. I have narrowed the problem down with transfers and connections timing out between different networks.

 

I am having issues with transfers from the unraid server to local host. The transfers start just fine but after a few seconds it stops transferring and I get an error that the host could not be reached. I have to constantly restart the transfers just to get anything transferred. It looks like it is working because some things a completed but it's keeps giving me an error message and stops the transfer until I restart it again.

unraid-diagnostics-20210826-1316.zip

Edited by BrunoVic
Link to comment

Ok I think I may have narrowed down the culprit but now I need to know WHY. Right now UNRAID is sitting on a server network which is a different network than the user network that I am on. I have multiple VLANs on the UNRAID host. When I try to transfer data from UNRAID on the server VLAN to a computer on the user VLAN the network connection is constantly dropping. However if I transfer data from UNRAID on the user VLAN to a computer on the user VLAN (same network) there is no problem with the connection. So I know what you are going to say. Then just use the user VLAN and problem fixed right? Wrong the whole point of putting the UNRAID on a different network from the user network is so that if one network is compromised then the user network is still protected. However if the UNRAID is on the same network as the users then there is a potential that if UNRAID is compromised then the computer on the same network will be compromised as well and vice versa. So I need to figure out WHY the connection keeps dropping out when transferring the files from one different subnet to another?

2021-08-26 19_20_44-firewall.velezfam.net - Interfaces_ SERVERS (vmx0.30) and 44 more pages - Person.png

2021-08-26 19_29_59-firewall.velezfam.net - Interfaces_ USERS (vmx0.20) and 44 more pages - Personal.png

2021-08-26 19_21_15-firewall.velezfam.net - Firewall_ Rules_ USERS and 44 more pages - Personal - Mi.png

 

Edited by BrunoVic
Link to comment
  • BrunoVic changed the title to Issues with transfers timing out between different networks

I have a strong feeling this is the problem. For some reason the metric on 172.28.20.0/24 is set to 1. I've manually set the metric to 233 on the VLAN interface but for some reason there is still a static route set to 1 that will not budge and it's creating all kinds of issues for 172.28.30.0/24. Why can't I delete the static route for 172.28.20.0/24?

2021-09-01 22_34_53-unraid_NetworkSettings and 30 more pages - Personal - Microsoft​ Edge.png

2021-09-01 22_36_17-unraid_NetworkSettings and 30 more pages - Personal - Microsoft​ Edge.png

Link to comment

Ok so I figured out my route metric problem. Seems I had the VLAN interface configured to static IP which kept forcing a route metric of one. Now that is adjusted the only route metric of 1 on the VLAN interfaces is 172.28.30.0/24. I though this would have fixed my issues but it looks like that did not fix it. So why is it that anything I transfer from the 30.0/24 network to the 20.0/24 network I get an error but from the 20.0/24 network and the 20.0/24 network it works fine?

2021-09-01 22_46_39-unraid_NetworkSettings and 31 more pages - Personal - Microsoft​ Edge.png

2021-09-01 22_59_03-unraid_NetworkSettings and 32 more pages - Personal - Microsoft​ Edge.png

2021-09-01 23_09_12-1 Interrupted Action.png

Link to comment

Guys please ask me some probing questions at least. I've provided diagnostics reports and I have posted follow up thread of my TS efforts on the network side. I don't know much on the server side and I am deferring to you for help. But if I am the only one asking my own questions I am simply chasing my tail here. So what information can I provide to you guys that can help us find a resolution here?

Link to comment

The first asking problem, how you bridge different VLAN, so they can communicate each other. I think this is problem cause. It simple route thr gateway.

 

Below case so similar, although he got crash, but in my opinion it is same cause just got different result. There are hard to verify Unraid relate or not if no more people evaluate such setup. 

 

 

Edited by Vr2Io
Link to comment
54 minutes ago, Vr2Io said:

The first asking problem, how you bridge different VLAN, so they can communicate each other. I think this is problem cause. It simple route thr gateway.

 

Below case so similar, although he got crash, but in my opinion it is same cause just got different result. There are hard to verify Unraid relate or not if no more people evaluate such setup. 

 

 

I stumbled and hijacked this thread. Not sure what the proper etiquette is here on that. But seeing what this guy is going through it seems very similar but not exact. He never really posted his routing table. He said he noticed something wrong with it but without any further details I can't figure what exactly his solution did for him that helped. I looked at my routing table and eliminated any unnecessary default routes. In networking when dealing with multiple networks you only need ONE default route. I am not sure why creating a VLAN interface made that much of a mess with the routing table. Even then though after cleaning everything up I am still having the same problem. I can't help but feel I am so close to a solution though. I have a feeling it has something to do with the routing table but I can't quite figure out what is wrong. If I were looking at a Cisco router everything would look fine right about now. But this is a UNIX like system so I am in uncharted territory.

2021-09-02 00_57_55-unraid_NetworkSettings and 32 more pages - Personal - Microsoft​ Edge.png

Link to comment

I don't think it relate routing table in Unraid, different VLAN have correct routing.

