https://netmaker.org logo
Join Discord
Powered by
hello, I've problem with client keeps disconnectin...
# client
s
hello, I've problem with client keeps disconnecting from server and immediately connects again
j
client logs would be good (journalctl -u netclient)
is this 0.16.0 or 0.16.1?
s
0.16.1
sorry I didnt saw your second message
only error message is that it cannot connect to broker
but broker responding to ping
and right now firewall is sdisabled for this server
j
how is netmaker installed? Any logs on server or MQ?
s
by docker compose
I'm looking at the logs and no errors on server site
j
I think @bored-solstice-58967 will have to help with this one but he's offline.
s
wait
time="2022-10-17T22:09:41Z" level=error msg="Error during connection: readfrom tcp 172.19.0.2:60686->172.19.0.4:8883: remote error: tls: bad certificate" on traefik
on MQ its keep showing that client is closing its connection
all the time
its inside docker problem
j
Hmmm what instructions did you follow to install?
s
from docs
I mean quick install
now I've tried set this up again and netmaker container doesnt recieve IP address from docker
ok, there is something new
[netmaker] Fatal: failed to configure MQ: MQ admin password not provided
but I didnt set this
there was only a variable
in quick install there is variable $MQ_ADMIN_PASSWORD
but it has no value
shoud i define this variable before I will type docker compose up?
echo $MQ_ADMIN_PASSWORD gives me nothing
b
You should set the mq password in thd docker-compose file
s
ok, already one
now I have error from traefik
time="2022-10-17T23:56:49Z" level=error msg="Error during connection: read tcp 172.24.0.2:48624->172.24.0.6:8883: read: connection reset by peer"
its MQ
like there is no communication between MQ and Traefik containers
b
can you send the MQ logs?
s
Now I cannot reach the server
WTH
[netmaker] 2022-10-18 08:32:24 connecting to mq broker at mq:1883 with TLS? false [netmaker] Fatal: Admin: could not connect to broker, token timeout, exiting ...
netmaker
1666082019: Client disconnected, not authorised. 1666082023: New connection from 172.21.0.3:55162 on port 1883. 1666082023: Client disconnected, not authorised. 1666082023: New connection from 172.21.0.3:55172 on port 1883. 1666082023: Client disconnected, not authorised. 1666082027: New connection from 172.21.0.3:55188 on port 1883. 1666082027: Client disconnected, not authorised. 1666082027: New connection from 172.21.0.3:55198 on port 1883. 1666082027: Client disconnected, not authorised.
and Traefik:
time="2022-10-18T08:32:56Z" level=error msg="service \"netmaker-api\" error: unable to find the IP address for the container \"/netmaker\": the server is ignored" providerName=docker container=netmaker-root-ef65ef8af9b9f15434ac2cdc6647bbb829b730ee27c9cda4928af3b911829b47 time="2022-10-18T08:33:29Z" level=error msg="service \"netmaker-api\" error: unable to find the IP address for the container \"/netmaker\": the server is ignored" container=netmaker-root-ef65ef8af9b9f15434ac2cdc6647bbb829b730ee27c9cda4928af3b911829b47 providerName=docker time="2022-10-18T08:34:02Z" level=error msg="service \"netmaker-api\" error: unable to find the IP address for the container \"/netmaker\": the server is ignored" providerName=docker container=netmaker-root-ef65ef8af9b9f15434ac2cdc6647bbb829b730ee27c9cda4928af3b911829b47 time="2022-10-18T08:34:26Z" level=error msg="Error during connection: read tcp 172.21.0.2:59826->172.21.0.5:8883: read: connection reset by peer" time="2022-10-18T08:34:46Z" level=error msg="Error during connection: read tcp 172.21.0.2:49232->172.21.0.5:8883: read: connection reset by peer"
I think its a bug in netmaker
unable to fund container IP inside docker network... No kidding...
b
could you remove the 
mosquitto_data
volume and run 
docker-compose down && docker-compose up -d
i believe since you intially didn't configure MQ_ADMIN_PASSWORD you are facing this issue
Follow these steps: 1. docker-compose down 2. docker volume rm root_mosquitto_data 3. docker-compose up -d
s
a have ACME or sth error
I dont know what is ths
ok, I will try
b
can you paste that error here?
s
time="2022-10-18T08:45:32Z" level=error msg="Unable to obtain ACME certificate for domains \"XXXXXXXXXXXXXXXXXXXX\": cannot get ACME client ACME challenge not specified, please select TLS or HTTP or DNS Challenge" rule="Host(
XXXXXXXXXXXXXXXXX
)" providerName=http.acme ACME CA="https://acme-v02.api.letsencrypt.org/directory" routerName=netmaker-ui@docker time="2022-10-18T08:45:36Z" level=error msg="Error while connecting to backend: dial tcp 172.23.0.5:8883: connect: connection refused"
sorry I put XXXXX on my domain
is there way to connect netmaker to mq without tls?
