SSL certificate installation problem
TuffCrunch
I'm having a problem with the SSL installation , you can check the output below.
But I think it has to do with the fact that the nginx server is not exposed publicly, I can access it from my host machine since they are on the same network after using Bridged Adapter network mode, but I can't access it from outside my network even after port-forwarding(hopefully I did it right).
I've been stuck in this for a few days.
I used the bbb-install script
- I'm using a VM on my desktop and I'm just trying to run it in a dev environment.
- For the network mode setting on my VM I'm using Bridged Adapter,
- I'm also port-forwarding incoming traffic on 443 and 80 ports using the private IP address of my VM.
- I have a domain name that I'm mapping it to my external IP address
* this is the output of sudo ufw status
root@dev1:/etc/nginx/sites-available# sudo ufw status Status: active To Action From -- ------ ---- Nginx Full ALLOW Anywhere Nginx HTTP ALLOW Anywhere 22/tcp ALLOW Anywhere Nginx Full (v6) ALLOW Anywhere (v6) Nginx HTTP (v6) ALLOW Anywhere (v6)
22/tcp (v6) ALLOW Anywhere (v6)
* this is the output of the bbb install script
root@dev1:/etc/nginx/sites-available# wget -qO- https://ubuntu.bigbluebutton.org/bbb-install.sh | bash -s -- -w -a -v bionic-24 -s bbb.hidden.hidden -e hidden...@gmail.com
Hit:1 http://ppa.launchpad.net/bigbluebutton/support/ubuntu bionic InRelease
Hit:2 http://ppa.launchpad.net/certbot/certbot/ubuntu bionic InRelease
Hit:3 https://download.docker.com/linux/ubuntu bionic InRelease
Hit:4 http://tn.archive.ubuntu.com/ubuntu bionic InRelease
Hit:5 http://ppa.launchpad.net/libreoffice/ppa/ubuntu bionic InRelease
Ign:6 https://repo.mongodb.org/apt/ubuntu bionic/mongodb-org/4.2 InRelease
Hit:7 https://repo.mongodb.org/apt/ubuntu bionic/mongodb-org/4.2 Release
Get:8 http://tn.archive.ubuntu.com/ubuntu bionic-updates InRelease [88.7 kB]
Hit:9 https://deb.nodesource.com/node_12.x bionic InRelease
Hit:10 http://ppa.launchpad.net/rmescandon/yq/ubuntu bionic InRelease
Hit:12 https://ubuntu.bigbluebutton.org/bionic-24 bigbluebutton-bionic InRelease
Get:13 http://tn.archive.ubuntu.com/ubuntu bionic-backports InRelease [74.6 kB]
Get:14 http://tn.archive.ubuntu.com/ubuntu bionic-security InRelease [88.7 kB]
Get:15 http://tn.archive.ubuntu.com/ubuntu bionic-updates/main amd64 Packages [2,414 kB]
Get:16 http://tn.archive.ubuntu.com/ubuntu bionic-updates/universe amd64 Packages [1,786 kB]
Get:17 http://tn.archive.ubuntu.com/ubuntu bionic-updates/universe Translation-en [387 kB]
Fetched 4,839 kB in 7s (686 kB/s)
Reading package lists... Done
Warning: apt-key output should not be parsed (stdout is not a terminal)
LS_COLORS=rs=0:di=01;34:ln=01;36:mh=00:pi=40;33:so=01;35:do=01;35:bd=40;33;01:cd=40;33;01:or=40;31;01:mi=00:su=37;41:sg=30;43:ca=30;41:tw=30;42:ow=34;42:st=37;44:ex=01;32:*.tar=01;31:*.tgz=01;31:*.arc=01;31:*.arj=01;31:*.taz=01;31:*.lha=01;31:*.lz4=01;31:*.lzh=01;31:*.lzma=01;31:*.tlz=01;31:*.txz=01;31:*.tzo=01;31:*.t7z=01;31:*.zip=01;31:*.z=01;31:*.Z=01;31:*.dz=01;31:*.gz=01;31:*.lrz=01;31:*.lz=01;31:*.lzo=01;31:*.xz=01;31:*.zst=01;31:*.tzst=01;31:*.bz2=01;31:*.bz=01;31:*.tbz=01;31:*.tbz2=01;31:*.tz=01;31:*.deb=01;31:*.rpm=01;31:*.jar=01;31:*.war=01;31:*.ear=01;31:*.sar=01;31:*.rar=01;31:*.alz=01;31:*.ace=01;31:*.zoo=01;31:*.cpio=01;31:*.7z=01;31:*.rz=01;31:*.cab=01;31:*.wim=01;31:*.swm=01;31:*.dwm=01;31:*.esd=01;31:*.jpg=01;35:*.jpeg=01;35:*.mjpg=01;35:*.mjpeg=01;35:*.gif=01;35:*.bmp=01;35:*.pbm=01;35:*.pgm=01;35:*.ppm=01;35:*.tga=01;35:*.xbm=01;35:*.xpm=01;35:*.tif=01;35:*.tiff=01;35:*.png=01;35:*.svg=01;35:*.svgz=01;35:*.mng=01;35:*.pcx=01;35:*.mov=01;35:*.mpg=01;35:*.mpeg=01;35:*.m2v=01;35:*.mkv=01;35:*.webm=01;35:*.ogm=01;35:*.mp4=01;35:*.m4v=01;35:*.mp4v=01;35:*.vob=01;35:*.qt=01;35:*.nuv=01;35:*.wmv=01;35:*.asf=01;35:*.rm=01;35:*.rmvb=01;35:*.flc=01;35:*.avi=01;35:*.fli=01;35:*.flv=01;35:*.gl=01;35:*.dl=01;35:*.xcf=01;35:*.xwd=01;35:*.yuv=01;35:*.cgm=01;35:*.emf=01;35:*.ogv=01;35:*.ogx=01;35:*.aac=00;36:*.au=00;36:*.flac=00;36:*.m4a=00;36:*.mid=00;36:*.midi=00;36:*.mka=00;36:*.mp3=00;36:*.mpc=00;36:*.ogg=00;36:*.ra=00;36:*.wav=00;36:*.oga=00;36:*.opus=00;36:*.spx=00;36:*.xspf=00;36:
LESSCLOSE=/usr/bin/lesspipe %s %s
LANG=en_US.UTF-8
SUDO_GID=1000
OLDPWD=/etc/nginx
USERNAME=root
SUDO_COMMAND=/bin/su
USER=root
PWD=/etc/nginx/sites-available
HOME=/root
SUDO_USER=dev1
DEBIAN_FRONTEND=noninteractive
SUDO_UID=1000
MAIL=/var/mail/root
TERM=xterm-256color
SHELL=/bin/bash
SHLVL=2
LOGNAME=root
PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/games:/usr/local/games:/snap/bin
LESSOPEN=| /usr/bin/lesspipe %s
_=/usr/bin/env
'universe' distribution component is already enabled for all sources.
/usr/sbin/nginx
Waiting for port 443 to clear
Detected this server has an internal/external IP address.
INTERNAL_IP: 192.168.1.3
(external) IP: *hidden*
/usr/sbin/nginx
Warning: apt-key output should not be parsed (stdout is not a terminal)
Warning: apt-key output should not be parsed (stdout is not a terminal)
Warning: apt-key output should not be parsed (stdout is not a terminal)
Warning: apt-key output should not be parsed (stdout is not a terminal)
Warning: apt-key output should not be parsed (stdout is not a terminal)
deb [ arch=amd64 ] https://repo.mongodb.org/apt/ubuntu bionic/mongodb-org/4.2 multiverse
Warning: apt-key output should not be parsed (stdout is not a terminal)
/usr/bin/docker
11-jre-buster: Pulling from library/openjdk
Digest: sha256:321db0888db75ca4f76c9ba148bd9c15e28d71918f15cb71f7129a561463c5ab
Status: Image is up to date for openjdk:11-jre-buster
docker.io/library/openjdk:11-jre-buster
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:10: warning: constant Gem::ConfigMap is deprecated
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:10: warning: constant Gem::ConfigMap is deprecated
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:29: warning: constant Gem::ConfigMap is deprecated
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:30: warning: constant Gem::ConfigMap is deprecated
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:10: warning: constant Gem::ConfigMap is deprecated
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:10: warning: constant Gem::ConfigMap is deprecated
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:29: warning: constant Gem::ConfigMap is deprecated
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:30: warning: constant Gem::ConfigMap is deprecated
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:10: warning: constant Gem::ConfigMap is deprecated
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:10: warning: constant Gem::ConfigMap is deprecated
Successfully installed bundler-2.1.4
/usr/lib/ruby/vendor_ruby/rubygems/defaults/operating_system.rb:10: warning: constant Gem::ConfigMap is deprecated
Parsing documentation for bundler-2.1.4
Done installing documentation for bundler after 2 seconds
1 gem installed
update-alternatives: error: no alternatives for mozilla-javaplugin.so
update-java-alternatives: plugin alternative does not exist: /usr/lib/jvm/java-8-openjdk-amd64/jre/lib/amd64/IcedTeaPlugin.so
Hit:1 http://ppa.launchpad.net/bigbluebutton/support/ubuntu bionic InRelease
Hit:2 https://deb.nodesource.com/node_12.x bionic InRelease
Hit:3 http://ppa.launchpad.net/certbot/certbot/ubuntu bionic InRelease
Hit:4 http://tn.archive.ubuntu.com/ubuntu bionic InRelease
Hit:5 https://download.docker.com/linux/ubuntu bionic InRelease
Hit:6 http://tn.archive.ubuntu.com/ubuntu bionic-updates InRelease
Ign:7 https://repo.mongodb.org/apt/ubuntu bionic/mongodb-org/4.2 InRelease
Hit:8 http://ppa.launchpad.net/libreoffice/ppa/ubuntu bionic InRelease
Hit:9 https://repo.mongodb.org/apt/ubuntu bionic/mongodb-org/4.2 Release
Hit:10 http://ppa.launchpad.net/rmescandon/yq/ubuntu bionic InRelease
Get:11 http://tn.archive.ubuntu.com/ubuntu bionic-backports InRelease [74.6 kB]
Hit:13 https://ubuntu.bigbluebutton.org/bionic-24 bigbluebutton-bionic InRelease
Get:14 http://tn.archive.ubuntu.com/ubuntu bionic-security InRelease [88.7 kB]
Fetched 163 kB in 1s (132 kB/s)
Reading package lists... Done
Reading package lists... Done
Building dependency tree
Reading state information... Done
Calculating upgrade... Done
0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
RTNETLINK answers: File exists
'universe' distribution component is already enabled for all sources.
