mikehdt / aws-foundry-ssl Goto Github PK

View Code? Open in Web Editor NEW

This project forked from cat-box/aws-foundry-ssl

6.0 6.0 8.0 2.78 MB

Deploy Foundry VTT with SSL encryption in AWS using CloudFormation

License: GNU General Public License v2.0

Shell 100.00%

aws aws-cloudformation foundry-vtt

aws-foundry-ssl's People

Contributors

Stargazers

Watchers

Forkers

michaelwmcnamara takamuffin sleepybandit benny84 brandonrhymer samdammers infiniteaxis

aws-foundry-ssl's Issues

Downloaded foundry.zip doesn't seem big enough. Check the zip file and URL were correct.

sudo cat /tmp/foundry-setup.log | less

+++ stat -c%s ./foundry.zip
++ filesize=218246537
++ echo 'File size of foundry.zip is 218246537 bytes.'
File size of foundry.zip is 218246537 bytes.
++ ((  218246537 > 100000000  ))
++ echo 'File size seems about right! Proceeding...'
File size seems about right! Proceeding...
++ break
++ [[ filesize < rough_filesize ]]
++ echo 'Error: Downloaded foundry.zip doesn'\''t seem big enough. Check the zip file and URL were correct.'
Error: Downloaded foundry.zip doesn't seem big enough. Check the zip file and URL were correct.
++ exit 1

Cloud watch error is:
FoundryServer | CREATE_FAILED | Received FAILURE signal with UniqueId i-xxxx

I've ran this with several variations to the parameters.

Admittedly, I'm not the least knowledgeable about this. I installed foundry previously on AWS a few years ago, and locked myself out of my old instance. I went throught the steps to wipe all traces of the old instance, but i could have missed something. Please send help.

Update: I ssh'd in and commented out the final filesize check and everything continued after i ran install.sh again. I'm honestly not sure what else needs to be run. Please advise.

dynamic_dns.sh uses deprecated mechanism to find public_ip

At least for my EC2 host (after cloud formation finished), using openDNS to find my public ip doesn't work:

dig +short myip.opendns.com @resolver1.opendns.com

returns nothing. However, using cloud flare does:

dig +short txt ch whoami.cloudflare @1.0.0.1

so I was able to get /aws-foundry-ssl/setup/aws/dynamic_dns.sh to work by getting the public_ip like this:

Retrieve public IP

public_ip="$(dig +short txt ch whoami.cloudflare @1.0.0.1)"
strip="${public_ip%"}"
public_ip="${strip#"}"

CidrIp misconfigured in AWS::EC2::SecurityGroup

The template fails consistently when creating the SecurityGroupIngress*IPv6 resources, because it uses "CidrIp" for the value "::/0". This will error will fail the template whether you select static ip or not, and whether or not you've configured the default VPC for IPv6.

The correct key is "CidrIpv6".

nginx and certbot issue

There were zero rollbacks during the stack deployment; however, Im only able to access the server via Public IPv4 address :30000.

I only redeployed the stack 4 times with various versions of V11 including the first stable and latest; however the issue is the same.

sudo cat /tmp/foundry-setup.log | less

++ sudo systemctl enable --now nginx
Created symlink /etc/systemd/system/multi-user.target.wants/nginx.service → /usr/lib/systemd/system/nginx.service.
Job for nginx.service failed because the control process exited with error code.
See "systemctl status nginx.service" and "journalctl -xeu nginx.service" for details.
++ sudo sed -i 's/"hostname":.*/"hostname": "foundry\.*****.com",/g' /foundrydata/Config/options.json
++ sudo sed -i 's/"proxyPort":.*/"proxyPort": "80",/g' /foundrydata/Config/options.json
++ [[ False == \T\r\u\e ]]
++ systemctl restart nginx
Job for nginx.service failed because the control process exited with error code.
See "systemctl status nginx.service" and "journalctl -xeu nginx.service" for details.

