Smb not started after recent update

after a recent update, I see that upon reboot there is a message, that smb is not started. Going to system/services/action start successfully starts smb. Bug?

I can’t reproduce this issue.

You may check if smb service is enabled:

config show smb

Maybe the messages or smbd logs show more details.

1 Like

smb=service
DeadTime=10080
HomeAdmStatus=disabled
InheritOwner=no
NetbiosAliasList=
ShareAdmStatus=disabled
TCPPorts=139,445
UseClientDriver=yes
UseCups=enabled
WinsServerIP=
access=green
status=enabled

I see many of these:

smbd version 4.10.4 started.
Copyright Andrew Tridgell and the Samba Team 1992-2019
[2020/08/06 00:44:13.139396, 0] …/…/lib/util/become_daemon.c:136(daemon_ready)
daemon_ready: daemon ‘smbd’ finished starting up and ready to serve connections
[2020/08/06 00:44:45.172897, 0] …/…/source3/printing/nt_printing.c:249(nt_printing_init)
nt_printing_init: error checking published printers: WERR_ACCESS_DENIED

But printserver is not installed on this nethserver anyway

When I then went into services, to start it manually it was automatically started in the meantime. I dont know whats going on here.

Mhm, I now see that I also cannot authenticate to our nextcloud anymore after last update (I updated excluding ufdbGuard as this update is not working because of a bug.

Der Server konnte die Anfrage nicht fertig stellen.

Sollte dies erneut auftreten, sende bitte die nachfolgenden technischen Einzelheiten an Deinen Server-Administrator.

Weitere Details können im Server-Protokoll gefunden werden.

Technische Details

  • Entfernte Adresse: myip
  • Anfragekennung: Xys65BdHH7swQAf14W8xbwAAAAY

From the external nethserver which creates an ipsec s2s tunnel I can ping the internal nethfirewall server, but nothing behind anymore, like the dc neth… :frowning:
I wll also update the nethserver firewall and see if it does not block anymore.

I start thinking that this connectivity problem has to be a routing problem, as I dont see anything in local firewall logs. I deleted the temporary created ovpn server/client s2s entries (before I had them just deactivated), but I still see:

route:
10.187.182.2 0.0.0.0 255.255.255.255 UH 0 0 0 tunovpnsite2sit
192.168.x.0 10.187.182.2 255.255.255.128 UG 0 0 0 tunovpnsite2sit

how can those be removed?

grep -r “tunovpnsite2sit” /etc
/etc/openvpn/ovpnsite2site.conf:dev tunovpnsite2site

I don’t understand why this config persisting as I have deleted the ovpn configuration in cockpit :frowning:

Will they go away if I comletely remove ovpn? I only use ipsec vpn and this must stay, so how to safely remove all configs and packages for openvpn, while not touching ipsec vpn?

I did yum remove nethserver-openvpn then yum autoremove, but there ar still obsolete files:

