RE: After changing my DNS provider, and enabling IPv6

@AartJansen that’s the beauty of dns automation. Btw you can use the gear icon in the top right of your original post to ask it as a question and then you can mark it as solved.

@thetomester13 awesome find! The label generator is a neat feature to have.

@girish thanks Girish

@nickm my production instance is working fine so I fired up a fresh instance and that's working fine too. It doesn't seem like it's a packaging issue. InvoiceNinja has been receiving a ton of updates lately. Maybe they broke something upstream.

@nickm it might be a permission issue. Use cloudrons file manager and check the permissions for the media folder. I’m not sure where that location is (I’m on my phone) but a quick look might give you an idea. Another thing you can try is to use a different template and then reupload your logo with a different file name than the original and then create a new invoice.

Has anyone used them before?

https://github.com/safing
https://safing.io/

I have a WP (dev) site that I have in a stopped state and wish to keep it for archiving purposes. I have auto updates disabled and yet, I keep getting a notification (manual update required for xxxx app) in my dashboard.

The latest updates were applied and auto-updates were disabled before the app was last stopped. It's really annoying to keep seeing that notification each day. Updating the app isn't ideal as it might break something since none of the plugins/theme are being updated.

Is there anything I can do on my end to stop the persisting notification for this app?

@marcusquinn I didn't have the time to reply when I saw your post then, but I didn't mean it the way it came across. It's just confusing to see the value of Univention when we have most of their apps listed already in the CR app store. I get it now (or I think I do), Univention is a platform to make IT's life easier when deploying/managing big organizations like schools and a way to unify all those apps under one roof.

@rafalp welcome to Cloudron! You might want to give the app store a look over. There are apps that would do exactly what you're looking for.

What exactly is this? A one click installer for a bunch of open source apps?

@robi perfect thanks

@girish said in VPS down, restart button won't work, host denies any downtime - Cloudron update related?:

Does contabo provide tools to debug this?

I'm not sure if they do but here's a screenshot of the dashboard. It took two replies to get them to say that they detected no issues with my server. Their first response was,

We have checked your VPS L NVMe and we can inform you that your VPS is up and running again. Therefore we would kindly ask you to check the situation also from your side.

Spring-cleaning is up. Time to move hosts again or better yet, spin up a server at work. I'll keep a cheap VPS for mail only. Can I run a mail server on Cloudron's free tier?

Edit: the "i can't connect to this server" option opens a popup that asks how you're trying to connect (RDP, SSH, or VNC) and then instructs to do the MTR / Trace tests and attach those to support (not that they gave them a look).

About two days ago, I experienced a downtime of well over 1.5 hours where my VPS was unreachable. I hopped on my VPS dashboard and tried to reset the server, but I ran into an error saying it's not possible (not exact message but along that line). I couldn't stop, start, or reboot the VPS. The server came back up by itself and life went on.

I emailed Contabo support, and they said "we did not record any technical issue both on the v-host where your server is located and in the same data center". The reason why I'm saying it might be Cloudron related is because I manually updated InvoiceNinja right before the server went down (literally, the red Cloudron is offline banner came up right before the update was finishing up).

• Is it possible to find out if it's Cloudron related or a hosting issue?
• Could a Cloudron related bug/crash stop Contabo's reboot button from working?
• If so, how could the server come back up by itself then?

Edit: My email server resides on this VPS and I wanted to know if I'll be missing out on any sent emails, so I emailed myself from my Proton address during the downtime. Oddly enough, it didn't bounce back, but it wasn't in my inbox when the server came back up either. It did show up half an hour after the server was online.

Some notes:

• The Invoice Ninja update had finished before the downtime (confirmed it after server was up).
• I could not SSH into the server
• I ran an MTR and Trace tests per Contabo's requirement before contacting support (please lmk if you need those).

@jdaviescoates That's awesome. Thanks for following up with him. Did you get to try the demo?

I signed up for a Pro Team license and sent the developer (Dima) a message about Cloudron. He said he's thinking of adding Mixpost to the CR appstore! No ETA (didn't ask) but that's still good news nonetheless.

