Hi,
I currently have a self hosted instance on a private VPS.
I use Omnibus package (frequently updated) and docker-compose configuration.
I start on http but with a specific port and all is working.
Now i want to switch on port 80, or better 443 and add LetEncrypt certificate + autorenew, and all my tries guive unreachable url.
Here is the working configuration :
omnibus: image: 'gitlab/gitlab-ce:12.6.4-ce.0' restart: always hostname: 'gitlab.telkar.fr' environment: GITLAB_OMNIBUS_CONFIG: | external_url 'http://gitlab.telkar.fr:5080' gitlab_rails['gitlab_shell_ssh_port'] = 5022 gitlab_rails['smtp_enable'] = true gitlab_rails['smtp_address'] = "smtp.gmail.com" gitlab_rails['smtp_port'] = 587 gitlab_rails['smtp_user_name'] = "xxx" gitlab_rails['smtp_password'] = "xxx" gitlab_rails['smtp_domain'] = "smtp.gmail.com" gitlab_rails['smtp_authentication'] = "login" gitlab_rails['smtp_enable_starttls_auto'] = true gitlab_rails['smtp_tls'] = false gitlab_rails['smtp_openssl_verify_mode'] = 'peer' ports: - '5080:5080' - '443:443' - '5022:22' volumes: - '/srv/gitlab/config:/etc/gitlab' - '/srv/gitlab/logs:/var/log/gitlab' - '/srv/gitlab/data:/var/opt/gitlab'
(Note : i mask or change some data)
Here is the configuration i have try for port 80 
omnibus:
image: ‘gitlab/gitlab-ce:12.6.4-ce.0’
restart: always
hostname: ‘gitlab.telkar.fr’
environment:
GITLAB_OMNIBUS_CONFIG: |
external_url ‘http://gitlab.telkar.fr’
gitlab_rails[‘gitlab_shell_ssh_port’] = 5022
gitlab_rails[‘smtp_enable’] = true
gitlab_rails[‘smtp_address’] = “smtp.gmail.com”
gitlab_rails[‘smtp_port’] = 587
gitlab_rails[‘smtp_user_name’] = “xxx”
gitlab_rails[‘smtp_password’] = “xxx”
gitlab_rails[‘smtp_domain’] = “smtp.gmail.com”
gitlab_rails[‘smtp_authentication’] = “login”
gitlab_rails[‘smtp_enable_starttls_auto’] = true
gitlab_rails[‘smtp_tls’] = false
gitlab_rails[‘smtp_openssl_verify_mode’] = ‘peer’
ports:
- ‘80:80’
- ‘443:443’
- ‘5022:22’
volumes:
- ‘/srv/gitlab/config:/etc/gitlab’
- ‘/srv/gitlab/logs:/var/log/gitlab’
- ‘/srv/gitlab/data:/var/opt/gitlab’
TO be sure, i disable the firewall on the server, and same problem.
Locally on the server a port test answers open.
If i try from home (with only a personal internet box), port test answers unreachable…
$ nc -v gitlab.telkar.fr 80
gitlab.telkar.fr [173.249.41.188] 80 (http) : Connection refused
sent 0, rcvd 0
I don’t understand. And not sure it’s from my gitlab config, but without firewall i don’t see what can block the traffic.
Thx for your help, i think i need to fix this before go to certificate with something like :
omnibus:
image: ‘gitlab/gitlab-ce:12.6.4-ce.0’
restart: always
hostname: ‘gitlab.telkar.fr’
environment:
GITLAB_OMNIBUS_CONFIG: |
external_url ‘https://gitlab.telkar.fr’
gitlab_rails[‘gitlab_shell_ssh_port’] = 7622
auto certificat avec letsencrypt ; renew every 7th day at 12:30
letsencrypt[‘enable’] = true
letsencrypt[‘contact_emails’] = [‘xxx’]
letsencrypt[‘auto_renew_hour’] = “12”
letsencrypt[‘auto_renew_minute’] = “30”
letsencrypt[‘auto_renew_day_of_month’] = “*/7”
gitlab_rails[‘smtp_enable’] = true
gitlab_rails[‘smtp_address’] = “smtp.gmail.com”
gitlab_rails[‘smtp_port’] = 587
gitlab_rails[‘smtp_user_name’] = “xxx”
gitlab_rails[‘smtp_password’] = “xxx”
gitlab_rails[‘smtp_domain’] = “smtp.gmail.com”
gitlab_rails[‘smtp_authentication’] = “login”
gitlab_rails[‘smtp_enable_starttls_auto’] = true
gitlab_rails[‘smtp_tls’] = false
gitlab_rails[‘smtp_openssl_verify_mode’] = ‘peer’
ports:
- ‘80:80’
- ‘443:443’
- ‘7622:22’
volumes:
- ‘/srv/gitlab/config:/etc/gitlab’
- ‘/srv/gitlab/logs:/var/log/gitlab’
- ‘/srv/gitlab/data:/var/opt/gitlab’