I have properly configured my nodes (on Windows and under Docker on SYNOLOGY NAS).
I have updated SYNOLOGY DSM system. Everything went fine, docker operates properly and nodes under docker as well. Node on Virtual Machine (WINDOWS10) works properly.
Only issue which I have is QUIC looks uncofigured. I tried re-add one node but still is the same:
Synology DS1817+ DSM 7.1-42661 Update 2 which is latest update. Works till today´s update.
Firewall is turned off on Synology. I had to play with firewall only on Windows node but there is no issue with QUIC.
Hi LordWigo,
that would be a big coincidence, but is it possible that another process is listening on the NAS on port 28967/UDP after the synology update?
Not sure if the docker log would write something like “can not bind/forward to 28967/UDP” when starting the container.
On my QNAP NAS (sure Synology too) I can check via SSH with the following command whether the port is open:
lsof -iUDP | grep *:28967
If the command does not provide any output, the port can be used. If an output appears you can see which process already has the port in use. For me it’s dockerd, of course.
I had the same problem previously with my Synology. In the end it helped me to delete the ports in the router and create them again. It helped, but I can’t explain it
I have to agree with others - try to delete rule on your router for UDP, then add it back. Make sure that the destination IP is match the IP of your NAS (if your router cannot address it by name for example).
Please also try to re-create a container on the NAS.
It’s worth to check the firewall on Synology - maybe they enabled it automatically during upgrade. In this case just create an inbound rules to allow TCP and UDP ports of your nodes.
Port 28968 in my previous posts is allocated for my node running on Windows to demonstrate that other node running different machine are running fine behind the same router.
Ports 28967 and 28969 - 28974 assigned to all nodes running on SYNOLOGY NAS (under docker) has this issue only:
Hi LordWigo,
the first thing I see is, your router seems to use/link the forwarding rule with the MAC Address(The Dropdown behind the Internal Host inputfield).
Is it possible the MAC-Address of your NAS has changed after upgrade? Normaly the MAC Address is branded to your Ethernet Adapter Chip, but most NAS has two Adapters and create a virtual MAC Address or uses the MAC Address from one physical member of a network team.
Try to ping the ip from your StorJ container:
ping 10.0.0.200
after you recived your ICMP echo replies, type
arp -a
search the line with the IP 10.0.0.200, the MAC Address will be shown in the same line.
That Mac Address must match in your forwarding rule on the router.
With reference to the check for listening ports … netstat was my first choice, but not working on my QNAP NAS.
Try
netstat -nau
-u for UDP Ports
-t for TCP Ports
I am not sure but in the Screenshot of your output many TIME_WAITS can be seen. Looks like an misconfiguration. I belive 172.17.0.1 try close Connections to 172.17.0.4 and 172.17.0.7 and waiting for the ACK to close the connection.
That’s what I thought when I wrote it. But then I thought it would be possible that the node display online, if he can establish a connection to a external host.
In the image “Network settings of Docker” it seems as docker is running in bridge mode. I assume that your internetrouter has the IP 172.17.0.1. If your Docker was really running in bridge mode, shouldn’t the containers also have an IP from the network 172.17.0.0/16 and not from the network 10.0.0.0/8?
But then nothing should work.
Seems, there is no ping command in the image.
Thats do your tcpdriver for you on the NAS. But this trys will never end because these tcp packets flow to your NAS.
They will keep coming because 172.17.0.1 forwards incoming tcp packets on port 28967 to 172.17.0.3, 172.17.0.6 and 172.17.0.8 (as far as I can see). But they close the connection.
Can you try to run one of these Container with a ip in the subnet 172.17.0.0/16?
Or try set the Networktype to NAT instead of bridge.
NAT Network should be 10.0.0.0/8 or /24 and the Container should have the IP 10.0.0.200