@jdaviescoates maybe the “developer” wording has to be changed to something more accurate but i can’t think of anything more fitting lol.

@Customlegends it sounds like you hit two problems, dns propagation and closed ports. In your router, assign a fixed ip to your Cloudron server and then open the needed ports for that ip. If you have ipv6, do the same for it too in the router and then hop to your cloudron dashboard and go to network and enable ipv6 checkbox. It seems daunting when things fail but that’s all there is to it. As for dns propagation, patience young grasshopper..

@jdaviescoates cf is the only option for me bcz of price, speed, and proxy support.

For premium news sites where the article loads and then the paywall pop up kicks in, i use the clean reading mode button in Firefox right before the paywall loads and it fetches the whole page. Makes me chuckle each time.

I use namesilo and have no complaints. Cloudflare is a must if you want dns automation. I’m waiting on Bunny DNS to mature enough and maybe it’ll get added to Cloudron’s api list.

To figure out what my partitions looked like, a search led me to the following which listed all the partitions with their size and other info.

sudo lsblk -o NAME,FSTYPE,SIZE,MOUNTPOINT,LABEL

Then, I was able to use Nebulon's command

hdparm -t /dev/sda3

and the result is 416.88 MB/s

@nebulon it looks like I need to get in touch with Contabo support, right? Unless there's something I can do to fix this?

Edit: running some more tests..

test drive cache read speed

hdparm -T /dev/sda3

OK, this looks like NVME speeds but what's the deal with the write!?

I'm on Contabo's Cloud VPS L plan w/ NVME storage + their extra storage module (which doubles my 200GB to 400GB total NVME storage) and I ran the following command twice to test the disk speed and got 454 MB/s on my first run and 330 MB/s on my second run. This looks like regular SSD speeds, unless I'm mistaken and used the wrong command for NVME? A penny for your thoughts!

dd if=/dev/zero of=test bs=64k count=16k conv=fdatasync && rm -rf test

Contabo VPS L (AMD EPYC 7282)

flags           : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 ht syscall nx mmxext fxsr_opt pdpe1gb rdtscp lm rep_good nopl cpuid extd_apicid tsc_known_freq pni pclmulqdq ssse3 fma cx16 sse4_1 sse4_2 x2apic movbe popcnt tsc_deadline_timer aes xsave avx f16c rdrand hypervisor lahf_lm cmp_legacy cr8_legacy abm sse4a misalignsse 3dnowprefetch osvw perfctr_core ssbd ibrs ibpb stibp vmmcall fsgsbase tsc_adjust bmi1 avx2 smep bmi2 rdseed adx smap clflushopt clwb sha_ni xsaveopt xsavec xgetbv1 xsaves clzero xsaveerptr wbnoinvd arat umip rdpid arch_capabilities

Home server (Intel i5-6500T)

flags           : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush dts acpi mmx fxsr sse sse2 ss ht tm pbe syscall nx pdpe1gb rdtscp lm constant_tsc art arch_perfmon pebs bts rep_good nopl xtopology nonstop_tsc cpuid aperfmperf pni pclmulqdq dtes64 monitor ds_cpl smx est tm2 ssse3 sdbg fma cx16 xtpr pdcm pcid sse4_1 sse4_2 x2apic movbe popcnt tsc_deadline_timer aes xsave avx f16c rdrand lahf_lm abm 3dnowprefetch cpuid_fault epb invpcid_single pti ssbd ibrs ibpb stibp fsgsbase tsc_adjust bmi1 avx2 smep bmi2 erms invpcid mpx rdseed adx smap clflushopt intel_pt xsaveopt xsavec xgetbv1 xsaves dtherm ida arat pln pts hwp hwp_notify hwp_act_window hwp_epp md_clear flush_l1d arch_capabilities

BTW, is there anything I need to do?

@swheeler78 it’s best if you email support @ from the email you have on file.

@BrutalBirdie on a vps, is a server snapshot the equivalent to a full disk image and can it be used for analytics?

