I have Siricata checking my network and I’m seeing strange calls to the outside world to duckdns… this is after I build a new HA OS install, and did a partial restore (restored folders and shares), and some apps (and this did not include duckdns, I did use duckdns before).
any idea how/where to find the remnants of duckdns and remove it…
thats what I can’t figure out… was specified in the duckdns config, and in the nginx, both removed.
thinking the configuration might have downloaded a lets_encrypt cert (well know there was a cert from lets_encrypt),
might that be the cause, where would I find that?
don’t recall configuring anything like this… “Certificate Expiry integration”
so under my http: section, those lines have always been commented out, as that is what the instructions required, fo Duckdns/nginx/HA setup, similarly, when duckdns started having problems I switched to dynudns.
Yes. I had some security concerns, had fantom arm/disarm’s on my alarm system thats integrated via paradox alarm integration add on… so for now totally removed it, going to change how I get to my system and how/where keys are stored. going to be using cloudflare with reverse proxy, also want to configure my side (pfSense) a WAN rule that only allow the cloudflare servers to access the target port.
Did you remove your port forwarding rule in your router (not the cause of your issue but it is a hole you should remove)?
I redid that comment out of external and restarted the server, have to monitor… but havent had a call to duckdns the last 5 minutes that I can observe in Siricate.
nginx was there before the entire migration. I totally uninstalled nginx, duckdns, dynudns.
did the backup, build a new HA OS onto a new RPi4B, restored the folders, and only selected apps (the above was not there as it was not part of the backup).
You probably have an automation that is referencing the external URL? Or if you have the mobile app maybe that has the external URL setup to use the duckdns domain?
… think you might have it… the HA apps are still on the phones, ready to be used… it still have the external url specified, but thing is the mobile app pointing to the dynudns service https://.ddnsfree.com:8124, not duckdns url.
G
What about something like Wireguard is that installed? Also have you checked - Home Assistant Settings > General (scroll right down to the near the bottom) > External and Internal URL in there.