[SOLVED] Caddy not working after update to 24.7.10

Started by Bert-Jan, December 08, 2024, 05:42:49 PM

Previous topic - Next topic
December 08, 2024, 05:42:49 PM Last Edit: December 10, 2024, 10:05:24 AM by Bert-Jan
I' ve been running OPNsense for a couple of monthes now an have been using Caddy for a while. Thanks to help from Monviech, Caddy ran fine, but since my update to 24.7.10 Caddy seems to be out of order.

The widget itself shows no errors, but going to the configured URL's now shows error 400 for the domains accessible from the outside and error 502 for the OPNsense URL.

While searching this forum I found: https://forum.opnsense.org/index.php?topic=44440.0.
However, I'm not sure this applies to me as I have no wildcard domains configured

In var/db/caddy/data/caddy/certificates/acme-v02.api.letsencrypt.org-directory I have several folders

Configured domain: name1.domain.nl
Folder: name1.domain.nl

Configured domain: name2.domain.nl
Folder: name2.domain.nl

etc.

Am I overlooking something?
If I need to post more details; please advise.

December 08, 2024, 05:48:07 PM #1 Last Edit: December 08, 2024, 05:52:19 PM by Monviech (Cedrik)
Hello, I need to see your Caddyfile. Please omit API keys and other sensitive information, but dont change it too much or I can bot see if there are errors.

The only change I can think of is that before that release, tls_insecure_skip_verify was falsely attached to Handlers set to "http". Since the current release, you must choose "https" and then you can check that checkbox (if you need it).
Hardware:
DEC740

Hi Monviech,
Thanks for the blazing fast reply (under 6 minutes, must be a record  ;D)

Quote from: Monviech (Cedrik) on December 08, 2024, 05:48:07 PM
The only change I can think of is that before that release, tls_insecure_skip_verify was falsely attached to Handlers set to "http". Since the current release, you must choose "https" and then you can check that checkbox (if you need it).

This was it! For some reason I had set the Handlers to use http. Mea culpa. Changed them to https and now everything works again.

Great, thanks for reporting back. I was that fast because it was coincidence :)
Hardware:
DEC740