In Cloud Watch Log group letsencrypt log stream: I see the error

2023-11-05 00:46:34,519:ERROR:certbot.util:Error while running nginx -c /etc/nginx/nginx.conf -t.
nginx: [emerg] no host in ":80" of the "listen" directive in /etc/nginx/conf.d/foundryvtt.conf:3
nginx: configuration file /etc/nginx/nginx.conf test failed
2023-11-05 00:46:34,519:DEBUG:certbot._internal.plugins.disco:Misconfigured PluginEntryPoint#nginx: Error while running nginx -c /etc/nginx/nginx.conf -t.
nginx: [emerg] no host in ":80" of the "listen" directive in /etc/nginx/conf.d/foundryvtt.conf:3
nginx: configuration file /etc/nginx/nginx.conf test failed
Traceback (most recent call last):  
File "/opt/certbot/lib64/python3.9/site-packages/certbot_nginx/_internal/configurator.py", line 1014, in config_test 
util.run_script([self.conf('ctl'), "-c", self.nginx_conf, "-t"])  
File "/opt/certbot/lib64/python3.9/site-packages/certbot/util.py", line 199, in run_script    
raise errors.SubprocessError(msg)
certbot.errors.SubprocessError: Error while running nginx -c /etc/nginx/nginx.conf -t.
nginx: [emerg] no host in ":80" of the "listen" directive in /etc/nginx/conf.d/foundryvtt.conf:3
nginx: configuration file /etc/nginx/nginx.conf test failed
During handling of the above exception, another exception occurred:
Traceback (most recent call last):  
File "/opt/certbot/lib64/python3.9/site-packages/certbot/_internal/plugins/disco.py", line 112, in prepare    self._initialized.prepare()  
File "/opt/certbot/lib64/python3.9/site-packages/certbot_nginx/_internal/configurator.py", line 210, in prepare    self.config_test()  
File "/opt/certbot/lib64/python3.9/site-packages/certbot_nginx/_internal/configurator.py", line 1016, in config_test    
raise errors.MisconfigurationError(str(err))
certbot.errors.MisconfigurationError: Error while running nginx -c /etc/nginx/nginx.conf -t.
nginx: [emerg] no host in ":80" of the "listen" directive in /etc/nginx/conf.d/foundryvtt.conf:3
nginx: configuration file /etc/nginx/nginx.conf test failed
2023-11-05 00:46:34,520:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * nginx
Description: Nginx Web Server plugin
Interfaces: Authenticator, Installer, Plugin
Entry point: EntryPoint(name='nginx', value='certbot_nginx._internal.configurator:NginxConfigurator', group='certbot.plugins')
Initialized: <certbot_nginx._internal.configurator.NginxConfigurator object at 0xffffa530d040>
Prep: Error while running nginx -c /etc/nginx/nginx.conf -t.
nginx: [emerg] no host in ":80" of the "listen" directive in /etc/nginx/conf.d/foundryvtt.conf:3
nginx: configuration file /etc/nginx/nginx.conf test failed

any help or suggestion appreciated!

Thanks

Recommend Projects

React

A declarative, efficient, and flexible JavaScript library for building user interfaces.
Vue.js

🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
Typescript

TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
TensorFlow

An Open Source Machine Learning Framework for Everyone
Django

The Web framework for perfectionists with deadlines.
Laravel

A PHP framework for web artisans
D3

Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

javascript

JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
web

Some thing interesting about web. New door for the world.
server

A server is a program made to process requests and deliver data to clients.
Machine learning

Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Visualization

Some thing interesting about visualization, use data art
Game

Some thing interesting about game, make everyone happy.

Recommend Org

Facebook

We are working to build community through open source technology. NB: members must have two-factor auth.
Microsoft

Open source projects and samples from Microsoft.
Google

Google ❤️ Open Source for everyone.
Alibaba

Alibaba Open Source for everyone
D3

Data-Driven Documents codes.
Tencent

China tencent open source team.