Unable to load dashboard - fresh install

Okay coming back with a final update - I created a second ubuntu vm, installed adguard home, did the setup there, assigned it to be the dns server on the router (with cf being backup), added a DNS rewrite to send LAN to local ip when they attempt to go to my.<domain>.com, and so far in testing it's working.

I think we are back in business. I know this post looks more like a blog, me talking to myself and all, but it worked, so if anyone else is having haripin nat issues (my router fully supports it but my Fiber modem does not!), a little extra VM with plenty of benefits beyond getting cloudron up and running was all it took!

This is resolved.

Confirming no change -

I installed nothing beforehand this go around, even removed and created a new cloudron instance.

Using Netgear Nighthawk RS500 - says it supports hairpin NAT - my guess would then be that the Quantum Fiber modem box doesn't? This seems to be the case, as if I swap my phone over to lte and go to my domainname I do get the setup admin account page. I will try the workaround mentioned in support page and circle back

Also, now getting a ssl error on main domain after changing SSL to full from auto - will look into that as well

Looks like changing the ssl mode on the domain broke the old ssl cert - this website is hosted on a cloud provider, so I'm going to temp try and swap back to auto and get this fixed first

edit* Got this fixed

also, I just ran
nc -vz my.<mydomain>.com 443
from termux on my phone, and it got a connection succeeded.

Hello, I just created a fresh install, everything seemed to work as expected up until it finished propagating. I now get timeout, and running troubleshot command returns:

Ubuntu: noble 24.04
Processor: Intel(R) Xeon(R) CPU E5-2637 v3 @ 3.50GHz
BIOS CPU @ 0.0GHz x 4
RAM: 8131976KB
Disk: /dev/mapper/ubuntu--vg-ubuntu--lv 9.1G
[OK] node version is correct
[OK] IPv6 is enabled in kernel. No public IPv6 address
[OK] docker is running
[OK] docker version is correct
[OK] MySQL is running
[OK] nginx is running
[OK] dashboard cert is valid
[OK] dashboard is reachable via loopback
[OK] box v8.3.2 is running
[OK] netplan is good
[OK] DNS is resolving via systemd-resolved
[FAIL] Could not load dashboard domain.
Maybe cloudflare proxying is not working. Delete the domain in Cloudflare dashboard and re-add it. This sometimes re-establishes the proxying

I can't delete the entire domain, it's being used by a bunch of other stuff.

More context:

cloudflare zone token set up as per instructions:

dns a record for "my" shows correct external ip and is set to DNS only.

My cloudflare ssl settings are set to full.
There is a cloudron domain key also in dns records, also set to DNS only, but not sur ehow to verify it.

I do have fail2ban installed and running, and I did have ufw enabled with 22, 80 and 443 allowed, I checked security page after the timeout and saw to not enable it, it has since been disabled. Do I have to start all over because of this? Can I rerun install script or activations without reinstalling whole server?

Other tests:

Running - dig +short my.<my domain>.com does return my public ip.

Running - curl -vk https://my.<my domain>.com

• Host my.<my domain>.com:443 was resolved.
• IPv4: <my external ip>
• Trying <my external ip>:443...
• connect to <my external ip> port 443 from <other internal pc> port 39112 failed: Connection timed out
• Failed to connect to my.<my domain>.com port 443 after 135510 ms: Could not connect to server
• closing connection #0
  curl: (28) Failed to connect to my.<my domain>.com port 443 after 135510 ms: Could not connect to server

I am currently behind double nat - modem doesn't allow bridging -

have 80 and 443 fwd from quantum fiber box to router ip as tcp and udp
have 80 and 443 fwd from router to ubuntu server vm ip as tcp and udp

UPnP is disabled on both boxes.

Can also confirm that my plex server is setup the same way, and it fully accessible outside my network (obviously on it's own ports)

during propagation - I tailed the logs and it got stuck on
"2025-05-08T19:29:19.045Z box:provision setProgress: setup - Done"
before connection timed out, no other errors I can see in those logs.

Please advise next steps, thanks in advance!

No dice yet, thinking about dumping existing server and starting over. Will tinker with it when I can over the next week or so and see what I come up with.

Hello Cloudron folks. I have had this Guac instance running for a couple years now, mostly flawlessly.

Recently after updating the ubuntu server, it booted back up to give the new warning about not updating the server like that and ever since then I've been sorta down, but it could be tied to something else entirely.

I ran the local troubleshooter and it blamed DNS . When trying to access the domain for the gui to Guac nothing happens, and it eventually gets to the cloudflare screen with "Browser: Working, Cloudflare: Working, Host: Error"

In the docs, I was reading to just delete the website from cloudflare and then re-add it, but upon prepping for this I noticed an email saying my domain had been migrated from Google Domains to Squarespace due to Google Domains going defunct (around the same time period).

My main question would be, before I delete the website from Cloudflare dns page, would it be better for Cloudflare to have the domain in preventing further mixups or would this be entirely irrelevant?

I can't access the Guac gui, but the other service I have running via cloudron runs just fine, so I thought maybe I can hop in the store and see if it will let me reinstall guac and just be done with it, but the store itself doesn't seem to be able to see I have Guac installed so maybe I did break it break it?

Attempting to get a password reset yielded no results, however the create account at the homepage is working so there is that. I wonder why it wouldn't let me create the account in the setup? Either way, I think I will be able to move forward. Thank you again!

Domain reg went fine (cloudflare)
Created admin account just fine.

Went to create the account for the store
"Sign up with Cloudron.io
This account is used to access the App Store and manage your subscription"

using same email address as admin (same one I use for this forum account) but it failed, only password box just red with no error display.

I thought maybe it was because I already had this forum account, so I tried it's email/pass combo and also got red but with a "wrong password" error.

Do I need to use another email address?

Hello I wanted to apologize for the lack of response, as right after I posted this had a family emergency and the holidays and it completely vanished from my mind.

I want to confirm that Port Forwarding was the kicker, as I was following a Doc for Guacamole install instead of Cloudron's full doc for the base install, there were no instructions in the Guac doc to do port forwarding.

Thank you so much!

Tried on Ubuntu Server and Kubuntu Desktop (both 22.04) - same error on all after this:

                        WELCOME TO CLOUDRON
                        -------------------

Visit one of the following URLs on your browser and accept the self-signed certificate to finish setup.
  * https://<ipaddr>

Cloudron overview - https://docs.cloudron.io/ 
Cloudron setup - https://docs.cloudron.io/installation/#setup 

For help and more information, visit https://forum.cloudron.io

**********************************************************************
Last login: Sun Dec 24 01:08:16 2023 from 172.16.0.27

~~~~~~~~~~~~~~~~~~~~

On server I can't open the url without a browser, tried firefox (didn't work), and elinks (same error) 

On firefox desktop I get "Unable to connect

An error occurred during a connection to <ipaddr>

    The site could be temporarily unavailable or too busy. Try again in a few moments.
    If you are unable to load any pages, check your computer’s network connection.
    If your computer or network is protected by a firewall or proxy, make sure that Firefox is permitted to access the web." 

I can spin up another server instance and rerun and grab logs, but all of that goes with no error. I just can't get the "self signed certificate" like I'm supposed to. 

And if I take the "https://" off the ipaddr, it tries to log me into my router login (but external facing? Login doesn't work)

So, I'm confused. 

Please help....