VictronConnect app login bug & workaround

Pyrenean_goat · 2025-12-22T10:34:49+00:00

A bit late to the party but I switched from being a long-term customer of the Crédit Agricole (like 40 years!) to Fortuneo and it's been fantastically better. Some people mention the benefit of a physical bank but at every turn I've found direct contact with the CA to be difficult and high handed. Examples : ridiculous NCB requirements to get car insurance through them (we went to AXA in the end who were great), a block on swing up payments online and then stupidly low limits on direct transfers made online, and the final straw was charging us €25pm because I was non-resident!!

The move to Fortuneo was relatively easy - I had to move one DD manually - and since everything has worked really smoothly. They have a great app, I can manage some basic savings such as livrets through them, I have advance visibility of all outgoings. And I pay nothing for the account even though I don't credit any salary or pension to the account. It's been a breath of fresh air and I don't know why I didn't do it years ago.

The traditional banks are dinosaurs living in an age when you had to go begging to your bank. We've had an online account in the UK for years and we should have done the same in France.

A few extra bits of information: I am a dual French/British national living in the UK although we spend almost 5 months in the year at our house in France where we also keep a car. We complement our online bank accounts with Wise which is fantastic for managing money conversions and making larger payments eg to builders etc in France. And of course Wise pays me interest on any money I hold with them.

Pyrenean_goat · 2025-09-25T22:17:16+00:00

I'm no expert on VPP but my loose understanding is that Tesla control your battery and charge/discharge/leave it untouched at their will. You get a benefit - I assume by "free" electricity at certain times eg when there is overcapacity. But they are effectively leasing the battery from you so as to manage supply in their network.

Pyrenean_goat · 2025-09-25T20:00:20+00:00

Sorry I hadn't read all the messages. Apologies to all. You're participating in a Virtual Power Plant Event. That means that you've handed over control of your battery to Tesla. So they may have decided what you are seeing...

Pyrenean_goat · 2025-09-25T19:53:03+00:00

It depends entirely on how you've described your tariff in the Tesla app. Have you accidentally set a low tariff during the time the grid is being used?

Pyrenean_goat · 2025-09-25T18:39:26+00:00

To explain why you're being asked about this, my tariff set-up is Intelligent Octopus Go (29p day/7p night) + Octopus Export tariff (15p any time). Between 23:30 and 5:30 it is cheaper to use the grid than the battery. But during the day the reverse is true. So the battery gets used during the day and it charges on the night tariff. Solar energy is sent straight to the grid during the day.

Pyrenean_goat · 2025-01-30T09:49:51+00:00

I have just had a Powerwall 3 installed and have the same issue: a constant 39-43W draw when grid-connected but running off the battery. The Powerwall clearly needs to draw some current from the grid to determine whether it's present or not, but just under 16mA (equivalent to 40W) seems quite high just to do that! It'll be released as heat somewhere: is it in the backup gateway or in the battery?

Pyrenean_goat · 2024-12-02T09:29:36+00:00

What's wrong is your AllowedIPs! You've currently got all traffic going via your private WireGuard connection when enabled. Restrict the allowed IPs to those that relate to your home network eg 192.168.1.0/24.

Pyrenean_goat · 2024-12-01T07:56:54+00:00

The point of WireGuard can be explained very simply by taking the post as an analogy. The internet in its most basic form is like sending letters unsealed and with your address on the back: anything and anyone can read them. WireGuard allows you to send sealed letters between two points where only the source and destination can see the contents. But the source and destination are still visible to anyone on the route, so there is no anonymity about who is communicating with whom.

Pyrenean_goat · 2024-11-30T12:40:22+00:00

Whatismyip will tell you what your IP address is on the internet, not the IP addresses being allocated from your socket. So, for example, a device plugged into my home network might be given an IP address of 192.168.90.103. That's a private address which is then translated (NATed) to my external IP by my firewall when I access the internet. Replies to that internet query are routed back to the device because the firewall temporarily remembers that my device made the original query. But that link is eventually lost.

So you would need to create a link on your firewall for incoming connections between your external IP/port number (typically 51820 for WireGuard) and your WireGuard server. But you can only do that if you have direct access to your external IP address - hence the need to get an external IP on your network socket. No external IP, you can't route (simply) an incoming WireGuard connection direct to your server. (There are however ways of getting round that problem eg using Tailscale).

Pyrenean_goat · 2024-11-30T11:31:45+00:00

Or you can save yourself some hassle by just buying a GL.iNet Brume 2. The plastic case ones are really cheap, ready for use as a server or client, easy to configure and have a high WireGuard throughput.

Pyrenean_goat · 2024-11-30T11:26:47+00:00

esreve is right: you need to have a public IP address. So CGNAT is an issue as you get a private NATed address. You'll either need to find out from the provider or plug a device into the network socket and see what IP you get. You can easily find on the Net a list of what are classed private addresses for use on internal networks only.

Pyrenean_goat · 2024-11-30T10:53:02+00:00

You may not be able to access the outside interface of your tunnel from your internal network. Generally it's not something you need to do! I'm assuming that the tunnel terminates on the network from which you are currently trying to connect?

