I get 400 Bad Request when I try to access PiHole admin

pattern_hunter · November 16, 2022, 4:19pm

Expected Behaviour:

I installed PiHole on Ubuntu 22.04. I am trying to access the admin interface with http://<my_ip_addr>/admin, but I keep getting 400 Bad Request

Actual Behaviour:

Getting 400 Bad Request

Debug Token:

https://tricorder.pi-hole.net/xIqi2Bwg/

rdwebdesign · November 16, 2022, 5:52pm

Your debug log shows a lot of messages like this:

[✗] udp:192.168.1.173:53 is in use by named (https://docs.pi-hole.net/main/prerequisites/#ports)
[✗] udp:127.0.0.1:53 is in use by named (https://docs.pi-hole.net/main/prerequisites/#ports)

This indicates there is another service (named in your case) using port 53.

You need to disable named.

pattern_hunter · November 16, 2022, 9:09pm

Hey! I did that, it's still causing the same error: https://tricorder.pi-hole.net/cphy3AqX/, but with different errors

rdwebdesign · November 16, 2022, 9:15pm

Now, you need to disable nginx (or change nginx to a different port).

Also, looks like you disabled named, but pihole_FTL didn't start. Please try to restart pihole-FTL using:

sudo service pihole-FTL start

pattern_hunter · November 16, 2022, 9:26pm

Alright, so I disabled nginx, and started the pihole server but still getting bad request: https://tricorder.pi-hole.net/zxKifesC/

rdwebdesign · November 16, 2022, 9:27pm

Nginx is still active:

[✗] tcp:*:80 is in use by nginx (https://docs.pi-hole.net/main/prerequisites/#ports)

pattern_hunter · November 16, 2022, 9:28pm

Weird, I thought I disabled it. Let me try again

pattern_hunter · November 16, 2022, 9:33pm

Disabled nginx altogether: https://tricorder.pi-hole.net/UswMyg7n/

rdwebdesign · November 16, 2022, 9:38pm

OK, now we just need to restart lighttpd:

/sbin/lighttpd -f /etc/lighttpd/lighttpd.conf

pattern_hunter · November 16, 2022, 9:41pm

Alright, the bad request error is gone, but I see just a could not reach page: https://tricorder.pi-hole.net/UKCLCYfA/

Also, thank you so much for patiently helping! I really appreciate it!

rdwebdesign · November 16, 2022, 9:43pm

What URL are you using to access?

Try this one:
http://192.168.1.173/admin

pattern_hunter · November 16, 2022, 9:44pm

Yes that's the one I'm using, just a blank page.

rdwebdesign · November 16, 2022, 9:45pm

OK.
I also noticed your gravity.db file is empty.

You should try to repair the installation.
On the command line type pihole -r and select the "Repair" option.

pattern_hunter · November 16, 2022, 9:49pm

Repaired, still getting blank page https://tricorder.pi-hole.net/4KBoQJIm/

yubiuser · November 18, 2022, 7:55am

lighttpd is still not running properly.

*** [ DIAGNOSING ]: Pi-hole processes
[✗] lighttpd daemon is failed
[✓] pihole-FTL daemon is active

Try to restart your system to see if lighttpd comes up again.

pattern_hunter · November 18, 2022, 11:59am

Hello! I restarted lighttpd and reran the repair command: https://tricorder.pi-hole.net/XQ43A9Yd/

Bucking_Horn · November 18, 2022, 5:54pm

You now have two instances of lighttpd, one on port 80, another on port 8888:

*** [ DIAGNOSING ]: Ports in use
 [✓] tcp:0.0.0.0:80 is in use by lighttpd
     tcp:0.0.0.0:8888 is in use by lighttpd
 [✓] tcp:[::]:80 is in use by lighttpd
     tcp:[::]:8888 is in use by lighttpd

What's the motivation for that?

Your last two debug logs both suggest that DNS requests don't make it to any of your Pi-hole host's IP addresses on any network interface.
I wonder about the many tunnel interfaces on that machine.
They seem to indicate an OpenVPN AS Server?
Is this a cloud-based installation?

*** [ DIAGNOSING ]: Name resolution (IPv4) using a random blocked domain and a known ad-serving domain
[✗] Failed to resolve  on lo (127.0.0.1)
[✗] Failed to resolve  on wlp2s0 (192.168.1.173)
[✗] Failed to resolve  on docker0 (172.17.0.1)
[✗] Failed to resolve  on as0t0 (172.27.224.1)
[✗] Failed to resolve  on as0t1 (172.27.226.1)
[✗] Failed to resolve  on as0t2 (172.27.228.1)
[✗] Failed to resolve  on as0t3 (172.27.230.1)
[✗] Failed to resolve  on as0t4 (172.27.232.1)
[✗] Failed to resolve  on as0t5 (172.27.234.1)
[✗] Failed to resolve  on as0t6 (172.27.236.1)
[✗] Failed to resolve  on as0t7 (172.27.238.1)
[✓] doubleclick.com is 64.233.185.100 via a remote, public DNS server (8.8.8.8)

Please verify that your Pi-hole host system allows access to its required ports for its private range IP addresses.

Also, both of your debug logs show that your haven't configured any adlist for your Pi-hole:

*** [ DIAGNOSING ]: Groups
   id   enabled  name       date_added           date_modified        description
   ---  -------  ---------  -------------------  -------------------  -----------------
   0          1  Default    2022-11-16 16:48:10  2022-11-16 16:48:10  The default group

*** [ DIAGNOSING ]: Domainlist (0/1 = exact white-/blacklist, 2/3 = regex white-/blacklist)

*** [ DIAGNOSING ]: Clients

*** [ DIAGNOSING ]: Adlists

In its current state, Pi-hole wouldn't block any DNS request (if a DNS request would reach it).

Pi-hole would deploy a default adlist during installation (https://raw.githubusercontent.com/StevenBlack/hosts/master/hosts).

Did you remove that adlist by intention?

pattern_hunter · November 21, 2022, 11:31am

I stopped the lighttpd process at 8888, that was by mistake. https://tricorder.pi-hole.net/wCXGSjuA/

This is a physical machine, I'm also trying to set it up as an OpenVPN server.

I had configured PiHole to use the default adlist, I just ran pihole -r and reconfigured it.

Bucking_Horn · November 21, 2022, 5:01pm

You've cleared the second lighttpd instance: There's only one lighttpd now, listening on port 80.

However, DNS requests still don't make it to any of your Pi-hole host's IP addresses on any network interface:

pattern_hunter · November 23, 2022, 12:18pm

I stopped the DNS server, looks like all required ports are present: https://tricorder.pi-hole.net/ey6oFLTe/
The DHCP ports are marked optional in the required ports link