@d19dotca Surecart got me interested so I watched some of their feature videos on their YT channel. A lot of the good features are behind a paywall and for basic variations (color, size, etc.) you need to be on the Pro plan ($199/yr; that's with a 50% coupon). I feel their pricing doesn't fit their audience though. A "simple" shop owner shouldn't have to pay that much for what is considered a basic ecommerce feature. The 100 product limit on the free plan is understandable for example. I feel that in Tim's case, a WP + Stripe checkout pages is a much better route. Especially since he intends on using Stripe so he can use Stripe's dashboard to manage his finances and orders. But if Stripe checkout is the option he takes, then WP might not be needed and other platforms might do the job, even a static site generator which would eliminate the need for caching, security plugins, etc. (general WP headaches ).

@girish thanks!!

I'm not in favor of having the app accessible to the public. Is it possible to lock down the app somehow?

@privsec I'm not saying WP-Rocket is bad. I have had it for years and it's worth the price tag but it didn't work properly with any of my current themes that I have purchased from Envato, especially when I threw in BunnyCDN into the mix. I would go with what your theme developer recommends as each theme is optimized for a specific caching plugin.

As for security plugins, I've only used Sucuri and Wordfence. I forgot why I switched from Sucuri but I settled on WF years ago and it hasn't failed me yet. It can be resource hungry if you don't adjust the settings but that's easy to do and it's set and forget.

Edit (to expand on caching plugins): I use a different caching plugin for each of my sites and it's based on what the theme dev recommended. I also tested the page speed on pingdom and gtmetrix and settled on the fastest of the bunch and that didn't cause any conflicts. A word of caution though, testing page speeds and trying to optimize WP is a rabbit hole you don't want to mess with (unless you're coding your own theme/plugins).

@MooCloud_Matt I gotta say that WP is pretty safe and still the best option for most use cases unless you have an in-house developer. I’ve been running a woocommerce site for over a decade now and have dealt with volusion, bigcommerce, and shopify. Woocommerce is still my go-to platform. I haven’t been hacked or had any major plug-in conflicts that aren’t cache (looking at you wp rocket) related. However, I use only the top rated plugins on envato and limit the number of plugins to the bare essential. I avoid the wp plugin store like the plague. The same applies to themes as they would be your first and most likely culprit in conflict issues. I feel wp has improved tremendously in the recent years in terms of security and having plugins auto update themselves. My tip to Tim is to install wordfence before anything else.

@JLX89 my production server with +20 apps is using around 7GB RAM. My home server with two apps is using 1.7GB RAM. IIRC, Cloudron uses around 1-1.2GB alone. Like Tim said, 8GB as a start would be good. You can always upgrade later.

@JLX89 it’s best if you state what your usage is, how many apps you intend on having and which ones, traffic amount expected, etc..

I'm looking to automate/integrate Freescout with other apps on my Cloudron server and was wondering if anyone has any experience/luck with that.

The world of webhooks is unknown to me but I spotted this Freescout module: https://freescout.net/module/api-webhooks/

Can I use that to hook FS to Wekan/Noco/NextCloud/InvoiceNinja?

If not, what about getting Freescout to work with N8N as the middle-man?

Your 2¢ are much appreciated. Thanks!

https://contabo.com/blog/lauterbourg-datacenter/

We've been expanding our German quality and great prices to more Regions around the world, including the US, UK, Australia, and Asia. To better serve our European customers, we're now building a brand-new data center in Lauterbourg on the French-German border. And to celebrate that, we’ve prepared a special promotion for you! 

The new Data Center will have seven buildings with a total capacity of 12 MW, which can house approximately 50,000 servers. You can find more details about redundancy and sustainability of the new Data Center here. 

Construction has begun, and we expect to have the Data Center ready for customers in 2024. In the meantime, follow us on Twitter, Facebook, and LinkedIn for regular updates on the construction progress and be the first one to know about all the special offers we’ve got for you. 

As for the promotion, to celebrate the construction start, we’re giving away extra storage for each new VPS for free and lowering prices for additional drives on VDS and Dedicated Servers. Don't miss out on this and get yourself a promotional server! 

Best regards,

Aleksander Kuczek
Chief Revenue Officer

@ajtatum do you know how it compares to kutt or yourls resource wise?

