i have problem for configuration pterodactyl proxy cloudlfare please help me

No description
200 Replies
Cyb3r-Jak3
Cyb3r-Jak3β€’6mo ago
That error means you already have something running on port 8443.
Tom Phile
Tom PhileOPβ€’6mo ago
the problem is since I sent my sites to you it broke everything I have nothing working anymore and I have currently been ddos ​​for 24 hours
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Cyb3r-Jak3
Cyb3r-Jak3β€’6mo ago
That is also an application error and not related to Cloudflare.
Tom Phile
Tom PhileOPβ€’6mo ago
I followed several videos so one uses port 443 the other 8443 clearly its lost some use a tunnel me it doesn't work when I create a sub-domain on cloudflare with the dns for example vortex.nomdedomaine.fr and ba sa does not ping I have nothing and impossible to call since 2:00 a.m. French time because supposedly they are busy so in the meantime I have 50 customers who are annoyed because the wings no longer work and moreover I reinstalled everything and these are the same
Cyb3r-Jak3
Cyb3r-Jak3β€’6mo ago
The errors you are seeing are from the applications themselves. The second one is related to SQL variables
Tom Phile
Tom PhileOPβ€’6mo ago
it's still weird I was at ionos no problem I'm coming to your place to protect it makes everything crash these crazy people and the worst we can't call you for assistance how do I resolve my problems because here these are good they tell me this these etc but in the end it doesn't solve the problem
Idle
Idleβ€’6mo ago
correlation != causation. as Cyb3r-Jok3 already mentioned twice, the errors you are encountering are application related, not cloudflare related. you might want to ask your question in a discord that offers support for pterodactyl?
playaz44
playaz44β€’6mo ago
You can try kill -9 $(lsof -t -i:8443) && systemctl restart wings. This will immediately kill all processes using port 8443 and restart the wings. However, I do not recommend killing processes in this way. Especially since you don't really know what's going on on your server at all
Tom Phile
Tom PhileOPβ€’6mo ago
hey i have reinstalled pterodactyl and into mode wings --debug return :
No description
playaz44
playaz44β€’6mo ago
You copied old configuration file?
Tom Phile
Tom PhileOPβ€’6mo ago
so I modified everything I no longer have an error with wings on the other hand between wings and cloudflare it does not communicate I am with the deamon port 8443 and sftp 2053 and I don't have a green heart
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
the cert ssl is this ssl cloudflare origin server
Tom Phile
Tom PhileOPβ€’6mo ago
No description
No description
Tom Phile
Tom PhileOPβ€’6mo ago
No description
playaz44
playaz44β€’6mo ago
remove your token, is visible to everyone
Tom Phile
Tom PhileOPβ€’6mo ago
sorry
playaz44
playaz44β€’6mo ago
check the console logs in the browser why it does not connect or paste log tail -n 100 /var/www/pterodactyl/storage/logs/laravel-$(date +%F).log
Tom Phile
Tom PhileOPβ€’6mo ago
i have error wings sorry is protocole ssl panel :
DEBUG: [Jul 14 19:40:38.829] making request to external HTTP endpoint endpoint=https://panel.last-hosting.fr/api/remote/servers?page=0&per_page=50 headers=map[Accept:[application/vnd.pterodactyl.v1+json] Authorization:[(redacted)] Content-Type:[application/json] User-Agent:[Pterodactyl Wings/v1.11.13 (id:kAwBsnTRJfF8e36X)]] method=GET
DEBUG: [Jul 14 19:40:45.188] making request to external HTTP endpoint endpoint=https://panel.last-hosting.fr/api/remote/servers?page=0&per_page=50 headers=map[Accept:[application/vnd.pterodactyl.v1+json] Authorization:[(redacted)] Content-Type:[application/json] User-Agent:[Pterodactyl Wings/v1.11.13 (id:kAwBsnTRJfF8e36X)]] method=GET
FATAL: [Jul 14 19:40:45.194] failed to load server configurations error=http: request creation failed: Get "https://panel.last-hosting.fr/api/remote/servers?page=0&per_page=50": tls: failed to verify certificate: x509: certificate signed by unknown authority