its unnecessary in docker network
I still have this error: [netmaker] 2022-10-18 08:39:54 REST Server successfully started on port 8081 (REST) [netmaker] 2022-10-18 08:39:54 connecting to mq broker at mq:1883 with TLS? false
password for MQ is set for sure
b
is the netmaker container running now?
s
yes
there is some kind of cerificate error, tls error
certifacte in traefik container
tls on netmaker container
maybe standalone instalation will be better?
because I see there is bug in docker
it must be but from netmaker because it cannot connect from container to container
b
if the MQ connection went thorugh from netmaker container there is no issue with the docker networking because it connects to MQ through the docker network
what is the cerificate error you are getting?
s
time="2022-10-18T08:45:32Z" level=error msg="Unable to obtain ACME certificate for domains "XXXXXXXXXXXXXXXXXXXX": cannot get ACME client ACME challenge not specified, please select TLS or HTTP or DNS Challenge" rule="Host(XXXXXXXXXXXXXXXXX)" providerName=http.acme ACME CA="https://acme-v02.api.letsencrypt.org/directory" routerName=netmaker-ui@docker
@bored-solstice-58967 but it wont connect
i see my messages wasnt sent
I will paste again
[netmaker] 2022-10-18 08:39:54 REST Server successfully started on port 8081 (REST) [netmaker] 2022-10-18 08:39:54 connecting to mq broker at mq:1883 with TLS? false password for MQ is set for sure
b
were there any logs after this?
s
no
the same error all the time
every 5 seconds
b
that is not an error
which error are you talking about the ACME error?
s
some certigficate
I dont know
I dont understand all this certificate stuff
for me its doint "something"
doing
b
so your issue with MQ has been resolved right?
s
no
b
can you paste your MQ logs here now?
s
its not working
give me an email
because i see if i'm pasting it here you dont see it
I cant connect to UI
b
Copy code
[netmaker] 2022-10-18 08:39:54 REST Server successfully started on port  8081  (REST) 
[netmaker] 2022-10-18 08:39:54 connecting to mq broker at mq:1883 with TLS? false
i see these logs but this is not an error
s
I cant log in
nothing I can do
its telling me some crap about unsecure connection
and there is no accept risk
i just cant acces to web ui,
b
just wait one thing at a time can you just send your mq logs 
docker logs mq
s
"Waiting for netmaker server to startup"
but its running
3ba6e0f89688 gravitl/netmaker:v0.16.1 "./netmaker" 4 minutes ago Up 23 seconds 8081/tcp, 0.0.0.0:51821-51830->51821-51830/udp, :::51821-51830->51821-51830/udp netmaker
b
the issue is with your traefik certs then can you send your docker-compose file here
s
how to disable certs?
i dont want them
these certification thing is pain in the a**
sorry I cant send my docker compose file
not by discord because its blocking sending files
oh now its working
b
if you are using your own domain other than 
nip.io
it should be a vaild domain with DNS entry
s
nip.io is not my domain
where you see it?
there is nothing about nip.io domain in my compose file
I've just removed my domain and IP before I've send a file
but I'm using other domain than nip.io
b
okay
s
https://nip.io/ its something here
its not my domain
so... where is the problem?
b
you said it's working now??
s
no
its not
I cant get to webui
conteiners are working but nothing else
webui not working
b
do you have a DNS entry for your domain?
s
for api dashboard etc?
b
yes
s
how?
its inside docker
shoud I create entries for api, dashboard and broker?
for each port?
like through nginx proxy manager?
b
can you do 
nslookup broker.<your domain>
does it return an ip address
s
yes
but when I'm going to dashboard it says that connection is insecure
and nothing I can do
b
What is output of docker log traefik
s
:: POST :: https://acme-v02.api.letsencrypt.org/acme/new-order :: urn:ietf:params:acme:error:rateLimited :: Error creating new order :: too many certificates (5) already issued for this exact set of domains in the last 168 hours: api.MYDOMAINISHIDE, retry after 2022-10-19T17:08:37Z: see https://letsencrypt.org/docs/duplicate-certificate-limit/" ACME CA="https://acme-v02.api.letsencrypt.org/directory" providerName=http.acme routerName=netmaker-api@docker rule="Host(
api.MYDOMAINISHIDE
)"
MYDOMAINISHIDE is my domain but i dont want to paste it
b
Thats your problem. You have hit the letsencrypt rate limit for generating certificates for your domain, probably due to stopping and starting docker too often.
You can follow the links from the logs but there is not much you can do except wait until letencrypt will issue you certificates
s
ok
11 Views
PreviousNext
Powered by