locate openvpn
/etc/openvpn
/etc/backup-config.d/nethserver-openvpn.include
/etc/backup-data.d/nethserver-openvpn.exclude
/etc/e-smith/db/configuration/defaults/openvpn@host-to-net
/etc/e-smith/events/nethserver-openvpn-save
/etc/e-smith/events/nethserver-openvpn-update
/etc/e-smith/events/openvpn-tunnel-create
/etc/e-smith/events/openvpn-tunnel-delete
/etc/e-smith/events/openvpn-tunnel-modify
/etc/e-smith/events/openvpn-tunnel-upload
/etc/e-smith/events/actions/nethserver-openvpn-adjust-certs-permissions
/etc/e-smith/events/actions/nethserver-openvpn-create-connections-db
/etc/e-smith/events/actions/nethserver-openvpn-crl
/etc/e-smith/events/actions/nethserver-openvpn-delclient
/etc/e-smith/events/actions/nethserver-openvpn-net2net
/etc/e-smith/events/actions/nethserver-openvpn-ns6upgrade
/etc/e-smith/events/actions/nethserver-openvpn-otp
/etc/e-smith/events/actions/nethserver-openvpn-restart-tunnels
/etc/e-smith/events/actions/nethserver-openvpn-tunnels
/etc/e-smith/events/actions/nethserver-openvpn-upload-client
/etc/e-smith/events/certificate-update/S30nethserver-openvpn-crl
/etc/e-smith/events/interface-update/S80nethserver-openvpn-restart-tunnels
/etc/e-smith/events/interface-update/services2adjust/openvpn@host-to-net
/etc/e-smith/events/interface-update/templates2expand/etc/openvpn
/etc/e-smith/events/interface-update/templates2expand/etc/openvpn/host-to-net.conf
/etc/e-smith/events/nethserver-openvpn-save/S20nethserver-openvpn-otp
/etc/e-smith/events/nethserver-openvpn-save/S30nethserver-openvpn-net2net
/etc/e-smith/events/nethserver-openvpn-save/S95trusted-networks-modify
/etc/e-smith/events/nethserver-openvpn-save/services2adjust
/etc/e-smith/events/nethserver-openvpn-save/templates2expand
/etc/e-smith/events/nethserver-openvpn-save/services2adjust/openvpn@host-to-net
/etc/e-smith/events/nethserver-openvpn-save/templates2expand/etc
/etc/e-smith/events/nethserver-openvpn-save/templates2expand/etc/openvpn
/etc/e-smith/events/nethserver-openvpn-save/templates2expand/etc/openvpn/host-to-net.conf
/etc/e-smith/events/nethserver-openvpn-save/templates2expand/etc/openvpn/host-to-net.pool
/etc/e-smith/events/nethserver-openvpn-update/S00initialize-default-databases
/etc/e-smith/events/nethserver-openvpn-update/S10nethserver-openvpn-adjust-certs-permissions
/etc/e-smith/events/nethserver-openvpn-update/S20nethserver-vpn-conf
/etc/e-smith/events/nethserver-openvpn-update/S30nethserver-openvpn-crl
/etc/e-smith/events/nethserver-openvpn-update/S40nethserver-openvpn-net2net
/etc/e-smith/events/nethserver-openvpn-update/S50nethserver-openvpn-create-connections-db
/etc/e-smith/events/nethserver-openvpn-update/services2adjust
/etc/e-smith/events/nethserver-openvpn-update/templates2expand
/etc/e-smith/events/nethserver-openvpn-update/services2adjust/openvpn@host-to-net
/etc/e-smith/events/nethserver-openvpn-update/templates2expand/etc
/etc/e-smith/events/nethserver-openvpn-update/templates2expand/var
/etc/e-smith/events/nethserver-openvpn-update/templates2expand/etc/openvpn
/etc/e-smith/events/nethserver-openvpn-update/templates2expand/etc/sudoers
/etc/e-smith/events/nethserver-openvpn-update/templates2expand/etc/openvpn/host-to-net.conf
/etc/e-smith/events/nethserver-openvpn-update/templates2expand/etc/openvpn/host-to-net.pool
/etc/e-smith/events/nethserver-openvpn-update/templates2expand/var/lib
/etc/e-smith/events/nethserver-openvpn-update/templates2expand/var/lib/nethserver
/etc/e-smith/events/nethserver-openvpn-update/templates2expand/var/lib/nethserver/certs
/etc/e-smith/events/nethserver-openvpn-update/templates2expand/var/lib/nethserver/certs/ca.cnf
/etc/e-smith/events/openvpn-tunnel-create/S30nethserver-openvpn-tunnels
/etc/e-smith/events/openvpn-tunnel-create/S40nethserver-openvpn-net2net
/etc/e-smith/events/openvpn-tunnel-create/S80firewall-adjust
/etc/e-smith/events/openvpn-tunnel-create/templates2expand
/etc/e-smith/events/openvpn-tunnel-create/templates2expand/etc
/etc/e-smith/events/openvpn-tunnel-create/templates2expand/etc/openvpn
/etc/e-smith/events/openvpn-tunnel-create/templates2expand/etc/openvpn/host-to-net.pool
/etc/e-smith/events/openvpn-tunnel-delete/S30nethserver-openvpn-tunnels
/etc/e-smith/events/openvpn-tunnel-delete/S40nethserver-openvpn-net2net
/etc/e-smith/events/openvpn-tunnel-delete/S80firewall-adjust
/etc/e-smith/events/openvpn-tunnel-delete/templates2expand
/etc/e-smith/events/openvpn-tunnel-delete/templates2expand/etc
/etc/e-smith/events/openvpn-tunnel-delete/templates2expand/etc/openvpn
/etc/e-smith/events/openvpn-tunnel-delete/templates2expand/etc/openvpn/host-to-net.pool
/etc/e-smith/events/openvpn-tunnel-modify/S30nethserver-openvpn-tunnels
/etc/e-smith/events/openvpn-tunnel-modify/S40nethserver-openvpn-net2net
/etc/e-smith/events/openvpn-tunnel-modify/S80firewall-adjust
/etc/e-smith/events/openvpn-tunnel-modify/templates2expand
/etc/e-smith/events/openvpn-tunnel-modify/templates2expand/etc
/etc/e-smith/events/openvpn-tunnel-modify/templates2expand/etc/openvpn
/etc/e-smith/events/openvpn-tunnel-modify/templates2expand/etc/openvpn/host-to-net.pool
/etc/e-smith/events/openvpn-tunnel-upload/S30nethserver-openvpn-upload-client
/etc/e-smith/events/openvpn-tunnel-upload/S80firewall-adjust
/etc/e-smith/events/post-restore-config/S60nethserver-openvpn-ns6upgrade
/etc/e-smith/events/static-routes-save/services2adjust/openvpn@host-to-net
/etc/e-smith/events/static-routes-save/templates2expand/etc/openvpn
/etc/e-smith/events/static-routes-save/templates2expand/etc/openvpn/host-to-net.conf
/etc/e-smith/templates/openvpn-tunnel-client
/etc/e-smith/templates/openvpn-tunnel-server
/etc/e-smith/templates/etc/openvpn
/etc/e-smith/templates/etc/openvpn/host-to-net.conf
/etc/e-smith/templates/etc/openvpn/host-to-net.pool
/etc/e-smith/templates/etc/openvpn/host-to-net.conf/00template_vars
/etc/e-smith/templates/etc/openvpn/host-to-net.conf/10server
/etc/e-smith/templates/etc/openvpn/host-to-net.conf/20certificates
/etc/e-smith/templates/etc/openvpn/host-to-net.conf/40route
/etc/e-smith/templates/etc/openvpn/host-to-net.conf/45routeAccounts
/etc/e-smith/templates/etc/openvpn/host-to-net.conf/50security
/etc/e-smith/templates/etc/openvpn/host-to-net.conf/60log
/etc/e-smith/templates/etc/openvpn/host-to-net.conf/80options
/etc/e-smith/templates/etc/openvpn/host-to-net.conf/90verbose
/etc/e-smith/templates/etc/openvpn/host-to-net.pool/50accounts
/etc/e-smith/templates/etc/shorewall/interfaces/99openvpn
/etc/e-smith/templates/etc/shorewall/policy/20policy_openvpn
/etc/e-smith/templates/etc/shorewall/rules/90openvpn_tunnels
/etc/e-smith/templates/etc/shorewall/zones/99openvpn
/etc/e-smith/templates/openvpn-tunnel-client/00template_vars
/etc/e-smith/templates/openvpn-tunnel-client/10base
/etc/e-smith/templates/openvpn-tunnel-client/20remote
/etc/e-smith/templates/openvpn-tunnel-client/30authentication
/etc/e-smith/templates/openvpn-tunnel-client/40routes
/etc/e-smith/templates/openvpn-tunnel-client/50log
/etc/e-smith/templates/openvpn-tunnel-client/60options
/etc/e-smith/templates/openvpn-tunnel-server/00template_vars
/etc/e-smith/templates/openvpn-tunnel-server/10base
/etc/e-smith/templates/openvpn-tunnel-server/20routes
/etc/e-smith/templates/openvpn-tunnel-server/30certificate
/etc/e-smith/templates/openvpn-tunnel-server/40psk
/etc/e-smith/templates/openvpn-tunnel-server/50log
/etc/e-smith/templates/openvpn-tunnel-server/60options
/etc/fail2ban/filter.d/openvpn.conf
/etc/logrotate.d/openvpn
/etc/pam.d/openvpn-certificate-otp
/etc/selinux/targeted/active/modules/100/openvpn
/etc/selinux/targeted/active/modules/100/openvpn/cil
/etc/selinux/targeted/active/modules/100/openvpn/hll
/etc/selinux/targeted/active/modules/100/openvpn/lang_ext
/etc/sudoers.d/20_nethserver_openvpn
/etc/systemd/system/openvpn@.service.d
/etc/systemd/system/multi-user.target.wants/openvpn@ovpnsite2site.service
/etc/systemd/system/openvpn@.service.d/host-to-net.conf
/etc/systemd/system/openvpn@.service.d/ovpnsite2site.conf
/opt/puppetlabs/puppet/share/augeas/lenses/dist/openvpn.aug
/opt/puppetlabs/puppet/share/augeas/lenses/dist/tests/test_openvpn.aug
/usr/lib/firewalld/services/openvpn.xml
/usr/lib/systemd/system/openvpn-client@.service
/usr/lib/systemd/system/openvpn-server@.service
/usr/lib/systemd/system/openvpn@.service
/usr/lib/tmpfiles.d/openvpn.conf
/usr/lib64/openvpn
/usr/lib64/collectd/openvpn.so
/usr/libexec/nethserver/openvpn-connect
/usr/libexec/nethserver/openvpn-disconnect
/usr/libexec/nethserver/openvpn-kill
/usr/libexec/nethserver/openvpn-local-client
/usr/libexec/nethserver/openvpn-pam-auth
/usr/libexec/nethserver/openvpn-state
/usr/libexec/nethserver/openvpn-status
/usr/libexec/nethserver/openvpn-status3
/usr/libexec/nethserver/openvpn-tunnel-pem
/usr/libexec/nethserver/openvpn-tunnels
/usr/libexec/nethserver/api/nethserver-vpn-ui/openvpn-rw
/usr/libexec/nethserver/api/nethserver-vpn-ui/openvpn-tunnel
/usr/libexec/nethserver/api/nethserver-vpn-ui/openvpn-rw/accounts-last-connected
/usr/libexec/nethserver/api/nethserver-vpn-ui/openvpn-rw/connection-history
/usr/libexec/nethserver/api/nethserver-vpn-ui/openvpn-rw/connection-history-csv
/usr/libexec/nethserver/api/nethserver-vpn-ui/openvpn-rw/create
/usr/libexec/nethserver/api/nethserver-vpn-ui/openvpn-rw/delete
/usr/libexec/nethserver/api/nethserver-vpn-ui/openvpn-rw/list-accounts
/usr/libexec/nethserver/api/nethserver-vpn-ui/openvpn-rw/read
/usr/libexec/nethserver/api/nethserver-vpn-ui/openvpn-rw/top-traffic-accounts
/usr/libexec/nethserver/api/nethserver-vpn-ui/openvpn-rw/update
