Docker Seafile: Unable to connect

MicTie · August 18, 2024, 3:21am

Hi,
I am struggling with setting up Docker-Seafile on my NanoPC-T6 running Ubuntu 24.04.
There are several other programs with network access running on the machine controlled by NGINX, so I wonder if Seafile traffic has to go through a Reverse Proxy (NGINX).
I have ‘separated’ Seafile, by using a sub-domain (https://seafile.xxxxx.com), and dedicated ports (8090, and 7443), and also use existing SSL cert and key.

This setup is implemented in:
/opt/seafiile/docker-compose.yml:

.......
    ports:
      - "8090:80"
      - "7443:443" 
    volumes:
      - /opt/seafile-data:/shared  
      - /etc/ssl/mail/mail.crt:/shared/ssl/mail.crt
      - /etc/ssl/mail/mail.key:/shared/ssl/mail.key
    environment:
      - DB_HOST=db
      - DB_ROOT_PASSWD=xxxxx  
      - TIME_ZONE=Asia/Singapore 
      - SEAFILE_ADMIN_EMAIL=seafile_adm@xxxxx.com 
      - SEAFILE_ADMIN_PASSWORD=xxxxxx    
      - SEAFILE_SERVER_LETSENCRYPT=false 
      - FORCE_HTTPS_IN_CONF=true
      - SEAFILE_SERVER_HOSTNAME=seafile.xxxxxx.com:7443 
.....

/opt/seafile-data/nginx/conf/seafile.nginx.conf :

server {
    listen 8090;
    listen [::]:8090;
    server_name seafile.xxxxx.com default_server;
    location / {
        rewrite ^ https://$host$request_uri? permanent;
    }
}
server {
    listen 7443;
    listen [::]:7443;
    ssl_certificate      /shared/ssl/mail.crt;
    ssl_certificate_key  /shared/ssl/mail.key;
    ssl_ciphers ECDH+AESGCM:DH+AESGCM:ECDH+AES256:DH+AES256:ECDH+AES128:DH+AES:ECDH+3DES:DH+3DES:RSA+AESGCM:RSA+AES:RSA+3DES:!aNULL:!MD5:!DSS;
    server_name seafile.xxxxx.com;
......
original, no changes

/opt/seafile-data/seafile/seahub_settings.py:

# -*- coding: utf-8 -*-
SERVICE_URL = "https://seafile.xxxxxx.com:7443"
.....
TIME_ZONE = 'Asia/Singapore' 
FILE_SERVER_ROOT = "https://seafile.xxxxxx.com:7443/seafhttp"

Netstat confirms both ports 8090 and 7443 are Listening:

tcp 0 0 0.0.0.0:7443 0.0.0.0:* LISTEN 0 240731 1306/dockerd
tcp 0 0 0.0.0.0:8090 0.0.0.0:* LISTEN 0 240730 1306/dockerd

The problem I am facing:
When opening ‘https://seafile.xxxx.com:7443’, i get ‘Unable to connect’, and there are no entries in any nginx-log-files.
This does not change if the server-NGINX is running or not.
The port-forwarding to ports 8090 and 7443 is working.
When starting the docker container: ‘docker compose up’, I do not see any errors.

What am i missing?
Do I need to configure an external Reverse proxy?

Thanks for your help!

MicTie · August 26, 2024, 3:24am

Just for reference, I was able to resolve the issue:

Here the working snippet:

/opt/seafiile/docker-compose.yml:

....... 
ports:
- "8090:80" 
- "7443:7443"
......

christophdb · August 29, 2024, 2:04pm

Well, your setup uses different ports and therefore is far away from the default standard. It is great that you found the solution by yourself.

For everybody else, I would recommend that you follow the default installation procedure and try to stay as close to the standard as possible.

MicTie · August 30, 2024, 8:44am

Not sure where I deviated from the proposed setup, as I tried to follow it as much as possible.
Maybe it was wrong to add the port (7443) inside /opt/seafile-data/seafile/seahub_settings.py, and I should have kept the SSL-port at 443 in /opt/seafile-data/nginx/conf/seafile.nginx.conf.
I tried all these, but failed …

Thanks!