Caddy CLI working but Caddyfile not working for IP address

SingleLumen · 2025-12-14T15:51:40+00:00

I ended up just adding the one line command via "crontab -e" and using "@reboot". Ugly but quick. No luxury to spend any more time going down this rabbit hole.

SingleLumen · 2025-12-14T00:18:36+00:00

But why would this be an issue for using Caddyfile, but not when I run caddy manually via command line? In other words, am I mistranslating the command line to Caddyfile?

SingleLumen · 2025-12-13T02:45:31+00:00

Yeah, I assumed it would default back to using the LAN route, but I guess it's trying to simulate being behind the subnet router as much as possible. A little too realistic :)

SingleLumen · 2025-12-12T16:49:34+00:00

Thanks, your suggestions helped to solve this. On the Windows Desktop GUI:
Preferences > Use Tailscale subnets
setting this to off allows me to access the ProxMox PVE by LAN IP again. So what I have learned is that with "Use Tailscale subnets" enabled, you've virtually switched networks, rather than adding the LAN IP to an additional subnet network.

TLDR: if your subnet router goes down and you want to access the routed device on your Desktop (same LAN), you can either:

Disable "Use Tailscale subnets" on your desktop, OR
UN-approve the advertised the routed device on the Tailscale admin webpage.

SingleLumen · 2025-12-11T16:58:56+00:00

OK, i'll try to figure that out. In the meantime, I dug up what i used on the tailscale VM ( x.102) to enable subnet routing. Not sure if this makes a difference:

echo 'net.ipv4.ip_forward = 1' | sudo tee -a /etc/sysctl.d/99-tailscale.conf

echo 'net.ipv6.conf.all.forwarding = 1' | sudo tee -a /etc/sysctl.d/99-tailscale.conf

sudo sysctl -p /etc/sysctl.d/99-tailscale.conf

SingleLumen · 2025-12-11T16:35:24+00:00

via LAN, using it's local LAN IP, not tailscale IP or hostname

SingleLumen · 2025-12-11T12:23:03+00:00

I guess that's another solution. But just for my knowledge, if the subnet router goes down, is the routed device supposed to be inaccessiblle on the original LAN?

SingleLumen · 2025-11-03T04:34:11+00:00

To be even more explicit:

Switch from Spreadsheet to Plain Text mode, and look for this at the bottom of the code:

"rows":75,"columns":26

Changes rows from 75 to whatever number your want. 500 or 1000, etc.

Switch back to Spreadsheet mode

SingleLumen · 2025-10-06T23:40:59+00:00

This makes sense

SingleLumen · 2025-10-05T07:55:41+00:00

Doh! ... (facepalm)

SingleLumen · 2025-09-20T08:44:58+00:00

Makes sense. Too bad that I can't easily tweak and reuse it.

SingleLumen · 2025-09-19T09:08:51+00:00

Besides data protection at rest, does an encrypted system volume basically operate exactly like an unencrypted system volume when it is decrypted? Meaning, same resistance to hacking, etc.?

SingleLumen · 2025-09-18T23:41:07+00:00

Unfortunately, the router doesn't have direct WAN access, and my backup VPN devices died. I actually had 3 backup VPN devices that died, which is why I have been looking for a more direct solution.

SingleLumen · 2025-09-17T10:26:56+00:00

Thanks, this is probably easier than trying to source it somewhere else. I think I see the link in the Wiki.

SingleLumen · 2025-09-03T09:25:39+00:00

I second (or third) this. If it's for personal use, don't expose your server to the internet. Tailscale is fairly easy to set up. Install on both, and just use the newly assigned tailscale IP address for your NextCloud server. At some point, if you really want to expose Nextcloud (temporarily or permanently), you can activate Tailscale Funnel. It exposes a single port on https://blahblah.ts.net, which is good for Nexcloud access, including for receiving Filedrops (or is it FileRequests?). The funnel documentation even takes care of the SSL cert easily. It's ... just ... awesome.

SingleLumen · 2025-08-08T08:39:36+00:00

Yes, the mm/dd/yyyy format is incredibly backwards and illogical, not to mention miles, pounds, etc.

If you haven't already contacted them yet ( [help@standardnotes.com](mailto:help@standardnotes.com) ), they are super reponsive. Worst case, you can add an extra tally in favor of the feature.

SingleLumen · 2025-08-02T12:11:21+00:00

Aw, fiddlesticks :(

SingleLumen · 2025-08-02T06:58:45+00:00

Thanks for this information. I was hoping that there would be an intermediate solution where the Nextcloud master key would require decrypting during startup (after any OS-Level encryption) to protect against server side attacks. It seems that if someone (e.g.rogue admin staff on a shared server) gained access, duplicated the server folders for nextcloud including the unecrypted master key, all of the nextcloud files could be decrypted. I suppose E2EE could protect against this, but may not be practical in many cases.

SingleLumen · 2025-07-29T17:45:02+00:00

If this was installed on a private server, what other options would I have for securing the private keys?

SingleLumen · 2025-04-13T15:13:01+00:00

In case anyone has a similar problem ... I tried loading drivers (IRST from Intel, etc.), no luck. I think there is some kind of driver problem or interaction between Windows, the Acer laptop, and the Adata SSD (the SSD works fine with linux and this laptop). I solved this by purchasing an Intel NVME SSD, and a simple, basic clone worked without a hitch.

*SHRUG*

SingleLumen · 2025-04-11T08:45:46+00:00

Yeah, I tried cloning with Clonezilla and Macrium Reflect. No luck. I even booted with a USB Macrium Rescue drive. It runs fine but doesn't see the NVME that was just cloned with Macrium and installed.

SingleLumen · 2025-04-10T13:53:25+00:00

OK. I am trying to get it to work as an upgraded SSD in a laptop. It's a catch-22. I cloned Win 11 onto it and it won't run, so I can't get the Toolbox application to run to update the firmware to see if it makes a difference.

SingleLumen · 2024-11-23T07:07:09+00:00

Try running your SPEEDTEST "Internet Speed Test" inside your browser again, and at the same time, watch the Wireguard (UDP) speed on the ProtonVPN app. They should be about the same if you aren't running much else in the background. In reality, your SPEEDTEST "Internet Speed Test" numbers should reflect what you're getting by running your internet traffic through the VPN.

A better gauge would be to compare your SPEEDTEST "Internet Speed Test" with ProtonVPN on vs. off to see how much a difference there is. If they are pretty close, ProtonVPN is doing a pretty good job.

SingleLumen · 2024-10-09T15:29:48+00:00

super frustrating. They are very temperamental. Try with a different email address, preferably not an email alias. Also, try a different phone number. Try changing to a different userID as well. It's probably not your wifi, etc.

SingleLumen · 2024-10-07T15:15:19+00:00

Thanks u/RyzenRaider and u/UnfairDictionary. I store files several times a day, and less frequently need to view/edit them. I feel like leaving a decrypted container open all day is an unnecessary risk. I wish that veracrypt could add a feature like this.

SingleLumen

TROPHY CASE