Stacktrace:
Get "https://panel.last-hosting.fr/api/remote/servers?page=0&per_page=50": tls: failed to verify certificate: x509: certificate signed by unknown authority
http: request creation failed
github.com/pterodactyl/wings/remote.(*client).request.func1
github.com/pterodactyl/wings/remote/http.go:151
github.com/cenkalti/backoff/v4.RetryNotifyWithTimer.Operation.withEmptyData.func1
github.com/cenkalti/backoff/[email protected]/retry.go:18
github.com/cenkalti/backoff/v4.doRetryNotify[...]
github.com/cenkalti/backoff/[email protected]/retry.go:88
github.com/cenkalti/backoff/v4.RetryNotifyWithTimer
github.com/cenkalti/backoff/[email protected]/retry.go:61
github.com/cenkalti/backoff/v4.RetryNotify
github.com/cenkalti/backoff/[email protected]/retry.go:49
github.com/cenkalti/backoff/v4.Retry
github.com/cenkalti/backoff/[email protected]/retry.go:38
github.com/pterodactyl/wings/remote.(*client).request
github.com/pterodactyl/wings/remote/http.go:136
github.com/pterodactyl/wings/remote.(*client).Get
github.com/pterodactyl/wings/remote/http.go:81
github.com/pterodactyl/wings/remote.(*client).getServersPaged
github.com/pterodactyl/wings/remote/servers.go:201
github.com/pterodactyl/wings/remote.(*client).GetServers
github.com/pterodactyl/wings/remote/servers.go:26
github.com/pterodactyl/wings/server.(*Manager).init
github.com/pterodactyl/wings/server/manager.go:238
github.com/pterodactyl/wings/server.NewManager
github.com/pterodactyl/wings/server/manager.go:36
github.com/pterodactyl/wings/cmd.rootCmdRun
github.com/pterodactyl/wings/cmd/root.go:138
github.com/spf13/cobra.(*Command).execute
github.com/spf13/[email protected]/command.go:987
github.com/spf13/cobra.(*Command).ExecuteC
github.com/spf13/[email protected]/command.go:1115
github.com/spf13/cobra.(*Command).Execute
github.com/spf13/[email protected]/command.go:1039
github.com/pterodactyl/wings/cmd.Execute
github.com/pterodactyl/wings/cmd/root.go:71
main.main
github.com/pterodactyl/wings/wings.go:17
runtime.main
runtime/proc.go:267
runtime.goexit
runtime/asm_amd64.s:1650
DEBUG: [Jul 14 19:40:38.829] making request to external HTTP endpoint endpoint=https://panel.last-hosting.fr/api/remote/servers?page=0&per_page=50 headers=map[Accept:[application/vnd.pterodactyl.v1+json] Authorization:[(redacted)] Content-Type:[application/json] User-Agent:[Pterodactyl Wings/v1.11.13 (id:kAwBsnTRJfF8e36X)]] method=GET
DEBUG: [Jul 14 19:40:45.188] making request to external HTTP endpoint endpoint=https://panel.last-hosting.fr/api/remote/servers?page=0&per_page=50 headers=map[Accept:[application/vnd.pterodactyl.v1+json] Authorization:[(redacted)] Content-Type:[application/json] User-Agent:[Pterodactyl Wings/v1.11.13 (id:kAwBsnTRJfF8e36X)]] method=GET
FATAL: [Jul 14 19:40:45.194] failed to load server configurations error=http: request creation failed: Get "https://panel.last-hosting.fr/api/remote/servers?page=0&per_page=50": tls: failed to verify certificate: x509: certificate signed by unknown authority

Stacktrace:
Get "https://panel.last-hosting.fr/api/remote/servers?page=0&per_page=50": tls: failed to verify certificate: x509: certificate signed by unknown authority
http: request creation failed
github.com/pterodactyl/wings/remote.(*client).request.func1
github.com/pterodactyl/wings/remote/http.go:151
github.com/cenkalti/backoff/v4.RetryNotifyWithTimer.Operation.withEmptyData.func1
github.com/cenkalti/backoff/[email protected]/retry.go:18
github.com/cenkalti/backoff/v4.doRetryNotify[...]
github.com/cenkalti/backoff/[email protected]/retry.go:88
github.com/cenkalti/backoff/v4.RetryNotifyWithTimer
github.com/cenkalti/backoff/[email protected]/retry.go:61
github.com/cenkalti/backoff/v4.RetryNotify
github.com/cenkalti/backoff/[email protected]/retry.go:49
github.com/cenkalti/backoff/v4.Retry
github.com/cenkalti/backoff/[email protected]/retry.go:38
github.com/pterodactyl/wings/remote.(*client).request
github.com/pterodactyl/wings/remote/http.go:136
github.com/pterodactyl/wings/remote.(*client).Get
github.com/pterodactyl/wings/remote/http.go:81
github.com/pterodactyl/wings/remote.(*client).getServersPaged
github.com/pterodactyl/wings/remote/servers.go:201
github.com/pterodactyl/wings/remote.(*client).GetServers
github.com/pterodactyl/wings/remote/servers.go:26
github.com/pterodactyl/wings/server.(*Manager).init
github.com/pterodactyl/wings/server/manager.go:238
github.com/pterodactyl/wings/server.NewManager
github.com/pterodactyl/wings/server/manager.go:36
github.com/pterodactyl/wings/cmd.rootCmdRun
github.com/pterodactyl/wings/cmd/root.go:138
github.com/spf13/cobra.(*Command).execute
github.com/spf13/[email protected]/command.go:987
github.com/spf13/cobra.(*Command).ExecuteC
github.com/spf13/[email protected]/command.go:1115
github.com/spf13/cobra.(*Command).Execute
github.com/spf13/[email protected]/command.go:1039
github.com/pterodactyl/wings/cmd.Execute
github.com/pterodactyl/wings/cmd/root.go:71
main.main
github.com/pterodactyl/wings/wings.go:17
runtime.main
runtime/proc.go:267
runtime.goexit
runtime/asm_amd64.s:1650
in cloudflare I defined subdomains and domains
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
proxy enable or disable ?
No description
playaz44
playaz44β€’6mo ago
This says your certificate is invalid, use the official certificate creation documentation for pterodactyl
Tom Phile
Tom PhileOPβ€’6mo ago
i have create certificate into cloudflare is correct ?
playaz44
playaz44β€’6mo ago
do you have enable proxy in pterodactyl.yml ?
Tom Phile
Tom PhileOPβ€’6mo ago
ssl = true or false ?
playaz44
playaz44β€’6mo ago
yes
Tom Phile
Tom PhileOPβ€’6mo ago
is defini false
playaz44
playaz44β€’6mo ago
change to true
Tom Phile
Tom PhileOPβ€’6mo ago
i have select in to node proxy
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
i have actived behind proxy is not correct ?
playaz44
playaz44β€’6mo ago
I guess so. I have never set up wings via cloudflare because it makes no sense and makes only problems
Tom Phile
Tom PhileOPβ€’6mo ago
oki so i have into /etc/pterodactyl/config.yml definie ssl = true and i have disabled behind proxy and i have restart wings
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
the ssl is favorable create into cloudflare origin server or certbot ?
playaz44
playaz44β€’6mo ago
I have a cloudflare certificate for the website and a certbot for wings. Everything works without problems
Tom Phile
Tom PhileOPβ€’6mo ago
so I have to do the ssl on certbot but the problem is the fqdn I put the one from cloudflare that I created there on the dns
playaz44
playaz44β€’6mo ago
Did you paste a random fqdn in the wings configuration instead of creating a separate subdomain for wings?
Tom Phile
Tom PhileOPβ€’6mo ago
what to say? - the panel.last-hosting.fr return ip dedicated for juste panel - and i have create on cloudflare / dns vortex.last-hosting.fr return ip dedicated for deamon node (FQDN)
playaz44
playaz44β€’6mo ago
Ok, just put in certbot vortex.last-hosting.fr
Tom Phile
Tom PhileOPβ€’6mo ago
vortex.last-hosting.fr as ssl cloudflare is not problem ?
playaz44
playaz44β€’6mo ago
no
Tom Phile
Tom PhileOPβ€’6mo ago
No description
playaz44
playaz44β€’6mo ago
You've done exactly the opposite of what it should be
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
oh cheat πŸ˜‚ ok ok Do you agree to help me put everything back correctly? please πŸ˜„
playaz44
playaz44β€’6mo ago
if you disable cloudflare proxy for wings (vortex) and create a certbot certificate you should see a green heart in the panel then just enable proxy for panel
Tom Phile
Tom PhileOPβ€’6mo ago
I suddenly activated the panel one on Cloudflare?
playaz44
playaz44β€’6mo ago
?
Tom Phile
Tom PhileOPβ€’6mo ago
oki i have create ssl for vortex
playaz44
playaz44β€’6mo ago
change cert path in config.yml
Tom Phile
Tom PhileOPβ€’6mo ago
I must therefore put the configuration that pterodactyl offers on the node? for ssl oki
playaz44
playaz44β€’6mo ago
and set ssl to true
Tom Phile
Tom PhileOPβ€’6mo ago
debug: false uuid: d451818a-2fd3-4e71-acc3-151f11f6835d token_id: token: pQ5VeuZSM8oQDBRhtWOr99Q9byGD2bCfx2Zwa4jZEhOGCemobaLi90tjf8D5B5YB api: host: 0.0.0.0 port: 8443 ssl: enabled: true cert: /etc/letsencrypt/live/vortex.last-hosting.fr/fullchain.pem key: /etc/letsencrypt/live/vortex.last-hosting.fr/privkey.pem upload_limit: 100 system: data: /var/lib/pterodactyl/volumes sftp: bind_port: 2053 allowed_mounts: [] remote: 'https://panel.last-hosting.fr' ?
playaz44
playaz44β€’6mo ago
yes
Tom Phile
Tom PhileOPβ€’6mo ago
oki
playaz44
playaz44β€’6mo ago
You should have such settings in the panel
No description
Tom Phile
Tom PhileOPβ€’6mo ago
command rm ? for to create new config.yml what 8022 ? it's good 8443 ?
playaz44
playaz44β€’6mo ago
you can manually delete the contents of config.yml or rm config.yml and make a new file change to the ports you use, this is my configuration in the photo
Tom Phile
Tom PhileOPβ€’6mo ago
so 8022 or 8443 ? πŸ˜„
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
i'am using 8443
playaz44
playaz44β€’6mo ago
it doesn't matter if you set the same ones in the panel and config.yml
Tom Phile
Tom PhileOPβ€’6mo ago
ok i have create and paste config.yml and the heart is not green
playaz44
playaz44β€’6mo ago
show me what wings says
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
i dont have enable proxy for panel into cloudflare
playaz44
playaz44β€’6mo ago
there is still a certificate error
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
is good ?
playaz44
playaz44β€’6mo ago
yes
Tom Phile
Tom PhileOPβ€’6mo ago
execute command wings --debug ?
playaz44
playaz44β€’6mo ago
yes
Tom Phile
Tom PhileOPβ€’6mo ago
is not green
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
i don't have error
Tom Phile
Tom PhileOPβ€’6mo ago
No description
playaz44
playaz44β€’6mo ago
now check in cloudflare waf logs if the wings api has not been blocked
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
No description
playaz44
playaz44β€’6mo ago
check in events
Tom Phile
Tom PhileOPβ€’6mo ago
No description
playaz44
playaz44β€’6mo ago
if it is not blocked it should work
Tom Phile
Tom PhileOPβ€’6mo ago
well listen no it's not blocked and it doesn't work problematic
Tom Phile
Tom PhileOPβ€’6mo ago
Tom Phile
Tom PhileOPβ€’6mo ago
Should I execute this line? ?
No description
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
the panel is not ssl is normal ?
No description
playaz44
playaz44β€’6mo ago
no, it's not normal should have ssl via cloudflare Are you using a cloudflare proxy or a cloudflare tunnel for the panel?
Tom Phile
Tom PhileOPβ€’6mo ago
ok so : - i have create ssl on cloudflare (hostname : last-hosting.fr and *.last-hosting.fr) - i have configured wings (is good not error) - /etc/pterodacyl/config.yml : -
api:
host: 0.0.0.0
port: 8443
ssl:
enabled: true
cert: /etc/letsencrypt/live/vortex.last-hosting.fr/fullchain.pem
key: /etc/letsencrypt/live/vortex.last-hosting.fr/privkey.pem
disable_remote_download: false
upload_limit: 100
trusted_proxies: []
system:
root_directory: /var/lib/pterodactyl
log_directory: /var/log/pterodactyl
data: /var/lib/pterodactyl/volumes
archive_directory: /var/lib/pterodactyl/archives
backup_directory: /var/lib/pterodactyl/backups
tmp_directory: /tmp/pterodactyl
username: pterodactyl
timezone: Etc/UTC
user:
rootless:
enabled: false
container_uid: 0
container_gid: 0
uid: 998
gid: 998
disk_check_interval: 150
activity_send_interval: 60
activity_send_count: 100
check_permissions_on_boot: true
enable_log_rotate: true
websocket_log_count: 150
sftp:
bind_address: 0.0.0.0
bind_port: 2053
read_only: false
crash_detection:
enabled: true
detect_clean_exit_as_crash: true
timeout: 60
backups:
write_limit: 0
compression_level: best_speed
transfers:
download_limit: 0
openat_mode: auto
docker:
network:
interface: 172.18.0.1
dns:
- 1.1.1.1
- 1.0.0.1
name: pterodactyl_nw
ispn: false
api:
host: 0.0.0.0
port: 8443
ssl:
enabled: true
cert: /etc/letsencrypt/live/vortex.last-hosting.fr/fullchain.pem
key: /etc/letsencrypt/live/vortex.last-hosting.fr/privkey.pem
disable_remote_download: false
upload_limit: 100
trusted_proxies: []
system:
root_directory: /var/lib/pterodactyl
log_directory: /var/log/pterodactyl
data: /var/lib/pterodactyl/volumes
archive_directory: /var/lib/pterodactyl/archives
backup_directory: /var/lib/pterodactyl/backups
tmp_directory: /tmp/pterodactyl
username: pterodactyl
timezone: Etc/UTC
user:
rootless:
enabled: false
container_uid: 0
container_gid: 0
uid: 998
gid: 998
disk_check_interval: 150
activity_send_interval: 60
activity_send_count: 100
check_permissions_on_boot: true
enable_log_rotate: true
websocket_log_count: 150
sftp:
bind_address: 0.0.0.0
bind_port: 2053
read_only: false
crash_detection:
enabled: true
detect_clean_exit_as_crash: true
timeout: 60
backups:
write_limit: 0
compression_level: best_speed
transfers:
download_limit: 0
openat_mode: auto
docker:
network:
interface: 172.18.0.1
dns:
- 1.1.1.1
- 1.0.0.1
name: pterodactyl_nw
ispn: false
- /etc/nginx/sites-available/pterodactyl.conf -
server_tokens off;

server {
listen 80;
server_name panel.last-hosting.fr;
return 301 https://$server_name$request_uri;
}

server {
listen 443 ssl http2;
server_name panel.last-hosting.fr;

root /var/www/pterodactyl/public;
index index.php;

access_log /var/log/nginx/pterodactyl.app-access.log;
error_log /var/log/nginx/pterodactyl.app-error.log error;

# allow larger file uploads and longer script runtimes
client_max_body_size 100m;
client_body_timeout 120s;

sendfile off;

# SSL Configuration - Replace the example panel.last-hosting.fr with your domain
ssl_certificate /etc/ssl/origin-cert.pem;
ssl_certificate_key /etc/ssl/origin-key.pem;
ssl_session_cache shared:SSL:10m;
ssl_protocols TLSv1.2 TLSv1.3;
ssl_ciphers "ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM->
ssl_prefer_server_ciphers on;

# See https://hstspreload.org/ before uncommenting the line below.
# add_header Strict-Transport-Security "max-age=15768000; preload;";
add_header X-Content-Type-Options nosniff;
add_header X-XSS-Protection "1; mode=block";
add_header X-Robots-Tag none;
add_header Content-Security-Policy "frame-ancestors 'self'";
add_header X-Frame-Options DENY;
add_header Referrer-Policy same-origin;

location / {
try_files $uri $uri/ /index.php?$query_string;
}

location ~ \.php$ {
fastcgi_split_path_info ^(.+\.php)(/.+)$;
fastcgi_pass unix:/run/php/php8.1-fpm.sock;
fastcgi_index index.php;
include fastcgi_params;
fastcgi_param PHP_VALUE "upload_max_filesize = 100M \n post_max_size=100M";
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
fastcgi_param HTTP_PROXY "";
fastcgi_intercept_errors off;
fastcgi_buffer_size 16k;
fastcgi_buffers 4 16k;
fastcgi_connect_timeout 300;
fastcgi_send_timeout 300;
fastcgi_read_timeout 300;
include /etc/nginx/fastcgi_params;
}

location ~ /\.ht {
deny all;
}
}
server_tokens off;

server {
listen 80;
server_name panel.last-hosting.fr;
return 301 https://$server_name$request_uri;
}

server {
listen 443 ssl http2;
server_name panel.last-hosting.fr;

root /var/www/pterodactyl/public;
index index.php;

access_log /var/log/nginx/pterodactyl.app-access.log;
error_log /var/log/nginx/pterodactyl.app-error.log error;

# allow larger file uploads and longer script runtimes
client_max_body_size 100m;
client_body_timeout 120s;

sendfile off;

# SSL Configuration - Replace the example panel.last-hosting.fr with your domain
ssl_certificate /etc/ssl/origin-cert.pem;
ssl_certificate_key /etc/ssl/origin-key.pem;
ssl_session_cache shared:SSL:10m;
ssl_protocols TLSv1.2 TLSv1.3;
ssl_ciphers "ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM->
ssl_prefer_server_ciphers on;

# See https://hstspreload.org/ before uncommenting the line below.
# add_header Strict-Transport-Security "max-age=15768000; preload;";
add_header X-Content-Type-Options nosniff;
add_header X-XSS-Protection "1; mode=block";
add_header X-Robots-Tag none;
add_header Content-Security-Policy "frame-ancestors 'self'";
add_header X-Frame-Options DENY;
add_header Referrer-Policy same-origin;

location / {
try_files $uri $uri/ /index.php?$query_string;
}

location ~ \.php$ {
fastcgi_split_path_info ^(.+\.php)(/.+)$;
fastcgi_pass unix:/run/php/php8.1-fpm.sock;
fastcgi_index index.php;
include fastcgi_params;
fastcgi_param PHP_VALUE "upload_max_filesize = 100M \n post_max_size=100M";
fastcgi_param SCRIPT_FILENAME $document_root$fastcgi_script_name;
fastcgi_param HTTP_PROXY "";
fastcgi_intercept_errors off;
fastcgi_buffer_size 16k;
fastcgi_buffers 4 16k;
fastcgi_connect_timeout 300;
fastcgi_send_timeout 300;
fastcgi_read_timeout 300;
include /etc/nginx/fastcgi_params;
}

location ~ /\.ht {
deny all;
}
}
playaz44
playaz44β€’6mo ago
ssl_certificate /etc/ssl/origin-cert.pem; ssl_certificate_key /etc/ssl/origin-key.pem; Are you sure these are the correct certificate paths?
Tom Phile
Tom PhileOPβ€’6mo ago
- .env i don't have past : after on /var/www/pterodactyl/.env put this to the end of the code TRUSTED_PROXIES=103.21.244.0/22,103.22.200.0/22,103.31.4.0/22,104.16.0.0/12,108.162.192.0/18,131.0.72.0/22,141.101.64.0/18,162.158.0.0/15,172.64.0.0/13,173.245.48.0/20,188.114.96.0/20,190.93.240.0/20,197.234.240.0/22,198.41.128.0/17 PTERODACTYL_FILES_MAX_EDIT_SIZE=50000 RECAPTCHA_ENABLED=false
Tom Phile
Tom PhileOPβ€’6mo ago
yes :
No description
playaz44
playaz44β€’6mo ago
are you sure these certificates are from cloudflare?
Tom Phile
Tom PhileOPβ€’6mo ago
yes
playaz44
playaz44β€’6mo ago
from what I see, SSL works for me in your panel
Tom Phile
Tom PhileOPβ€’6mo ago
No description
playaz44
playaz44β€’6mo ago
dont paste your certs and token it is dangerous
Tom Phile
Tom PhileOPβ€’6mo ago
yes
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
i have executed systemctl restart wings and is not resolved the problem
playaz44
playaz44β€’6mo ago
Do you still have SSL missing in your panel?
Tom Phile
Tom PhileOPβ€’6mo ago
yes
Tom Phile
Tom PhileOPβ€’6mo ago
No description
playaz44
playaz44β€’6mo ago
try changing ssl to strict mode
Tom Phile
Tom PhileOPβ€’6mo ago
full trict ?
No description
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
on the other hand the site is a little slow
playaz44
playaz44β€’6mo ago
Have you tried to create a new certificate using certbot for the panel? and enable hsts on the cloudflare website? Enabling hsts on the cloudflare website will make the website unavailable if the certificate is incorrect or missing
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
proxy status ? sorry but I didn't understand what you tried to explain to me or tell me to do
playaz44
playaz44β€’6mo ago
go to ssl/tls->edge certificates and check if you have always use https and hsts enabled
Tom Phile
Tom PhileOPβ€’6mo ago
whoua where is πŸ˜„
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Idle
Idleβ€’6mo ago
you dont need to censor the ip if you are already exposing your origin
playaz44
playaz44β€’6mo ago
https://dash.cloudflare.com/ change to your id / your domain name /ssl-tls/edge-certificates
Tom Phile
Tom PhileOPβ€’6mo ago
uh I have to put it where this line you always tell me about cloudflare or the pterodactyl
playaz44
playaz44β€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
oki after ?
playaz44
playaz44β€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
always use ?
playaz44
playaz44β€’6mo ago
yes
Tom Phile
Tom PhileOPβ€’6mo ago
ok oki is good after
playaz44
playaz44β€’6mo ago
green heart is showing?
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
is not https
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
I don't know what's going on but it's taking longer and longer to load the page.
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
It takes almost 20 seconds to display the refresh page before in 1 second it was direct
playaz44
playaz44β€’6mo ago
you had the IP available on the Internet all the time, you said that you were under DDOS attacks, if someone has your website IP, Cloudflare will not help you, you need to change the IP of your server
Tom Phile
Tom PhileOPβ€’6mo ago
ok and about the rest
playaz44
playaz44β€’6mo ago
and it's strange that for you it takes 20 seconds to load because for me it works immediately
Tom Phile
Tom PhileOPβ€’6mo ago
I still have the wings in red maybe my connection
playaz44
playaz44β€’6mo ago
something is blocking connections all the time, you need to find what is blocking this connection
Tom Phile
Tom PhileOPβ€’6mo ago
Into m'y phone IS rapid ans ssl IS good
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
No description
playaz44
playaz44β€’6mo ago
try clear all cache
Tom Phile
Tom PhileOPβ€’6mo ago
Web or dedicated ? Server
playaz44
playaz44β€’6mo ago
in your browser where the connection shows no SSL all the time
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
ok the ssl is good πŸ˜„ and the node is not good πŸ˜„
playaz44
playaz44β€’6mo ago
now you need to find what is blocking the wings API
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
in to node i have information to dedicated server
playaz44
playaz44β€’6mo ago
ok, so the connection works
Tom Phile
Tom PhileOPβ€’6mo ago
but then why isn't it green?
playaz44
playaz44β€’6mo ago
as far as I remember, node status is obtained via websocket
Tom Phile
Tom PhileOPβ€’6mo ago
sorry you speak Chinese for me πŸ˜„
Tom Phile
Tom PhileOPβ€’6mo ago
Tom Phile
Tom PhileOPβ€’6mo ago
status 200
playaz44
playaz44β€’6mo ago
on the page with a red heart, turn on the developer console ctrl+shift+i in your browser and go to network tab, then find in request name "system" and click on it, then show status code
Tom Phile
Tom PhileOPβ€’6mo ago
No description
playaz44
playaz44β€’6mo ago
click red "system"
Tom Phile
Tom PhileOPβ€’6mo ago
No description
playaz44
playaz44β€’6mo ago
is the panel installed on the same machine as wings?
Tom Phile
Tom PhileOPβ€’6mo ago
yes
playaz44
playaz44β€’6mo ago
then the only thing that comes to my mind is that cloudflare blocks the wings API
playaz44
playaz44β€’6mo ago
GitHub
Node resolving but Panel showing red heart Β· Issue #4980 Β· pterodac...
Current Behavior Wings daemon is running without issue reported by systemctl, its FQDN resolves correctly in my browser, but the panel shows a red heart with "error connecting to the node"...
Tom Phile
Tom PhileOPβ€’6mo ago
No description
playaz44
playaz44β€’6mo ago
you can also try writing on pterodactyl's discord that the node is connected but you have a red heart
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
heu what is not 8443 443 πŸ˜„
playaz44
playaz44β€’6mo ago
you can try but I suspect it won't work
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
the remote is perfect or not ?
playaz44
playaz44β€’6mo ago
is ok
Tom Phile
Tom PhileOPβ€’6mo ago
is not recommanded ?
No description
playaz44
playaz44β€’6mo ago
no, '*' is not secure
Tom Phile
Tom PhileOPβ€’6mo ago
is not importance the line in to .even after on /var/www/pterodactyl/.env put this to the end of the code TRUSTED_PROXIES=103.21.244.0/22,103.22.200.0/22,103.31.4.0/22,104.16.0.0/12,108.162.192.0/18,131.0.72.0/22,141.101.64.0/18,162.158.0.0/15,172.64.0.0/13,173.245.48.0/20,188.114.96.0/20,190.93.240.0/20,197.234.240.0/22,198.41.128.0/17 PTERODACTYL_FILES_MAX_EDIT_SIZE=50000 RECAPTCHA_ENABLED=false ? because I didn't put them
playaz44
playaz44β€’6mo ago
you can add and enable recaptcha
Tom Phile
Tom PhileOPβ€’6mo ago
root@Ubuntu-2204-jammy-amd64-base /etc/pterodactyl # tail -f /var/log/nginx/pterodactyl.app-error.log #2 /var/www/pterodactyl/vendor/laravel/framework/src/Illuminate/Filesystem/Filesystem.php(190): file_put_contents() #3 /var/www/pterodactyl/vendor/laravel/framework/src/Illuminate/View/Compilers/BladeCompiler.php(185): Illuminate\Filesystem\Filesystem->put() #4 /var/www/pterodactyl/vendor/laravel/framework/src/Illuminate/View/Engines/CompilerEngine.php(62): Illuminate\View\Compilers\BladeCompiler->compile() #...PHP message: PHP Fatal error: Uncaught ErrorException: file_put_contents(/var/www/pterodactyl/storage/framework/views/4e5709c1c93b720882e66b4c395cf5d7.php): Failed to open stream: Permission denied in /var/www/pterodactyl/vendor/laravel/framework/src/Illuminate/Filesystem/Filesystem.php:190 Stack trace: #0 /var/www/pterodactyl/vendor/laravel/framework/src/Illuminate/Foundation/Bootstrap/HandleExceptions.php(250): Illuminate\Foundation\Bootstrap\HandleExceptions->handleError() #1 [internal function]: Illuminate\Foundation\Bootstrap\HandleExceptions->Illuminate\Foundation\Bootstrap{closure}() #2 /var/www/pterodactyl/vendor/laravel/framework/src/Illuminate/Filesystem/Filesystem.php(190): file_put_contents() #3 /var/www/pterodactyl/vendor/laravel/framework/src/Illuminate/View/Compilers/BladeCompiler.php(185): Illuminate\Filesystem\Filesystem->put() #4 /var/www/pterodactyl/vendor/laravel/framework/src/Illuminate/View/Engines/CompilerEngine.php(6
playaz44
playaz44β€’6mo ago
chmod -R 755 storage/* bootstrap/cache chown -R www-data:www-data /var/www/pterodactyl/* if you use php-fpm enter also systemctl restart php8.X-fpm (change X to your version)
Tom Phile
Tom PhileOPβ€’6mo ago
chatgpt says that these may be the only ones that can cause a bug SSL*
playaz44
playaz44β€’6mo ago
you can always do everything according to the pterodactyl's guide it will definitely be faster and easier than patching this
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
i have reponse bot pterodactyl :
No description
Tom Phile
Tom PhileOPβ€’6mo ago
the port is not open
No description
Tom Phile
Tom PhileOPβ€’6mo ago
πŸ˜„
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
is good I had to open the port πŸ˜„ @playaz44 8443
playaz44
playaz44β€’6mo ago
I'm glad you managed to solve your problem now all you have to do is change the website's IP address because your address will be available in various search engines
Tom Phile
Tom PhileOPβ€’6mo ago
so I have a question how I can put a ddos ​​protection because ok these are managed by cloudflare etc at the ssl level but I want to be able to avoid the ddos and how I do it
playaz44
playaz44β€’6mo ago
The first thing you need to do is separate your panel to a different server than it is wings. Then make sure to have cloudflare proxy enabled for the panel all the time. And further make sure that your hosting for games provides anti-ddos protection But that's just a short story
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
is correct ? i have create block
playaz44
playaz44β€’6mo ago
I don't know what you're going to achieve with this rule If your website is attacked, you are able to defend yourself only by changing your IP address Because your website's ip is available on the internet
Tom Phile
Tom PhileOPβ€’6mo ago
I would especially like to block the discord botnet used for ddos
Tom Phile
Tom PhileOPβ€’6mo ago
No description
No description
No description
playaz44
playaz44β€’6mo ago
If the attack takes place against an IP address that is available on the Internet, cloudflare will not help you
Tom Phile
Tom PhileOPβ€’6mo ago
I bought failover subnetworks in order to guarantee continuity of services for my customers, it can already help ? hello here is protocol udp because i don't have protocol on type srv
Tom Phile
Tom PhileOPβ€’6mo ago
No description
Tom Phile
Tom PhileOPβ€’6mo ago
?udp fivem ?udp ?tcp
Akama Aka
Akama Akaβ€’6mo ago
If your server is under attack not even a subnetwork will help you. A different server in a different location will help but also just as long as they don't have the IP
Want results from more Discord servers?
Add your server