ping/dig not working in lxc, pve working

[steven-sun]

i somehow played around with my config and messed something up

On the host i can perfectly run ping or dig commands and get a positive result,
somehow on all my lxc containers, ping or dig runs into a timeout. pinging the ip adress directly works like a charm.

any ideas on that?

host:

dig google.de

; <<>> DiG 9.18.28-1~deb12u2-Debian <<>> google.de
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 63460
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;google.de.                     IN      A

;; ANSWER SECTION:
google.de.              300     IN      A       216.58.206.35

;; Query time: 25 msec
;; SERVER: 178.254.16.151#53(178.254.16.151) (UDP)
;; WHEN: Sat Oct 19 04:34:45 CEST 2024
;; MSG SIZE  rcvd: 54

lxc:

root@lxc:~# dig google.de
;; communications error to 178.254.16.151#53: timed out

 

[steven-sun]

root@lxc:~# ping google.de
ping: google.de: Temporary failure in name resolution

root@lxc:~# ping 142.250.185.99
PING 142.250.185.99 (142.250.185.99) 56(84) bytes of data.
64 bytes from 142.250.185.99: icmp_seq=1 ttl=59 time=0.723 ms


root@lxc:~# iptables -L -v -n
Chain INPUT (policy ACCEPT 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination         
 1491  242K ACCEPT     6    --  *      *       0.0.0.0/0            0.0.0.0/0            tcp dpt:1194

Chain FORWARD (policy ACCEPT 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination         
  326  192K ACCEPT     0    --  *      *       0.0.0.0/0            0.0.0.0/0            state RELATED,ESTABLISHED
 1160 79205 ACCEPT     0    --  *      *       10.8.0.0/24          0.0.0.0/0           

Chain OUTPUT (policy ACCEPT 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination