rama3124

Hey braintrust, I've got vaultwarden currently exposed to the internet through a cloudflare tunnel pointing to traefik reverse proxy but am looking to make it only available on my internal network (and on tailscale VPN) for increased security. I know that vaultwarden needs HTTPS to function but can't work out a way to make my subdomain (vaultwarden.mydomain.com) point to traefik so that it can generate a wildcard SSL certificate for vaultwarden. I tried to follow this guide linked below but when I set up the DNS record on cloudflare to point to my internal server address, it just leads to the unraid login page rather than vaultwarden and I don't have the ability to add a port number on the DNS record. How can I make the DNS record point to the traefik port of my unraid server? https://github.com/dani-garcia/vaultwarden/wiki/Running-a-private-vaultwarden-instance-with-Let's-Encrypt-certs

Hi Are the following instructions still valid for manual upgrade to 6.12.10 from 6.12.9? I tried it through SSH and my server is now unresponsive TIA

Still can't get the webgui to work. Checked ifconfig and it's tailscale1 listening. My unraid network settings has both tailscale1 and tailscale0 listening. Tried deleting tailscale0 from listening interfaces with no luck. I can access all docker containers, just not webgui. Here are the diagnostics too Unraid-tailscale-diag-20240402-142821.zip

Yeh I ran this in SSH: /usr/local/emhttp/plugins/tailscale/restart.sh I just tried it again but it didn't help. Anything else you can recommend to troubleshoot? I can access all the docker containers fine, just not the webgui. I'll try and get the diagnostics but it could be hard since I don't have local access right now

Thank you, the device came up as connected as soon as I ran tailscale up. Now I can access all my docker containers when adding the port numbers but can't get the Unraid webgui up. I saw this is a common issue when enabling subnets but I can't get the webgui up even when I put in the tailscale IP address

I gave this a go after all and when I stopped the docker container and approved the plugin, the new unraid instance didn't show as online in my tailscale admin console. I have SSH access so I can just delete the plugin and restart the tailscale container but is there a way to complete setup for the plugin through command line?

Ok thanks for your prompt replies

That sounds very complicated, it seems like my best bet is just to wait till I've got local access. Once I have, do I just delete the docker container and install the plugin? No other setup steps or configuration required?

It seems like the general consensus is to use the plugin now rather than the docker container. I currently don't have local access to my server, is it still possible to change to the plugin while maintaining tailscale connection? I'm assuming the answer is no since it seems I have to delete the docker container first (losing tailscale connection) before adding the plugin but I thought I'd check

Do we still need to modify the listening interfaces on network settings to get the unraid webui to work? And does the go file still need to be modified to get it to work on restart?

Correct you are. I'm running the docker container so posted this in the wrong forum. I'll move the post, thanks

Hi Do I still need to add tailscale0 to listening interfaces under network settings and modify the go file? Or has this since been resolved in a more recently release? TIA

Ok thanks for the tips, I'll check out the built in uptime kuma tunnel

If i've already got a cloudflare tunnel running through the cloudflared container by aeleos, is there an advantage to switch to this container?

I've cleared the logs and closed the tabs so let's see if it happens again. I usually leave a tab open with my docker page of unraid GUI but have never had a problem till now