Unable to access dashboard after creating sub-subdomain
-
I recently wanted to change my Cloudron domain from my.domain.com to my.cloudron.domain.com. When it finished it switched to the new my.cloudron, but gave an ERR_SSL_VERSION_OR_CIPHER_MISMATCH error. I tried deleting the old my subdomain from my DNS settings in Cloudflare, but nothing changed. I added it back and the my subdomain loads with "Cloudron is offline. Reconnecting..."
In Cloudflare the new my.cloudron subdomain has a "This hostname is not covered by a certificate. To ensure full coverage, purchase Advanced Certificate Manager to use Total TLS for full certificate coverage of proxied hostnames." alert on the DNS records.
Please let me know if I can sync the DNS records through a command on the server like I would through the dashboard.
-
G girish marked this topic as a question on
-
I could pause and resume Cloudflare, which usually worked temporarily until it stopped working again. Cloudflare still says that the hostname for my.cloudron isn't covered by a certificate.
I changed my certificate on Cloudron to my Cloudflare Origin Certificate (I don't know if this works or not) and perhaps that is the reason why it doesn't work anymore. When I visit my.cloudron.domain.com, it redirects to my.cloudron.domain.com/#/apps and says "Cloudron is offline. Reconnecting," but when I reload it it gives ERR_SSL_VERSION_OR_CIPHER_MISMATCH.
When I ran cloudron-support --troubleshoot earlier before switching the certificate, I received:
[OK] node version is correct
[OK] IPv6 is enabled
[OK] docker is running
[OK] MySQL is running
[OK] nginx is running
[OK] dashboard cert is valid
[OK] dashboard is reachable via loopback
[OK] box v8.0.6 is running
[OK] netplan is good
[OK] DNS is resolving via systemd-resolved
[FAIL] Could not load dashboard domain.
Maybe cloudflare proxying is not working. Delete the domain in Cloudflare dashboard and re-add it. This sometimes re-establishes the proxyingHowever, now, I receive:
[OK] node version is correct
[OK] IPv6 is enabled
[OK] docker is running
[OK] MySQL is running
[OK] nginx is running
[OK] dashboard cert is valid
[FAIL] Could not load dashboard website with loopback checkIs there a way to switch back to the Let's Encrypt Certificate through the server as the dashboard is unreachable or is the certificate unrelated?
-
It is the same as earlier, disabling the proxy shows the "Cloudron is offline. Reconnecting" message.
Re-enabling shows a net::ERR_CERT_AUTHORITY_INVALID message on my browser, but I cannot visit the page as the message says the website uses HSTS. -
@boring_niko You have to clear the browser hsts cache or use another browser to accept the self signed certs and proceed to dashboard. Go to Domains -> Renew All Certs. The logs there will tell you why Cloudron is unable to renew the certificates. Did any of the Domain API keys expire or become invalid by any chance?
-
I do not seem to get the previous net::ERR_CERT_AUTHORITY_INVALID anymore as I get an ERR_SSL_VERSION_OR_CIPHER_MISMATCH now. Sorry that the situation keeps on changing, I do not know why it is.
-
I have tried restarting the server and pausing Cloudflare and resuming it.
-
@boring_niko said in Unable to access dashboard after creating sub-subdomain:
I do not seem to get the previous net::ERR_CERT_AUTHORITY_INVALID anymore as I get an ERR_SSL_VERSION_OR_CIPHER_MISMATCH now. Sorry that the situation keeps on changing, I do not know why it is.
So, what are you getting now? You have to reach the dashboard somehow and go to Domains view and Renew certs. I would keep Cloudflare disabled since it's easier to debug the problem without another layer.
-
Disabling Cloudflare seemed to work. Thanks.
-
G girish has marked this topic as solved