SSL certificate letsencrypt

Vitor_Hugo_Barbosa · September 14, 2021, 10:25pm

Hello team i am struggling to put a letsencrypt certificate for my network services behind nethserver, can please someone help me .
I have pi hole as 1st dns resolver into nethserver dns and blocker into my network.

I put my nethserver as dmz on my sunrise router

I need a valid ssl certificate letsencrypt
80 and 443 forwarded but he can’t generate a valid certificate besides the default one

I am missing something as usual, not so savvy on this.

Almost dropping for pfsense…

Best regards.

pike · September 15, 2021, 8:00am

Is NethServer already receiving a certificate?

mrmarkuz · September 15, 2021, 9:47am

Can you reach your Nethserver by the domain name you want to use for the LE cert on port 80 from public?

Vitor_Hugo_Barbosa · September 15, 2021, 10:54am

nop i think that is the issue

Vitor_Hugo_Barbosa · September 15, 2021, 3:33pm

mrmarkuz · September 15, 2021, 5:14pm

Is the httpd access set to red in System/Services?

I assume you get these firewall log entries when requesting a certificate…
The log entries in the screenshot aren’t fully visible. Please copy/paste and share some of the lines.

Vitor_Hugo_Barbosa · September 15, 2021, 5:23pm

Sep 15 19:15:04 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.57 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=51645 PROTO=TCP SPT=54856 DPT=16587 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:15:10 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=187.162.150.15 DST=192.168.1.217 LEN=60 TOS=0x00 PREC=0x00 TTL=39 ID=50844 DF PROTO=TCP SPT=39353 DPT=23 WINDOW=5840 RES=0x00 SYN URGP=0
Sep 15 19:15:15 ad1 kernel: Shorewall:net_dnat:DNAT:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=178.197.221.229 DST=192.168.1.217 LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=9293 DF PROTO=TCP SPT=37232 DPT=443 WINDOW=65535 RES=0x00 SYN URGP=0
Sep 15 19:15:15 ad1 kernel: Shorewall:net_dnat:DNAT:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=178.197.221.229 DST=192.168.1.217 LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=15760 DF PROTO=TCP SPT=37234 DPT=443 WINDOW=65535 RES=0x00 SYN URGP=0
Sep 15 19:15:15 ad1 kernel: Shorewall:net_dnat:DNAT:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=178.197.221.229 DST=192.168.1.217 LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=22737 DF PROTO=TCP SPT=17168 DPT=443 WINDOW=65535 RES=0x00 SYN URGP=0
Sep 15 19:15:19 ad1 kernel: Shorewall:net_dnat:DNAT:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=178.197.221.229 DST=192.168.1.217 LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=22741 DF PROTO=TCP SPT=39047 DPT=443 WINDOW=65535 RES=0x00 SYN URGP=0
Sep 15 19:15:22 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=187.162.150.15 DST=192.168.1.217 LEN=60 TOS=0x00 PREC=0x00 TTL=39 ID=50845 DF PROTO=TCP SPT=39353 DPT=23 WINDOW=5840 RES=0x00 SYN URGP=0
Sep 15 19:15:30 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=209.141.56.212 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=51631 DPT=60001 WINDOW=65535 RES=0x00 SYN URGP=0
Sep 15 19:15:36 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.36 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=243 ID=17561 PROTO=TCP SPT=54279 DPT=48733 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:15:47 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.45 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=33460 PROTO=TCP SPT=54516 DPT=35519 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:15:54 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=31.164.89.155 DST=192.168.1.217 LEN=78 TOS=0x00 PREC=0x00 TTL=64 ID=46714 DF PROTO=UDP SPT=59119 DPT=137 LEN=58
Sep 15 19:15:55 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=89.248.165.97 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=247 ID=18177 PROTO=TCP SPT=40172 DPT=1099 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:16:07 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=78.128.113.34 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=54 ID=41308 PROTO=TCP SPT=8080 DPT=58010 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:16:20 ad1 kernel: Shorewall:net_dnat:DNAT:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=193.118.53.210 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=241 ID=10563 PROTO=TCP SPT=32322 DPT=443 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:16:24 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.55 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=19793 PROTO=TCP SPT=54813 DPT=44490 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:16:27 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.46 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=243 ID=26990 PROTO=TCP SPT=54537 DPT=9771 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:16:32 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=89.248.165.53 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=247 ID=38496 PROTO=TCP SPT=52507 DPT=4433 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:16:33 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=34.107.57.97 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x60 TTL=248 ID=17491 PROTO=TCP SPT=49545 DPT=139 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:16:35 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=125.64.94.138 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=54795 DPT=3280 WINDOW=65535 RES=0x00 SYN URGP=0
Sep 15 19:16:38 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=187.176.189.79 DST=192.168.1.217 LEN=60 TOS=0x00 PREC=0x00 TTL=42 ID=36075 DF PROTO=TCP SPT=50514 DPT=23 WINDOW=5840 RES=0x00 SYN URGP=0
