What type of hardware are you using: Virtual machine What YunoHost version are you running: 12.1.27 How are you able to access your server: The webadmin
SSH Are you in a special context or did you perform specific tweaking on your YunoHost instance ?: I have the wireguard server app installed, in case that’s relevant.
Describe your issue
I try to update my server but app.yunohost.org refuses connection for some time now. Am I banned or anything like that?
I can’t connect via curl it either:
root@server:~# curl -4 "https://app.yunohost.org/default/v3/apps.json"
curl: (28) Failed to connect to app.yunohost.org port 443 after 130276 ms: Couldn't connect to server
root@server:~# curl -6 "https://app.yunohost.org/default/v3/apps.json"
curl: (28) Failed to connect to app.yunohost.org port 443 after 130670 ms: Couldn't connect to server
root@xd0:~# curl -6 "https://google.com"
<HTML><HEAD><meta http-equiv="content-type" content="text/html;charset=utf-8">
<TITLE>301 Moved</TITLE></HEAD><BODY>
[...]
Share relevant logs or error messages
root@server:~# yunohost tools update
Info: Fetching available upgrades for system packages…
Info: Updating application catalog…
Error: Unable to download the default app catalog: Failed to connect to https://app.yunohost.org/default/v3/apps.json... maybe the service is down, or you are not properly connected to the Internet in IPv4/IPv6.
root@xd0:~# traceroute app.yunohost.org
traceroute to app.yunohost.org (80.67.164.12), 30 hops max, 60 byte packets
1 85.235.64.2 (85.235.64.2) 0.374 ms 0.319 ms 0.406 ms
2 94.16.25.158 (94.16.25.158) 0.526 ms 0.483 ms 0.461 ms
3 nug-b2-link.ip.twelve99.net (213.248.86.70) 0.400 ms 0.406 ms 0.375 ms
4 prs-bb2-link.ip.twelve99.net (62.115.112.214) 16.054 ms 16.032 ms 16.121 ms
5 * prs-b3-link.ip.twelve99.net (62.115.118.63) 16.526 ms 16.536 ms
6 gitoyen-ic-359635.ip.twelve99-cust.net (80.239.160.201) 15.855 ms 15.880 ms 15.828 ms
7 globenet-gw1.gitoyen.net (80.67.168.179) 16.069 ms 16.200 ms 16.060 ms
8 * * *
[...]
30 * * *
Wireguard […] Yeah that might very well be related
Yeah, I’m usually not too bad at networking stuff. It’s just that I can reach any other server on the internet just fine.
In case there’s something like a blocklist or firewall on app.yunohost.org:
my IP is: xx.xxx.xx.xx
IPv6: xxxx:xxxx:xx:xxx::/64
That’d be netcup’s address ranges: 85.235.64.0/22 and 2a03:4000::/32
Thanks. After your suggestion I booted a live CD and that worked. I’ve dug down into the firewall rules. And turns out my postfix jail of fail2ban banned the yunohost.org IP! Now with unbanning it, it returned to working fine. Sorry, I could have found that on my own. I’ll report a seperate issue if I find this happened due to some error within yunohost. Seems for some reason I set the postfix fail2ban to aggressive mode. That blocked yunohost’s ip after each automatic diagnosis. Probably in the ddos filter. I’ve changed the mode to extra now. But I believe that doesn’t apply to other people who didn’t mess with the settings.
Nevermind it’s always interesting to hear people’s story with YunoHost and you may not be the only person encountering this specific issue. Thanks for the follow-up explanation!
I’ve had a similar connection problem after I installed Tailscale on the Yunohost machine:
Fetching available upgrades for system packages…
Yapılacak yeni bir şey yok. Her şey zaten güncel.
W: Failed to fetch https://deb.debian.org/debian/dists/bookworm/InRelease Temporary failure resolving 'deb.debian.org'
W: Failed to fetch http://security.debian.org/debian-security/dists/bookworm-security/InRelease Temporary failure resolving 'security.debian.org'
W: Failed to fetch http://deb.debian.org/debian/dists/bookworm-updates/InRelease Temporary failure resolving 'deb.debian.org'
W: Failed to fetch https://packages.sury.org/php/dists/bookworm/InRelease Temporary failure resolving 'packages.sury.org'
W: Failed to fetch https://pkgs.tailscale.com/stable/debian/dists/bookworm/InRelease Temporary failure resolving 'pkgs.tailscale.com'
W: Failed to fetch https://dl.yarnpkg.com/debian/dists/stable/InRelease Temporary failure resolving 'dl.yarnpkg.com'
W: Failed to fetch http://forge.yunohost.org/debian/dists/bookworm/InRelease Temporary failure resolving 'forge.yunohost.org'
W: Some index files failed to download. They have been ignored, or old ones used instead.
Something went wrong while updating the cache of APT (Debian's package manager). Here is a dump of the sources.list lines, which might help identify problematic lines:
sources.list:deb https://deb.debian.org/debian bookworm main
sources.list:deb http://security.debian.org/debian-security bookworm-security main contrib
sources.list:deb-src http://security.debian.org/debian-security bookworm-security main contrib
sources.list:deb http://deb.debian.org/debian/ bookworm-updates main contrib
sources.list:deb-src http://deb.debian.org/debian/ bookworm-updates main contrib
sources.list.d/yarn.list:deb [signed-by=/etc/apt/trusted.gpg.d/yarn.gpg] https://dl.yarnpkg.com/debian/ stable main
sources.list.d/extra_php_version.list:deb [signed-by=/etc/apt/trusted.gpg.d/extra_php_version.gpg] https://packages.sury.org/php/ bookworm main
sources.list.d/tailscale.list:deb [signed-by=/usr/share/keyrings/tailscale-archive-keyring.gpg] https://pkgs.tailscale.com/stable/debian bookworm main
sources.list.d/yunohost.list:deb [signed-by=/usr/share/keyrings/yunohost-bookworm.gpg] http://forge.yunohost.org/debian/ bookworm stable
Updating application catalog…
Unable to download the default app catalog: https://app.yunohost.org/default/v3/apps.json adresine bağlanılamadı... hizmet geçici olarak kapalı olabilir ya da IPv4/IPv6 üzerinden internete düzgün bir şekilde bağlı değilsiniz.
Yapılacak yeni bir şey yok. Her şey zaten güncel.