I’m trying to self host my portfolio on an old laptop running Ubuntu server. I’ve successfully set up docker and nginx. I got a DNS subdomain from freedns.afraid.org.

The IP connected to the DNS matches my server’s public IP address.

I can connect with https://mypublicip/ from outside the network, but it shows as an insecure connection and the https has lines going through it in the browser.

Any attempts to connect to the website via DNS have failed, and trying to connect via IP on port 80 fails as well. I really have no clue what is going on, let me know if you need more information, or if this is the wrong place to ask for help with this sort of thing.

Edit: Whatever problem I had before, it seems its been fixed. However my subdomain is being blocked by ISPs. Thank you for the help everyone, I’ll probably have to do cloudflare tunneling instead of fully self-hosting it.

  • dr_robotBones@reddthat.comOP
    link
    fedilink
    English
    arrow-up
    1
    ·
    5 months ago

    I get a 206 address that matches my server’s public IP. My laptop is on the same network as the portfolio, but I did test external connections using a mobile hotspot, which resulted in me successfully connecting to the IP address with telnet, but not being able to connect to the domain name. On my phone’s browser, while on data, I was able to access my portfolio website using the public IP address as the URL, rather than the domain name.

    • pezhore@infosec.pub
      link
      fedilink
      English
      arrow-up
      1
      ·
      5 months ago

      Just to make sure.

      1. When on your home network, doing nslookup (or similar), your fqdn resolves to your public IP
      2. When on a hotspot, if you go to https://fqdn/ it does not connect (probably with the ERR_CONNECTION_TIMED_OUT that you mentioned below)
      3. When on hotspot, if you to telnet to port 443 on 206.x.x.x, it connects

      What happens if you, on the hotspot, try browsing to https://206.x.x.x? When you are on the same network as the portfolio, can you reach https://[internal ip]?

      What I’m leaning towards is a router/firewall that may be causing some issues. To help with troubleshooting, does your website server have any local firewalls (for ubuntu that would typically be ufw, but it could be iptables or firewalld)?

        • pezhore@infosec.pub
          link
          fedilink
          English
          arrow-up
          1
          ·
          5 months ago

          Okay, then I’m thinking your router/NAT maybe causing the problem. Typically, your ISP won’t block subdomains for dns, they may outright block Source NAT (SNAT), but if you could get through via the IP, you should be good to go.