Sep 15 19:16:41 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=187.176.189.79 DST=192.168.1.217 LEN=60 TOS=0x00 PREC=0x00 TTL=42 ID=36076 DF PROTO=TCP SPT=50514 DPT=23 WINDOW=5840 RES=0x00 SYN URGP=0
Sep 15 19:16:47 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=187.176.189.79 DST=192.168.1.217 LEN=60 TOS=0x00 PREC=0x00 TTL=42 ID=36077 DF PROTO=TCP SPT=50514 DPT=23 WINDOW=5840 RES=0x00 SYN URGP=0
Sep 15 19:16:59 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=187.176.189.79 DST=192.168.1.217 LEN=60 TOS=0x00 PREC=0x00 TTL=42 ID=36078 DF PROTO=TCP SPT=50514 DPT=23 WINDOW=5840 RES=0x00 SYN URGP=0
Sep 15 19:17:02 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=31.164.89.155 DST=192.168.1.217 LEN=78 TOS=0x00 PREC=0x00 TTL=64 ID=12681 DF PROTO=UDP SPT=38200 DPT=137 LEN=58
Sep 15 19:17:22 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.33 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=243 ID=47552 PROTO=TCP SPT=54193 DPT=27179 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:17:28 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=89.248.165.53 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=247 ID=21857 PROTO=TCP SPT=52507 DPT=1700 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:17:29 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=34.86.35.1 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=57 ID=34703 PROTO=TCP SPT=53893 DPT=5900 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:17:29 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.46 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=243 ID=65507 PROTO=TCP SPT=54537 DPT=12287 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:17:34 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.47 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=14736 PROTO=TCP SPT=54560 DPT=60197 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:17:34 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.50 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=49816 PROTO=TCP SPT=54670 DPT=31988 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:17:38 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.54 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=243 ID=53712 PROTO=TCP SPT=54793 DPT=28076 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:17:42 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=111.7.96.144 DST=192.168.1.217 LEN=52 TOS=0x04 PREC=0x00 TTL=34 ID=43102 PROTO=TCP SPT=44126 DPT=9851 WINDOW=65535 RES=0x00 SYN URGP=0
Sep 15 19:17:47 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.143.200.102 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=245 ID=11150 PROTO=TCP SPT=58693 DPT=9339 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:17:49 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.54 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=243 ID=32999 PROTO=TCP SPT=54793 DPT=63515 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:17:50 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.57 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=18082 PROTO=TCP SPT=54856 DPT=54143 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:17:54 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=187.167.197.67 DST=192.168.1.217 LEN=60 TOS=0x00 PREC=0x00 TTL=42 ID=63928 DF PROTO=TCP SPT=37341 DPT=23 WINDOW=5840 RES=0x00 SYN URGP=0
Sep 15 19:17:57 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=187.167.197.67 DST=192.168.1.217 LEN=60 TOS=0x00 PREC=0x00 TTL=42 ID=63929 DF PROTO=TCP SPT=37341 DPT=23 WINDOW=5840 RES=0x00 SYN URGP=0
Sep 15 19:18:03 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=187.167.197.67 DST=192.168.1.217 LEN=60 TOS=0x00 PREC=0x00 TTL=42 ID=63930 DF PROTO=TCP SPT=37341 DPT=23 WINDOW=5840 RES=0x00 SYN URGP=0
Sep 15 19:18:12 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=193.27.229.86 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=52532 PROTO=TCP SPT=54134 DPT=51532 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:18:14 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.48 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=6906 PROTO=TCP SPT=54588 DPT=50450 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:18:14 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=31.164.89.155 DST=192.168.1.217 LEN=78 TOS=0x00 PREC=0x00 TTL=64 ID=37401 DF PROTO=UDP SPT=56191 DPT=137 LEN=58
Sep 15 19:18:15 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=187.167.197.67 DST=192.168.1.217 LEN=60 TOS=0x00 PREC=0x00 TTL=42 ID=63931 DF PROTO=TCP SPT=37341 DPT=23 WINDOW=5840 RES=0x00 SYN URGP=0
Sep 15 19:18:18 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.36 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=59451 PROTO=TCP SPT=54279 DPT=25744 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:18:20 ad1 kernel: Shorewall:net_dnat:DNAT:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=181.225.141.137 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=49 ID=30900 PROTO=TCP SPT=47415 DPT=80 WINDOW=10030 RES=0x00 SYN URGP=0
Sep 15 19:18:20 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=181.225.141.137 DST=192.168.2.1 LEN=44 TOS=0x00 PREC=0x00 TTL=49 ID=30900 PROTO=TCP SPT=47415 DPT=80 WINDOW=10030 RES=0x00 SYN URGP=0
Sep 15 19:18:20 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.44 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=45386 PROTO=TCP SPT=54493 DPT=49124 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:18:37 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.54 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=243 ID=37872 PROTO=TCP SPT=54793 DPT=39572 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:18:39 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=35.234.81.138 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x60 TTL=247 ID=34578 PROTO=TCP SPT=43613 DPT=1911 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:18:45 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.56 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=39486 PROTO=TCP SPT=54835 DPT=26158 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:18:56 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=103.145.13.26 DST=192.168.1.217 LEN=44 TOS=0x08 PREC=0x20 TTL=236 ID=8725 PROTO=TCP SPT=59329 DPT=50802 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:19:00 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=91.223.67.180 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=243 ID=21974 PROTO=TCP SPT=54115 DPT=25826 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:19:01 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.135.232.119 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=5939 PROTO=TCP SPT=43453 DPT=8683 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:19:06 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.145.67.74 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=6907 PROTO=TCP SPT=54164 DPT=26828 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:19:22 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=31.164.89.155 DST=192.168.1.217 LEN=78 TOS=0x00 PREC=0x00 TTL=64 ID=28135 DF PROTO=UDP SPT=59456 DPT=137 LEN=58
Sep 15 19:19:27 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=170.106.115.15 DST=192.168.1.217 LEN=52 TOS=0x00 PREC=0x00 TTL=43 ID=32438 PROTO=TCP SPT=33462 DPT=9158 WINDOW=65535 RES=0x00 SYN URGP=0
Sep 15 19:19:28 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=89.248.165.97 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=247 ID=5614 PROTO=TCP SPT=40172 DPT=1215 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:19:31 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=193.27.228.61 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=243 ID=39520 PROTO=TCP SPT=43414 DPT=8613 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:19:32 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.54 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=59500 PROTO=TCP SPT=54793 DPT=26492 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:19:41 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.45 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=10218 PROTO=TCP SPT=54516 DPT=4117 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:19:46 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=185.101.107.167 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=246 ID=54321 PROTO=TCP SPT=36669 DPT=22 WINDOW=65535 RES=0x00 SYN URGP=0
Sep 15 19:19:46 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.40 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=4628 PROTO=TCP SPT=54385 DPT=10361 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:19:50 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=91.223.67.180 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=44689 PROTO=TCP SPT=54115 DPT=20157 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:19:52 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.53 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=52743 PROTO=TCP SPT=54763 DPT=7283 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:20:08 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=162.142.125.82 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=41 ID=21666 PROTO=TCP SPT=1804 DPT=12198 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:20:17 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.143.200.114 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=54 ID=48708 PROTO=TCP SPT=8080 DPT=16710 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:20:21 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=104.206.128.62 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=236 ID=54321 PROTO=TCP SPT=56492 DPT=9983 WINDOW=65535 RES=0x00 SYN URGP=0
Sep 15 19:20:25 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=193.27.229.86 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=243 ID=50228 PROTO=TCP SPT=54134 DPT=7770 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:20:35 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=31.164.89.155 DST=192.168.1.217 LEN=78 TOS=0x00 PREC=0x00 TTL=64 ID=47929 DF PROTO=UDP SPT=47331 DPT=137 LEN=58
Sep 15 19:20:38 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.43 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=10894 PROTO=TCP SPT=54469 DPT=57198 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:20:48 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=103.100.143.146 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=239 ID=40218 PROTO=TCP SPT=52886 DPT=445 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:21:18 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=185.156.73.33 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=248 ID=48580 PROTO=TCP SPT=57148 DPT=9007 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:21:28 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.145.67.74 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=25745 PROTO=TCP SPT=54164 DPT=21443 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:21:31 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.56 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=56973 PROTO=TCP SPT=54835 DPT=40354 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:21:33 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.54 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=52440 PROTO=TCP SPT=54793 DPT=57993 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:21:36 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.44 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=243 ID=19143 PROTO=TCP SPT=54493 DPT=22888 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:21:39 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=89.248.165.60 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=247 ID=54321 PROTO=TCP SPT=39757 DPT=4353 WINDOW=65535 RES=0x00 SYN URGP=0
