So I changed the netdata docker port forward, from host 443 to docker 19999, and of course a NAT rule, the port test shows the Manjaro host 443 port can be reached from the LAN, but I can`t visit netdata from the internet. I tried to run a netdata in a docker, forwording port 19998 to 19999(because the port 19999 has been using by the netdata running in my host), and add a NAT rule to the firewall, it can be visited from the internet. I tested the 443 port of the Manjaro machine, but even the Caddy docker is running and the 443 port is been listening on the Manjaro(host) machine, the test shows the 443 port can not be reached from the LAN. So I tried to test the firewall rules and the Caddyfile for many times. So I add a NAT rule, and this works well, of course with showing a 404 error message. So I edit the Caddyfile, add tls self_signed into it.Īnd now things getting wired. 7 15:17:20 failed to get certificate: acme: Error 400 - urn:ietf:params:acme:error:connection - Fetching : Timeout during connect (likely firewall problem),ħ 15:17:09 acme: Trying to solve HTTP-01,ħ 15:17:09 acme: Could not find solver for: tls-alpn-01,ħ 15:17:09 acme: Could not find solver for: dns-01,ħ 15:17:09 AuthURL: privacy features.ħ 15:17:08 acme: Obtaining bundled SAN certificate Here is what I have done to find out what happened.Ĭhange the Opnsense webui ports from 443 to 8443,and disable web GUI redirect rule,in case the firewall redirect the 80 port.Īdd a NAT rule,to redirect port 80 and 443 to 192.168.1.100,and the OpnSense will automatic add a firewall rule on interface WAN.This function works well because I have tried on other ports.Īnd the I make the Caddy docker start,the Caddyfile looks like this: Īnd booooom! Caddy shows error like this. Linux : Manjaro with IP address 192.168.1.100, for exampleĬaddy : latest version in Docker 18.09.0-ce God knows how many times I checked almost everything. To make my 3 hours worth it, I will write down what I tried. Update: I have made a call to ISP, and they tell me the po443 are all blocked. I am trying to use Caddy as a reverse proxy, but it seems the 80 and 443 port are blocked by the ISP.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |