Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Bug]: the router netmaker-ui@docker uses a non-existent resolver: http #2127

Closed
1 task done
Mydreamandreality opened this issue Mar 17, 2023 · 2 comments
Closed
1 task done

[Bug]: the router netmaker-ui@docker uses a non-existent resolver: http #2127

Mydreamandreality opened this issue Mar 17, 2023 · 2 comments
Assignees
@afeiszli @mattkasun @0xdcarns
Labels
bug Something isn't working

Comments

@Mydreamandreality
Copy link

Mydreamandreality commented Mar 17, 2023
edited
Loading

Contact Details

17610096728@163.com

What happened?

os : ubuntu22
version : v0.6.1
server :A server with a public network IP, not a cloud server
domain :Tencent DNSPOD
SSL : Tencent
A record :api.xxx、dashboard.xxx、broker.xxx

Unable to access the webpage,docker logs traefik Output the following information :
the router netmaker-ui@docker uses a non-existent resolver: http

My docker-compose file content is :


services:
  netmaker:
    container_name: netmaker
    image: gravitl/netmaker:v0.16.1
    cap_add: 
      - NET_ADMIN
      - NET_RAW
      - SYS_MODULE
    sysctls:
      - net.ipv4.ip_forward=1
      - net.ipv4.conf.all.src_valid_mark=1
      - net.ipv6.conf.all.disable_ipv6=0
      - net.ipv6.conf.all.forwarding=1
    restart: always
    volumes:
      - dnsconfig:/root/config/dnsconfig
      - sqldata:/root/data
      - mosquitto_data:/etc/netmaker
    environment:
      SERVER_NAME: "broker.datacloud-sase.club"
      SERVER_HOST: "211.136.245.99"
      SERVER_API_CONN_STRING: "api.datacloud-sase.club:443"
      COREDNS_ADDR: "211.136.245.99"
      DNS_MODE: "on"
      SERVER_HTTP_HOST: "api.datacloud-sase.club"
      API_PORT: "8081"
      CLIENT_MODE: "on"
      MASTER_KEY: "SCSmuAW8ju4sC07uabYu424xS6MyrB"
      CORS_ALLOWED_ORIGIN: "*"
      DISPLAY_KEYS: "on"
      DATABASE: "postgres"
      SQL_PORT: 5433
      SQL_DB: "dcs_sase"
      SQL_HOST: "127.0.0.1"
      SQL_USER: "postgres"
      SQL_PASS: "postgres"
      NODE_ID: "netmaker-server-1"
      MQ_HOST: "mq"
      MQ_PORT: "443"
      MQ_SERVER_PORT: "1883"
      HOST_NETWORK: "off"
      VERBOSITY: "1"
      MANAGE_IPTABLES: "on"
      PORT_FORWARD_SERVICES: "dns"
      MQ_ADMIN_PASSWORD: "REPLACE_MQ_ADMIN_PASSWORD"
    ports:
      - "51821-51830:51821-51830/udp"
    expose:
      - "8081"
    labels:
      - traefik.enable=true
      - traefik.http.routers.netmaker-api.entrypoints=websecure
      - traefik.http.routers.netmaker-api.rule=Host(`api.datacloud-sase.club`)
      - traefik.http.routers.netmaker-api.service=netmaker-api
      - traefik.http.services.netmaker-api.loadbalancer.server.port=8081
  netmaker-ui:
    container_name: netmaker-ui
    image: gravitl/netmaker-ui:v0.16.1
    depends_on:
      - netmaker
    links:
      - "netmaker:api"
    restart: always
    environment:
      BACKEND_URL: "https://api.datacloud-sase.club"
    expose:
      - "80"
    labels:
      - traefik.enable=true
      - traefik.http.middlewares.nmui-security.headers.accessControlAllowOriginList=*.datacloud-sase.club
      - traefik.http.middlewares.nmui-security.headers.stsSeconds=31536000
      - traefik.http.middlewares.nmui-security.headers.browserXssFilter=true
      - traefik.http.middlewares.nmui-security.headers.customFrameOptionsValue=SAMEORIGIN
      - traefik.http.middlewares.nmui-security.headers.customResponseHeaders.X-Robots-Tag=none
      - traefik.http.middlewares.nmui-security.headers.customResponseHeaders.Server= # Remove the server name
      - traefik.http.routers.netmaker-ui.entrypoints=websecure
      - traefik.http.routers.netmaker-ui.middlewares=nmui-security@docker
      - traefik.http.routers.netmaker-ui.rule=Host(`dashboard.datacloud-sase.club`)
      - traefik.http.routers.netmaker-ui.service=netmaker-ui
      - traefik.http.services.netmaker-ui.loadbalancer.server.port=80
  coredns:
    container_name: coredns
    image: coredns/coredns
    command: -conf /root/dnsconfig/Corefile
    depends_on:
      - netmaker
    restart: always
    volumes:
      - dnsconfig:/root/dnsconfig
  traefik:
    image: traefik:v2.6
    container_name: traefik
    command:
      # - "--certificatesresolvers.http.acme.email=17610096728@163.com"
      # - "--certificatesresolvers.http.acme.storage=/letsencrypt/acme.json"
      # - "--certificatesresolvers.http.acme.tlschallenge=true"
      - "--entrypoints.websecure.address=:443"
      - "--entrypoints.websecure.http.tls=true"
      - "--entrypoints.websecure.http.tls.certResolver=http"
      - "--log.level=INFO"
      - "--providers.docker=true"
      - "--providers.docker.exposedByDefault=false"
      - "--serverstransport.insecureskipverify=true"
    restart: always
    volumes:
      - /var/run/docker.sock:/var/run/docker.sock:ro
      - traefik_certs:/letsencrypt
      - /root/certs/:/etc/certs/
      - /root/certs-traefik.yml:/etc/traefik/dynamic/certs-traefik.yml
    ports:
      - "443:443"
  mq:
    container_name: mq
    image: eclipse-mosquitto:2.0.11-openssl
    depends_on:
      - netmaker
    restart: unless-stopped
    command: ["/mosquitto/config/wait.sh"]
    environment:
      NETMAKER_SERVER_HOST: "https://api.datacloud-sase.club"
    volumes:
      - /root/mosquitto.conf:/mosquitto/config/mosquitto.conf
      - /root/wait.sh:/mosquitto/config/wait.sh
      - mosquitto_data:/mosquitto/data
      - mosquitto_logs:/mosquitto/log
    expose:
      - "8883"
    labels:
      - traefik.enable=true
      - traefik.tcp.routers.mqtt.rule=HostSNI(`broker.datacloud-sase.club`)
      - traefik.tcp.routers.mqtt.tls.certresolver=http
      - traefik.tcp.services.mqtt.loadbalancer.server.port=8883
      - traefik.tcp.routers.mqtt.entrypoints=websecure
volumes:
  traefik_certs: {}
  sqldata: {}
  dnsconfig: {}
  mosquitto_data: {}
  mosquitto_logs: {}

