Jump to content
linuxserver.io

[Support] Linuxserver.io - Letsencrypt (Nginx)

4043 posts in this topic Last Reply

Recommended Posts

You should be able to connect to unRaid using smb in Finder. Smb is on by default.

Share this post


Link to post

Yes I did.. created the .htpasswd with "htpasswd -c /Volums/blablabla../nginx username .htpasswd", but the file does not show up in the smb share - maybe its not visible in macOS?

 

 

Share this post


Link to post

. files are invisible.

 

The .htpasswd file ought to be in the nginx folder of letsencrypt IIRC.

 

If you turn on hidden files in Mac you'll see your folders littered with them.

 

Also if you FTP into your unRAID they'll show up.

Share this post


Link to post

Are there any instructions to ensure a successful migration from the old docker container? Any specific things we should look out for when transferring the files?

 

Thanks!

Share this post


Link to post

Are there any instructions to ensure a successful migration from the old docker container? Any specific things we should look out for when transferring the files?

 

Thanks!

Install the new container in a new config folder, let it get the certs, and then you can transfer the contents of the www folder and the necessary elements from the site config. That's really all.

Share this post


Link to post

@aptalca

 

Is curl already installed or would I have to install it manually?

can't remember off the top of my head but if it's not we will push an update

 

Until then you can install with

apk add --update curl

if it's missing

 

Share this post


Link to post

I'm trying to troubleshoot this.  I've installed the docker and used ports 8086 and 444.  When I go to https://unraidIP:444 or http://unraidIP:8086, I get "Unable to Connect".  After a couple of minutes, the docker shuts down.  I went to my "appdata" and locked in the "Log" folder, but nothing is in any of the three folders. 

 

I've deleted the docker and the folder in "appdata" and tried reinstalling.  I've tried different ports, same thing.

 

I'm using duckDNS and I've verified the domain I'm using works.  I've also verified that port 443 on my firewall points to my Unraid server.

 

What am i missing?  Any thoughts?

unraidConfig.png.b0f237fdac38d9433515cdb0f20c40c3.png

Share this post


Link to post

 

What am i missing?  Any thoughts?

Shot in the dark, but what happens if you remove the comma after www in subdomains?

Share this post


Link to post

 

 

I'm trying to troubleshoot this.  I've installed the docker and used ports 8086 and 444.  When I go to https://unraidIP:444 or http://unraidIP:8086, I get "Unable to Connect".  After a couple of minutes, the docker shuts down.  I went to my "appdata" and locked in the "Log" folder, but nothing is in any of the three folders. 

 

I've deleted the docker and the folder in "appdata" and tried reinstalling.  I've tried different ports, same thing.

 

I'm using duckDNS and I've verified the domain I'm using works.  I've also verified that port 443 on my firewall points to my Unraid server.

 

What am i missing?  Any thoughts?

 

What does the docker log show?

 

Did you forward port 443 on the router to port 444 on unraid?

Share this post


Link to post

To simplify I put the port back to 443.

 

Log reports:

Brought to you by linuxserver.io
We gratefully accept donations at:
https://www.linuxserver.io/index.php/donations/
-------------------------------------
GID/UID
-------------------------------------
User uid: 99
User gid: 100
-------------------------------------

[cont-init.d] 10-adduser: exited 0.
[cont-init.d] 20-config: executing...
[cont-init.d] 20-config: exited 0.
[cont-init.d] 30-keygen: executing...
using keys found in /config/keys
[cont-init.d] 30-keygen: exited 0.
[cont-init.d] 50-config: executing...
2048 bit DH parameters present
SUBDOMAINS entered, processing
Sub-domains processed are: -d www.UNRAIDSERVER.com
Generating new certificate
Failed authorization procedure. UNRAIDSERVER.com (tls-sni-01): urn:acme:error:unknownHost :: The server could not resolve a domain name :: No valid IP addresses found for UNRAIDSERVER.com
IMPORTANT NOTES:
- The following errors were reported by the server:

Domain: UNRAIDSERVER.com
Type: unknownHost
Detail: No valid IP addresses found for UNRAIDSERVER.com

To fix these errors, please make sure that your domain name was
entered correctly and the DNS A record(s) for that domain
contain(s) the right IP address.
/var/run/s6/etc/cont-init.d/50-config: line 105: cd: /config/keys/letsencrypt: No such file or directory
[cont-init.d] 50-config: exited 1.
[cont-finish.d] executing container finish scripts...
[cont-finish.d] done.
[s6-finish] syncing disks.
Failed authorization procedure. chaoconnor.com (tls-sni-01): urn:acme:error:unknownHost :: The server could not resolve a domain name :: No valid IP addresses found for chaoconnor.com
IMPORTANT NOTES:
- The following errors were reported by the server:

