I’m stumbling across weird intermittent network issues with Incus OS images on images.linuxcontainers.org/os: updates often fail on NATed addresses but always succeed on machines possessing public IP addresses.
What surprises me is that, AFAIK, we only have two Incus OS machines in that LAN (being translated to a single public address), not hundreds. I don’t believe that should be enough to trigger any kind of rate limiting, but who knows… Our logs report a tcp-rst-from-server and our network people here say there is no limits enforced on our side.
Oh, related to this, I can see there is at least one mirror to images.linuxcontainers.org being used (on buildthe.cloud), is there a list of IPs/URLs available somewhere to whitelist them? If simplestreams is setup to switch between mirrors or load balance or anything of the sort, this might be the very source of the problem above.
There’s no limit/throttling on our end, it’s the same servers that serve all our images.
The server list varies a bit based on region.
For North America, it’s directly the main server responding (images.linuxcontainers.org), for Europe, it’s usually the Frankfurt mirror at fra1lxdmirror01.do.letsbuildthe.cloud which will handle the traffic.