Version

v0.16.1

What OS are you using?

Linux

Relevant log output

traefik logs:
time="2023-03-17T02:55:47Z" level=error msg="service \"netmaker-api\" error: unable to find the IP address for the container \"/netmaker\": the server is ignored" providerName=docker container=netmaker-main-server-7892ef7f2e2b4df79f17a040d81f21626672bfa6fce6a74e7ae3dfcc3b3a8280
time="2023-03-17T02:55:48Z" level=error msg="the router netmaker-ui@docker uses a non-existent resolver: http"
time="2023-03-17T02:55:50Z" level=error msg="the router netmaker-api@docker uses a non-existent resolver: http"
time="2023-03-17T02:55:50Z" level=error msg="the router netmaker-ui@docker uses a non-existent resolver: http"

netmaker-ui logs:
2023/03/17 02:51:22 [notice] 9#9: start worker process 55
2023/03/17 02:51:22 [notice] 9#9: start worker process 56
2023/03/17 02:51:22 [notice] 9#9: start worker process 57

netmaker logs:
[netmaker] 2023-03-17 03:06:53 connecting to postgres 
[netmaker] 2023-03-17 03:06:53 database successfully connected 
[netmaker] 2023-03-17 03:06:53 no OAuth provider found or not configured, continuing without OAuth 
[netmaker] 2023-03-17 03:06:53 MQ Is Already Configured, Skipping... 
[netmaker] 2023-03-17 03:06:53 REST Server successfully started on port  8081  (REST) 
[netmaker] 2023-03-17 03:06:54 connecting to mq broker at mq:1883 with TLS? false