@privsec WordPress form plugins are... janky at best. I'm using Chatwoot for live chat which can send the customer messages as an email if I'm offline/off-hours. Every new chat user is saved in the "contacts" section. You can assign custom attributes (this can be whatever you want it to be ex: phone number, subscription plan, etc.), custom labels, and there's a notes section too for some CRM functionality. Chatwoot has mobile apps for both android and iOS and that's great to have when you're on the go. Oh, and there's a "campaign" feature (I haven't used it yet), but it lets you send out messages to encourage further engagement which is a newsletter of sorts.

We need a package update as v2.14.0 got released. Thank you!

@girish Yep, moving on.

@jdaviescoates according to the discussion post, it's saying that the service is a privacy/security risk and I can't take that risk because of work contracts, NDA's, etc.. Self-hosting a collab app is/was my main interest.

Out of curiosity though, are you saying that we could get the multiplayer to work on our self-hosted app by signing up for a liveblocks account? If so, any idea if our actual data can be viewed by liveblocks or is it just IP's and the usual analytics data?

Good question! I’d love to know the answer to this. I don’t think that it would change the user’s matrix domain/id though. The first issue I can think of is encryption related and how that would cause the whole app/user/validation structure to fall apart.

@marcusquinn anytime anything email related is discussed, we end up facing the one and only real issue email faces and that’s the monopoly that big tech has over it and how self hosting an email server is impossible to maintain and/or is simply not economical to do. I love email but I think it’s a lost cause to fight big tech simply because email isn’t secure from it’s conception so why bother. There are a ton of secure comm apps we could use as an alternative. I’m already seeing a plethora of alternative options for consumers on transactional sites for receipts and tracking.

@jdaviescoates it took over two months just to get a merge for a single line of code change. I really wanted to try multiplayer as it might have solved a huge collab obstacle for me at work but you’re right, it doesn’t look like it’s going anywhere so I’m uninstalling the app and moving on. It’s a shame really, the potential it had…

@nebulon so should I report this upstream or is it a packaging thing?

This looks like it would run in a lamp app right?

SeoToaster Web Server Requirements
Web server: Apache 2, Nginx. Any web server that can do re-writes and support PHP should work too (not tested).
mod_rewrite module: For Apache 2 only.
PHP 7.2.x, 7.3.x, 7.4.x. We highly recommend 7.4.x
Mysql 5.X: Create one empty MySQL database. (example: SeoToaster) and make it UTF8 Unicode if you wish to use other languages. Also you need to deactivate MySQL strict mode if enabled, https://dev.mysql.com/doc/refman/5.7/en/sql-mode.html#sql-mode-setting
Required PHP modules: curl, gd, json, mbstring, pdo-mysql, xml, gmp, imap, zip, ioncube, mcrypt.

https://www.seotoaster.com/seotoaster-install-requirements.html

@luckow is this a packaging or an upstream issue?

@potemkin_ai my app is showing less than 200mb RAM usage at all times. Maybe it needs more when importing/exporting or other heavy tasks. This is for 3 users.

It looks like the fix got merged into tldraw:main. We need a package update if I'm not mistaken.

https://github.com/tldraw/tldraw/pull/1114

@privsec I’m leaning heavily towards the t620+. I found one on eBay with 4 ports ready to ship. It seems 8GB RAM is the standard for opnsense but should I upgrade it to 16GB? Also, what’s the reason for upgrading the SSD? How much space would opnsense need in a home router setting? I read the t620+ has mobo rev A and B. The A has an additional m.2 port or something like that. Does it matter which rev board I get?

@luckow @marcusquinn the zimaboard looks nice but it seems upgradeability is impossible. I have a bunch of rpi’s laying around but I’m finding them useless in any use case that requires reliability. The only ok use is as an Omv5 nas box. Protectli seems nice but is UK/EU oriented and I’m not sure what adapters I would need for the US. The HP t620 plus might be the ideal hardware for me. I wish I could use one of the SFF I already have (elitedesk 800, lenovo m700, etc.) but I’m not sure how to add a second nic card to them. Thanks for the recommendations!

