3 Mar 2021 |
Amir | I suspect the latter? | 05:03:27 |
Amir | I think we're just getting a little confused on terminology here | 05:03:36 |
James | Yeah, I'm pretty sure based on what he said earlier it was the later. | 05:03:53 |
lear | Can confirm that I am confused. 🙂 | 05:04:08 |
James | Sorry :( | 05:04:14 |
lear | No sweat, you all are very kind. | 05:04:23 |
lear | And patient! | 05:04:26 |
James | I was trying to confirm hairpin issues were not at all related. | 05:04:27 |
Amir | yeah I don't think NAT Hairpin or Split DNS is an issue at all | 05:04:44 |
Amir | I think this is actually completed unrelated and probably more specific to your firewall or something to do with your corp network | 05:05:02 |
Amir | easy way to test, check your PM lear | 05:05:15 |
James | Basically I would expect if there is no private network (RFC1918) path from the VPN server to the Traefik server, that your source address detected by traefik would be a global IP. | 05:05:16 |
4 Mar 2021 |
jan | Authelia peeps - have you seen this discussion: https://news.ycombinator.com/item?id=26334516 lots of people are looking for viable alternatives for Octo and auth0 | 08:08:17 |
| Zpex joined the room. | 20:03:15 |
James | I had seen it in a few places. Thanks for linking though. | 23:21:45 |
James | I think Auth0 does OIDC though doesn't it? | 23:22:06 |
5 Mar 2021 |
Amir | they both do | 00:19:02 |
Amir | Okta and Auth0 | 00:19:05 |
Zpex | Hi! I'm trying to install Authelia (Lite) on my NAS using the docker-compose.yml file provided but I can not get it to work. My understanding of how everything is interacting is low so I am not sure what to do.
I followed this guide https://www.authelia.com/docs/deployment/deployment-lite so here is what I did so far:
- modified the domain in the
docker-compose.yml and configuration.yml files
- modified the email address used for letsencrypt
- created the
secrets folder with all the secrets inside
- created a
redis empty folder and traefik/acme.json empty file because I was asked to when running docker-compose but I do no know if I have anything more to do.
So at the moment when I try to connect, I get a warning saying the certificate is self-signed (so letsencrypt is not working) and then 404 page not found error (I think it's traefik?) And sometimes, authelia exits with code 1 and restarts.
Could anyone try to guide me through the process?
| 13:12:25 |
Zpex | The acme.json file remained empty after starting the containers so I removed the volume mount of acme.json (following this advice https://community.traefik.io/t/a-solution-to-the-incredibly-unhelpful-the-router-uses-a-non-existent-resolver-letsencrypt-message/3859). Now I run the containers, the acme.json has something in it but the certificates field is null in it and when I try to connect it still uses a self-signed certificate (and I still have the 404 not found issue).
Any idea?
| 15:59:07 |
Zpex | * The `acme.json` file remained empty after starting the containers so I removed the volume mount of `acme.json` (following this advice https://community.traefik.io/t/a-solution-to-the-incredibly-unhelpful-the-router-uses-a-non-existent-resolver-letsencrypt-message/3859).
Now I run the containers, the `acme.json` has a certificate in it but when I try to connect it still uses a self-signed certificate (and I still have the `404 not found` issue).
Any idea? | 16:01:58 |
Zpex | * The acme.json file remained empty after starting the containers so I removed the volume mount of acme.json (following this advice https://community.traefik.io/t/a-solution-to-the-incredibly-unhelpful-the-router-uses-a-non-existent-resolver-letsencrypt-message/3859). Now I run the containers, the acme.json has something in it but the certificates field is null in it but when I try to connect it still uses a self-signed certificate (and I still have the 404 not found issue).
Any idea?
| 16:11:12 |
Zpex | * The acme.json file remained empty after starting the containers so I removed the volume mount of acme.json (following this advice https://community.traefik.io/t/a-solution-to-the-incredibly-unhelpful-the-router-uses-a-non-existent-resolver-letsencrypt-message/3859). Now I run the containers, the acme.json has something in it but the certificates field is null in it and when I try to connect it still uses a self-signed certificate (and I still have the 404 not found issue).
Any idea?
| 16:11:20 |
| Cheddaru joined the room. | 17:29:24 |
| Cheddaru | 17:29:42 |
| Cheddaru | 17:31:16 |
| Cheddaru | 17:31:53 |
Zpex | Ok so I found the problem with the certificate. It was a problem with my firewall, I feel dumb because I thought I checked 😅
Still the problem with 404 not found though | 21:39:28 |
6 Mar 2021 |
James | When do you get the 404? protected domain or authelia or both? | 08:02:20 |
Zpex | Both. I also noticed authelia container was in an unhealthy state so I opened an issue on Github. https://github.com/authelia/authelia/issues/1781 | 09:01:09 |