Libresonic+Lets encrypt+DynDNS

Zitat von ieronymous

files? how many are there?Also do I have to change the network mode from however_i_named_the _network to bridge in both containers? airsonic and letsencrypt

Do I need the arguments? --cap-add=NET_ADMIN --network however_i_named_the _network ??

ok let's try to get it sorted out.
After successfully setting up the letsecrypt docker (including the extra arguments --cap-add=NET_ADMIN --network networkname) and getting the certificate for your duckdns subdomain and the extra sub-subdomains, you don't have to change anything in the letsencrypt container or on your ports.

Also you set up the airsonic docker called airsonic and added the extra argument --network networkname. At this point can you access the gui of airsonic locally (http://ip_of_your_omv-machine:4040 (standard port)?
Now you need to have a file in the Appdata/letsencrypt/nginx/proxy-confs folder which is named airsonic.subdomains.conf (the docker user specified by the entered puid and pgid needs read permissions to that file)

server {
    listen 443 ssl;
    listen [::]:443 ssl;
# in the next line change the name before .*; to whatever sub-subdomain you want to use and you have a valid letsencrypt cert for
    server_name airsonic.*;


    include /config/nginx/ssl.conf;


    client_max_body_size 0;


   
    location / {
        include /config/nginx/proxy.conf;
        resolver 127.0.0.11 valid=30s;
        set $upstream_airsonic airsonic;
        proxy_pass http://$upstream_airsonic:4040;
    }
}

after that restart the letsencrypt container, clear your browser cache and try your domain again.

Make sure it is airsonic.subdomain.conf and not airsonic.subfolders.conf.To check out the permissions type ls -I in the folder. But usually they should be fine.

Zitat

Also why sub.subdomains to be created I didn't its just a word as a subdomain lets call it proxy. So server_name airsonic.*; at line 5 at your code above. Also changed to proxy in the conf.sample file and save it.

I don't exactly what you mean.

For me It is not working basically I already got a reverse proxy for emby I followed this guide Dockers - Secure Emby with LetsEncrypt and Nginx Reverse Proxy on a subdomain
it is working my duckdns got 5 subdomains got certificates

server {
listen 443 ssl;
listen [::]:443 ssl;

server_name mXXXXXXXs.*;

include /config/nginx/ssl.conf;

client_max_body_size 0;

location / {
include /config/nginx/proxy.conf;
resolver 127.0.0.11 valid=30s;
set $ upstream_airsonic airsonic;
proxy_pass http: // $ upstream_airsonic:4040;
}
}

BUT
If I use this airsonic.subdomain.conf with one of the DDNS subdomain but not the same as emby and restart letsencrypt

I lost connection with my emby proxy and no airsonic remotel access

any idea?

EDIT

some Progress
I deleted the file airsonic.subdomain.conf.sample
Now I my emby is working again and for https://subdomain#2.duckdns.org/

witch is the address for reverse proxy airsonic I got the nginx message

Welcome to our server
The website is currently being setup under this address.
For help and support, please contact: me@example.com

edit 2 this is catch 22 if I restart lets encrypt I get back to no emby and even connection to the nginx server until I change the airsonic.subdomain.conf to airsonic.subdomain.conftest

Zitat von Morlan

Thats what I tried to point out by saying

Congrats!

in the airsonic file server_name myserver.*;
But that make no difference for me.

Also I am using the old docker of lets encrypt since yesterday trying to upgrade the docker broke my whole installation so I reinstall a backup from few days ago but at least, I was still able to get a valid certificate.

@Nefertiti
I don't know why the two cancel each other out.
For me it worked using sub-subdomains. For example:
1. https://emby.myaccount.duckdns.org
2. https://airsonic.myaccount.duckdns.org
So emby.subdomain.conf has server_name envy.*;
And airsonic.subdomain.conf has server_name airsonic.*;
Also my letsencrypt docker is nearly a month old. I did not change it since it works.

Zitat von ieronymous

Yes right it was in uruk hai dialect ahahahah . I was asking why to get certificates for my sub-subdomains since I didnt create any in duckdns and why would I. The way I understand it sub-subdomain is just the names of the dockers we want to access remotely. But thats not the issue for denying me access so no point discussing I think.

it's so that also the subdomains have a valid ssl certificate and will be recognized as legit by your browser.

Also the emby video provided by @Nefertiti put emphasis on the right permissions of the conf files. So check them in the folder via ls -l and chown and chmod according to the other files.

Zitat von Morlan

@Nefertiti
I don't know why the two cancel each other out.
For me it worked using sub-subdomains. For example:
1. https://emby.myaccount.duckdns.org
2. https://airsonic.myaccount.duckdns.org
So emby.subdomain.conf has server_name envy.*;
And airsonic.subdomain.conf has server_name airsonic.*;
Also my letsencrypt docker is nearly a month old. I did not change it since it works.

