Trouble following WriteFreely blog from Mastodon instance on same server

agger-magenta · February 4, 2024, 11:15am

Hi there, hope everyone is OK

I’m on YunoHost 11.2.9.1 self-hosted on a box in my living room, domain apps.modspil.dk.

I’m running Mastodon 4.2.5~ynh1 and WriteFreely 0.14.0~ynh2.

Whenever I try to search for my WriteFreely blog handle (@agger@freely.modspil.dk) on my Maston instance (mastodon.modspil.dk), I get this popup error:

I thought it might be a problem that it tries to contact the blog over the local network, so I tried to add the blog domain and the public IP in etc/hosts, but it didn’t help.

On other instances, people can easily see and follow the blog. Does anyone have a cue as to what might be going on?

Thanks in advance for any response.

agger-magenta · February 4, 2024, 8:06pm

Hmmm, it seems to be related to this:

" There was a patch made to Mastodon way back when that means you can’t follow people on servers with private IP addresses.

So if you have a mastodon server and other ActivityPub servers on the same public IP address and you use reverse proxies to route requests to internal IP addresses it’ll fail.

And if you understand this, you understand either how to fix it (turn on loopback NAT on your router) or will know it’s impossible to fix on your setup depending on your router."

If he’s right, the problem is that my router won’t allow my Mastodon server to connect to the WriteFreely blog on the public IP, and there’s a validation in Mastodon that refuses to follow people on private IPs.

One solution would be to monkeypatch Mastodon to allow privat IPs (because why not?).

Another would be for me to attempt to enable NAT loopback on my router which a) it’s doubtful it supports, it’s a cheap router and 2) I can’t do ATM because I’m in England and my router is in Denmark.

agger-magenta · February 4, 2024, 10:05pm

Maybe the correct solution here is to regard Mastodon’s refusal to follow accounts on private IPs is a bug with respect to Yunohost. I think the proposed solution of changing the router configuration is a bit of a hack.

After all, it’s not a problem if the DNS name resolves to a private IP locally on the server, given that the same DNS name resolves to the correct public IP outside of the server’s LAN.

Hence this could be fixed by removing this check for private IP in the YNH Mastodon package. Does anyone have an opinion on this?

agger-magenta · February 5, 2024, 8:36am

Following the conclusions above, I created an issue in the Mastodon YNH repo about this:

github.com/YunoHost-Apps/mastodon_ynh

Unable to follow accounts from other ActivityPub services on the same host

opened 08:33AM - 05 Feb 24 UTC

agger-magenta

I’m on YunoHost 11.2.9.1 self-hosted on a box in my living room, domain apps.mod…spil.dk. I’m running Mastodon `4.2.5~ynh1` and WriteFreely `0.14.0~ynh2`. Whenever I try to search for my WriteFreely blog handle (@agger@freely.modspil.dk) on my Mastodon instance (mastodon.modspil.dk), I get this popup error: ![image](https://github.com/YunoHost-Apps/mastodon_ynh/assets/4435559/1abb4c95-7b4a-46e5-bf8f-5c9148dc7301) The reason is, as explained [here](https://wordpress.org/support/topic/422-mastodonhostvalidationerror/#post-16616906), that Mastodon explicitly and deliberately prevents people from following accounts on private IP addresses. However, a Yunohost service running on _the same host_ will of course be seen as having a private IP if operating behind a NAT, as is very common. So as rational as this limitation might be on Mastodon in general, on Yunohost it doesn't make sense that you can't follow services running on the same Yunohost instance. Hence, the right place to fix this might be at the level of the YNH integration of Mastodon, i.e. this repository. ### Context I’m on YunoHost 11.2.9.1 self-hosted on a box in my living room, domain apps.modspil.dk. I’m running Mastodon `4.2.5~ynh1` and WriteFreely `0.14.0~ynh2`. - I have access to my server: *Through SSH | through the webadmin* - Are you in a special context or did you perform some particular tweaking on your YunoHost instance?: *no* I previously [posted about this](https://forum.yunohost.org/t/trouble-following-writefreely-blog-from-mastodon-instance-on-same-server/28372) in the forum. ### Steps to reproduce Install Mastodon and WriteFreely on the same YNH instance behind a NAT. Create a user on Mastodon and a blog on WriteFreely. Attempt to follow or find the WriteFreely blog from your Mastodon instance. You'll find you can't and will get the `422 Mastodon::PrivateNetworkAddressError`.

agger-magenta · February 5, 2024, 9:46am

OK, I solved it. It turns out there’s a Mastodon setting ALLOWED_PRIVATE_ADDRESSES which allows me to follow the blog if I set it to my server’s internal IP and 127.0.0.1.

I added that in /var/www/mastodon/live/.env.production and it worked.

system · February 20, 2024, 9:47am

This topic was automatically closed 15 days after the last reply. New replies are no longer allowed.