Hello,
I noticed yesterday that my small, personal blog wasn’t reachable anymore at its usual url of https://raizenet.hopto.org, with error “… took too long to respond”.
Everything was working the last time I checked, a few weeks ago. Today I wanted to write some posts and found out that the site isn’t reachable anymore except when using the local IP of the machine (a Raspberry Pi 4 running Raspbian Bullseye) and I can’t see it in full because every file and image is sent through https and consequently at the moment doesn’t show up. Also, whenever connected my browsers (Safari and Chrome both) give me an error regarding the certificate (which I had generated using Certbot/Letsencrypt).
It’s really frustrating because I haven’t touched anything in any configuration; I may have shut down or rebooted the Pi in these last few weeks, though. Anyway, I tried to understand what’s going on, but I can’t seem to.
Everything (except for nginx) is running in Docker containers. Here’s my docker-compose.yml for further info:
version: '3.3'
services:
blog:
image: arm64v8/ghost:latest
restart: always
ports:
- 8080:2368
volumes:
- ./data/content:/var/lib/ghost/content
environment:
# see https://ghost.org/docs/config/#configuration-options
TZ: Europe/Rome
database__client: mysql
database__connection__host: DB
database__connection__user: USER
database__connection__password: PASSWORD
database__connection__database: DBNAME
url: https://raizenet.hopto.org
NODE_ENV: production
mail__transport: SMTP
mail__options__service: Gmail
mail__options__host: smtp.gmail.com
mail__options__port: 465
mail__options__secure: "true"
mail__options__auth__user: "MAIL"
mail__options__auth__pass: "PASSWORD"
database:
image: arm64v8/mysql:oracle
restart: always
volumes:
- ./data/db:/var/lib/mysql
ports:
- "13928:3306"
environment:
MYSQL_ROOT_PASSWORD: PASSWORD
MYSQL_DATABASE: DBNAME
MYSQL_USER: USER
MYSQL_PASSWORD: PASSWORD
TZ: Europe/Rome
I get no errors when Ghost starts up (command used: docker logs [container name]):
[2022-07-10 12:08:48] INFO Ghost is running in production...
[2022-07-10 12:08:48] INFO Your site is now available on https://raizenet.hopto.org/
[2022-07-10 12:08:48] INFO Ctrl+C to shut down
[2022-07-10 12:08:48] INFO Ghost server started in 5.269s
[2022-07-10 12:08:49] INFO Database is in a ready state.
Database I’m using is mySQL, also in a Docker container.
I’m suspecting that nginx might the problem, but again, nothing was touched.
Here’s what I have in my /etc/nginx/sites-available/raizenet.hopto.org configuration:
server {
listen 443 ssl;
ssl_certificate /etc/letsencrypt/live/raizenet.hopto.org/fullchain.pem; # managed by Certbot
ssl_certificate_key /etc/letsencrypt/live/raizenet.hopto.org/privkey.pem; # managed by Certbot
ssl_session_cache builtin:1000 shared:SSL:10m;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_ciphers HIGH:!aNULL:!eNULL:!EXPORT:!CAMELLIA:!DES:!MD5:!PSK:!RC4;
ssl_prefer_server_ciphers on;
server_name raizenet.hopto.org;
client_max_body_size 5M;
access_log /var/log/nginx/blog.log;
error_log /var/log/nginx/blog-error.log error;
location / {
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header Host $http_host;
proxy_pass http://localhost:8080;
proxy_redirect http://localhost:8080 https://raizenet.hopto.org;
}
}
Port 443 is open in my router configurations and in ufw too. I also tried disabling ufw to see if that was the problem, but nothing changed.
I’m unsure if more configurations or files could be useful here so I’ll just wait for some tips on where and what I can look up.
Thank you!