App Containers (OCI) Not Getting IPv4

Incus
,
1

Hello, I recently updated my system, along with that Incus. However after updating my app containers are no longer getting an IPv4 address (they do get an IPv6 it seems though)

My normal system containers are getting an IPv4 address though so I am not so sure it’s my firewall.

I found a somewhat related topic: OCI Containers Not Getting Dnsmasq Entry - #3 by alex14641

The command given in that comment did fix my issue temporarily (until a restart of the container) but only for Alpine based images…

Has something changed recently to cause this? I am on Incus version 6.12 (previously 6.11)

I have a container with a static IP set and that’s not even getting an IP or internet access.
I checked /var/lib/incus/networks/incusbr0/dnsmasq.leases and the containers set to use DHCP have a lease and IP with it but still no internet access or IP in Incus

Thanks

2

I believe this issue was fixed in version 6.7.
Please post one of the container logs, and the incus server log.

3

No LXC logs for any of the containers from what I can see and not much in the Incus server log either from what I can tell


May 12 15:58:10 server systemd[1]: Started Incus Container and Virtual Machine Management Daemon.

May 12 16:03:04 server incusd[55754]: time="2025-05-12T16:03:04-04:00" level=warning msg="Failed getting exec control websocket reader, killing command" PID=59334 err="websocket: close 1005 (no status)" instance=AdGuard interac>

May 12 16:20:47 server incusd[55754]: time="2025-05-12T16:20:47-04:00" level=error msg="Failed starting instance" action=start created="2025-03-10 01:54:46.561858066 +0000 UTC" ephemeral=false instance=LLM instanceType=containe>

May 12 16:20:47 server incusd[55754]: time="2025-05-12T16:20:47-04:00" level=error msg="Failed starting instance" action=start created="2025-02-23 22:51:45.447484251 +0000 UTC" ephemeral=false instance=Container2 instanceType=cont>

May 12 16:21:08 server incusd[55754]: time="2025-05-12T16:21:08-04:00" level=error msg="Failed starting instance" action=start created="2025-02-23 22:51:45.447484251 +0000 UTC" ephemeral=false instance=Container2 instanceType=cont>

May 12 16:23:02 server incusd[55754]: time="2025-05-12T16:23:02-04:00" level=error msg="Failed starting instance" action=start created="2025-03-10 01:54:46.561858066 +0000 UTC" ephemeral=false instance=LLM instanceType=containe>

May 12 16:50:14 server dnsmasq-dhcp[55842]: router advertisement on fd42:ef42:57f1:5ba2::, old prefix for incusbr0

May 12 16:50:14 server dnsmasq-dhcp[55842]: DHCPv6 stateless on fd42:ef42:57f1:5ba2::, constructed for incusbr0

May 12 16:50:14 server dnsmasq-dhcp[55842]: DHCPv4-derived IPv6 names on fd42:ef42:57f1:5ba2::, constructed for incusbr0

May 12 16:50:14 server dnsmasq-dhcp[55842]: router advertisement on fd42:ef42:57f1:5ba2::, constructed for incusbr0

May 12 16:50:14 server dnsmasq[66197]: started, version 2.91 cachesize 150

May 12 16:50:14 server dnsmasq[66197]: compile time options: IPv6 GNU-getopt DBus no-UBus no-i18n IDN DHCP DHCPv6 no-Lua TFTP conntrack ipset nftset auth DNSSEC loop-detect inotify dumpfile

May 12 16:50:14 server dnsmasq-dhcp[66197]: DHCP, IP range 10.243.146.2 -- 10.243.146.254, lease time 1h

May 12 16:50:14 server dnsmasq-dhcp[66197]: DHCPv6 stateless on incusbr0

May 12 16:50:14 server dnsmasq-dhcp[66197]: DHCPv4-derived IPv6 names on incusbr0

May 12 16:50:14 server dnsmasq-dhcp[66197]: router advertisement on incusbr0

May 12 16:50:14 server dnsmasq-dhcp[66197]: DHCPv6 stateless on fd42:ef42:57f1:5ba2::, constructed for incusbr0

