I followed this tutorial to set up local domain names with SSL-certificates using DuckDNS: https://notthebe.ee/blog/easy-ssl-in-homelab-dns01/

I have three local domains for my Nginx Proxy Manager running on a VPS, for my self-hosted Nextcloud and my Proxmox-WebGUI both running on my local Homeserver. They follow the scheme service.dataprolet.duckdns.org.

Now I use Uptime-Kuma to monitor my services including the three domains and for some reason those three domains constantly time out after 48 seconds. I already set up the retries to 3, but to no avail.

I also use Pi-hole and Unbound and thought, that might be an issue, but testing my DNS using dig, mtr, traceroute, nslookup and host all returned normal values and no errors.

Does anybody have any idea what could cause this? I’m kind of clueless at this point. Thanks in advance!

    • rearview@lemmy.zip
      link
      fedilink
      English
      arrow-up
      1
      ·
      edit-2
      12 minutes ago

      seems like your DNS works fine but your certs doesn’t. Are you able to connect to your services on your browser normally, with SSL?

      Edit: please also try curl -4 and curl -6 to your services from within the uptime kuma container to see if theres an ipv4/v6 issue

      Another edit: seems like there is a dataprolet URL in your post and a datenprolet URL in your comments. It might just be a typo so also check that too.

    • alwayssitting@infosec.pub
      link
      fedilink
      English
      arrow-up
      1
      ·
      2 hours ago

      Sorry I’m a bit confused. What kind of tracker are you using in uptime-kuma and what address is it pointing to?

      • Dataprolet@lemmy.dbzer0.comOP
        link
        fedilink
        English
        arrow-up
        1
        ·
        1 hour ago

        What do you mean by tracker? I’m monitoring local domains, that point to local services and their respective web interfaces like Proxmox or Nextcloud. The local domains have a wildcard SSL certificate via DuckDNS.

        • alwayssitting@infosec.pub
          link
          fedilink
          English
          arrow-up
          1
          ·
          edit-2
          55 minutes ago

          Which one of those. You pick one when adding something new to monitor. Actually just send a screenshot of the uptime-kuma settings of one of the services that are giving you problems.

            • alwayssitting@infosec.pub
              link
              fedilink
              English
              arrow-up
              1
              ·
              edit-2
              37 minutes ago

              Well you keep saying monitor a domain, in that case a DNS monitor would make more sense than HTTP(s) since that’s for monitoring a service. That’s why I was a bit confused. But yeah try to enable the ignore SSL option and see if that changes anything. You didn’t include a screenshot of the settings which makes a bit difficult to diagnose the problem so I will leave it here.