Hit:1 http://ppa.launchpad.net/bigbluebutton/support/ubuntu bionic InRelease
Hit:2 http://ppa.launchpad.net/certbot/certbot/ubuntu bionic InRelease
Hit:3 https://deb.nodesource.com/node_12.x bionic InRelease
Hit:4 http://tn.archive.ubuntu.com/ubuntu bionic InRelease
Ign:5 https://repo.mongodb.org/apt/ubuntu bionic/mongodb-org/4.2 InRelease
Hit:6 https://download.docker.com/linux/ubuntu bionic InRelease
Hit:7 http://ppa.launchpad.net/libreoffice/ppa/ubuntu bionic InRelease
Hit:8 https://repo.mongodb.org/apt/ubuntu bionic/mongodb-org/4.2 Release
Hit:9 http://tn.archive.ubuntu.com/ubuntu bionic-updates InRelease
Hit:10 http://ppa.launchpad.net/rmescandon/yq/ubuntu bionic InRelease
Get:11 http://tn.archive.ubuntu.com/ubuntu bionic-backports InRelease [74.6 kB]
Hit:13 https://ubuntu.bigbluebutton.org/bionic-24 bigbluebutton-bionic InRelease
Get:14 http://tn.archive.ubuntu.com/ubuntu bionic-security InRelease [88.7 kB]
Fetched 163 kB in 1s (131 kB/s)
Reading package lists... Done
Warning: apt-key output should not be parsed (stdout is not a terminal)
Hit:1 https://deb.nodesource.com/node_12.x bionic InRelease
Hit:2 http://ppa.launchpad.net/bigbluebutton/support/ubuntu bionic InRelease
Hit:3 http://ppa.launchpad.net/certbot/certbot/ubuntu bionic InRelease
Ign:4 https://repo.mongodb.org/apt/ubuntu bionic/mongodb-org/4.2 InRelease
Hit:5 https://download.docker.com/linux/ubuntu bionic InRelease
Hit:6 http://tn.archive.ubuntu.com/ubuntu bionic InRelease
Hit:7 https://repo.mongodb.org/apt/ubuntu bionic/mongodb-org/4.2 Release
Hit:8 http://ppa.launchpad.net/libreoffice/ppa/ubuntu bionic InRelease
Hit:9 http://tn.archive.ubuntu.com/ubuntu bionic-updates InRelease
Hit:11 http://ppa.launchpad.net/rmescandon/yq/ubuntu bionic InRelease
Get:12 http://tn.archive.ubuntu.com/ubuntu bionic-backports InRelease [74.6 kB]
Hit:13 https://ubuntu.bigbluebutton.org/bionic-24 bigbluebutton-bionic InRelease
Get:14 http://tn.archive.ubuntu.com/ubuntu bionic-security InRelease [88.7 kB]
Fetched 163 kB in 1s (131 kB/s)
Reading package lists... Done
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator webroot, Installer None
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for bbb.hidden.hidden
Using the webroot path /var/www/bigbluebutton-default for all unmatched domains.
Waiting for verification...
Cleaning up challenges
Failed authorization procedure. bbb.hidden.hidden (http-01): urn:ietf:params:acme:error:connection :: The server could not connect to the client to verify the domain :: Fetching http://bbb.hidden.hidden/.well-known/acme-challenge/1_8iIDgnpXAVnuqM_wuvrBZvEYlyH1XHxx9L_vU0: Timeout during connect (likely firewall problem)
IMPORTANT NOTES:
- The following errors were reported by the server:
Domain: bbb.hidden.hidden
Type: connection
Detail: Fetching
http://bbb.hidden.hidden/.well-known/acme-challenge/1_8iIDgnpXAVnuqM_wuvrBZyH1XagJHxx9L_vU0:
Timeout during connect (likely firewall problem)
To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address. Additionally, please check that
your computer has a publicly routable IP address and that no
firewalls are preventing the server from communicating with the
client. If you're using the webroot plugin, you should also verify
that you are serving files from the webroot path you provided.
bbb-install: Let's Encrypt SSL request for bbb.medev.codes did not succeed - exiting
--- I randomly (port-forwarding just started working) managed to expose the VM and I could access it from a browser outside of my network and it showed the bigbluebutton landing page but I'm still not using HTTPS for this.
I tried to access the demo after entering a name , but it didn't work and nginx server showed me 404 error.
After that I tried to clean and restart the bbb server by running sudo bbb-conf --clean but it showed me this error .curl: (7) Failed to connect to bbb.myhidden.domain port 443: Connection refused
Militades Sunfire
--
You received this message because you are subscribed to the Google Groups "BigBlueButton-Setup" group.
To unsubscribe from this group and stop receiving emails from it, send an email to bigbluebutton-s...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/bigbluebutton-setup/c3ce9f2e-fe7f-4a72-abcf-b3aa289c6b9fn%40googlegroups.com.
TuffCrunch
Jean Pluzo
TuffCrunch
To view this discussion on the web visit https://groups.google.com/d/msgid/bigbluebutton-setup/7d8ed99c-4d21-47fa-a1af-ada5a529beb3n%40googlegroups.com.