Hi,
I am having issues connecting to Nethserver from the internet. I can connect locally on all services with the green card but keep getting ERR_TUNNEL_CONNECTION_FAILED when trying to access any page from the red card.
System version NethServer release 7.6.1810 (final)
Kernel release 3.10.0-957.1.3.el7.x86_64
I have tried removing the firewall. Disabling and the enabling red card access and still get ERR_TUNNEL_CONNECTION_FAILED when trying to access the server from the internet. This includes nextcloud which was working until the last updates a few days ago.
I think it has something to do with a update, but can’t see anything in the system logs… so probably looking in the wrong place. How can I manually setup red card access to my server from terminal, or better yet which logs should I be looking at?
It’s enabled and working. I can access it via green interface but not through red. Checked firewall rules and can see red is droppung packets even though set not too. So quedtion is how fo I set firewall rules to factory default and start fresh… including fail2ban.
Sorry I meant security -> network services. That page will show you from which interfaces the service can be reached and you can adjust the access settings to include the red interface.
I am having the same issue from red connection into an updated installation. Tomorrow I will be able to be local and verify if I can access from Green and is there are any kind of updates
If the ip is in the whitelist of fail2ban then I can access the web interface. However if the ip is not whitelisted and not in a jail I can’t access the web interface so must be something to do with Shorewall not passing on packets from the red interface to Nethserver. I can access the nethserver by ssh on the red interface.
I have tried unbanning ip’s but get rule not found so know it’s not a fail2ban issue (have also uninstalled fail2ban and still get same results)
I will delve a bit deeper today. Will shorewall clear cause any issues with nethserver? I am thinking of resetting Shorewall.
Check this on Network Services… httpd-admin is accepted on green and red?
Have you try also to change browser?
Certificate is self-signed or let’s encrypt?
Hi,
Certificate is a COMODO certificate, still valid. and yes have enabled and disabled and re-enabled htp-admin multiple times on the red interface. Also have tried Firefox and chrome. Same issue.
Yes SSH tunnel still works… it’s just the web interface and related web modules like nextcloud. I think it’s a rule in Shorewall blocking apache access but don’t know what one to refer to.
br0: cleared traffic control
p2p1: cleared traffic control
vnet1: cleared traffic control
wlp3s0: cleared traffic control
p3p1: cleared traffic control
vnet0: cleared traffic control
tap0: cleared traffic control
vb-nsdc: cleared traffic control