Add output for ip6tables and related ipv6 things

Until now, we don't have any output for iptables rules applied to v6. It can be interesting to get them, especially since standard behavior is to try first ipv6 if a name as associated v6. Even for localhost. This patch also reformat a bit the output in the files, adding some headers for a better reading. Change-Id: I62e5c03fa38f5c4c266fbf27bd4f1ec0f3bf0633
2019-01-30 12:46:43 +01:00 · 2019-01-30 12:46:43 +01:00 · dd48dfccf8
parent 1289e159b0
commit dd48dfccf8
1 changed files with 29 additions and 13 deletions
--- a/roles/collect-logs/tasks/collect.yml
+++ b/roles/collect-logs/tasks/collect.yml
@ -52,21 +52,37 @@

    - name: Collect network status info
      shell: >
-        (ip a; ip r; netstat -i; iptables-save; iptables -nL) &> /var/log/extra/network.txt;
+        echo "netstat" > /var/log/extra/network.txt;
+        netstat -i &> /var/log/extra/network.txt;
+        for ipv in 4 6; do
+          echo "### IPv${ipv} addresses" >> /var/log/extra/network.txt;
+          ip -${ipv} a &>> /var/log/extra/network.txt;
+          echo "### IPv${ipv} routing" >> /var/log/extra/network.txt;
+          ip -${ipv} r &>> /var/log/extra/network.txt;
+          echo "### IPTables (IPv${ipv})" &>> /var/log/extra/network.txt;
+          test $ipv -eq 4 && iptables-save &>> /var/log/extra/network.txt;
+          test $ipv -eq 6 && ip6tables-save &>> /var/log/extra/network.txt;
+        done;
        (for NS in $(ip netns list); do
-        echo "==== $NS ====";
-        ip netns exec $NS ip a;
-        ip netns exec $NS ip r;
-        ip netns exec $NS ip iptables-save;
-        PIDS="$(ip netns pids $NS)";
-        [[ ! -z "$PIDS" ]] && ps --no-headers -f --pids "$PIDS";
-        echo "";
-        done) &> /var/log/extra/network-netns;
+          for ipv in 4 6; do
+            echo "==== $NS (${ipv})====";
+            echo "### IPv${ipv} addresses";
+            ip netns exec $NS ip -${ipv} a;
+            echo "### IPv${ipv} routing";
+            ip netns exec $NS ip -${ipv} r;
+            echo "### IPTables (IPv${ipv})";
+            test $ipv -eq 4 && ip netns exec $NS ip iptables-save;
+            test $ipv -eq 6 && ip netns exec $NS ip ip6tables-save;
+          done
+          PIDS="$(ip netns pids $NS)";
+          [[ ! -z "$PIDS" ]] && ps --no-headers -f --pids "$PIDS";
+          echo "";
+        done) &>> /var/log/extra/network-netns;
        (for NB in $(ovs-vsctl show | grep Bridge |awk '{print $2}'); do
-        echo "==== Bridge name - $NB ====";
-        ovs-ofctl show $NB;
-        ovs-ofctl dump-flows $NB;
-        echo "";
+          echo "==== Bridge name - $NB ====";
+          ovs-ofctl show $NB;
+          ovs-ofctl dump-flows $NB;
+          echo "";
        done;
        ovsdb-client dump) &> /var/log/extra/network-bridges;