Cloudron Forum

@BrutalBirdie said in Volumes error on access but work? kinda?:

Getting the picture?

Yes! Excellent

Yes I think so can confirm it works thank you.
image.png

@Fabix thanks. Strange stuff... I will put it in our docs that we only support Robot.

@3246 They should add a way to add 2 backup jobs setup however you like:

For Me:

Job 1 - Backup to Local external disk for fast access in case of emergency

Job 2 - Offsite backup for long-storage.

Both encrypted, and this offers a quick restore (in the event of just needing a quick restore) and one for proper emergencies

Not that you even need to set it up like this, but more backups == better backups even if one is local for emergency "non-natural-disaster" restore.

@3246 said in [💡 Guide] How to install Cloudron/Nextcloud with LUKS full disk encryption on Hetzner cloud server:

@Stardenver yes it is. I also have it running on baremetal at home/office.

My new set up has a main drive that's encrypted and another for local backups, which is also encrypted but unlocks after decrypting the main boot/data drive.

Happy to expand on this if folks find it useful 🙂

Thanks again for your setup guide. Just got a new server and its up and running. May I ask how you'd setup your system, so that additional drives are also encrypted and unlock after decrypting the main drive?

@kk_cloudron that is correct, Cloudron requires IPv4 and does not work on IPv6 only servers (yet).

Ah, thanks for reporting. I have opened https://git.cloudron.io/cloudron/box/-/issues/808 internally .

@girish
I tried this exact same setup. I was able to connect to the storage via SFTP and my SSH key and I copied my private SSH key as instructed to Cloudron.

When I now try to save the backup settings using SSHFS it keeps working and never finishes. The log says

Jan 14 11:40:33 box:shell addMount spawn: /usr/bin/sudo -S /home/yellowtent/box/src/scripts/addmount.sh [Unit]\nDescription=backup\n\nRequires=unbound.service\nAfter=unbound.service\nBefore=docker.service\n\n\n[Mount]\nWhat=uxxxxx@uxxxxx.your-storagebox.de:/\nWhere=/mnt/cloudronbackup\nOptions=allow_other,port=23,IdentityFile=/home/yellowtent/platformdata/sshfs/id_rsa_uxxxxx.your-storagebox.de,StrictHostKeyChecking=no,reconnect\nType=fuse.sshfs\n\n[Install]\nWantedBy=multi-user.target\n\n 10 Jan 14 11:40:44 box:shell addMount (stdout): Failed to mount Jan 14 11:40:44 box:shell addMount code: 3, signal: null Jan 14 11:42:04 box:shell removeMount spawn: /usr/bin/sudo -S /home/yellowtent/box/src/scripts/rmmount.sh /mnt/cloudronbackup

Not sure what else I can try.

Edit: magically and waiting one night it works now.

I would recommend you to use WebDAV instead of CIFS
it will be faster as WebDAV is more modern and appropriate for extended network (non LAN).

Ok, I solved it. I had to delete all my DNS settings that previously existed and then reset them. Once I did this within milliseconds Cloudron started working.

Whew, I was sweating bullets there for a minute.

@nebulon I find the solution taking infos from this forum .

In fact, I opened port 53 TCP and UDP and Cloudron can resolve domain names.

Configuration now is:

firewall template.png

All seems to working fine... I marked this thread as "Solved" 🙂

@nebulon Yes before rebooting I tried to umount-remount but it seems it has been impossible due to an error... So I decided to restart.

About auto-remounting it will be an amazing feature

This will be part of 7.2.1

@mehdi Not sure I know enough yet about handling updates, patches & security so just running in good faith on all that at the mo.

Happy? Yes.

Confident? Sure - until something goes wrong 🙂

Just always thinking about prevention being better than cure.

Ok I gotcha myself because anyway I create my own pain 😉

so from what I understand
to being able to restore Cloudron verify the DNS first than app/data

I forgot to authorize my new IP in my Cloudflare API

code 9109 is probably related to the fact it was unable to edit the DNS.

correct in your case this should not be any issue as this is mounted like a regular ext4 which supports hardlinks just fine.

To know the backup scope, you can sum up all the apps listed there + email data + box data. Then you would have to multiple that by the number of backups which are stored (eg. once every day for 1 week or so) This would be the maximum of storage required using the tarball method. For rsync, it would be much less since it would do incremental backups.