Thanks for helping, @[email protected].
Both traefik containers (on the "server" and "client" VMs) and the wireguard server container were built with TRAEFIK_NETWORK_MODE=host. The VMs can ping each other and the Wireguard containers can ping each other.
Both traefik containers were built with TRAEFIK_LOG_LEVEL=warn but I changed them both to TRAEFIK_LOG_LEVEL=info just now. There's a tad more info in the logs, but nothing that seems pertinent.
Also, just to make sure the app is indeed running, I curled it from it's own container (I'm using myapp here instead of whoami, because whoami doesn't have a shell):
$ curl -L -k --header 'Host: myapp.mydomain.com localhost:8080
I can't seem to display html tags in this comment, but the results are the html tags for the web page for the app - so the app is up and running
Thanks so much for helping me troubleshoot this, @[email protected]!
Is the browser also using the LAN router for DNS? Some browsers are set to use DoT or DoH for DNS, which would mean they’d bypass your router DNS.
My browser was using DoH, but I turned it off and still have the same issue.
Do you also get “Internal Server Error” if you make the request with curl on the CLI on the laptop?
Yes, running curl -L -k --header 'Host: whoami.mydomain.com' 192.168.1.51 on the laptop results in "Internal Server Error".
How did you check that mydomain is being resolved correctly on the laptop?
ping whoami.mydomain.com hits 192.168.1.51.
What do you get with curl from the other VM, or from the router, or from the host machine of the VM?
From the router:
Shell Output - curl -L -k --header 'Host: whoami.mydomain.com' 192.168.1.51
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
0 0 0 0 0 0 0 0 --:--:-- --:--:-- --:--:-- 0-
100 17 100 17 0 0 8200 0 --:--:-- --:--:-- --:--:-- 17000
100 21 100 21 0 0 649 0 --:--:-- --:--:-- --:--:-- 649
Internal Server Error
From the wireguard client container on the "client" VM:
curl -L -k --header 'Host: whoami.mydomain.com' 192.168.1.51
Internal Server Error
From the traefik container on the "client" VM:
$ curl -L -k --header 'Host: whoami.mydomain.com' 192.168.1.51
Internal Server Error
From the "client" VM itself:
# curl -L -k --header 'Host: whoami.mydomain.com' 192.168.1.51
Internal Server Error
From the wireguard container on the "server" VM:
# curl -L -k --header 'Host: whoami.mydomain.com' 192.168.1.51
Internal Server Error
From the traefik container on the "server" VM (This is interesting. Why can't I ping from this traefik installation but a can from the other? But even though it won't ping, it did resolve to the correct IP):
$ ping whoami.mydomain.com
PING whoami.mydomain.com (192.168.1.51): 56 data bytes
ping: permission denied (are you root?)
From the "server" VM itself:
# curl -L -k --header 'Host: whoami.mydomain.com' 192.168.1.51
Internal Server Error
Thanks for helping, @[email protected].
I'm browsing from my laptop on the same network as promox: 192.168.1.0/24
The tunnel is relevant in that my ultimate goal will be to have "client" in the cloud so I can access my apps from the world while having all traffic into my house be through a VPN.
The VM's IPs are 192.168.1.50 ("server") and 192.168.1.51 ("client"). They can see everything on their subnet and everything on their subnet can see them.
Everything is using my router for DNS, and my router points myapp.mydomain.com and whoami.mydomain.com to “client”. And by "everything" I mean all computers on the subnet and all containers in this project.
Both VMs and my laptop resolve myapp.mydomain.com and whoami.mydomain.com to 192.168.1.51, which is "client", and can ping it.
Thanks for helping, @[email protected].
Both wireguard containers are using my router for DNS, and my router points myapp.mydomain.com and whoami.mydomain.com to "client".
I should add that I'm running Traefik 2.11.2 and wireguard from the Linuxserver image lscr.io/linuxserver/wireguard version v1.0.20210914-ls22.
I recently installed TrueNAS in Proxmox in this interesting Ouroboros-like configuration. So far it's been great.
I recently installed TrueNAS on a box with Proxmox, following these instructions. It allows the box to be your NAS and run anything else as a VM (so NextCloud, Grocy/KitchenOwl, etc., even your VPN).
Photostructure is a strong starter, but development is slow and it's still missing important features like sharing. Also, it's not ooen source.
Immich seems great but doesn't (yet) support digikam tags ( and since my 100,000 assets are tagged/organized via digikam, I don't want to move to immich yet and have to start over).
PhotoPrism seemed pretty good, though it also doesn't (yet) support digikam tags. Also, their self-hosted version doesn't have all the features of their paid versions.
Thanks for these tips.
ABS works pretty well for me. Thanks!
The only way I see to sync play-state is if you use the ABS app or the web page. In ABS you can create an RSS feed for a podcast and you can subscribe to that feed in Antennapod, and the podcasts sync but their play-state doesn't. So I'll use the ABS on my phone instead of Antennapod. ABS is missing some nice features common in good podcast players, but it works well enough for me.
@[email protected], @[email protected], and @[email protected],
THanks for your help. My main issue ended up being that I was trying to use Let's Encrypt's staging mode, but since staging certs are self-signed, Traefik was not accepting the requests. Also, though I had to switch Traefik's logging level to Info instead of error to see that.