Sep 15 19:21:47 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.40 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=243 ID=45540 PROTO=TCP SPT=54385 DPT=25824 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:21:51 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=111.7.96.144 DST=192.168.1.217 LEN=52 TOS=0x04 PREC=0x00 TTL=33 ID=35906 PROTO=TCP SPT=36930 DPT=9790 WINDOW=65535 RES=0x00 SYN URGP=0
Sep 15 19:21:55 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.48 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=31581 PROTO=TCP SPT=54588 DPT=14004 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:21:55 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=113.31.114.171 DST=192.168.1.217 LEN=36 TOS=0x00 PREC=0x00 TTL=47 ID=63906 DF PROTO=UDP SPT=4000 DPT=4000 LEN=16
Sep 15 19:21:58 ad1 kernel: Shorewall:net_dnat:DNAT:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=125.139.69.98 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=47 ID=39156 PROTO=TCP SPT=23756 DPT=8080 WINDOW=29156 RES=0x00 SYN URGP=0
Sep 15 19:21:59 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.61.188.14 DST=192.168.1.217 LEN=44 TOS=0x08 PREC=0x20 TTL=239 ID=54321 PROTO=TCP SPT=50763 DPT=11211 WINDOW=65535 RES=0x00 SYN URGP=0
Sep 15 19:22:02 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.47 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=39846 PROTO=TCP SPT=54560 DPT=65282 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:22:06 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=31.164.89.155 DST=192.168.1.217 LEN=78 TOS=0x00 PREC=0x00 TTL=64 ID=62733 DF PROTO=UDP SPT=38969 DPT=137 LEN=58
Sep 15 19:22:19 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=74.120.14.70 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x20 TTL=36 ID=24950 PROTO=TCP SPT=45768 DPT=1343 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:22:20 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.53 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=243 ID=47680 PROTO=TCP SPT=54763 DPT=23030 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:22:21 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=167.248.133.85 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=34 ID=44117 PROTO=TCP SPT=8752 DPT=16045 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:22:24 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.145.67.74 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=15988 PROTO=TCP SPT=54164 DPT=52125 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:22:29 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=92.63.196.13 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=245 ID=27943 PROTO=TCP SPT=54123 DPT=65530 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:22:33 ad1 kernel: Shorewall:net_dnat:DNAT:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=104.244.75.62 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=54321 PROTO=TCP SPT=53885 DPT=81 WINDOW=65535 RES=0x00 SYN URGP=0
Sep 15 19:22:33 ad1 kernel: Shorewall:net_dnat:DNAT:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=104.244.75.62 DST=192.168.1.217 LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=2042 DF PROTO=TCP SPT=38912 DPT=81 WINDOW=64240 RES=0x00 SYN URGP=0
Sep 15 19:22:33 ad1 kernel: Shorewall:net_dnat:DNAT:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=104.244.75.62 DST=192.168.1.217 LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=15643 DF PROTO=TCP SPT=39010 DPT=81 WINDOW=64240 RES=0x00 SYN URGP=0
Sep 15 19:22:33 ad1 kernel: Shorewall:net_dnat:DNAT:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=104.244.75.62 DST=192.168.1.217 LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=46367 DF PROTO=TCP SPT=39040 DPT=81 WINDOW=64240 RES=0x00 SYN URGP=0
Sep 15 19:22:35 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=84.38.184.155 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=243 ID=16833 PROTO=TCP SPT=10856 DPT=3350 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:22:45 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.57 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=28238 PROTO=TCP SPT=54856 DPT=10875 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:22:47 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=78.128.113.46 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=54 ID=2189 PROTO=TCP SPT=8080 DPT=44310 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:22:48 ad1 kernel: Shorewall:net_dnat:DNAT:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=186.33.102.142 DST=192.168.1.217 LEN=60 TOS=0x00 PREC=0x00 TTL=50 ID=26684 DF PROTO=TCP SPT=50108 DPT=8080 WINDOW=5840 RES=0x00 SYN URGP=0
Sep 15 19:22:48 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=185.191.34.207 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=9012 PROTO=TCP SPT=57990 DPT=13 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:22:51 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=193.27.229.86 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=242 ID=38464 PROTO=TCP SPT=54134 DPT=64095 WINDOW=1024 RES=0x00 SYN URGP=0
Sep 15 19:22:55 ad1 kernel: Shorewall:net2fw:DROP:IN=enp0s25 OUT= MAC=00:26:2d:10:8f:4f:50:e0:39:5f:aa:08:08:00 SRC=45.134.26.57 DST=192.168.1.217 LEN=44 TOS=0x00 PREC=0x00 TTL=243 ID=52886 PROTO=TCP SPT=54856 DPT=16019 WINDOW=1024 RES=0x00 SYN URGP=0

Vitor_Hugo_Barbosa · September 15, 2021, 5:25pm

ahhh

only the green one

Vitor_Hugo_Barbosa · September 15, 2021, 5:28pm

nop

Vitor_Hugo_Barbosa · September 15, 2021, 5:30pm

dns 1 pihole this is the webserver

[Sun Sep 12 08:32:41.462631 2021] [ssl:warn] [pid 1851] AH01909: RSA certificate configured for ad1.tuxadmin.ch:443 does NOT include an ID which matches the server name

and this one is a cname at registar

2.17 is pi hole and nethserver 2.1
Sep 15 19:39:13 ad1 kernel: Shorewall:loc2fw:REJECT:IN=br0 OUT= MAC=50:3e:aa:09:45:33:c6:96:d6:81:d9:2b:08:00 SRC=192.168.2.17 DST=192.168.2.1 LEN=40 TOS=0x00 PREC=0x00 TTL=64 ID=0 DF PROTO=TCP SPT=80 DPT=36094 WINDOW=0 RES=0x00 RST URGP=0 MARK=0x10000

mrmarkuz · September 15, 2021, 5:43pm

When I browse to your domains, I see pihole. Is it on your Nethserver? Did you use the pihole module?

Vitor_Hugo_Barbosa · September 15, 2021, 5:44pm

pihole as a separate vm dns resolver at 1str dns for my kids to avoid some adult stuff, let me test without

mrmarkuz · September 15, 2021, 5:45pm

It seems you forwarded port 80 to pihole instead of Nethserver.

Vitor_Hugo_Barbosa · September 15, 2021, 5:46pm

what a dumb, but i have some rules to nethserver let me see, i will take off those byy pi hole
changed the dns to FAI RTR to test

Vitor_Hugo_Barbosa · September 15, 2021, 5:49pm

what an

[Wed Sep 15 19:39:01.749242 2021] [proxy:warn] [pid 14700] [client 217.107.125.11:5114] AH01092: no HTTP 0.9 request (with no host line) on incoming request and preserve host set forcing hostname to be dokuwiki.tpt.local for uri /

i have put a domain on my first nethserver, this from the httpd logs

I complicate things when we are a newbie …we made mistakes it’s means the cert is coming from the AD …OMG …1 ripe off this AD i dont need at all, it was for testing

supressing sssd package, lets begin the problems… maybe not

Vitor_Hugo_Barbosa · September 15, 2021, 5:58pm

oh my god …oh my god …FOUND IT YES (WITHOUT PIHOLE ) LETS ENCRIPT CERT ELABORATED MARKUS!!! YES

lets see putting with pi-hole if this will drop this all… dont think so and the renew is auto right?

OHHHHHHHH MY GOD FINALLY

i did it finally problem was the sssd and the firewall logs

mrmarkuz · September 15, 2021, 6:08pm

Glad it works now.

Yes, exactly.

Vitor_Hugo_Barbosa · September 15, 2021, 6:09pm

THANK YOU SO MUCH!!! IF i put pi hole will be ok for the next domains?

mrmarkuz · September 15, 2021, 6:12pm

Usually pihole should work next to requesting LE certs. I think the issues were due to service access settings and forwarding/reverse proxy.

Vitor_Hugo_Barbosa · September 15, 2021, 6:21pm

yes ad also on it and services lets test

but strange now https://ad1.tuxadmin.ch:9090 just wont go anymore internal