We’ve removed the second network connection for CORE ha0. If you have an IP allocated for it, you can remove that reservation. It will eventually go away after an update or reboot.
Wireguard is up and running. It’s connected to DDNS. There are instructions in Wireguard | Collective-DOCS (oh-lalabs.com) for this. Please take a few minutes to do some homework. It’s a full walkthrough in pictures. Easy to follow, but informative.
We’ve officially moved to Node-RED 3. If you are running the beta version, you should think about moving your stuff over to the official oll-node-red version as the oll-node-red-3 version will eventually be deprecated. If you need assistance with this, please ask in our community.
PLEASE DO A FULL DEPLOY IN NODE RED AFTER UPDATING
We’ve also added a local dns server on CORE. For use with Wireguard. Of course, there are other benefits of this.
These are NOT step-by-step instructions, just a general list of things to do:
One way is to export all your flows in oll-node-red-3, disable oll-node-red-3 and then enable oll-node-red where you then import all your flows. You will then have to repopulate any missing globals and credentials as well as reinstall missing palettes.
Another approach is to disable oll-node-red-3, then copy the whole folder (using for example “sudo mc”):
/home/oh-la/data/node-red
to:
/home/core-services/data/node-red
You may have to change the ownership of certain files as well.
and then edit:
/home/core-services/data/node-red/settings.js
Where you need to make sure httAdminRoot and httpNodeRoot look like this:
// By default, the Node-RED UI is available at http://localhost:1880/
// The following property can be used to specify a different root path.
// If set to false, this is disabled.
httpAdminRoot: '/pods/direct/node-red',
// Some nodes, such as HTTP In, can be used to listen for incoming http requests.
// By default, these are served relative to '/'. The following property
// can be used to specifiy a different root path. If set to false, this is
// disabled.
httpNodeRoot: '/pods/direct/node-red',
Then you can enable and start oll-node-red. If you are using webhooks INTO NR, you need to update them to NOT have “-3” in them.
This is probably not a complete set of things to do, but should give a rough overview. If the copy fails, you can always disable oll-node-red and enable oll-node-red-3 again.
If my node setup was under v2 before, now that oll-node-red is v3, what are the steps to upgrading OR have you already dealt with that as part of the upgrade? (Haven’t checked myself personally as now away from the house until later). Thanks.
Does this mean, since all my flows are already on nodeRED-3, that I could:
a) export all my flows from NodeRED-3
b) start NodeRED-2 from the Sys/DASH;
c) manually add additional nodes into NodeRED-2’s pallete;
d) import exported flows to NodeRED-2,
e) run the oll-update command and let it do it’s thing
f) reboot Core
and have all my flows back to working order once the unit is rebooted?
I’d say more like this:
a) run the oll-update-init command and let it do it’s thing
b) export all my flows from oll-node-red-3
c) disable oll-node-red-3
d) start oll-node-red from the Sys/DASH;
e) import exported flows to oll-node-red,
e1) update any webhook-based-nodes if needed
f) manually add additional nodes into oll-node-red’s pallete;
g) do a full deploy in oll-node-red
h) NO NEED to reboot Core
Sorry for being such a newbie, but… I’m sorry I don’t quite now what this means.
I suppose it has something to do with the following error I’m seeing in NodeRED (which is now 3.0.2), but I don’t quite know what to do to fix it. I tried clicking on the Configure web hook button, but got the “Invalid Token” reply…
I’m trying to set up wireguard.
I’ve followed April’s guide and I think I have it configured correctly.
Unfortunately I cannot get it to work.
I am seeing this in the logs for WG and it repeats every 30 seconds.
Any thoughts?
2022-12-21 11:32:19 GMT
info
INFO: Running command: prepare
2022-12-21 11:32:19 GMT
info
INFO: Executing prepare as root, shutting down wg0…
I had run the update commands a couple of times to no avail.
I have run again plus the firewall command and BOOM, I’m in and it is working OK.
I did have trouble trying to get wireguard on line. After running these commands it came straight up.
I now have WG access. Thankyou.
One more step closer to turning off my last HE which I am using for dashboards and my 15 z-wave devices.
Thanks again to yourself and April.
@markus I went for your first suggested Node Red migration option, which was to export all the flows from the original NR3, disable it and then enable the new NR (3) and import the flows.
It has worked OK but as you suggested, I had to use the palette manager to install all the missing node types, I had to go through my Node Red Dashboard layouts and reassign all the widgets. I also had to reinstall CoreDash following your original instructions. MQTT sign-in security needed to be re-entered.
Not a painless exercise! However being able to stop the new NR3 and restart the old NR3 to check consistency was useful, as was having screen captures of what the NR Dashboards should look like so that I could recreate the layout in the new NR3.
Anyway, I have made it and am now on the new (official) NR3.
Just a heads up. The changes to the system were significant. It might take some time for the system to come completely on line. Don’t be too quick to think it’s not working on this update. It’s taken up to 15 minutes for everything to come back up. If after 15 minutes, things aren’t working then run init again and reboot the firewall.
This won’t fix the missing nodes in Node-RED
If you wish to create a custom configuration of allowed IP addresses, you can create one by clicking CONNFIGURE.
You will need to name the configuration and enter the IP address separated by a comma. /32 is one specific IP and /24 is the entire rane of IP addresses within that subnet.
What is the IP address? Is it the IP address of the client (phone) or the CORE?
I’m not able to get internet when connected through the Wireguard VPN. I’ve selected the appropriate option “internet”. Is there some trick? I vaguely recall something from months ago to allow access via the firewall, but it’s escaping me at present.
Edit: that was when there were two IP addresses. Not sure though.