Alles anzeigen

Just wondering f I missed a step should I pass an extra argument in airsonic container? and is there any config change in airsonic setting?

Only to join it into the network with letsencrypt (my-net if you are following TDL videos).
For me airsonic worked remotely without any changes to it's config.

Zitat von hafnix

Thank you Morlan I was able to edit the file via the Nano editor. However there is still a problem as I cannot
access Nextrcloud any m,ore under https://xxx.xxx.xxx.xxx:444.
If I do this the url is translated to https://myhostname.duckdns.org/nextcloud but the Browser message says
the site is unreachable.
Any hint ?

Zitat von hafnix

Ok it works, the letsencrypt container wasn't listening on ports 450 and 90, this info must have somehow gone lost.
Entered the values again and .... Tadaaa, It works

Thanks to TechnoDadLife for the manual and all of you here supporting me

Zitat von Morlan

Another user reported the same issue.
@VoxT3R Did you find a solution?

Hi Guys.

I think I did. If you go to the config.php file located at sharedfolders/AppData/Nextcloud/www/nextcloud/config, and edit the config.php, I just commented out the first two line of the three added lines like this:

// 'overwrite.cli.url' => 'https://**********.duckdns.org',
// 'overwritehost' => '**********.duckdns.org',[/i]
'overwriteprotocol' => 'https',

(NB: Replaced my dns name above with **********)

If your editing via putty or shellinabox, just Ctrl + X, then press Y, then press Enter.

I can now access locally, and remote access is still working. The above lines commented stop the ip from being redirected in the url bar of the browser. I still cannot access via my dns if I'm connected to my network. I just VPN it if I want to test, or I just use my mobile when Wifi is off and I'm on my 4G.

Once this is done, it allowed me to access things locally as well as remotely. Just remember to un-comment these two lines once local file transfer is done.

Hope this helps guys.

Zitat von VoxT3R

Hi Guys.
I think I did. If you go to the config.php file located at sharedfolders/AppData/Nextcloud/www/nextcloud/config, and edit the config.php, I just commented out the first two line of the three added lines like this:

// 'overwrite.cli.url' => 'https://**********.duckdns.org',
// 'overwritehost' => '**********.duckdns.org',[/i]
'overwriteprotocol' => 'https',

(NB: Replaced my dns name above with **********)

If your editing via putty or shellinabox, just Ctrl + X, then press Y, then press Enter.

I can now access locally, and remote access is still working. The above lines commented stop the ip from being redirected in the url bar of the browser. I still cannot access via my dns if I'm connected to my network. I just VPN it if I want to test, or I just use my mobile when Wifi is off and I'm on my 4G.

Once this is done, it allowed me to access things locally as well as remotely. Just remember to un-comment these two lines once local file transfer is done.

Hope this helps guys.

Alles anzeigen

Ohhh "VoxT3R" many thanks for your help, now with this 2 lines commented i can access at my nextcloud locally and external !!!

Your are my god thanks

Zitat von Alex831212

Ohhh "VoxT3R" many thanks for your help, now with this 2 lines commented i can access at my nextcloud locally and external !!!

Your are my god thanks

No worries @Alex831212

Zitat von Morlan

Ok tried it out and got it working.
Took the linuxserver.io/libresonic repo. named it libresonic, joined it to my letsencrypt docker network via the extra argument --network my-net.

Zitat von Morlan

Also you set up the airsonic docker called airsonic and added the extra argument --network networkname. At this point can you access the gui of airsonic locally (http://ip_of_your_omv-machine:4040 (standard port)?

Zitat von Morlan

Only to join it into the network with letsencrypt (my-net if you are following TDL videos).
For me airsonic worked remotely without any changes to it's config.

That got me confuse since previously you mentioned you add the extra argument in airsonic so I added
--network my-net and corrected some typo error in the airsonic.subdomain.conf
Now it is working with https and local, thank you to put me on the right way.

But my main concern, airsonic is still reachable from outside via http://myIPadress:4040 witch defeat the purpose!?

Zitat von ieronymous

At least nextcloud has this php config file to edit..... all other media sare programs like airsonic jellyfin libresonic dont and the access for them remotely for me at least is impossible whatever I try

This is my point in jellyfin or emby you can change the ports for http and https from inside the software in advanced page, but for airsonic it could be possible to redirect the port according to https://airsonic.github.io/doc…sites/#configure-airsonic but I should admit it is a little above me, maybe @Morlan , @TechnoDadLife or anybody else could make a guide regarding this part.

only the files without .sample will be used.