mike_wooskey

mike_wooskey, 2 days ago

I hoy Baikal.myself and sync to it via davx5 on android and via Thunderbird in ubuntu

mike_wooskey, 14 days ago

I should add that I’m running Traefik 2.11.2 and wireguard from the Linuxserver image lscr.io/linuxserver/wireguard version v1.0.20210914-ls22.

mike_wooskey, 14 days ago (edited 13 days ago)

Thanks for helping, @Lem453.

Both wireguard containers are using my router for DNS, and my router points myapp.mydomain.com and whoami.mydomain.com to “client”.

https://lemmy.d.thewooskeys.com/pictrs/image/b62d7314-644c-4fd1-bfac-1cabb7d99292.png

mike_wooskey, 14 days ago

Thanks for helping, @lemmyvore.

I’m browsing from my laptop on the same network as promox: 192.168.1.0/24

The tunnel is relevant in that my ultimate goal will be to have “client” in the cloud so I can access my apps from the world while having all traffic into my house be through a VPN.

The VM’s IPs are 192.168.1.50 (“server”) and 192.168.1.51 (“client”). They can see everything on their subnet and everything on their subnet can see them.

Everything is using my router for DNS, and my router points myapp.mydomain.com and whoami.mydomain.com to “client”. And by “everything” I mean all computers on the subnet and all containers in this project.

Both VMs and my laptop resolve myapp.mydomain.com and whoami.mydomain.com to 192.168.1.51, which is “client”, and can ping it.

mike_wooskey, 13 days ago

Thanks so much for helping me troubleshoot this, @lemmyvore!

Is the browser also using the LAN router for DNS? Some browsers are set to use DoT or DoH for DNS, which would mean they’d bypass your router DNS.

My browser was using DoH, but I turned it off and still have the same issue.

Do you also get “Internal Server Error” if you make the request with curl on the CLI on the laptop?

Yes, running curl -L -k --header ‘Host: whoami.mydomain.com’ 192.168.1.51 on the laptop results in “Internal Server Error”.

How did you check that mydomain is being resolved correctly on the laptop?

ping whoami.mydomain.com hits 192.168.1.51.

What do you get with curl from the other VM, or from the router, or from the host machine of the VM?

From the router:

<span style="color:#323232;">Shell Output - curl -L -k --header 'Host: whoami.mydomain.com' 192.168.1.51
</span><span style="color:#323232;">  % Total    % Received % Xferd  Average Speed   Time    Time     Time  Current
</span><span style="color:#323232;">                                 Dload  Upload   Total   Spent    Left  Speed
</span><span style="color:#323232;">
</span><span style="color:#323232;">  0     0    0     0    0     0      0      0 --:--:-- --:--:-- --:--:--     0-
</span><span style="color:#323232;">100    17  100    17    0     0   8200      0 --:--:-- --:--:-- --:--:-- 17000
</span><span style="color:#323232;">
</span><span style="color:#323232;">100    21  100    21    0     0    649      0 --:--:-- --:--:-- --:--:--   649
</span><span style="color:#323232;">Internal Server Error
</span>

---

From the wireguard client container on the “client” VM:

<span style="color:#323232;">curl -L -k --header 'Host: whoami.mydomain.com' 192.168.1.51
</span><span style="color:#323232;">Internal Server Error
</span>

---

From the traefik container on the “client” VM:

<span style="color:#323232;">$ curl -L -k --header 'Host: whoami.mydomain.com' 192.168.1.51
</span><span style="color:#323232;">Internal Server Error
</span>

---

From the “client” VM itself:

<span style="color:#323232;"># curl -L -k --header 'Host: whoami.mydomain.com' 192.168.1.51
</span><span style="color:#323232;">Internal Server Error
</span>

---

From the wireguard container on the “server” VM:

<span style="color:#323232;"># curl -L -k --header 'Host: whoami.mydomain.com' 192.168.1.51
</span><span style="color:#323232;">Internal Server Error
</span>

