StanC

Members
  • Posts

    160
  • Joined

  • Last visited

Posts posted by StanC

  1. On 12/7/2021 at 4:01 PM, ljm42 said:

    I don't think there is really anything to be done on your end. But I do see that Let's Encrypt has some maintenance coming up on Dec 8th and 9th, I'm hoping that will help:

      https://letsencrypt.status.io/

     

    @ljm42  I have finally got it working 😀

     

    I did end up recreating the thumb drive after exporting my license key. I wanted to start with a clean build. Since this is my VM Workstation Build (in my signature). Also I wanted to change out a NVMe drive and move the thumb drive to an internal USB 2.0 port, all my external ports are 3.x. I swap out a WDC Black NVMe 1TB with a Sabrent Rocker 4+ 1TB, the WDC was running at 50 degrees which kept sending alerts. The Sabrent runs at around 36 degrees.

     

    After swapping out components and went about getting it configured and then went to provision it again. I got a the DNS Rebinding Error message - different but making progress. I am using OPNsense as my router, so I needed to add the necessary Host Override in Unbound DNS service. After that I was able to get the certificate 👍

     

    So now I am good to go. Thanks again.

  2. On 12/3/2021 at 8:37 AM, ljm42 said:

    We haven't seen this before and are looking into it. The (sort of) good news is that this doesn't appear to be a widespread problem, I have a feeling your specific certificate request got borked during their outage yesterday. We're trying to figure out how to reset it.

     

    @ljm42   I am not apposed to this, since this is a brand new build with nothing on it. But would it help if I restart with a clean build (fresh copy of unRAID OS, new server name, etc.)?  Or is it that my email address is being blocked by LetsEncrypt?

  3. 1 hour ago, jbrodriguez said:

    I think what's happening is that the plugin can't detect that you're provisioning/unprovisioning the server.

    At plugin startup, it checks if it's running on an http or https server.

    It seems in your case, it started with http, and after provisioning the server, it switched to https, but the plugin doesn't know about that.

    Can you restart the plugin after you're provisioned into x.unraid.net, see if it works ?

     

    Same results. I have even uninstalled the plugin, rebooted the server, and reinstalled the plugin. So for now, I have completed removed the plugin from all of my servers, since it does not work.

     

    Also noting that the addition of the QR Code is nice, but in the IOS app I did not see an option to scan a QR Code. The only options are Discovery or Manual when adding a server.  I have also remove the app from my iPhone and iPad.

  4. Does this plugin work when a server is configured under Management Access to us ####.unraid.net?

     

    Currently I have two server configured as such and I am not able to configure or access them.

     

    When I click on the link on the plugin settings to bring up the QR Code it fails "cannot access this site".

     

    I look at the URL and it is using https with port 2379, if I change the url to http and port 2378 then the page comes up.

     

    If I remove the Management Access settings (unprovision the server from *.unraid.net) then the plugin works just fine. So maybe there is a something going on that is preventing this plugin from working on *.unraid.net.

  5. Did some further testing by swapping out the flash drive, since for this build I was still using the trial key. Still got the same issue.

     

    I updated to 6.10.0-rc2 and then tried again, still the same issue. But the system log revealed something with 6.10 that did not exist in 6.9. Below is the excerpt from the log:

     

    Nov 24 09:09:17 PRIME emhttpd: shcmd (114): /usr/bin/php -f /usr/local/emhttp/webGui/include/ProvisionCert.php
    Nov 24 09:09:17 PRIME root: Error: Server was unable to provision SSL certificate
    Nov 24 09:09:17 PRIME emhttpd: shcmd (114): exit status: 1
    Nov 24 09:09:17 PRIME emhttpd: shcmd (115): /etc/rc.d/rc.nginx reload
    Nov 24 09:09:17 PRIME root: Checking configuration for correct syntax and
    Nov 24 09:09:17 PRIME root: then trying to open files referenced in configuration...
    Nov 24 09:09:17 PRIME root: nginx: the configuration file /etc/nginx/nginx.conf syntax is ok
    Nov 24 09:09:17 PRIME root: nginx: configuration file /etc/nginx/nginx.conf test is successful
    Nov 24 09:09:17 PRIME root: Reloading Nginx configuration...
    Nov 24 09:09:20 PRIME nginx: 2021/11/24 09:09:20 [alert] 2269#2269: *9524 open socket #26 left in connection 8
    Nov 24 09:09:20 PRIME nginx: 2021/11/24 09:09:20 [alert] 2269#2269: *9522 open socket #18 left in connection 10
    Nov 24 09:09:20 PRIME nginx: 2021/11/24 09:09:20 [alert] 2269#2269: *9512 open socket #13 left in connection 16
    Nov 24 09:09:20 PRIME nginx: 2021/11/24 09:09:20 [alert] 2269#2269: aborting

     

    The second line says it was not able to provision the cert. Do not know if this is a bug or if the unRAID provision site (https://keys.lime-technology.com/account/ssl/provisioncert) has an issue. Got the site URL from looking through the php file from the first line in the log excerpt above.

