There is no default admin account at the time of writing this tutorial. Navigate to the server in your web browser. Start rocket chat (both the mongo database container and the application container) by running the command below: docker-compose up Go through it and change all instances of to your server's IP or hostname. MONGO_OPLOG_URL=mongodb://mongo:27017/local ROOT_URL= - MONGO_URL=mongodb://mongo:27017/rocketchat It should look similar to below (although it keeps changing). mv Rocket.Chat/docker-compose.yml $HOME/. git clone Ĭlone the docker-compose file up to your home and remove all the other content (we dont actually wan the code and this simplifies the volumes later). Nginx: BIO_new_file("/etc/letsencrypt/live//fullchain.Firstly, install docker and then install docker compose if you haven't already.Ĭlone the RocketChat repository and navigate to within the source code. Nginx: BIO_new_file("/etc/letsencrypt/live//fullchain.pem") failed (SSL: error:02001002:system library:fopen:No such file or directory:fopen('/etc/letsencrypt/live//fullchain.pem','r') error:2006D080:BIO routines:BIO_new_file:no such file) Hmm, it does look like something is wrong… here are the last 50 logs: nginx: BIO_new_file("/etc/letsencrypt/live//fullchain.pem") failed (SSL: error:02001002:system library:fopen:No such file or directory:fopen('/etc/letsencrypt/live//fullchain.pem','r') error:2006D080:BIO routines:BIO_new_file:no such file) # Custom network so all services can communicate using a FQDN $/transcripts:/usr/share/jitsi-meet/transcripts #JWT_ACCEPTED_AUDIENCES=my_server1,my_server2 # (Optional) Set asap_accepted_audiences as a comma separated list. ![]() ![]() # (Optional) Set asap_accepted_issuers as a comma separated list. # Application secret known only to your token. # Select authentication type: internal, jwt or ldap # Authentication configuration (see README for details) # SIP server (use the SIP account domain if in doubt). # SIP URI for incoming / outgoing Password for the specified SIP account as a clear text # Basic Jigasi configuration options (needed for SIP gateway support) # Set etherpad-lite URL (uncomment to enable). ![]() # E-Mail for receiving important account notifications Etherpad integration (for document sharing) # Domain for which to generate the certificate. # Enable Let's Encrypt certificate generation. See the "Running on a LAN environment" section # Directory where all configuration will be stored. But, I’m new to network architecture and security, and I really want to containerize everything I can, since that seems more flexible re: deployment and isolation (makes me feel better about having sensitive files on the same machine that is open to the internet, although I’m sure someone here can educate me on that’s probably still not a good idea) I did try installing Jitsi directly to machine and I was able to get to the Jitsi service through my browser. Router passes 80, 8000, 443, 8443, 22, 3000, 10000 to the machine on LAN that I access thru remote ssh. Our DNS record is maintained by Wix, so I’ve created two A records for the two services and pointed them to the static IP that goes to the router. It connects to a router then to our modem. I’m running those servers and a local file server from a desktop PC running Ubuntu Server 18.04 LTS. Also, if there’s anything else you can think of that I need to do to integrate rocketchat users with the jitsi service you’re aware of, please let me know! Thank you in advance for helping me along to my next error. This shouldn’t be a hard fix, so I know I’m missing something. Change config dir permissions within docker images.Things I haven’t tried because I couldn’t find how: Double check firewall settings and router settings.env (don’t understand this one, is the docker host address the internal address for docker, or the host that is running docker’s address?) Turning off the docker_host_address variable in.I have forwarded the recommended ports on my router to the host machine and opened them on host (443, 80, 8443, 8000, 10000, 4443) Other docker containers are accessible from browser, but not jitsi containers. ![]() ( or 8000) always results in connection refused. This post got flagged once as spam, so if there is something wrong with how I’ve written it, please let me know.
0 Comments
Leave a Reply. |