LightSquid not showing WebInterface

NethServer Version: NethServer 7.9.2009
Module: lightsquid

Hello yall! :slight_smile: Hope you are all well.

Lightparser.pl runs fine:


But when i try too open it it redirects me to “localhost” and no good:

Already tried to re-install lightsquid and lightsquid-apache… just not squid… but all logs are just fine in /var/lightsquid

Any lights in here?

Lightsquid is accessible on a link like: https://<your_Server>:980/r455f06xxxxxxxxxxxxxxxxxxxxxxxxxxxx/.
You can find the link inside the Dashboard of the proxy module.

See the Open button in the bottom left corner :point_down:

Oh yes, i tried this, thats the button that does not work at all.

I think i might to unninstall all my Squid and try to reinstall, but it has soooo many configurations lol.

Hummmm found out something wierd:

[root@srv1 lightsquid]# ./check-setup.pl -d -y
LightSquid Config Checker, (c) 2005-9 Sergey Erokhin GNU GPL

can’t access to /etc/lightsquid/lightsquid.cfg !!!

Animação

Yup, still same wierd behavior, well, at least this server has just 3 more months to live, after that it will be under a brand new lenovo server! :slight_smile:

Could you please post the output of these commands?

  • config show lightsquid
  • rpm -qi nethserver-httpd-admin-service
[root@srv1 ~]# config show lightsquid
lightsquid=configuration
    BigFileLimit=10
    Lang=eng
    PerUserTrafficLimit=10
    Template=nethesis
    alias=39654861fe4d457c293b290b1346244f8afe8184
[root@srv1 ~]# rpm -qi nethserver-httpd-admin-service
Name        : nethserver-httpd-admin-service
Version     : 2.7.0
Release     : 1.ns7
Architecture: noarch
Install Date: Qua 11 Ago 2021 12:51:50 -03
Group       : Unspecified
Size        : 7757
License     : GPL
Signature   : RSA/SHA1, Qua 25 Nov 2020 14:09:51 -03, Key ID 9cb28ea039baf5c1
Source RPM  : nethserver-httpd-admin-2.7.0-1.ns7.src.rpm
Build Date  : Qua 25 Nov 2020 14:09:42 -03
Build Host  : b75.nethserver.org
Relocations : (not relocatable)
URL         : http://github.com/NethServer/nethserver-httpd-admin
Summary     : Apache instance for local system administration
Description :
Additional Apache instance listening on HTTPS port :980 for local system administration.

i tried: https://myurl:980/39654861fe4d457c293b290b1346244f8afe8184 Its the same link that is in the button.

btw, same issue with lanip and external acess.

Please report also the output of grep -R $(config getprop lightsquid alias) /etc/httpd/admin-conf.d
Also, does this command returns some HTML curl -L http://localhost/$(config getprop lightsquid alias)?

Finally, you could try restart the service: systemctl restart httpd-admin

[root@srv1 ~]# grep -R $39654861fe4d457c293b290b1346244f8afe8184 /etc/httpd/admin-conf.d
/etc/httpd/admin-conf.d/lightsquid.conf:ProxyPass /39654861fe4d457c293b290b1346244f8afe8184 http://localhost/39654861fe4d457c293b290b1346244f8afe8184
/etc/httpd/admin-conf.d/lightsquid.conf:ProxyPassReverse /39654861fe4d457c293b290b1346244f8afe8184 http://localhost/39654861fe4d457c293b290b1346244f8afe8184
[root@srv1 ~]# curl -L http://localhost/$39654861fe4d457c293b290b1346244f8afe8184
curl: (51) Unable to communicate securely with peer: requested domain name does not match the server's certificate.
[root@srv1 ~]# curl -L https://localhost/$39654861fe4d457c293b290b1346244f8afe8184
curl: (51) Unable to communicate securely with peer: requested domain name does not match the server's certificate.

Oh, snap, maybe something with letsecrypt?

[root@srv1 ~]# systemctl restart httpd-admin
[root@srv1 ~]# systemctl status httpd-admin
● httpd-admin.service - Server Manager UI httpd instance
   Loaded: loaded (/usr/lib/systemd/system/httpd-admin.service; enabled; vendor preset: disabled)
   Active: active (running) since Qua 2022-04-20 09:54:19 -03; 5s ago
     Docs: https://github.com/NethServer/nethserver-httpd-admin
 Main PID: 8464 (httpd)
   CGroup: /system.slice/httpd-admin.service
           ├─8464 /usr/sbin/httpd -f /etc/httpd/admin-conf/httpd.conf -c MaxConnectionsPerChild 12 -DFOREGROUND
           ├─8466 /usr/sbin/httpd -f /etc/httpd/admin-conf/httpd.conf -c MaxConnectionsPerChild 12 -DFOREGROUND
           ├─8467 /usr/sbin/httpd -f /etc/httpd/admin-conf/httpd.conf -c MaxConnectionsPerChild 12 -DFOREGROUND
           ├─8468 /usr/sbin/httpd -f /etc/httpd/admin-conf/httpd.conf -c MaxConnectionsPerChild 12 -DFOREGROUND
           ├─8469 /usr/sbin/httpd -f /etc/httpd/admin-conf/httpd.conf -c MaxConnectionsPerChild 12 -DFOREGROUND
           └─8470 /usr/sbin/httpd -f /etc/httpd/admin-conf/httpd.conf -c MaxConnectionsPerChild 12 -DFOREGROUND

Abr 20 09:54:19 srv1.unipetrosrp.local systemd[1]: Started Server Manager UI httpd instance.
[root@srv1 ~]# 

Lol, i tried to change Certificate default and now i lost external acess to cockpit! xD Connecting with vpn and tried over local IP still no good anyway.

This command is wrong, remove the $ and add -k since the certificate is for sure not valid for localhost:

curl -L https://localhost/39654861fe4d457c293b290b1346244f8afe8184
[root@srv1 ~]# curl -k https://localhost/39654861fe4d457c293b290b1346244f8afe8184
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>503 Service Unavailable</title>
</head><body>
<h1>Service Unavailable</h1>
<p>The server is temporarily unable to service your
request due to maintenance downtime or capacity
problems. Please try again later.</p>
</body></html>
[root@srv1 ~]# curl -k http://localhost/39654861fe4d457c293b290b1346244f8afe8184
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>301 Moved Permanently</title>
</head><body>
<h1>Moved Permanently</h1>
<p>The document has moved <a href="https://localhost">here</a>.</p>
</body></html>

If you add -L to curl, it will follow the redirect.
By the way, I suspect some bad configuration, but I’m out of ideas on how to debug it without access. :confused:

No Problem, as i said, i will have this server reinstalled in another, this might solve the problem! :slight_smile: thanks for your help! :slight_smile: as always!

[root@srv1 ~]# curl -L -k http://localhost/39654861fe4d457c293b290b1346244f8afe8184
<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>503 Service Unavailable</title>
</head><body>
<h1>Service Unavailable</h1>
<p>The server is temporarily unable to service your
request due to maintenance downtime or capacity
problems. Please try again later.</p>
</body></html>
1 Like

Btw, found out that ntop wont open too, prolly is the same issue, since both use por 980? Right?

Wierd, old web-gui still works, will remove it… maybe it works lol

EDIT2: Nope… still not working after removing old server manager lol! :slight_smile: