My YunoHost server
Hardware: Raspberry Pi 4 at home
YunoHost version: 11.2.9.1 (stable)
I have access to my server : Through SSH | through the webadmin | direct access via keyboard / screen | …
Are you in a special context or did you perform some particular tweaking on your YunoHost instance ? : no
My IT skill : Proto newbie confortable with command line
Description of my issues
Issue n°1 cant share logs with Yunohostpastelog
error message : Error: Something wrong happened while trying to paste data on paste.yunohost.org : HTTPSConnectionPool(host=‘paste.yunohost.org’, port=443): Read timed out. (read timeout=30)
-Issue N°2 Get Let’s encrypt certificates tried after a fresh Yunohost
Error message with `sudo yunohost domain cert-install pi-scine.xyz:
sudo yunohost domain cert-install pi-scine.xyz
Warning: 'yunohost domain cert-install' is deprecated and will be removed in the future
Warning: 'yunohost domain cert-install' is deprecated and will be removed in the future
Warning: 'yunohost domain cert-install' is deprecated and will be removed in the future
Info: Now attempting install of certificate for domain pi-scine.xyz!
Warning: The configuration file '/etc/resolv.dnsmasq.conf' has been manually modified and will not be updated
Info: Parsing account key...
Info: Parsing CSR...
Info: Found domains: muc.pi-scine.xyz, pi-scine.xyz, xmpp-upload.pi-scine.xyz
Info: Getting directory...
Info: Directory found!
Info: Registering account...
Error: Error registering:
Url: https://acme-v02.api.letsencrypt.org/acme/new-acct
Data: b'{"protected": "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", "payload": "eyJ0ZXJtc09mU2VydmljZUFncmVlZCI6IHRydWV9", "signature": "k05P33NKX_GRkseQlBQDlY8SQAtRj_pWONYrc4Nhw9ke78_ctetrKwKKU1Sn-xjU91PzkM9U0G9dTgME0Qv4mdWvRNSAkw8OjX5Q8MfpWs4j6XmASOxW3mtRBRjiklKNeksJkAbgQ6gTmRjmkeBV6tkMBp_f2KHFhj7nMDbRy0x6OsoM1xPT-5mf36KWjDu33RCJF2s8XGP1_hiHtqgKincV9aXlJOnnz3o2Bmk6x6P_y9HZC3wGeQrIlz5euTR5ZC84vdSDEp1va-czYwgrLO9_QuEY757TLgGslnsdsJxWntVhg0oCh5XRAiiFJvdG8o_XqG_MaQygXJ9_3ZybSB9eBbQ08RuzDbtfGAV1Cgdi3deC4cAn8KCuV7vVtXk_AsMolOm5kcPyk0mcwJDqo911IS3drRB25deNpVVkknEKYrZJ6DmA9qyH9XKXA1PcLUpo4VQTxzvRBHgpO_c36QXu53Oybk0cHsROR39h7PpziTfB5FqRv9KdMY5y3IHE"}'
Response Code: None
Response: Remote end closed connection without response
Error: Certificate installation for pi-scine.xyz failed !
Exception: Could not sign the new certificate
Info: The operation 'Install a Let's Encrypt certificate on 'pi-scine.xyz' domain' could not be completed. Please share the full log of this operation using the command 'yunohost log share 20240203-124347-letsencrypt_cert_install-pi-scine.xyz' to get help
Error: Please consider checking the 'DNS records' (basic) and 'Web' categories of the diagnosis to check for possible issues that may prevent installing a Let's Encrypt certificate on domain pi-scine.xyz.
Error: Let's Encrypt certificate install failed for pi-scine.xyz
I am using VPN client configured with a .cube file from Aquilnet
Everything is ok in the diagnostic except:
**1- Le reverse-DNS n'est pas correctement configuré en IPv4.** Il se peut que certains emails ne soient pas acheminés ou soient considérés comme du spam.
* DNS inverse actuel : `vpn-0-248.aquilenet.fr`
Valeur attendue : `pi-scine.xyz`
**2- Aucun reverse-DNS n'est défini pour IPv6**. Il se peut que certains emails ne soient pas acheminés ou soient considérés comme du spam.
**3- Le fichier de configuration `/etc/resolv.dnsmasq.conf` semble avoir été modifié manuellement.**
*C'est probablement OK si vous savez ce que vous faites ! YunoHost cessera de mettre à jour ce fichier automatiquement ... Mais attention, les mises à jour de YunoHost pourraient contenir d'importantes modifications recommandées. Si vous le souhaitez, vous pouvez inspecter les différences avec `yunohost tools regen-conf dnsmasq --dry-run --with-diff` et forcer la réinitialisation à la configuration recommandée avec `yunohost tools regen-conf dnsmasq --force`*
About issue n°2
In VPN clien app I have this configured in the DNS & IPV6 tab:
*### DNS
*DNS resolvers*
*Custom DNS resolvers*
*185.233.100.100, 185.233.100.101*
* *185.233.100.100*
*185.233.100.101*
### IPv6
*IPv6 prefix (I shouldn't share that right?)*
*IPv6 (I shouldn't share that right?)*
I am not sure what is safe to share here with the Output of : yunohost tools regen-conf dnsmasq --dry-run --with-diff
Should I just Hide IPV4 and IPV6 ?
I hope I have been clear enough.
Thank you very much for the great work on YUNOHOST , really amazing and straight forward
Thanks in advance for the help