/usr/libexec/nethserver/api/nethserver-vpn-ui/openvpn-rw/validate
/usr/libexec/nethserver/api/nethserver-vpn-ui/openvpn-tunnel/create
/usr/libexec/nethserver/api/nethserver-vpn-ui/openvpn-tunnel/delete
/usr/libexec/nethserver/api/nethserver-vpn-ui/openvpn-tunnel/download-json
/usr/libexec/nethserver/api/nethserver-vpn-ui/openvpn-tunnel/is-free
/usr/libexec/nethserver/api/nethserver-vpn-ui/openvpn-tunnel/read
/usr/libexec/nethserver/api/nethserver-vpn-ui/openvpn-tunnel/update
/usr/libexec/nethserver/api/nethserver-vpn-ui/openvpn-tunnel/validate
/usr/libexec/nethserver/connect-scripts/openvpn-connect-check-common-name-status
/usr/libexec/nethserver/connect-scripts/openvpn-connect-check-username-equal-certificateCN
/usr/libexec/nethserver/connect-scripts/openvpn-connect-insert-connection
/usr/libexec/nethserver/disconnect-scripts/openvpn-disconnect-update-connection
/usr/sbin/openvpn
/usr/share/nethserver-openvpn
/usr/share/doc/nethserver-openvpn-1.12.0
/usr/share/doc/openvpn-2.4.9
/usr/share/man/man8/openvpn.8.gz
/usr/share/nethserver-openvpn/build-dh
/usr/share/nethserver-openvpn/openssl-1.0.0.cnf
/usr/share/nethserver-openvpn/pkitool
/usr/share/nethserver-openvpn/revoke-full
/usr/share/nethserver-openvpn/vars
/usr/share/nethserver-openvpn/whichopensslcnf
/var/lib/openvpn
/var/lib/nethserver/openvpn
/var/lib/nethserver/openvpn-certificate-otp
/var/lib/nethserver/openvpn-tunnels
/var/lib/nethserver/openvpn/connections.db
/var/lib/nethserver/openvpn-tunnels/keys
/var/lib/nethserver/openvpn-tunnels/ovpn_s2s.key
/var/lib/nethserver/openvpn-tunnels/ovpnsite2site.key
/var/lib/nethserver/openvpn-tunnels/keys/01.pem
/var/lib/nethserver/openvpn-tunnels/keys/02.pem
/var/lib/nethserver/openvpn-tunnels/keys/ca.crt
/var/lib/nethserver/openvpn-tunnels/keys/ca.key
/var/lib/nethserver/openvpn-tunnels/keys/dh2048.pem
/var/lib/nethserver/openvpn-tunnels/keys/index.txt
/var/lib/nethserver/openvpn-tunnels/keys/index.txt.attr
/var/lib/nethserver/openvpn-tunnels/keys/index.txt.attr.old
/var/lib/nethserver/openvpn-tunnels/keys/index.txt.old
/var/lib/nethserver/openvpn-tunnels/keys/ovpn_s2s.crt
/var/lib/nethserver/openvpn-tunnels/keys/ovpn_s2s.csr
/var/lib/nethserver/openvpn-tunnels/keys/ovpn_s2s.key
/var/lib/nethserver/openvpn-tunnels/keys/ovpnsite2site.crt
/var/lib/nethserver/openvpn-tunnels/keys/ovpnsite2site.csr
/var/lib/nethserver/openvpn-tunnels/keys/ovpnsite2site.key
/var/lib/nethserver/openvpn-tunnels/keys/serial
/var/lib/nethserver/openvpn-tunnels/keys/serial.old
/var/log/openvpn
/var/log/openvpn/ovpn_s2s.log
/var/log/openvpn/ovpnsite2site.log
/var/spool/openvpn
/var/spool/openvpn/n2n-ovpnsite2site

How to cleanup, what can be removed?

Uff, finally it seems to effectively have been a routing problem. removing the ovpn package and rebooting removed those obsolete routes and brought back my connectivity to internal ressources through ipsec vpn tunnel thus nextcloud auth is working again. But is the above normal? And what files/folders can be deleted to re-gain a clean system. I dont want those obsolete entries for tunnels that once were created and are now deleted again. Also smb has no delay anymore and started upon reboot of the server…