Page MenuHomePhabricator

maps: traffic to maps2004 dropped by iptables
Closed, ResolvedPublic

Description

See https://logstash.wikimedia.org/goto/56eb965449061de26623ecb2b6d91c9c

On April 2nd, maps2004 started logging a large amount of discarded (by iptables) packets from maps2001 and wdqs2001 towards maps2004:5432

It's not urgent, but:
1/ It might be the sign of a miss-configuration or larger issue
2/ It floods the logs with ~2000 messages/h :)

Please investigate it and either stop/re-configure what is sending the packets being dropped, or update Ferm to permit them.

Thanks!

Related Objects

Event Timeline

Restricted Application added a subscriber: Aklapper. · View Herald Transcript

This is temporary during data reload on maps master (T249086). Note that looking at logs, I only found dropped packets from maps200[1-3], not from wdqs2001.

ayounsi renamed this task from maps/wdqs: traffic to maps2004 dropped by iptables to maps: traffic to maps2004 dropped by iptables.Apr 10 2020, 6:39 AM

maps reload is complete and firewall rules have been rolled back

Gehel claimed this task.