Hi all. I have a problem with https connection from duckdns address that I never had before.
I have duckdns and NGINX installed. In my modem I have forwarded the port 443 to 443, 1884 to 1884 and 8884 to 8884.
Everithing work fine. Chrome tells me that the connection is secure and the certificate is valid. But when I go to Zigbee2MQTT addon in the addons page and hit F5 to refresh page, a red screen comes up that says “the site ahead contains harmful program” and I really don’t know what to do…
The screen also comes up on other addons (not all): NGINX, Node-red, terminal-SSH, Studio code server. If I continue browsing I get “not secure” next to the address bar in Chrome. If I click on it it tells me “the connection to this site is not fully secured” or “this site is not secure.”
The certificate always remains valid. If I return to my main dashbord and hit F5 everithing is unsecure and unsafe. If I close and reopen chrome all return secure untill I go on addons page.
Are you doing this locally. Maybe you switch between local and WAN address
OR
Maybe cert is tied to HA but addons report as different name so it not match cert. in this case connection still secure but you get warning. Click on cert when message appear and check what it report on addon pages and confirm it is same as HA page
I’ll check. I generated the certificate via the Duckdns addon. If what you say turns out to be my problem, how do I generate the certificate correctly? I’m quite new to home assistant
If it is because the domain does not exactly fit, then you need to look at the documentation for DuckDNS and see what options you have for adding extra domains or aliases.
I have only shortly used DuckDNS, since I have a fixed public IP and my Let’s Encrypt certificates are generated on another system than my HA installation.
If you have a fixed public IP, then using DuckDNS just means you get a DuckDNS domain name for your IP address. You do not get a dynamic IP address through DuckDNS. The dynamic or fixed IP address is set up through your ISP.
You need a domain name though, since certificates rely on that.
In some places domain names are extremely expensive to own and in other places they are pretty cheap.
I’ve checked. Still same domain name (XXX.duckdns.org/something/). The following image explain the problem. I have it only with a couple of addons. And if I hit F5 to refresh, a red screen comes up
It looks like some of your addons provide elements in the web page that is delivered on a non-secure connection.
This can sometimes just be as simple as a logo linked to manufacturers homepage, but it can also sometimes be elements served on another port on the host, which is not secure by nginx.
You need to look at the elements in the webpage then
I’ve found the problem! there was a link in the information that pointed to http instead of httpS. Modified that one it didn’t give me any more problems. Thank you all for helping me