---

From the traefik container on the “server” VM (This is interesting. Why can’t I ping from this traefik installation but a can from the other? But even though it won’t ping, it did resolve to the correct IP):

<span style="color:#323232;">$ ping whoami.mydomain.com
</span><span style="color:#323232;">PING whoami.mydomain.com (192.168.1.51): 56 data bytes
</span><span style="color:#323232;">ping: permission denied (are you root?)
</span>

---

From the “server” VM itself:

<span style="color:#323232;"># curl -L -k --header 'Host: whoami.mydomain.com' 192.168.1.51
</span><span style="color:#323232;">Internal Server Error
</span>

mike_wooskey, 13 days ago (edited 13 days ago)

Also, just to make sure the app is indeed running, I curled it from it’s own container (I’m using myapp here instead of whoami, because whoami doesn’t have a shell):

<span style="color:#323232;">$ curl -L -k --header 'Host: myapp.mydomain.com localhost:8080
</span>

I can’t seem to display html tags in this comment, but the results are the html tags for the web page for the app - so the app is up and running

mike_wooskey, 13 days ago

Thanks for helping, @deergon.

Both traefik containers (on the “server” and “client” VMs) and the wireguard server container were built with TRAEFIK_NETWORK_MODE=host. The VMs can ping each other and the Wireguard containers can ping each other.

Both traefik containers were built with TRAEFIK_LOG_LEVEL=warn but I changed them both to TRAEFIK_LOG_LEVEL=info just now. There’s a tad more info in the logs, but nothing that seems pertinent.

mike_wooskey, 13 days ago

From traefik’s access.log:

<span style="color:#323232;">{"ClientAddr":"192.168.1.17:45930","ClientHost":"192.168.1.17","ClientPort":"45930","ClientUsername":"-","DownstreamContentSize":21,"DownstreamStatus":500,"Duration":13526669,"OriginContentSize":21,"OriginDuration":13462593,"OriginStatus":500,"Overhead":64076,"RequestAddr":"whoami.mydomain.com","RequestContentSize":0,"RequestCount":16032,"RequestHost":"whoami.mydomain.com","RequestMethod":"GET","RequestPath":"/","RequestPort":"-","RequestProtocol":"HTTP/2.0","RequestScheme":"https","RetryAttempts":0,"RouterName":"websecure-whoami-vpn@file","ServiceAddr":"10.13.16.1","ServiceName":"whoami-vpn@file","ServiceURL":{"Scheme":"https","Opaque":"","User":null,"Host":"10.13.16.1","Path":"","RawPath":"","OmitHost":false,"ForceQuery":false,"RawQuery":"","Fragment":"","RawFragment":""},"StartLocal":"2024-04-30T00:21:51.533176765Z","StartUTC":"2024-04-30T00:21:51.533176765Z","TLSCipher":"TLS_CHACHA20_POLY1305_SHA256","TLSVersion":"1.3","entryPointName":"websecure","level":"info","msg":"","time":"2024-04-30T00:21:51Z"}
</span><span style="color:#323232;">{"ClientAddr":"192.168.1.17:45930","ClientHost":"192.168.1.17","ClientPort":"45930","ClientUsername":"-","DownstreamContentSize":21,"DownstreamStatus":500,"Duration":13754666,"OriginContentSize":21,"OriginDuration":13696179,"OriginStatus":500,"Overhead":58487,"RequestAddr":"whoami.mydomain.com","RequestContentSize":0,"RequestCount":16033,"RequestHost":"whoami.mydomain.com","RequestMethod":"GET","RequestPath":"/favicon.ico","RequestPort":"-","RequestProtocol":"HTTP/2.0","RequestScheme":"https","RetryAttempts":0,"RouterName":"websecure-whoami-vpn@file","ServiceAddr":"10.13.16.1","ServiceName":"whoami-vpn@file","ServiceURL":{"Scheme":"https","Opaque":"","User":null,"Host":"10.13.16.1","Path":"","RawPath":"","OmitHost":false,"ForceQuery":false,"RawQuery":"","Fragment":"","RawFragment":""},"StartLocal":"2024-04-30T00:21:51.74274202Z","StartUTC":"2024-04-30T00:21:51.74274202Z","TLSCipher":"TLS_CHACHA20_POLY1305_SHA256","TLSVersion":"1.3","entryPointName":"websecure","level":"info","msg":"","time":"2024-04-30T00:21:51Z"}
</span>