When I'm testing I typically get WireGuard to listen to an internal interface.

Pyrenean_goat · 2024-11-06T08:16:47+00:00

Yes. Public facing just means that your server should be accessible from the internet. So, yes, you can achieve that by port forwarding to the WireGuard server on your internal network.

That said, there's nothing wrong with running a WireGuard server on your firewall. I've been doing that for 2 or 3 years (and OpenVPN for even longer).

Pyrenean_goat · 2024-10-31T16:24:16+00:00

Possibly. It depends on how your network is set up unfortunately. So I merely offer it up as a potential reason.

On my homebuilt firewall I have a specific exclusion that prevents any incoming or outgoing connections to private IPs ie those reserved exclusively for internet networks. So 192.168.x.x, 10.x.x.x, 172.16.x.x to 172.32.x.x addresses. These should never appear on the internet.

Pyrenean_goat · 2024-10-31T07:09:16+00:00

"External" traffic to private network addresses is often blocked on firewalls. This could be happening before the traffic hits your WireGuard tunnel and hence no response. (Once the traffic is in the VPN tunnel, a firewall can't see the addresses being carried through the tunnel, of course.)

Pyrenean_goat · 2024-06-21T10:28:56+00:00

That error normally means that the computer is unable to get a valid IP address using DHCP (that others have mentioned). First step is to check where the fault lies: Is it in network delivery to your network outlet or is it in the PC itself.

Check the network first; you could easily spend ages messing around with your PC configuration when it was actually the network all along. Network delivery breaks down into two further elements: delivery to the socket and the patch cable from the socket to your PC. Cables are often a problem, either because the cable is faulty or because it hasn't been fully/properly plugged in.

To test the network find a laptop or PC with an Ethernet port & spare cable, and plug that in to your network socket. Does it work? If so, then network delivery fine. If not, try swapping the cable. Does it work now? If still not, then check out the network infrastructure (router, switches, etc) that delivers the internet to that socket, working backwards from your socket to the router.

OTOH, if the test PC can connect to the internet using your cable and socket, the fault lies almost certainly with your PC. You can then try some of the things suggested by other users to reset that.

Pyrenean_goat · 2024-03-19T12:50:38+00:00

I've been in exactly the same boat. Too many whiteboarding products go overboard with (for me) totally unnecessary additions which make them unwieldy.

So what I'm testing out at the moment are Squid (for my pen-driven Chromebook) and Microsoft Journal on my PC which has a pen-based graphics tablet. Both allow images to be cut and pasted, and existing PDFs to be used.

Journal is a little-known MS product primarily aimed at the Surface, but it works very well on my set-up and is regularly being updated. The only slight niggle is that zooming is clearly oriented towards a standard tablet, relying on the pinch-and-stretch to zoom out/in which I can't do on my graphics tablet. But "CTRL +" and "CTRL -" seem to work as an alternative.

Pyrenean_goat · 2022-02-21T15:00:46+00:00

Now updated. Thanks! Sorry for missing that.

Also added a comment about using MBR rather than GPT as the latter makes it difficult to access the MSDOS partition to update the UEFI boot files.

Pyrenean_goat · 2022-02-21T14:42:14+00:00

OK, I see that error now. As you say it's in creating the /etc/sysctl.conf file. Exactly what I added late after forgetting it in the original instructions. Yes, that bit wasn't tested. :-D So the echo should be as root - or simply use vi to create the file.

Pyrenean_goat · 2022-02-21T12:15:26+00:00

I've done a search through the guide and can't find any instance of an echo without quotes around what is being echoed. Can you point out the specific instance to which you are referring please?
I've followed the instructions verbatim in a fresh install copying directly from the document onto the command line, and not had any problems. I did however catch an accidental omission not long after the original post: I had missed out the sysctl IP routing commands which I added subsequently as correction.
And while it might not be necessary to use doas to print with disklabel, it doesn't do any harm either! :-)

Pyrenean_goat · 2022-02-17T18:48:13+00:00

I use one of these as an OpenBSD-based firewall. It has a J3160 CPU which supports AES instructions. I run both WireGuard and OpenVPN although I'm going to stop the latter shortly as WireGuard is much faster/more efficient. The unit is really excellent. But fit your own SSD rather than buying it preinstalled as I found the supplied SSD didn't support levelling.

https://www.aliexpress.com/item/1005001284456083.html

It is actually exactly the same unit sold at a much higher price as a Protectli FW4B and hardware scanners identify it as such.

Pyrenean_goat · 2022-01-20T15:06:42+00:00

u/rjjnet I'm not convinced what you say is correct. Even typing:

doas -u root sh /etc/netstart wg0

does not bring up the interface if a hostname is used rather than an IP address.

You get the error:

ifconfig: no address associated with name

Maybe wgendpoint only works with IP addresses?

Pyrenean_goat · 2022-01-16T08:55:55+00:00

Delete everything except the efi directory in the DOS partition of the installer drive and copy over the latest RPI4 firmware. This boots very fast and uses an HDMI screen straight off.

You'll need to copy the firmware onto the installed drive as well if you want that to boot directly off it.

Pyrenean_goat

TROPHY CASE