WillToth
WillToth
PostsComments
CCoder.com
Created by WillToth on 10/15/2022 in #help
Container can't download install.sh
yeah weird issue for sure, marking complete
30 replies
CCoder.com
Created by WillToth on 10/15/2022 in #help
Container can't download install.sh
Yes it is. Thanks for the help!
30 replies
CCoder.com
Created by WillToth on 10/15/2022 in #help
Container can't download install.sh
Alright, I think I figured it out (at least got past one hurdle)! if I set mtu in docker to some smaller value, it gets further but still not where it needs to be. e.g. setting sudo vim /etc/docker/daemon.json 
{
  "mtu": 500
}
{
  "mtu": 500
}
wget now works, but running openssl s_client hangs half way, so curl also still hangs. Now, looking at the mtu for various network adapters, I see the physical ethernet ports are 1500, but the tailscale mtu is set to 1280. So if I set the docker mtu to 1280 to match, it now works. No idea why this works on some sites and not others. For completeness, my ip a output 
2: eno1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP group default qlen 1000
    link/ether 98:90:96:c4:b8:d7 brd ff:ff:ff:ff:ff:ff
    altname enp0s25
    inet 192.168.1.157/24 brd 192.168.1.255 scope global dynamic noprefixroute eno1
       valid_lft 76649sec preferred_lft 76649sec
    inet6 fe80::7d9e:28a6:4268:17ca/64 scope link noprefixroute 
       valid_lft forever preferred_lft forever
4: tailscale0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1280 qdisc fq_codel state UNKNOWN group default qlen 500
    link/none 
    inet 100.109.152.19/32 scope global tailscale0
       valid_lft forever preferred_lft forever
    inet6 fd7a:115c:a1e0:ab12:4843:cd96:626d:9813/128 scope global 
       valid_lft forever preferred_lft forever
    inet6 fe80::bb31:8356:1bee:99d1/64 scope link stable-privacy 
       valid_lft forever preferred_lft forever
2: eno1: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc fq_codel state UP group default qlen 1000
    link/ether 98:90:96:c4:b8:d7 brd ff:ff:ff:ff:ff:ff
    altname enp0s25
    inet 192.168.1.157/24 brd 192.168.1.255 scope global dynamic noprefixroute eno1
       valid_lft 76649sec preferred_lft 76649sec
    inet6 fe80::7d9e:28a6:4268:17ca/64 scope link noprefixroute 
       valid_lft forever preferred_lft forever
4: tailscale0: <POINTOPOINT,MULTICAST,NOARP,UP,LOWER_UP> mtu 1280 qdisc fq_codel state UNKNOWN group default qlen 500
    link/none 
    inet 100.109.152.19/32 scope global tailscale0
       valid_lft forever preferred_lft forever
    inet6 fd7a:115c:a1e0:ab12:4843:cd96:626d:9813/128 scope global 
       valid_lft forever preferred_lft forever
    inet6 fe80::bb31:8356:1bee:99d1/64 scope link stable-privacy 
       valid_lft forever preferred_lft forever
30 replies
CCoder.com
Created by WillToth on 10/15/2022 in #help
Container can't download install.sh
So it fails even with the most basic test, trying it with docker run -it --rm ubuntu:latest
30 replies
CCoder.com
Created by WillToth on 10/15/2022 in #help
Container can't download install.sh
Yes, every one I tried, even https://github.com
30 replies
CCoder.com
Created by WillToth on 10/15/2022 in #help
Container can't download install.sh
Nope, I upload from the aws instance that is running coder.com infra, which is running the AWS Linux AMI
30 replies
CCoder.com
Created by WillToth on 10/15/2022 in #help
Container can't download install.sh
So the first time I ran it, I used exactly the default template running coder templates createI ran the docker template first, which failed to start code-server on the first run. Then I ran the docker-code-server example. Finally, this is my setup that I've run later, which starts from the code-server template. https://github.com/FRC3005/infra-coder-templates/tree/main/frc-java
30 replies
CCoder.com
Created by WillToth on 10/15/2022 in #help
Container can't download install.sh
Which makes me think it would have to be something with docker's networking, and potentially how it was configured with terraform.
30 replies
CCoder.com
Created by WillToth on 10/15/2022 in #help
Container can't download install.sh
Slightly related observation, running the same container on the same server with podman instead of docker works correctly.
30 replies
CCoder.com
Created by WillToth on 10/15/2022 in #help
Container can't download install.sh
Though it never says 'HTTP request sent' so I guess its likely hanging while trying to establish a secure connection? This part is not my strong suit.
30 replies
CCoder.com
Created by WillToth on 10/15/2022 in #help
Container can't download install.sh
Actually it even says its connected, like its able to communicate out, but not get a response back in. 
root@b19aded89bb1:/# wget https://objects.githubusercontent.com/
--2022-10-15 16:07:19--  https://objects.githubusercontent.com/
Resolving objects.githubusercontent.com (objects.githubusercontent.com)... 185.199.110.133, 185.199.111.133, 185.199.108.133, ...
Connecting to objects.githubusercontent.com (objects.githubusercontent.com)|185.199.110.133|:443... connected.
root@b19aded89bb1:/# wget https://objects.githubusercontent.com/
--2022-10-15 16:07:19--  https://objects.githubusercontent.com/
Resolving objects.githubusercontent.com (objects.githubusercontent.com)... 185.199.110.133, 185.199.111.133, 185.199.108.133, ...
Connecting to objects.githubusercontent.com (objects.githubusercontent.com)|185.199.110.133|:443... connected.
30 replies
CCoder.com
Created by WillToth on 10/15/2022 in #help
Container can't download install.sh
to compare, doing the same thing on the https just hangs (but does correctly resolve the IP)
30 replies
CCoder.com
Created by WillToth on 10/15/2022 in #help
Container can't download install.sh
Not entirely sure the right way to try it, but doing wget http://objects.githubusercontent.com/ correctly pulls in the 405 response, so I assume yes
30 replies