i can load home assistant on my local network using https://myname.duckdns.org/states and it works fine. but when i try to load the configurator and click on ‘open web UI’ it fails and says this site cant be reached.
i also cant access anything outside of my local network.
not sure if i have my port forwarding correct, it looks like this:
By doing that you allow the entire internet to brute force your login credentials. If you have a really secure password that could be ok. It would be far more secure though if you make use of the sesame feature.
so are you using an iFrame outside your local network? How is that configured?
I don’t have ssl true in my config (even though I use a reverse proxy with ssl)
I second Daniels comments about using a sesame.
If you’re using SSL just forward external port 443 to your Hassio IP and port 8123
When you access just use: Https://tournament.duckdns.org
For the configurator you need to do the same thing from external port 3218 to your Hassio IP and port 3218.
For configurator access use: Https://tournament.duckdns.org:3218
For both you need to check they’re within the allowed networks if you have restricted. In the case of configurator you have to set the settings you’ve already set but any IP will be able to reach it.
Be aware that you cannot mix https and http. Either everything is Http or Https otherwise most browser such as Chrome will show empty iframes. On a PC you can always click on the little shield at the end of the URL bar and allow unsafe scripts to run, haven’t found an alternative for mobile devices.
My advice, use the VPN function of your TPLink Router. This way only people with access to your VPN profile will be able to access your HA and you’ll have unrestricted access to your intranet so no need to set up or forward any ports or network configuration. The only caveat is that you need to connect to your VPN whenever you want to access it, or always be connected to it and go through your home network.