Access Resources with self signed TLS Certificate [Docker] #52

New Issue

Closed

opened 2025-11-19 07:12:54 -06:00 by GiteaMirror · 1 comment

GiteaMirror commented 2025-11-19 07:12:54 -06:00

Owner

Copy Link

Originally created by @DevNinja90 on GitHub (Sep 1, 2025).

We have some resources that are only accessable via https. They automatically redirect thir webinterface via HTTP Status Code 307.
When running newt in debug mode this can be observed for the healthprobe.
A connection via pangolin is not succesfull.

We use pangolin in the cloud version for evaluation currently and newt in docker. 10.0.3.1 is the docker host and we want to access a web ui which the host runs. Unfortunately a filesystem / ssh access is not possible. TLS Certs could in theory be exchanged but this then needed to be done for every device (which we have 150 of) and they still would not be trusted.

> WARN: 2025/09/01 11:49:35 Target 1131: health check failed: Get "https://10.0.3.1/rpc": tls: failed to verify certificate: x509: certificate signed by unknown authority
> INFO: 2025/09/01 11:49:35 Target 1131 initial status: unhealthy

What could work:

• Docker Wrapper Image which adds the CA of my custom devices and compiles again
• A "allow self signed tls cert" flag i newt and in pangolin

Are there any plans for the secondary idea?

Originally created by @DevNinja90 on GitHub (Sep 1, 2025). We have some resources that are only accessable via https. They automatically redirect thir webinterface via HTTP Status Code 307. When running newt in debug mode this can be observed for the healthprobe. A connection via pangolin is not succesfull. We use pangolin in the cloud version for evaluation currently and newt in docker. 10.0.3.1 is the docker host and we want to access a web ui which the host runs. Unfortunately a filesystem / ssh access is not possible. TLS Certs could in theory be exchanged but this then needed to be done for every device (which we have 150 of) and they still would not be trusted. ``` > WARN: 2025/09/01 11:49:35 Target 1131: health check failed: Get "https://10.0.3.1/rpc": tls: failed to verify certificate: x509: certificate signed by unknown authority > INFO: 2025/09/01 11:49:35 Target 1131 initial status: unhealthy ``` What could work: - Docker Wrapper Image which adds the CA of my custom devices and compiles again - A "allow self signed tls cert" flag i newt and in pangolin Are there any plans for the secondary idea?

GiteaMirror closed this issue 2025-11-19 07:12:54 -06:00

GiteaMirror commented 2025-11-19 07:12:55 -06:00

Author

Owner

Copy Link

@DevNinja90 commented on GitHub (Sep 1, 2025):

This isssue can be verified by making a wget command to the desired resource

@DevNinja90 commented on GitHub (Sep 1, 2025): This isssue can be verified by making a wget command to the desired resource

GiteaMirror referenced this issue 2025-11-19 07:14:00 -06:00

[PR #72] [MERGED] Dev #102

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

main

dev

msg-opt

dependabot/go_modules/prod-patch-updates-3194e6d214

dependabot/docker/minor-updates-1134f52710

ssh-agent

msg-delivery

icmp2

port-firewall

platform

hp-multi-client

holepunch

updown

1.10.2

v1.10.2

1.10.1

v1.10.1

1.10.0

v1.10.0

1.9.5

1.9.4

1.9.3

1.9.2

1.9.1

1.9.0

v1.9.0

1.8.1

v1.8.1

v1.8.0

1.8.0

1.8.0-rc.0

1.7.0

1.6.1

1.7.0-rc.0

1.6.0

v1.0.1

1.4.9

1.5.2

1.5.1

1.5.0

1.4.4

1.4.3

1.4.2

1.4.1

1.4.0

1.3.4

1.3.3

1.3.2

1.3.1

1.3.0

1.2.1

1.2.0

1.1.3

1.1.2

1.1.1

1.1.0

1.0.0

1.0.0-beta.5

1.0.0-beta.4

1.0.0-beta.3

1.0.0-beta.2

1.0.0-beta.1

Labels

Clear labels

bug

enhancement

good first issue

help wanted

Improvement

pull-request

Mirrored from GitHub Pull Request

No Label

Milestone

No items

No Milestone

Projects

Clear projects

No project

Assignees

Clear assignees

GiteaMirror ninjasurge

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: github-starred/newt#52