Comments (8)
Hmmm, cant really see how this could be happening with the redirection handler still working with that error message. Unless you have something listening on *:80 which would interfere with it
from wag.
As I cant replicate this on my end and dont have any more information Im going to have to close this bug sorry! If you have any more information on it, or find a way to replicate just reopen it :)
from wag.
Hi,
I have the same problem,
I test wag on Linux machine-name 5.15.0-105-generic #115-Ubuntu SMP Mon Apr 15 09:52:04 UTC 2024 x86_64 x86_64 x86_64 GNU/Linux
with the wag version : v7.3.2-2-g8f38706
.
My config.json is :
{
"Socket": "/tmp/wag.sock",
"Proxied": false,
"ExposePorts": [
"443/tcp",
"100-200/udp"
],
"NAT": true,
"HelpMail": "[email protected]",
"Lockout": 5,
"ExternalAddress": "myexternaladdress.test",
"MaxSessionLifetimeMinutes": 1440,
"SessionInactivityTimeoutMinutes": 60,
"DownloadConfigFileName": "wg0.conf",
"ManagementUI": {
"ListenAddress": "192.68.1.1:5184",
"Enabled": true,
"CertPath": "/etc/letsencrypt/live/mycert/fullchain.pem",
"KeyPath": "/etc/letsencrypt/live/mycert/privkey.pem"
},
"Webserver": {
"Public": {
"ListenAddress": "192.68.1.1:8080",
"CertPath": "/etc/letsencrypt/live/mycert/fullchain.pem",
"KeyPath": "/etc/letsencrypt/live/mycert/privkey.pem"
},
"Tunnel": {
"Port": "4433",
"CertPath": "/etc/letsencrypt/live/mycert/fullchain.pem",
"KeyPath": "/etc/letsencrypt/live/mycert/privkey.pem"
}
},
"Authenticators": {
"DefaultMethod": "oidc",
"Issuer": "WAG",
"Methods": [
"oidc"
],
"DomainURL": "https://192.68.1.1:4433",
"OIDC": {
"IssuerURL": "https://mytest.test/auth/realms/",
"ClientSecret": "clientsecret",
"ClientID": "clientid"
},
"PAM": {
"ServiceName": ""
}
},
"Wireguard": {
"DevName": "wg0",
"ListenPort": 51820,
"PrivateKey": "<privatekey>",
"Address": "192.68.1.1/24",
"MTU": 1420
},
"DatabaseLocation": "devices.db",
"Acls": {
"Policies": {
"*": {
"Mfa": [
"10.10.10.0/24"
]
}
}
}
}
Looking a bit I saw that the iptables rule for port 80 doesn't get deleted after stopping wag.
This may be related.
from wag.
Hi @Weisteck,
I am no longer maintaining the 7.3.2 version of wag. Primarily because Im getting ready to fully release version 8 which uses etcd.
Good catch on the iptables rule not being deleted, I've added that to the most recent commit on unstable.
As for why its emitting that error, you can safely ignore it as long as you're not trying to have an automatic redirect from port 80 -> your tls port.
from wag.
Hi @NHAS, thanks for your reply, I don't see any milestones on your github, do you have a vision for what's next? 🐱
from wag.
Currently whats happening is Im test running all the changes I've made with moving over to etcd so that wag can do clustering with very little effort.
Then after that it'll be moving away from eBPF to pure go, and in-between that probably and doing some things with websockets to make session persistence a bit better.
In the far future (because I hate web dev) probably a better admin UI
from wag.
Hi @NHAS,
Thanks for the clarification. Will etcd be mandatory?
Currently whats happening is Im test running all the changes I've made with moving over to etcd so that wag can do clustering with very little effort.
Then after that it'll be moving away from eBPF to pure go, and in-between that probably and doing some things with websockets to make session persistence a bit better.
In the far future (because I hate web dev) probably a better admin UI
from wag.
Yes, it will be the only way to store data.
However just like sqlite it will be built into wag and managed by wag.
from wag.
Related Issues (20)
- [Bug] Locking/Resetting MFA not deauthorising device HOT 1
- [Bug] Resetting MFA doesnt change MFA HOT 1
- [Bug] Unable to logout 8.0.0-beta2
- [Bug] Event Errors should not be bytes
- [Bug] Failing to initalise one MFA method disables all other methods
- [Bug] OIDC reports "unsupported protocol"
- BGP for Route Distribution HOT 4
- Websocket liveness check
- Wag check fails to report error
- Oidc set user groups fails if user has no memebership
- External State Management HOT 4
- OIDC `preferred_username` HOT 10
- Re-open issue
- Issues over mobile hotspot HOT 3
- Access to the ManagementUI HOT 11
- Register device has error HOT 1
- Membership information missing for newly created user
- Upgrade Version Guide HOT 2
- Cannot connect to server ui or 8080 for config HOT 4
- Problems with Beta version HOT 3
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from wag.