Manual/ ansible install of syncthing that’s defintely running as I can acess the gui from an ssh tunnel, but not externally on a headless server.
Interestingly the GUI Actions>Settings>GUI shows the IP as 127.0.0.1:8384 Not sure if this should be 0.0.0.0:8384 as per the service.
The GUI address is overridden by startup options. Changes here will not take effect while the override is in place.
I’ve disabled ufw but no dice. nmap is showing the port as open, netstat from the server is showing 8384 as listening
Side question: I’m tying ufw to IPs but please shout if there’s any other hardening suggestions other than https if it’s to be publically exposed without that.
Any suggestions on next steps in troubleshooting please?
systemctl status syncthing@name ● firstname.lastname@example.org - Syncthing - Open Source Continuous File Synchronization for andy Loaded: loaded (/etc/systemd/system/syncthing@.service; indirect; vendor preset: enabled) Active: active (running) since Wed 2021-06-09 17:44:11 BST; 59min ago Docs: man:syncthing(1) Main PID: 46219 (syncthing) Tasks: 21 (limit: 9830) CGroup: /email@example.com ├─46219 /usr/bin/syncthing -no-browser -gui-address=0.0.0.0:8384 -no-restart -logflags=0 └─46228 /usr/bin/syncthing -no-browser -gui-address=0.0.0.0:8384 -no-restart -logflags=0
cat /firstname.lastname@example.org # BEGIN ANSIBLE MANAGED BLOCK [Unit] Description=Syncthing - Open Source Continuous File Synchronization for %I Documentation=man:syncthing(1) After=network.target
[Service] User=%i ExecStart=/usr/bin/syncthing -no-browser -gui-address="0.0.0.0:8384" -no-restart -logflags=0 Restart=on-failure SuccessExitStatus=3 4 RestartForceExitStatus=3 4 [Install] WantedBy=multi-user.target # END ANSIBLE MANAGED BLOCK