What type of hardware are you using: Old laptop or computer
What YunoHost version are you running: 12.0.11
How are you able to access your server: SSH
Are you in a special context or did you perform specific tweaking on your YunoHost instance ?: All internet traffic passes through my synology nas
Describe your issue
I have setup reverse proxy rules for the main yunohost server as well as for each subdomain that I use for ports 80 and 443.
I also added a websocket with values :
Header Name: Upgrade
Value: $http_upgrade
Header Name: Connection
Value: upgrade
The SSL certificate is installed in my synology box
Connections to my yunohost work perfectly as long as I do not try to open a document from nextcloud using Collabora.
I tested with ports open directly to my yunohost server and then it works, documents open normally.
When the ports are closed and synology redirects requests, that part fails with the error message:
Failed to establish socket connection or socket connection closed unexpectedly. The reverse proxy might be misconfigured
So it has to do with reverse proxy but I cannot figure out what else can be adjusted.
Any synology users in the same situation ?
Christian
Share relevant logs or error messages
=================================
Base system (basesystem)
[INFO] Server hardware architecture is bare-metal amd64
- Server model is LENOVO
[INFO] Server is running Linux kernel 6.1.0-31-amd64
[INFO] Server is running Debian 12.9
[INFO] Server is running YunoHost 12.0.11 (stable)
- yunohost version: 12.0.11 (stable)
- yunohost-admin version: 12.0.5 (stable)
- yunohost-portal version: 12.0.7 (stable)
- moulinette version: 12.0.4 (stable)
- ssowat version: 12.0.3 (stable)
=================================
Internet connectivity (ip)
[SUCCESS] Domain name resolution is working!
[SUCCESS] The server is connected to the Internet through IPv4!
- Global IP: xx.xx.xx.xx
- Local IP: 192.168.0.33
=================================
DNS records (dnsrecords)
[SUCCESS] DNS records are correctly configured for domain maindomain.tld (category basic)
[SUCCESS] DNS records are correctly configured for domain maindomain.tld (category mail)
[SUCCESS] DNS records are correctly configured for domain maindomain.tld (category extra)
=================================
Ports exposure (ports)
[SUCCESS] Port 25 is reachable from the outside.
- Exposing this port is needed for email features (service postfix)
[SUCCESS] Port 80 is reachable from the outside.
- Exposing this port is needed for web features (service nginx)
[SUCCESS] Port 443 is reachable from the outside.
- Exposing this port is needed for web features (service nginx)
[SUCCESS] Port 587 is reachable from the outside.
- Exposing this port is needed for email features (service postfix)
[SUCCESS] Port 993 is reachable from the outside.
- Exposing this port is needed for email features (service dovecot)
=================================
Web (web)
[SUCCESS] Domain maindomain.tld is reachable through HTTP from outside the local network.
[SUCCESS] Domain hypnode.maindomain.tld is reachable through HTTP from outside the local network.
[SUCCESS] Domain nextcloud.maindomain.tld is reachable through HTTP from outside the local network.
[SUCCESS] Domain office.maindomain.tld is reachable through HTTP from outside the local network.
[SUCCESS] Domain photoevents.maindomain.tld is reachable through HTTP from outside the local network.
[SUCCESS] Domain pictures.maindomain.tld is reachable through HTTP from outside the local network.
[SUCCESS] Domain rc.maindomain.tld is reachable through HTTP from outside the local network.
=================================
Email (mail)
[SUCCESS] The SMTP mail server is able to send emails (outgoing port 25 is not blocked).
[SUCCESS] The SMTP mail server is reachable from the outside and therefore is able to receive emails!
[SUCCESS] The IPs and domains used by this server do not appear to be blacklisted
[SUCCESS] 0 pending emails in the mail queues
=================================
Services status check (services)
[SUCCESS] Service coolwsd is running!
[SUCCESS] Service dnsmasq is running!
[SUCCESS] Service dovecot is running!
[SUCCESS] Service fail2ban is running!
[SUCCESS] Service mysql is running!
[SUCCESS] Service nginx is running!
[SUCCESS] Service opendkim is running!
[SUCCESS] Service php8.2-fpm is running!
[SUCCESS] Service php8.3-fpm is running!
[SUCCESS] Service postfix is running!
[SUCCESS] Service redis-server is running!
[SUCCESS] Service slapd is running!
[SUCCESS] Service ssh is running!
[SUCCESS] Service yunohost-api is running!
[SUCCESS] Service yunohost-firewall is running!
[SUCCESS] Service yunohost-portal-api is running!
[SUCCESS] Service yunomdns is running!
=================================
System resources (systemresources)
[SUCCESS] The system still has 14 GiB (91%) RAM available out of 15 GiB.
[SUCCESS] The system has 977 MiB of swap!
- Please be careful and aware that if the server is hosting swap on an SD card or SSD storage, it may drastically reduce the life expectancy of the device.
[SUCCESS] Storage / (on device /dev/sda2) still has 863 GiB (99.4%) space left (out of 868 GiB)!
[SUCCESS] Storage /boot/efi (on device /dev/sda1) still has 505 MiB (98.9%) space left (out of 511 MiB)!
=================================
System configurations (regenconf)
[SUCCESS] All configuration files are in line with the recommended configuration!
=================================
Applications (apps)
[SUCCESS] All installed apps respect basic packaging practices