#1 — LLM Gateway iptables IP drift — silent traffic DROP for ~18 hours

ID: #1 Status: resolved Severity: critical Component: llm-gateway Reported by: jim Created: 4/19/2026, 2:30:00 PM Resolved: 4/19/2026, 2:30:00 PM

Environment State

After a power outage, Docker recreated the llm-gateway container and it was assigned a new internal IP (172.28.0.74) instead of the previously pinned 172.28.0.71. The iptables ACCEPT rule in prysm-llm-gw-enforce.sh still pointed to 172.28.0.71. Traffic was silently dropped in the DOCKER-USER chain. No application-level errors appeared — only LLM queue jobs timing out.

Resolution Summary

Updated GATEWAY_IP in prysm-llm-gw-enforce.sh to 172.28.0.74. Re-pinned ipv4_address: 172.28.0.74 in the llm-gateway compose file to prevent future drift. Reloaded iptables rules. Verified with `iptables -L DOCKER-USER -n`.

Update Status

New Status

Changed By

Note

Add Symptom

Description *

Error Text

Type

Source

Reported By

Add Diagnosis

Finding *

Root Cause

Is Root Cause?

Confidence

Diagnosed By

Add Treatment

Description *

Fix Type *

Temporary?

Applied By

Add Validation

Step *

Result *

Evidence

Validated By

Symptoms

None recorded

Diagnoses

None recorded

Treatments

None recorded

Validations

None recorded

Status History

From	To	By	Note	When

Linked Issues

None