May 12 16:50:14 server dnsmasq-dhcp[66197]: DHCPv4-derived IPv6 names on fd42:ef42:57f1:5ba2::, constructed for incusbr0

May 12 16:50:14 server dnsmasq-dhcp[66197]: router advertisement on fd42:ef42:57f1:5ba2::, constructed for incusbr0

May 12 16:50:14 server dnsmasq-dhcp[66197]: IPv6 router advertisement enabled

May 12 16:50:14 server dnsmasq-dhcp[66197]: DHCP, sockets bound exclusively to interface incusbr0

May 12 16:50:14 server dnsmasq[66197]: using only locally-known addresses for incus

May 12 16:50:14 server dnsmasq[66197]: reading /etc/resolv.conf

May 12 16:50:14 server dnsmasq[66197]: using nameserver 1.1.1.1#53

May 12 16:50:14 server dnsmasq[66197]: using nameserver 1.1.1.2#53

May 12 16:50:14 server dnsmasq[66197]: using only locally-known addresses for incus

May 12 16:50:14 server dnsmasq[66197]: read /etc/hosts - 3 names

May 12 16:50:14 server dnsmasq-dhcp[66197]: read /var/lib/incus/networks/incusbr0/dnsmasq.hosts/AdGuard_AdGuard.eth--1

May 12 16:50:14 server dnsmasq-dhcp[66197]: read /var/lib/incus/networks/incusbr0/dnsmasq.hosts/ddns.eth0

May 12 16:50:14 server dnsmasq-dhcp[66197]: read /var/lib/incus/networks/incusbr0/dnsmasq.hosts/frigate.eth0

May 12 16:50:14 server dnsmasq-dhcp[66197]: read /var/lib/incus/networks/incusbr0/dnsmasq.hosts/Container2.eth0

May 12 16:50:14 server dnsmasq-dhcp[66197]: read /var/lib/incus/networks/incusbr0/dnsmasq.hosts/LLM.eth0

May 12 16:50:14 server dnsmasq-dhcp[66197]: read /var/lib/incus/networks/incusbr0/dnsmasq.hosts/media-server_jellyfin.eth0

May 12 16:50:14 server dnsmasq-dhcp[66197]: read /var/lib/incus/networks/incusbr0/dnsmasq.hosts/media-server_jellyseerr.eth--0

May 12 16:50:14 server dnsmasq-dhcp[66197]: read /var/lib/incus/networks/incusbr0/dnsmasq.hosts/media-server_prowlarr.eth0

May 12 16:50:14 server dnsmasq-dhcp[66197]: read /var/lib/incus/networks/incusbr0/dnsmasq.hosts/media-server_qbittorrent.eth--1

May 12 16:50:14 server dnsmasq-dhcp[66197]: read /var/lib/incus/networks/incusbr0/dnsmasq.hosts/media-server_radarr.eth0

May 12 16:50:14 server dnsmasq-dhcp[66197]: read /var/lib/incus/networks/incusbr0/dnsmasq.hosts/media-server_sonarr.eth0

May 12 16:50:14 server dnsmasq-dhcp[66197]: read /var/lib/incus/networks/incusbr0/dnsmasq.hosts/rpi.eth0

May 12 16:50:14 server dnsmasq-dhcp[66197]: read /var/lib/incus/networks/incusbr0/dnsmasq.hosts/test2.eth0

May 12 16:50:14 server dnsmasq-dhcp[66197]: read /var/lib/incus/networks/incusbr0/dnsmasq.hosts/Test.eth0

May 12 16:53:02 server incusd[55754]: time="2025-05-12T16:53:02-04:00" level=error msg="Failed starting instance" action=start created="2025-02-23 22:51:45.447484251 +0000 UTC" ephemeral=false instance=Container2 instanceType=cont>

May 12 16:53:02 server incusd[55754]: time="2025-05-12T16:53:02-04:00" level=error msg="Failed starting instance" action=start created="2025-03-10 01:54:46.561858066 +0000 UTC" ephemeral=false instance=LLM instanceType=containe>

May 12 16:59:03 server dnsmasq-dhcp[55939]: router advertisement on fd42:c90:f661:b18f::, old prefix for media-server

May 12 16:59:03 server dnsmasq-dhcp[55939]: DHCPv6 stateless on fd42:c90:f661:b18f::, constructed for media-server

May 12 16:59:03 server dnsmasq-dhcp[55939]: DHCPv4-derived IPv6 names on fd42:c90:f661:b18f::, constructed for media-server

May 12 16:59:03 server dnsmasq-dhcp[55939]: router advertisement on fd42:c90:f661:b18f::, constructed for media-server

May 12 16:59:03 server dnsmasq[71884]: started, version 2.91 cachesize 150

May 12 16:59:03 server dnsmasq[71884]: compile time options: IPv6 GNU-getopt DBus no-UBus no-i18n IDN DHCP DHCPv6 no-Lua TFTP conntrack ipset nftset auth DNSSEC loop-detect inotify dumpfile

May 12 16:59:03 server dnsmasq-dhcp[71884]: DHCP, IP range 10.193.213.2 -- 10.193.213.254, lease time 1h

May 12 16:59:03 server dnsmasq-dhcp[71884]: DHCPv6 stateless on media-server

May 12 16:59:03 server dnsmasq-dhcp[71884]: DHCPv4-derived IPv6 names on media-server

May 12 16:59:03 server dnsmasq-dhcp[71884]: router advertisement on media-server

May 12 16:59:03 server dnsmasq-dhcp[71884]: DHCPv6 stateless on fd42:c90:f661:b18f::, constructed for media-server

May 12 16:59:03 server dnsmasq-dhcp[71884]: DHCPv4-derived IPv6 names on fd42:c90:f661:b18f::, constructed for media-server

May 12 16:59:03 server dnsmasq-dhcp[71884]: router advertisement on fd42:c90:f661:b18f::, constructed for media-server

May 12 16:59:03 server dnsmasq-dhcp[71884]: IPv6 router advertisement enabled

May 12 16:59:03 server dnsmasq-dhcp[71884]: DHCP, sockets bound exclusively to interface media-server

May 12 16:59:03 server dnsmasq[71884]: using only locally-known addresses for incus

May 12 16:59:03 server dnsmasq[71884]: reading /etc/resolv.conf

May 12 16:59:03 server dnsmasq[71884]: using nameserver 1.1.1.1#53

May 12 16:59:03 server dnsmasq[71884]: using nameserver 1.1.1.2#53

May 12 16:59:03 server dnsmasq[71884]: using only locally-known addresses for incus

May 12 16:59:03 server dnsmasq[71884]: read /etc/hosts - 3 names
4

What’s the output of

incus version
5

Client version: 6.12
Server version: 6.12

6

I was looking through the changelog for Incus 6.12 and noticed this PR: OCI improvements by stgraber · Pull Request #1873 · lxc/incus · GitHub

Just out of curiosity I made a patch to revert that PR, applied it and to my surprise all of my OCI containers are getting an IP Address now. I am not familiar with the Incus code base enough to really say what caused this however.

7

On 6.12, do you see anything useful in the forkdns log that should now be present in /var/log/incus/INSTANCE-NAME/ ?

8

There is no forkdns log. Only

console.log                         forknet-dhcp.log                    lxc.log                             proxy.docker-port-0.0.0.0-9696.log  
forkexec.log                        forkstart.log                       lxc.log.old
9

What’s in forknet-dhcp.log?

10 
time="2025-05-12T13:22:01+08:00" level=info msg="running dhcp" interface=eth0
time="2025-05-12T13:22:01+08:00" level=error msg="Giving up on DHCP, couldn't bring up interface" interface=eth0

Seems to be that for all containers