All I can tell from this is that there is a DownstreatStatus of 500. I don’t know what that means.

mike_wooskey, 13 days ago

By “server log”, do you mean traefik’s log? If so, this is the only thing I could find (and I don’t know what it means): lemmy.d.thewooskeys.com/comment/514711

mike_wooskey, 7 days ago

@deergon, @shasta, and @lemmyvore,

THanks for your help. My main issue ended up being that I was trying to use Let’s Encrypt’s staging mode, but since staging certs are self-signed, Traefik was not accepting the requests. Also, though I had to switch Traefik’s logging level to Info instead of error to see that.

mike_wooskey, 15 days ago

They could choose a different business model to get revenue from their videos that doesn’t rely on google or the current model where personal privacy is the commodity. It could also be a difficult transition. Is it worth it to them? To you?

mike_wooskey, 13 days ago

Thanks, @thegreekgeek. I didn’t know you could use special sentence syntax in automations. That’s pretty helpful because an action can be conditional, and I think you can even make them conditional based on which specific trigger fired the automation.

It still seems odd that I’d have to make separate automations for each helper I want to address (or separate automation conditions for each), as opposed to having the spoken command have a “variable” and then use that variable to determine which input help to return the value of. But if that’s possible, maybe it’s just beyond my skill level.

mike_wooskey, 13 days ago

Yes, @thegreekgeek, now knowing that I can use sentence syntax in automations, I have built 1 automation to handle my specific needs. But each trigger is a hardcoded value instead of a “variable”. For example, trigger 1 is “sentence = ‘what is the date of my birthday’” and I trigger an action conditionally to speak the value of input_date.event_1 because I know that’s where I stored the date for “my birthday”.

What would be awesome is your 2nd suggestion: passing the name of the input_date helper through to the response with a wildcard. I can’t figure out how to do that. I’ve tried defining and using slots but I just don’t understand the syntax. Which file do I define the slots in, and what is the syntax?

mike_wooskey, 4 days ago

That is HUGE! Thank you, @thegreekgeek! This makes customizing conversations from automations so much more powerful and flexible!

mike_wooskey, 4 days ago

I’m embarassed but very pleased that your example also taught me about set_conversation_response! I had been using tts.speak, which meant I had to define a specific media player, which wasn’t always I wanted to do. This is great!

mike_wooskey, 1 month ago

That is what I did. And it didn’t work.

mike_wooskey, 1 month ago

Can you share some of them so I might have an idea what to try to do differently?

mike_wooskey, 1 month ago

Both gitea and forgejo are using sqlite3. Gitea 1.20.0, Forgejo 1.21.

mike_wooskey, 1 month ago

Can you see the data you copied inside the container?

That led me to my problem! I did have the volume mounted, but the container’s path was incorrect: Forgejo was recreating it’s resource files as a new install because where it was looking for them, they didn’t exist.

Thanks!

mike_wooskey, 1 month ago

Thanks for that info. I did combine an upgrade (1.20 to 1.21) with the migrations, but I guess I lucked into it working. My problem was that the container’s path to the migrated gitea volume was incorrect.

mike_wooskey, 1 month ago

I don’t know if your problem is the same as mine was, but the symptom sounds the same.

The docker-compose.yaml file shown in the Forgejo documentation for docker installation shows this mount:

<span style="color:#323232;">    volumes:
</span><span style="color:#323232;">      - ./forgejo:/data
</span>

For me, Forgejo installed and created new resource files in /data and ignored the resource files gitea alread made.

I changed the volume to:

<span style="color:#323232;">    volumes:
</span><span style="color:#323232;">      - data:/var/lib/gitea
</span>

Forgejo then recognized the gitea resources.

mike_wooskey, 1 month ago