Local SSL Cert
Hello! Trying to setup Local SSL certificate using the instructions here: https://runtipi.io/docs/guides/local-certificate
Couple items:
1. The page says:
The default domain for the certificate is tipi.lan. But when i see the certificate that i downloaded from settings, it reads as tipi.local (which is what is in the local domain in Runtipi' settings page)
2. Anyways, i added both .lanand .local to my local AdGuard DNS rewrites section and from the query logs in AdGuard, i see the responds to .lan and NOT to .local !
3. And when i try it in a browser - it comes back with 404 page not found !
Any idea what is going on and what i am missing?
14 Replies
Try to remove the certificates
rm -f traefik/tls/cert.pem traefik/tls/cert.key then restart runtipi to regenerate the certificates
Then visit the domain, download the certificate, trust it and restart your browserI need to execute this command on the machine that is hosting / running runtipi.. is that correct?
Yeah inside the runtipi directory
Okay.. ran that command, restarted runtipi, downloaded the certificate and still comes back with
404 page not found
Tried it in private browsing and still get the same.
But tipi.local responds?
What local domain have you set in the settings?
tipi.local is what is setup
No it does not. The browser sits there spins for a while and comes back with
Site cant be reachedhere is what
tipi.local comes back with
This means that your DNS isn't resolving it
If you have configured tipi.local in the settings then the certificates will be for tipi.local
Tipi.lan is not related to your setup
Thats exactly why i posted here since it does not make sense to me either..
Here is what shows up in the Adguard
query log and what is setup on the DNS rewrite
Also per adguard the DNS rerwite seems to be working!!
Interestingly here is what i get with a nslookup. Any ideas what is going on?
nslookup tipi.lan Server: 127.0.0.53 Address: 127.0.0.53#53 Non-authoritative answer: Name: tipi.lan Address: 192.168.5.10
nslookup tipi.local ;; Got SERVFAIL reply from 127.0.0.53 Server: 127.0.0.53 Address: 127.0.0.53#53 ** server can't find tipi.local: SERVFAIL
Seems like your DNS server isn't responding with a result
Here is something interesting that i noticed - i have no issues with the https and getting to the webpage on windows, but it just does not seem to work at all on LinuxMint.
I googled around a bit and most of the stuff point to hard code the DNS server to the network adapter, not ideal on a wifi adapter. I suspect its a linux thing 🤷♂️ Thoughts (in case someone else has run into something similar)?
(Also i realize i am getting back to this after a long time... just been busy with stuff and got back to working on this now.)