Closed Kuchenmampfer closed 2 months ago
Looking into the related commit 9b5be68
, I just found that there is a new variable matrix_playbook_public_matrix_federation_api_traefik_entrypoint_host_bind_port_udp
and am now trying out what happens if I specifically set that to '127.0.0.1:8449'
.
This also fixes the port issue. So I guess federationtester wanting to request from the IP is a separate issue.
For the port, I think the main question is whether that ..._udp
variable should fall back to the regular variable or if it shall be added to Fronting the integrated reverse-proxy webserver with another reverse-proxy and be mentioned in the changelog.
I found a workaround for the IP issue by adding the following to my Caddyfile:
https://152.53.21.223:8448 {
handle {
redir https://matrix.kuchenmampfer.de:8448{uri}
}
}
Its kinda hacky though, so I would be happy about suggestions where I might continue debugging.
Thank you for this investigation!
I've tried to add more documentation/examples about this in a56c2f8921bfaff6c31ef1669e14b04c022e386d.
Describe the bug After I updated the playbook and ran it, traefik does not want to start because it demands port 8448, which is already bound to my Caddy reverse proxy, in addition to port 8449.
To Reproduce The relevant part in my
vars.yml
file looks like this:Today, I updated the playbook and ran it to keep my server up to date. However, at the end (after 'wait a bit to let services start or fail'), several services failed, the first of which was traefik. So I checked its journal and saw that it complained about port 8448 being already bound to something else. That something else was my Caddy reverse proxy which was supposed to reverse proxy that port to traefik on port 8449. I disabled that part in Caddy and then traefik happily started. However, without my Caddy reverse Proxy, Federation did not work either. So I disabled HTTP/3. This solves the port issue, but now somehow the federation tester wants to request from my IP (
https://152.53.21.223:8448/_matrix/key/v2/server
) which does not work because Caddy only listens on the domain and I believe that is required for https to work.Expected behavior traefic only binds port 8449 and not port 8448
Matrix Server:
Additional context The relevant part of my Caddyfile: