G+_Jason Perry Posted July 5, 2018 Share Posted July 5, 2018 Looking for some help. I am setting up a unifi controller on digital ocean following the guide on crosstalk Solutions YouTube page and I have hit a wall. I configured Ubuntu and installed the controller, but when I go to the site I get a connection refused error. I have tried with the url and the IP address as well as with and without the firewall. Any suggestions? Link to comment Share on other sites More sharing options...
G+_David Alitz Posted July 5, 2018 Share Posted July 5, 2018 My default install of unifi controller listens on 8443. Perhaps you need to change a setting to get the digital ocean install to listen on the standard port (443) or append :8443 to the URL to connect to that port. Link to comment Share on other sites More sharing options...
G+_Jason Perry Posted July 5, 2018 Author Share Posted July 5, 2018 Right now I am at work and didn't get chance to upload my rsa key to my phone so I am going to have to try playing with settings on the server when I get home So far I have tried https://unifi.url.com:8443 (connection refused) http://unifi.url.com:8443 (connection refused) https://unifi.url.com (timed out) http://unifi.url.com (timed out) Link to comment Share on other sites More sharing options...
G+_Jason Perry Posted July 5, 2018 Author Share Posted July 5, 2018 My current thought process is How do I tell if it is Ubuntu or the UniFi controller and Am I better starting again before I get too wrapped up in what's wrong? Link to comment Share on other sites More sharing options...
G+_Travis Hershberger Posted July 5, 2018 Share Posted July 5, 2018 What does the output of 'systemctl status unifi' say? In other words, is the service running? Link to comment Share on other sites More sharing options...
G+_Rud Dog Posted July 5, 2018 Share Posted July 5, 2018 Jason Perry Just took a look at what Digital Ocean was and it looks very interesting. Am I guessing you got this working on hardware local to your site? Is it Digital Ocean or some change made to the software by Unifi? I know my last update I can no longer log in and download the beta software for viewing the timeline. Here is the error I get. I am set up on a laptop locally. Link to comment Share on other sites More sharing options...
G+_Jason Perry Posted July 5, 2018 Author Share Posted July 5, 2018 Travis Hershberger Link to comment Share on other sites More sharing options...
G+_Jason Perry Posted July 5, 2018 Author Share Posted July 5, 2018 Okay I updated and rebooted Now when I run systemctl status it says the state is running but I still get a refused connection Link to comment Share on other sites More sharing options...
G+_Jared Twomey Posted July 5, 2018 Share Posted July 5, 2018 Did you add the unifi. as part of the URL during setup? Its been a while since I setup a unifi controller, but the one we use at work is just the domain name (no unifi. in front of it):8443 Link to comment Share on other sites More sharing options...
G+_Travis Hershberger Posted July 5, 2018 Share Posted July 5, 2018 Jason Perry Making progress at least. Does going to https://IP:8443 show anything? Also might want to run an nmap scan on the server. I actually just setup a controller in my home lab yesterday and didn't have an issue with it, but I also haven't gotten any APs imported yet. I wonder if the instructions you used were out of date, or just wrong. Link to comment Share on other sites More sharing options...
G+_Jason Perry Posted July 5, 2018 Author Share Posted July 5, 2018 I think I am going to destroy the droplet and try again before I am too invested in making it work. I am using the instructions at crosstalksolutions.com/secure-unifi-controller the directions are 5 months old. crosstalksolutions.com - Crosstalk Solutions | VoIP, WiFi, and Networking Done Right. Link to comment Share on other sites More sharing options...
G+_Jason Perry Posted July 5, 2018 Author Share Posted July 5, 2018 So going over the setup I followed here is what I did differently. I did not obviscate the ssh port I did not specify my wan IP address because I have a dynamic IP and don't want to lock myself out. Ports that he tied to an IP were 22 and 8443 I also noticed he doesn't have IPv6 rules for ports 22 and 8443 And now that I went through the instructions again it still doesn't work. Boohttps://plus.google.com/photos/112174847498581086778/albums/6574870963320794769/6574870965037145970 Link to comment Share on other sites More sharing options...
G+_Jason Perry Posted July 5, 2018 Author Share Posted July 5, 2018 i just ran 'systemctl status unifi' and this is what i am up against ? unifi.service - unifi Loaded: loaded (/lib/systemd/system/unifi.service; enabled; vendor preset: enabled) Active: inactive (dead) since Thu 2018-07-05 23:19:21 UTC; 13s ago Process: 5090 ExecStop=/usr/lib/unifi/bin/unifi.init stop (code=exited, status=0/SUCCESS) Process: 4975 ExecStart=/usr/lib/unifi/bin/unifi.init start (code=exited, status=0/SUCCESS) Link to comment Share on other sites More sharing options...
G+_Travis Hershberger Posted July 6, 2018 Share Posted July 6, 2018 Jason Perry That line with 'Active: inactive (dead)' tells us the service isn't running, so, yeah. Won't work so well. Are you comfortable installing and securing a base OS? I used Debian Sarge as a base, and then just used the installation instructions from Ubiquiti. help.ubnt.com - UniFi - How to Install & Update via APT on Debian or Ubuntu I use Wazuh, even for my personal stuff, which takes care of a BUNCH of stuff for you on the client, but is a bit of a pain to setup. Fail2ban and ufw should be the only things you really need after getting a base OS installed. Or just fail2ban if using Fedora (I shy away from CentOS because of how old and slow most of the software in it's repos is today, and yes, that reflects RedHat's current status as well.) Link to comment Share on other sites More sharing options...
G+_Jason Perry Posted July 6, 2018 Author Share Posted July 6, 2018 I am going to have to have a closer when I have time at work today. At first glance, those instructions look the same as the ones from crosstalk. Link to comment Share on other sites More sharing options...
G+_Jason Perry Posted July 6, 2018 Author Share Posted July 6, 2018 Just looking at fail2ban. Haven't used it before. I just set up up ufw and an ssh key for protection, I am going to have to look at that. Link to comment Share on other sites More sharing options...
G+_David Alitz Posted July 6, 2018 Share Posted July 6, 2018 Unifi uses mongodb. I seem to recall when I had a similar problem I finally traced it to mongodb not starting successfully. There's some logging for unifi and mongodb under /var/log/unifi/ -- you might look there for clues. Link to comment Share on other sites More sharing options...
G+_Jason Perry Posted July 6, 2018 Author Share Posted July 6, 2018 David Alitz thanks. Do you remember what was causing the problem with mongodb? I think my biggest problem is, I am still very much a novice. I have done plenty of Ubuntu installs and I have followed plenty of people's instructions; but, I haven't sat down and learned why commands do what they do or what tags go with them. Link to comment Share on other sites More sharing options...
G+_Rud Dog Posted July 6, 2018 Share Posted July 6, 2018 Sorry I am not familiar with how you are trying to setup Unifi controller software but will contribute this; have not been able to download any firmware updates since 3.9.6. Might be totally unrelated but thought I would offer it up. Good luck. Link to comment Share on other sites More sharing options...
G+_David Alitz Posted July 6, 2018 Share Posted July 6, 2018 I'm afraid I don't recall what was causing mongodb to fail. I have a vague recollection of having the default ubuntu version installed instead of the unifi ppa version -- but that could just be one of the paths I investigated. You can check the mongodb status with 'systemctl status mongodb' Link to comment Share on other sites More sharing options...
G+_Jason Perry Posted July 7, 2018 Author Share Posted July 7, 2018 quick update for anyone following along. the unifi controller hasn't even created a log file so nothing to go from there. I looked at the log file for mongodb and noticed the line got signal 15 (Terminated), will terminate after current cmd ends I am going with this is my problem and am going from there. Link to comment Share on other sites More sharing options...
G+_Jason Perry Posted July 7, 2018 Author Share Posted July 7, 2018 there is a comment on stackexchange that says all I need to do is add Type=forking under [services] tab in mongod.service. Now to find mongod.service Link to comment Share on other sites More sharing options...
G+_Jason Perry Posted July 7, 2018 Author Share Posted July 7, 2018 wasnt the problem Link to comment Share on other sites More sharing options...
G+_David Alitz Posted July 8, 2018 Share Posted July 8, 2018 Boy that sounds familiar. I think I eventually purged mongodb and reinstalled just to return it to default settings. I believe it just starting working then -- not real helpful for finding the problem. Link to comment Share on other sites More sharing options...
G+_Jason Perry Posted July 8, 2018 Author Share Posted July 8, 2018 My current suggestion from someone on the UniFi forum is to downgrade mongodb. Blows my mind that unifi would install a version it doesn't work with. Link to comment Share on other sites More sharing options...
Recommended Posts