If I apply same setup then it can't communicate between different VLAN, because my router/gateway need enable "Inter VLAN routing" option, so inter VLAN communicate won't same as subnet routing.

 

image.png.d864bedab97627952647629f9ea73ef2.png

 

EDIT Besides IPv4 TCP/UDP, does any other option for testing.

Edited by Vr2Io
Link to comment
4 minutes ago, Vr2Io said:

I don't think it relate routing table in Unraid, different VLAN have correct routing.

If I apply same setup then it can't communicate between different VLAN, because my router/gateway need enable "Inter VLAN routing" option, so inter VLAN communicate won't same as subnet routing.

It's a problem with the routing table. I did an experiment and it worked now my problem is why is it doing that. So what I did was I disabled the VLAN 20 interface more or less by not configuring an IP at all. When the network daemon restarted it rebuilt the routing table and excluded the 20.0/24 network. Now when I do a transfer from 30.0/24 to 20.0/24 the transfer is successful without any issues. Problem is I need that VLAN 20. So the moment I bring it back up I will have the same problems again. It looks like for some reason when the transfer is first started it chooses the default path but for some reason it later decides to send it to the 20.0/24 interface but the client is expecting the response to be from a 30.5 host not a 20.5 host so it essentially times out. Even with the default route set to a metric of 1 which SHOULD be preferred over the 20.0/24 route it still wants to send the traffic to a dead end destination and I do not know why.

2021-09-02 01_35_01-unraid_NetworkSettings and 32 more pages - Personal - Microsoft​ Edge.png

2021-09-02 01_35_30-unraid_NetworkSettings and 32 more pages - Personal - Microsoft​ Edge.png

Link to comment
19 minutes ago, Vr2Io said:

I don't think it relate routing table in Unraid, different VLAN have correct routing.

If I apply same setup then it can't communicate between different VLAN, because my router/gateway need enable "Inter VLAN routing" option, so inter VLAN communicate won't same as subnet routing.

Oh and the interVLAN routing is done on the pfSense not the UNRAID. I don't expect the UNRAID to do any routing other than static routes to their respective networks. The interVLAN is working flawlessly. The problem is that UNRAID can't make up it's mind as to which destination it wants to send the traffic to.

 

From the looks of it what I ultimately want done is I want to re-enable VLAN20 but I DON'T want a static route put in the routing table for VLAN20. I need ALL default routes to go to the 30.0/24 interface. Unfortunately I cannot delete those static routes for some reason.

Edited by BrunoVic
Link to comment
4 minutes ago, BrunoVic said:

Okay so THIS is my ultimate goal...

2021-09-02 01_54_38-unraid_NetworkSettings and 32 more pages - Personal - Microsoft Edge.png

 

All problem solve ?

 

19 minutes ago, BrunoVic said:

Now when I do a transfer from 30.0/24 to 20.0/24 the transfer is successful without any issues. Problem is I need that VLAN 20.

So, Unraid not involve  in the interVLAN routing, but it will interference the transfering.

 

What need add eth0.20 eth0.30 .... for access Unraid GUI ? Does different subnet could access 172.18.x.x for Unraid GUI.

Edited by Vr2Io
Link to comment
7 minutes ago, Vr2Io said:

 

All problem solve ?

 

So, Unraid not involve  in the interVLAN routing, but it will interference the transfering.

 

What need add eth0.20 eth0.30 .... for access Unraid GUI ? Does different subnet could access 172.18.x.x for Unraid GUI.

Yes different subnets do access the gui. But that's because I am allowing it for now through the firewall. I plan on forcing all gui traffic to go to the server vlan ip address which is the 30.5 ip. The reason I have the other VLANs has more to do with what I am trying to do with my unifi docker container trying to implement multi vlan wifi networks. That a whole completely different topic on it's own. But for the purposes of management and smb all I want is for ALL networks to access 30.5 and nothing else.

Link to comment
1 minute ago, BrunoVic said:

Yes different subnets do access the gui. But that's because I am allowing it for now through the firewall. I plan on forcing all gui traffic to go to the server vlan ip address which is the 30.5 ip. The reason I have the other VLANs has more to do with what I am trying to do with my unifi docker container trying to implement multi vlan wifi networks. That a whole completely different topic on it's own. But for the purposes of management and smb all I want is for ALL networks to access 30.5 and nothing else.

Understand, although I think setup similar network requirement to evaluate the problem, but this quite complicate and need lot of change on my network. So no much help now.

Link to comment
7 hours ago, Vr2Io said:

Understand, although I think setup similar network requirement to evaluate the problem, but this quite complicate and need lot of change on my network. So no much help now.

Ok I think I figured out why I couldn't remove those static routes. User error I forgot to turn off docker. So once docker is off I cleaned up the routing table the way I liked it turned docker back on and everything is working as I would like it. I did notice however once the network daemon restarts it will rebuild the routing table with those static routes that I do not want. Is there a way to stop that from happening?

 

 

2021-09-02 09_48_57-unraid_NetworkSettings and 32 more pages - Personal - Microsoft​ Edge.png

Link to comment

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.