     

    Should this be reported as a bug?

  6. On 1/12/2020 at 7:40 AM, ndaringer said:

    Not 100% sure if this is the best way to do it or not, but here is what I did to migrate to the bitwardenrs docker

     

    !!!!! Stop your existing bitwarden docker and then make a backup of your existing bitwarden appdata folder !!!!!

    I did this using the unraid web terminal as follows:

    • cd /mnt/user/appdata/
    • tar -cvzf bw.tgz /mnt/user/appdata/bitwarden

    Copy that tgz file to at least 3 places. You should see it in the root of your appdata share.

     

    Now that you've backed up your precious bitwarden data, let's do the migration.

     

    Go to CA and open the template to install the bitwardenrs docker

     

    Y8eDv2C.thumb.png.7004032fdf96c76c6af2dea9e8abe1c7.png

     

    1. set the webui port to the same port you had previously used for bitwarden.
    2. make sure the appdata folder matches your old appdata folder
    3. set your server admin email address
    4. lastly, set your admin token with a long random string. I used 'openssl rand -base64 48' to make the string.

    You should be able to hit Apply now and it should create the new docker for you.

     

    Hope this helps.

    This worked for me. Thanks. 👍

  7. @chip - were you able to get this working?

     

    I am trying and I think I am close but I am getting this error:

    Error: ENOENT: no such file or directory, open '/home/meshserver/views/layouts/main.handlebars'

    I connected to the console and do not see the directory "views" under "/home/meshserver"

    • Like 1
  8. 1 hour ago, aptalca said:

    Add this to the bottom of your nginx.conf file, put in your ip and port for openvpn

     

     

    stream {

        log_format basic '$remote_addr [$time_local] '
                     '$protocol $status $bytes_sent $bytes_received '
                     '$session_time';
        access_log /config/log/nginx/streamaccess.log basic;
        error_log /config/log/nginx/streamerror.log;

        server {
            listen 80;
            proxy_pass serverip:port;
        }
    }

    Okay added to the bottom of \appdata\letsencrypt\nginx\nginx.conf. Now I am seeing this in the log after restarting:

     

    nginx: [emerg] bind() to 0.0.0.0:80 failed (98: Address in use)

     

    There must be something missing because none of the reverse proxy sites are working now (nextcloud, etc). I have disabled the stream statement for now.

  9. On 5/7/2019 at 3:51 AM, Draco said:

    Hi There,

     

    I have done a bunch of searching here and elsewhere and can't seem to find an answer on this.

     

    1. I have OpenVPN AS setup in a docker with ports 943 Web and 9443 TCP VPN port open

    2. I am looking to use letsencrypt to redirect 443 for domain vpn.duckdns.org to local server 192.168.1.5:9443 for vpn connections

     

    Does anyone have any idea how i would set this up in the letsencrypt docker. Reason for this is work is blocking anything but HTTP/HTTPS so need to be accessing on one of these open ports.

     

    Help would greatly be appreciated.

     

    Thanks!

     

    On 5/7/2019 at 5:28 AM, aptalca said:

    Google nginx tcp stream proxy. It's very easy and straightforward.

     

    I also would like a way to redirect OpenVPN  through letsencrypt. Is it done through its own special conf file or do we edit nginx default conf file to do it? 

     

    @Draco - did you every find an answer and get this working?

     

     

    @aptalca - can you provide specific URLs with answers or configurations? I have done the generic google search for "nginx tcp stream proxy" and came up with nothing very useful.

  10. Happy Birthday unRAID!

     

    Been around since January 2012, hard to believe I have been here for half your life. I purchased a dual Pro license back in the day and started with a YAGC (Yet Another GOLIATH Clone) by Johnm. I still have that build with the same flash drive, most of the internals have been upgraded. I then added another system to my environment by using the LimeTech D-316M case to use the second license. Along the way I have spread the word and brought several friends along the way to build their own unRAID systems. To this day I still help them out when they run into issues. It all started out as a way to manage my media collection, but with the addition of Docker to unRAID it has expanded. I use it for backups, cloud storage, reverse proxy, etc. I have really enjoyed the ride and hope that it will keep continue for a long long time.

     

    Thank you!

  11. So far I like this docker application. Great Job!!!

     

    I have managed to create my two presets to match as close as possible to the ones that I use for the Windows version of HandBrake. The one issue that I am running into is for the subtitles. Using the docker app it would appear that it is always setting the first subtitle as default. How do I change this to not have it selected as default? Basically I do not want any of the tracks set to default.