Help Request for HASSOS Access Remote & Internal with SSL, DuckDNS, Node-Red, Configurator, ... & Panels for Zywall USG 20 Router

Kalenden · September 7, 2018, 8:12am

I have HASSOS on my Pi and am having troubles with:
(1) accessing both internal & externally HASSIO through duckdns. If I’m on my network, I have to use the IP address. If I’m outside, I have to use DuckDns (as desired).
(2) being able to work with Configurator, Node-Red, … over duckdns

I have followed the following guide for port forwarding: http://www.crabtree-consulting.com/port-forwarding-and-nat-loopback-on-zyxel-usg20/

But I feel like I’m making a mess of it.
Can anybody guide me from scratch with the needed steps?

My configuration.yaml file is as follows:

http:
api_password: !secret http_password # from file secrets.yaml
base_url: https://xxxx.duckdns.org
ssl_certificate: /ssl/fullchain.pem
ssl_key: /ssl/privkey.pem

My DuckDNS configuration is as follows:

{
“lets_encrypt”: {
“accept_terms”: true,
“certfile”: “fullchain.pem”,
“keyfile”: “privkey.pem”
},
“token”: “xxxx”,
“domains”: [
“xxxx.duckdns.org”
],
“seconds”: 300
}

Edit: the problem is that “(1) accessing both internal & externally HASSIO through duckdns. If I’m on my network, I have to use the IP address. If I’m outside, I have to use DuckDns (as desired).” So I can’t get my DuckDNS domain working from inside my network with the nat loopback

Kalenden · September 14, 2018, 7:09am

Any suggestions or help?

DavidFW1960 · September 14, 2018, 7:17am

It sounds like your router doesn’t support NAT loopback

ronschaeffer · September 14, 2018, 7:48am

Hi there-

I had similar frustrations using Hass.io. I resolved got everything working with the following steps using the Hass.io DuckDNS/LetsEncrypt and NGINX add-ons with a Google Wifi router. I’m unsure what would be different with HassOS or if it would be a router NAT loopback issue…

Followed this guide: https://help.konnected.io/support/solutions/articles/32000023964-set-up-hass-io-with-secure-remote-access-using-duckdns-and-nginx-proxy

Note especially not to add a base URL or cert info in configuration.yaml. That tripped me up for a while.

Forwarded the following on my Google Wifi router:
3218 -> 3218 Home Assistant Configurator
443 -> 443 General
80 -> 80 General
1880 -> 1880 Node Red

Set up iframe panel entries as follows in configuration.yaml:

# iFrame
panel_iframe:
  configurator:
    title: Configurator
    icon: mdi:wrench
    url: 'https://xxxxx.duckdns.org:3218'
  nodered:
    title: Node Red
    icon: mdi:arrow-decision
    url: 'https://xxxxx.duckdns.org:1880'

I use the DuckDNS addresses both at home and away.

Good luck.