Hi everybody!
New to the OMV world, and I've been following TechnoDadLife's video series on getting OMV and Nextcloud running on a Raspberry pi 4.
I had previously used a NextcloudPi setup, which worked straight away, but now I am getting some trouble with connecting remotely to my Nextcloud instance.
I am able to get OMV 4 running on my Raspberry Pi 4, and it is set up just like in the TechnoDadLife video for now. I am also able to get MariaDB and Nextcloud working in Docker, with the lsioarmhf docker images. And using ip:444 I can log in and access my nextcloud in my local network just like I was able to previously.
I run into trouble when I start configuring letsencrypt and duckDNS. Once I input "docker logs -f letsencrypt" in terminal, while "letsencrypt" is my running container's name, it first runs for a very long time (as the message in the prompt warns), but then it ends up spitting out an error message reading:
"ERROR: Cert does not exist! Please see the validation error above. The issue may be due to incorrect dns or port forwarding settings. Please fix your settings and recreate the container"
Following is the latest, complete error message with personal information redacted:
[cont-init.d] 10-adduser: exited 0.
[cont-init.d] 20-config: executing...
[cont-init.d] 20-config: exited 0.
[cont-init.d] 30-keygen: executing...
using keys found in /config/keys
[cont-init.d] 30-keygen: exited 0.
[cont-init.d] 50-config: executing...
Variables set:
PUID=1000
PGID=100
TZ=Europe/Helsinki
URL=xxx.duckdns.org
SUBDOMAINS=cloud
EXTRA_DOMAINS=
ONLY_SUBDOMAINS=false
DHLEVEL=2048
VALIDATION=http
DNSPLUGIN=
EMAIL=xxx@tuta.io
STAGING=
2048 bit DH parameters present
SUBDOMAINS entered, processing
SUBDOMAINS entered, processing
Sub-domains processed are: -d cloud.xxx.duckdns.org
E-mail address entered: xxx@tuta.io
http validation is selected
Generating new certificate
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator standalone, Installer None
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for cloud.xxx.duckdns.org
http-01 challenge for xxx.duckdns.org
Waiting for verification...
Cleaning up challenges
Failed authorization procedure. xxx.duckdns.org (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://xxx.duckdns.org/.well-k…xkOiP2Ge2NDEEX4CoO6DfSTHU [xx.xxx.xxx.xxx]: "<!DOCTYPE html>\n<html>\n\t<head>\n\t\t<title>openmediavault - HTTP 404 error</title>\n\t\t<meta charset=\"UTF-8\">\n\t\t<meta http-equiv=\"X-U", cloud.xxx.duckdns.org (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://cloud.xxx.duckdns.org/.…tgGS4Vvu7Ae_C5aFFo64w7K9I [xx.xxx.xxx.xxx]: "<!DOCTYPE html>\n<html>\n\t<head>\n\t\t<title>openmediavault - HTTP 404 error</title>\n\t\t<meta charset=\"UTF-8\">\n\t\t<meta http-equiv=\"X-U"
IMPORTANT NOTES:
- The following errors were reported by the server:
Domain: xxx.duckdns.org
Type: unauthorized
Detail: Invalid response from
http://xxx.duckdns.org/.well-k…xkOiP2Ge2NDEEX4CoO6DfSTHU
[xx.xxx.xxx.xxx]: "<!DOCTYPE
html>\n<html>\n\t<head>\n\t\t<title>openmediavault - HTTP 404
error</title>\n\t\t<meta charset=\"UTF-8\">\n\t\t<meta
http-equiv=\"X-U"
Domain: cloud.xxx.duckdns.org
Type: unauthorized
Detail: Invalid response from
http://cloud.xxx.duckdns.org/.…tgGS4Vvu7Ae_C5aFFo64w7K9I
[xx.xxx.xxx.xxx]: "<!DOCTYPE
html>\n<html>\n\t<head>\n\t\t<title>openmediavault - HTTP 404
error</title>\n\t\t<meta charset=\"UTF-8\">\n\t\t<meta
http-equiv=\"X-U"
To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address.
ERROR: Cert does not exist! Please see the validation error above. The issue may be due to incorrect dns or port forwarding settings. Please fix your settings and recreate the container
Here are my duckdns and letsencrypt container configurations, as well as the port forwarding menu in my router.
The only things I did differently versus the TDL videos are that I am running on OSX El Capitan, so I ssh in via terminal instead of shellinabox, that I use lsioarmhf images, and that instead of adding my-net into the "Extra arguments" section of the container config window, I connected the duckdns and letsencrypt containers to my-net in the configurations tab in docker window.
I tried both the "Securely Login to Nextcloud Remotely on Openmediavault", and the "Free SSL Certificates with Letsencrypt on Openmediavault : Updated" videos instructions, which seemed to differ only as much as how the SUBDOMAINS environment variable is managed in the letsencrypt container. I now followed the more recent video, and simply used "cloud" as a subdomain for my "xxx.duckdns.org" domain that I have configured, as I figured it was pretty arbitrary, but I may be wrong.
I used this tool and nmap in terminal to check my ports and set it to "Use Current IP", and found that port 80 is open, and port 443 is not. I am very new to any of this business with port forwarding or router configuration, so I am not sure if this is useful information or not. But I have gone through a multitude of threads here with similar issues and a common thread seems to be issues in port forwarding / port opening with the different routers people have at home, so I wonder if that's where my issue lies? If so, please advise on how to troubleshoot the issues.
I have completely re-etched my OMV iso into the microsd on my Pi multiple times, and am now running a version in which the configuration steps are as 1:1 with the TDL videos as possible, with small variations pertaining to my Raspberry Pi and other (I think) simple differences.
Sorry if it's a bit of a wall of text, but I wanted to try and provide as much info to be able to troubleshoot this issue concisely, and thanks in advance for the help, crawling through these forums has shown a really amazing community and amount of support to users starting out with their own NAS systems!