Domain: UNRAIDSERVER.com
Type: unknownHost
Detail: No valid IP addresses found for UNRAIDSERVER.com

To fix these errors, please make sure that your domain name was
entered correctly and the DNS A record(s) for that domain
contain(s) the right IP address.
/var/run/s6/etc/cont-init.d/50-config: line 105: cd: /config/keys/letsencrypt: No such file or directory
[cont-init.d] 50-config: exited 1.
[cont-finish.d] executing container finish scripts...
[cont-finish.d] done.
[s6-finish] syncing disks.
[s6-finish] sending all processes the TERM signal.
[s6-finish] sending all processes the KILL signal and exiting.

Share this post


Link to post

Pwzrbs9.png

 

You need to make sure your DNS resolves to your WAN IP

Share this post


Link to post

This is driving me crazy!  DuckDNS works UNRAIDSERVER.duckdns.org on my end, so does UNRAIDSERVER.com.

UNRAIDSERVER.com is just a CNAME pointing to UNRAIDSERVER.duckdns.org

I tried using the container with UNRAIDSERVER.duckdns.org and it works.  Guess I'll just stick with that.

 

Thank you!

Share this post


Link to post

I think the issue is you can't use a CNAME to point to a root domain, it has to be a subdomain, in this case "www".  That's why it fails w/o the www. 

 

Instead I'm going to use a permanent re-direct (301) type from the root domain to the duckdns domain.

 

I'll have to let it propagate and see if it works.

 

Thanks for everyone's help!

Share this post


Link to post

Thanks again for everyone's help.  So I setup password protection for the main site using .htpasswd and verified it's working.  I also dumped the minimux files in the WWW folder and can get to that.

 

Beyond that though, I need to figure out how to point Nginx to all the docker's i'm running (all Linuxserver.io dockers).  I saw under the original Nginx docker support thread there used to be a link to sample config files, but that's gone now.  Does anyone have a sample of how to configure Nginx for linuxserver.io dockers?  (Plex, Sonarr, etc.)  Just need one example and I can knuckle through the rest.  Thanks!

Share this post


Link to post

Thanks again for everyone's help.  So I setup password protection for the main site using .htpasswd and verified it's working.  I also dumped the minimux files in the WWW folder and can get to that.

 

Beyond that though, I need to figure out how to point Nginx to all the docker's i'm running (all Linuxserver.io dockers).  I saw under the original Nginx docker support thread there used to be a link to sample config files, but that's gone now.  Does anyone have a sample of how to configure Nginx for linuxserver.io dockers?  (Plex, Sonarr, etc.)  Just need one example and I can knuckle through the rest.  Thanks!

The default site config has examples for both the base url and the subdomains method

Share this post


Link to post

@aptalca

 

Is curl already installed or would I have to install it manually?

can't remember off the top of my head but if it's not we will push an update

 

Until then you can install with

apk add --update curl

if it's missing

 

Thanks! Looks like today's update added curl. Can you also add GD? cURL and GD are the most used features and i'm surprised they were not included. In the meantime, I'll add gd manually. Thanks again!

Share this post


Link to post

HAPPY! HAPPY! JOY! JOY!

 

I know it's silly, but the examples in default file finally helped me understand how to set this darn thing up. I had stopped messing with it for awhile before LS.IO version came out...

Share this post


Link to post

OpenVPN does not require any webserver related configuration. It will connect to whatever IP the domain name resolves to.

 

Just making sure I understand.

 

For my OpenVPN I don't need to worry about this container?

Just make sure vpn.example.com is pointed to my IP, make sure the correct ports are open, and I'm done?

 

If that is the case, GREAT!

Share this post


Link to post

@aptalca

 

Is curl already installed or would I have to install it manually?

can't remember off the top of my head but if it's not we will push an update

 

Until then you can install with

apk add --update curl

if it's missing

 

Thanks! Looks like today's update added curl. Can you also add GD? cURL and GD are the most used features and i'm surprised they were not included. In the meantime, I'll add gd manually. Thanks again!

 

Yeah, there are a whole lot of php modules out there. I personally host an html5 site and a bunch of reverse proxies so don't really use php at all.

 

If there are other modules that are commonly used and needed, let us know and we'll add them to this container.

 

I'll go ahead and add php5-gd

Share this post


Link to post

Don't even need the vpn subdomain assuming example.com resolves to the same IP address as vpn.example.com.

 

Agreed I just tell my OpenVPN-AS my web address.  Don't even need to do anything with the certs.  Just make sure the DDNS is up to date.

Share this post


Link to post

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Restore formatting

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.