@luckow did some reading on pfsense vs opnsense. I’m sold on opnsense but that leaves the hardware. The box you linked doesn’t have wifi. I’m guessing I can use my existing commercial router for wifi or is there a more secure/better method out there?

I’m looking to replace my router and always wanted to go the pfsense route for the increased security/control you get over commercial routers. Does anyone have any experience with pfsense and can recommend some hardware and guides to get up and running?

@privsec In addition to the custom logos, you can use initials to "group" client apps. For example:

John's Pizza = JP WP, JP NC, JP Mail, etc..
Girish's BBQ = GB WP, GB NC, GB Mail, etc..

@privsec You can use the customer's site logo for each app instead of relying on text alone.

@timconsidine my understanding of it (of a reading over a decade ago), is that under US law, you don't even need to display a copyright notice as you're automatically protected as the author/creator of that content so the site copyright notice is an old internet thing to make sites look more legit. I use it simply to indicate that the site is up-to-date and isn't abandoned. To have proper protection/ownership though, you have to patent/trademark it and that's done by filing with the USPTO.

@murgero oh, I didn't know that. Don't most modern browsers and websites use javascript?

What would you suggest as an alternative?

It's that time of the year where copyright year needs updating (albeit I'm a bit late). Simply replace the year with this line of code and you're done! It works great for html pages hosted on the surfer app!

<script>document.write(new Date().getFullYear())</script>

@girish I know updates are rolled out alphabetically but is it based on the installed subdomain (ex: rambo.domain.com) or the bare domain?

@RoboMod that half-fixed things.(100% fixed, see below for details)

What I did was move all folders/files to the home folder and moved the content of the "public" folder (the one that's in the Grocy zip) to the LAMP's public folder. I'm going to check the config.php in the /data folder for path issues. Did you disable (NGINX) url rewriting?

Edit: Actually, your solution @RoboMod fixed the issue. I forgot I had edited the config.php base url and once reverted back to its defaults. the login page loaded and it's all working as expected. Thank you!

// When running grocy in a subdirectory, this should be set to the relative path, otherwise empty
// It needs to be set to the part (of the URL) AFTER the document root,
// if URL rewriting is disabled, including index.php
// Example with URL Rewriting support:
//  Root URL = https://example.com/grocy
//  => BASE_PATH = /grocy
// Example without URL Rewriting support:
//  Root URL = https://example.com/grocy/public/index.php/
//  => BASE_PATH = /grocy/public/index.php
Setting('BASE_PATH', '');

// The base URL of your installation,
// should be just "/" when running directly under the root of a (sub)domain
// or for example "https://example.com/grocy" when using a subdirectory
Setting('BASE_URL', '/');

Things to note for future reference:

• all files/folders go into the LAMP's home directory.
• copy over and rename config-dist.php into /data/config.php and tweak the settings like "week starts on Monday" but no need to edit the base path/url if using the domain's root or a subdomain.
• disable phpmyadmin per the doc instructions here

How do you get this to work in a LAMP app?

what I did was...

• extracted the zip file inside the public folder of a new LAMP app
• changed the permissions of everything to www-data (Cloudron)

I got a no permission to access this page (or something of that sort). Then, I..

• moved all content to the "home" directory of the LAMP app
• moved the contents of the "public" folder that was in the zip file to the "public" folder of the LAMP app.

Unable to run grocy: /vendor/autoload.php not found. Have you run Composer?

P.S. I'm trying to use a subdomain (xx.mydomain.com) and not the root domain if that makes any difference.

I’m on v7.3.4 (Ubuntu 22.04.1 LTS), contabo vps, automated cloudflare dns w/ no proxying enabled.

Are you guys seriously suggesting home server owners rent out services from HOME just to pay for a premium license?

We're asking for a home server license pricing. No one's arguing that Cloudron is too expensive for business use.

I'll echo what I said before..

@humptydumpty said in pricing too high:

Cloudron (and in extension,the CR community) caters to "developers" more than it does to the average Joe.

but I can see I'm beating a dead horse.