Firstly, I’ve only been using Ubuntu Linux for about 2 years.
I am a total newb when it comes to networks and security.
But I wanted to learn, so I bought an Odroid HC4 and have it running openmediavault.
Tried installing Nextcloud and faced several hurdles that I am overcoming very slowly.
First tried to use a reverse-proxy as I thought that was the most secure way, but after failing the whole day, I stopped trying and moved on to the installation without reverse-proxy.
Now finally at the Nextcloud AIO v7.2.1 set up screen when browsing to https://my-Odroid-IP:8080
I can’t get past this point, I’ve set different A records and got different error messages.
The one I am currently facing is: “It seems like the ip-address is set to an internal or reserved ip-address. This is not supported.” Sounds like this is because I set an A-record for a subdomain ‘nextcloud.mydomain.com’ which points to the IP address of my Odroid. But I have no clue and would love some guidance.
Been searching for solutions and stumbled upon Reddit threads where people are saying that it’s a bad idea to have a public facing Nextcloud instance, when you have such low level skills around networking and security. Kind of makes me worry that I bit up more than I can chew. But anyway, I’d love to learn!
Any advice or tips on how to move forward with the domain name stuff?
And maybe some tips on what I need to learn or tools to use to be able to keep my cloud secure?
So the thing is that AIO can only get a valid certificate automatically which it requires for certain components if you have a domain, configure dns to point at your home network and open port 443 and port that to your server.
I was under the impression that if it’s not public facing, I won’t be able to access Nextcloud while traveling? Although I did read that it could be not public, and you could still access it through VPN. But that seems like a whole other rabbit hole to go into
Not possible with port forwarding from my router settings I guess?
Not too keen on changing ISP at the moment. Also a bit worried about opening ports to potential hackers, because of my limited knowledge around networks and security.
It seems like I can’t access openmediavault anymore either?
Before I just had to browse to the IP of my Odroid, but now that gives me:
Any idea why my OpenMediaVault workbench isn’t available anymore on my Odroid HC4 IP address?
I could access it before getting Nextcloud AIO going. Now domain going, but can’t open port 443 due to ISP. Leaving on a 6 months trip soon, so can’t really change ISP currently. Will learn more about security before running a public Nextcloud.
So project Nextcloud on hold for now, would still like to access OMV, though.
Any guidance?
Was able to open port 443, but still getting the error: The server is not reachable on Port 443. You can verify this e.g. with ‘https://portchecker.co/’ by entering your domain there as ip-address and port 443 as port.
When I check portchecker.co with my domain and port 443 it says the port is open. So what could be going wrong here?
It’s a bummer, thought I finally could get it going but nah
Would this work-around work for Nextcloud?
“I created another A-Record with my domain’s DNS provider (namecheap) that simply gave the LAN address of the webserver. Now, users on my LAN can use that subdomain, and their request never even leaves the network, preventing NAT Loopback.”
I had trouble with that reverse proxy, not sure why I couldn’t get it going.
Also, this makes my Nextcloud inaccessible while I’m at the other side of the world, right?
Kinda defeats the purpose for me, as I travel a lot.
So, about to travel back to where I got my Odroid and failed Nextcloud setup.
How can I make sure the new router I buy will support NAT Loopback?
When I look at routers online, none of the specs mention anything about NAT Loopback or hairpinning.
Would love to get Nextcloud going this time on my own home server.
I did a Cisco Networking Basics course to understand this stuff better.
Bought a Xiaomi AX3000T, but now found out that it doesn’t have a DSL port, so I will still need my ISP router. I could bridge or connect the new router to the ISP router.
But if my ISP router most likely doesn’t support NAT loopback, will it mean that a bridged router connected to the ISP router, will cause the same problems with Nextcloud? As in, it will also not support NAT Loopback?
Continuing the learning process and trying to get set up.
Almost there again, it feels like, but now running into a different error message when trying to put my domain name on the Nextcloud AIO v9.1.0 installation screen:
The domain is not reachable on Port 443 from within this container. Have you opened port 443/tcp in your router/firewall? If yes is the problem, most likely that the router or firewall forbids local access to your domain. You can work around that by setting up a local DNS-server.
Is this still the same type of error?
I’m still connected to the ISP provided DSL modem/router at the moment.