Contributing guidelines

  • Yes, I did.
@Mydreamandreality Mydreamandreality added the bug Something isn't working label Mar 17, 2023
@Mydreamandreality
Copy link
Author

use Get Started in 5 Minutes Still unable to access Web UI

sudo wget -qO /root/nm-quick-interactive.sh https://raw.githubusercontent.com/gravitl/netmaker/master/scripts/nm-quick-interactive.sh && sudo chmod +x /root/nm-quick-interactive.sh && sudo /root/nm-quick-interactive.sh

caddy logs :

{"level":"error","ts":1679282305.1787364,"logger":"tls.obtain","msg":"could not get certificate from issuer","identifier":"broker.nm.211-136-245-99.nip.io","issuer":"acme.zerossl.com-v2-DV90","error":"HTTP 0 - "} {"level":"error","ts":1679282305.1787918,"logger":"tls.obtain","msg":"will retry","error":"[broker.nm.211-136-245-99.nip.io] Obtain: [broker.nm.211-136-245-99.nip.io] solving challenge: broker.nm.211-136-245-99.nip.io: [broker.nm.211-136-245-99.nip.io] authorization failed: HTTP 0 - (ca=https://acme.zerossl.com/v2/DV90)","attempt":4,"retrying_in":300,"elapsed":371.887309653,"max_duration":2592000} {"level":"error","ts":1679282305.2085805,"logger":"http.acme_client","msg":"challenge failed","identifier":"api.nm.211-136-245-99.nip.io","challenge_type":"http-01","problem":{"type":"","title":"","detail":"","instance":"","subproblems":[]}} {"level":"error","ts":1679282305.2086241,"logger":"http.acme_client","msg":"validating authorization","identifier":"api.nm.211-136-245-99.nip.io","problem":{"type":"","title":"","detail":"","instance":"","subproblems":[]},"order":"https://acme.zerossl.com/v2/DV90/order/qxR8Q6fzfubjqv2k7fPusw","attempt":1,"max_attempts":3}

@afeiszli
Copy link
Contributor

use Get Started in 5 Minutes Still unable to access Web UI

sudo wget -qO /root/nm-quick-interactive.sh https://raw.githubusercontent.com/gravitl/netmaker/master/scripts/nm-quick-interactive.sh && sudo chmod +x /root/nm-quick-interactive.sh && sudo /root/nm-quick-interactive.sh

caddy logs :

{"level":"error","ts":1679282305.1787364,"logger":"tls.obtain","msg":"could not get certificate from issuer","identifier":"broker.nm.211-136-245-99.nip.io","issuer":"acme.zerossl.com-v2-DV90","error":"HTTP 0 - "} {"level":"error","ts":1679282305.1787918,"logger":"tls.obtain","msg":"will retry","error":"[broker.nm.211-136-245-99.nip.io] Obtain: [broker.nm.211-136-245-99.nip.io] solving challenge: broker.nm.211-136-245-99.nip.io: [broker.nm.211-136-245-99.nip.io] authorization failed: HTTP 0 - (ca=https://acme.zerossl.com/v2/DV90)","attempt":4,"retrying_in":300,"elapsed":371.887309653,"max_duration":2592000} {"level":"error","ts":1679282305.2085805,"logger":"http.acme_client","msg":"challenge failed","identifier":"api.nm.211-136-245-99.nip.io","challenge_type":"http-01","problem":{"type":"","title":"","detail":"","instance":"","subproblems":[]}} {"level":"error","ts":1679282305.2086241,"logger":"http.acme_client","msg":"validating authorization","identifier":"api.nm.211-136-245-99.nip.io","problem":{"type":"","title":"","detail":"","instance":"","subproblems":[]},"order":"https://acme.zerossl.com/v2/DV90/order/qxR8Q6fzfubjqv2k7fPusw","attempt":1,"max_attempts":3}

This is a duplicate of #2129. Please retry with latest hotfix.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@afeiszli afeiszli

@mattkasun mattkasun

@0xdcarns 0xdcarns

Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@afeiszli @Mydreamandreality @mattkasun @0xdcarns