Setting up Netbird on Proxmox with Authentik and Nginx.
I am rather inexperienced with networking concepts, so I ask your forgiveness beforehand for my dimwittedness.
I have a Proxmox server, and on that server I have three Debian LXC containers, one for Nginx and the UI which I have chosen for managing it, one for Authentik, and one I want to setup Netbird in.
Authentik and Netbird are going to be run in docker containers within their respective LXC containers.
...
Request failed with status code 401
Hey i self host netbird with the tutorial from Jims Garage and his files and for auth provider i use Authentik.
the authentikcation and redirect to authentik workd but when i then get redirectet wo netbird after authentik login i get
Request failed with status code 401
Error: Token invalid
https://pixelvault.co/i53kb...Extra DNS label not resolving
Hi!
I spun up a client with
NB_EXTRA_DNS_LABELS=mqtt in the enviorment, however I can't get that to resolve.
dscacheutil -q host -a name .. does not work for the extra label, but for the peer name.
Any idea how to dig into this?...Relay behind traefik not connecting
Has anyone successfully setup a geolocated relay server with behind a proxy
I currently have 3 relay servers all connecting via rel://ip:33080
This works well however, I tried to put them behind a reverse proxy (traefik) to make it a secure? Connection to use rels://relay.domain:443 but this seems to break all relayed connections. ...
DNS Resolution fails for some users but not others
I have netbird setup in my AWS environment where I have my management node in a public subnet, and peering nodes in a private subnet so that I can access resources such as hosted services within the private subnet by DNS when netbird is enabled.
The services themselves are ECS services with an internal Application Load Balancer in front, and a Route 53 domain in a public hosted zone pointing to the ALB. In general, the setup works great.
However for some users, the DNS resolution will work for a short period of time, and later begin failing for seemingly no reason, at least not that I have been able to track down. The weird thing is, it will stop working for a couple of users, but work fine for others. I tried setting up nameservers in the Netbird UI, but to no success....
Netbird Client Unable to Connect Behind Apache2 Reverse Proxy
Describe the problem
I am unable to get a netbird client to connect to my self hosted netbird server. I can successfully register the client and I can see it in the management dashboard but after that it never connects and never shows that it has connected since. Client reports that it is constantly "connecting" and then eventually shows that the client failed to connect after sometime. I am not sure what debugging I could enable or if you have any ideas as to what to troubleshoot?
To Reproduce
Utilize Apache2 as a reverse proxy with the attached config...
Netbird connection relayed between VMs in Proxmox (and also to/from some hosts on the same LAN)
Describe the problem
Instead of P2P connection, I get relayed Netbird connections between VMs (TurnKey Linux) running in the same Proxmox hosts. This also happens for some (random) hosts on the same LAN.
I have netbird running in 2 VPS outside the LAN, but the Netbird connection between these and my VMs is P2P though.
This confuses me. ...
Fully proxy an internal IP via a Netbird client? (Similar to Tailscale `TS_DEST_IP`)
Hey 👋 Does anyone know if Netbird supports a similar function to TS_DEST_IP in Tailscale (docs)? I'm looking to maybe switch, but that's a feature I'm using and I find it useful as I can expose an internal resource with a Netbird IP address without installing Netbird directly on it.
Solution:
This seems to work, but I'm a bit scared it might break down, either because Netbird will do some things to the iptables periodically, or because a future update of Netbird might break it.
```yaml
- image: netbirdio/netbird:latest
name: netbird...
New user taking old users laptop, cannot connect
If a user in my company finishes up, and that computer is given to a new staff member, this new staff member cannot connect to Netbird(browser says Login Successful) but hovering over the Netbird icon its stuck at "Connecting".
The solution is to find the computer name, and delete this peer from the list of peers in Netbird admin.
This is hard to manage at scale, trying to keep track of who has finished up, who has inherited a laptop, etc.
...
Netbird resolving Hostname but not IP address
When trying to hit a web server if I use the Netbird Hostname it works but when I used the Netbird IP address of remote device it does not resolve? What could I do to troubleshoot?
Nginx vpn internal domains
How can I expose a service (Manager) only over Netbird VPN using a custom internal domain name?
I have a dedicated server running Nginx and Docker containers (including coturn, netbird-agent), and multiple VMs also running Docker (+ containers and netbird-agents) using multipass. One of the VMs hosts a Django service accessible via manager.domain.com, with Nginx on the dedicated server proxying to VM_IP:8080.
I want to remove public access to manager.domain.com and make Django only accessible through Netbird VPN using manager.domain.internal. When users are connected to the VPN, they should be able to type manager.domain.internal in their browser and access Django....
Netbird SSH
Is Netbird SSH just like Tailscale ssh where it runs its own ssh server and anyone allowed by ACL can login without credentials?
Connection Time out on ping peers/devices
I'm facing issue or I'm not able to ping any device/peers in my network.
I'm trying it out, it should be straight forwards, but for some reason im not able to ping....
STUN/Signal password?
Howdy,
Stun/Signal do not come with passwords in the default management.json.tmpl; is it recommended to add passwords? Concerned of exposing services publicly.
Thanks all~...
Zitadel Added Users Does not show up in Netbird
Trying to configure additional users to be able to manage and configure peers in Netbird. I added them to Zitadel but they do not appear in Netbird.
Not sure how to troubleshoot?...
New Install Cannot Access Peers
I have done a new self hosted installation running on a VM. I have been able to get the peers connected. But when trying to connect to each peer to ping or use resources I cannot access. Not sure how to troubleshoot.
mac@MacBook-Pro ~ % netbird status
OS: darwin/arm64
Daemon version: 0.45.1...
How to connect iPhone/iPad to NB network
I have an NB network up and I have two peers: a TrueNas server as well as my macbook. When I installed NB on both of these devices, I was never prompted to connect to a specific server, it sort of just connected these two peers to the same NB network since it was on the same wifi network (I think).
Now I want to connect my iPhone but I have no idea what to enter into the server address field. Is there any way I can ascertain this information?...
Trouble Accessing TrueNAS Over NetBird – Possible Misconfig in Resources Tab
Hey everyone, I’ve got NetBird up and running, and what I’m trying to do is fairly simple, but I’m hitting a wall.
On my local network, I have:
A MacBook,
A TrueNAS server (running NetBird inside an Ubuntu VM),...
Access internal network of a peer
Hey, so i have the netbird server running fine. I have a DC and a remote PC connected. I need to set the remote pc DNS to the DC IP. However, not sure if i should just set DNS to the netbird peer IP of the DC, or get a connection to the internal IP of the DC somehow through netbird.
The DC has an external network interface, not relevant for now
It also is acting like a DHCP server with the default gateway as 192.168.100.1...
Selfhosted Netbird w/ Zitadel - cross domain logins
Hey Hey!
I am now setting up netbird again but with Zitadel, everything works well if users that exist in the same organization as the netbird project, as in all their information is correctly pulled into netbird. However, I also need to allow external users to log in on a selective basis. I am planning on doing so by creating a new organization lets call it "external-org" and create my external users in this org then allowing them a role for netbird via organization grants.
These new external users are able to log in okay, however their information is not pulled in correctly... Only their zitadel user ID is pulled in, no email, user name nothing. Has anyone seen this or has any ideas on what I could do to allow external user info to be pulled in?
...
