Read the statement by Michael Teeuw here.
ipWhitelist HowTo
-
-
Thanks! but i don´t like this feature in the moment… i`m travelling with my “mirror” (home-work-home-work…) I´m not finishend yet, so its only a raspi with a screen in a small box XD
-
Thank you for posting this! However, I still haven’t got it working yet. Access via VNC works fine, but not via a remote web browser.
1: When I ran the command tail -f ~/MagicMirror/nohup.out I got this:
Loading module helpers …
Initializing new module helper …
No helper found for module: helloworld.
All module helpers loaded.
Starting server op port 8080 …
Server started …
Connecting socket for: updatenotification
Sockets connected & modules started …
Fontconfig warning: ignoring UTF-8: not a valid region tag
Launching application.Nothing more happens. I’ve tried to access the mirror both via Chrome and Safari. Both before and after I run the command. Nothing shows up in the log.
My desktops IP is 10.0.0.95, so I added the ipWhitelist line:
ipWhitelist: ["127.0.0.1", "::ffff:127.0.0.1", "::1", "::ffff:10.0.0.95"],
Still, I get the same error:
This device is not allowed to access your mirror.
Please check your config.js or config.js.sample to change this.I experimented with various writings, such as: “::fff:10.0.0.1/120” No dice.
Is there a way to disable the whitelist function completely?
-
@mochman thanks topman been trying to get this back up and running
-
@looolz When you run the mirror through VNC. If you leave the terminal open then try to open the mirror on your other computer, do you see the
“This device is not allowed to access your mirror.
Please check your config.js or config.js.sample to change this.”message? If so, does anything pop up in your terminal?
Another thing to look at, if you run
ifconfig
and take a look at your wlan0 (assuming you are using wifi to get internet) do you see a “inet6 addr:”? If not, just try adding"10.0.0.95"
to the whitelist. -
A way to tell if you need to use
"::ffff:192.168.1.120"
or just"192.168.1.120"
Runnetstat -lnpt
, if you see something like:tcp 0 0 0.0.0.0:8080 0.0.0.0:* LISTEN 1271/electron.js
Then you are using IPv4 and should add
"YO.UR.IP.AD"
or"YO.UR.IP.AD/24"
to the whitelist.If you see:
tcp6 0 0 :::8080 :::* LISTEN 1170/electron.js
You are using IPv6 address schemas and need to add
"::ffff:YO.UR.IP.AD"
or"::ffff:YO.UR.IP.AD/120"
to the whitelist.
If you have IPv6 and want to turn it off, add
ipv6.disable=1
to your/boot/cmdline.txt
and restart your pi. -
Not a fan of this addition; would have rathered it was something you enable rather than disable.
For anyone wondering how to allow all ips, use:
ipWhitelist: ["::fff:0.0.0.0/1", "::fff:128.0.0.0/2", "::fff:192.0.0.0/3", "::fff:224.0.0.0/4", "127.0.0.1", "::ffff:127.0.0.1", "::1"],
-
Thanks! That worked for me!
-
Thanks, I do see a inet6 address with the command ifconfig.
I tried to add 10.0.0.95 to the config with no success :-(
But @xer0design’s tip worked!
-
@xer0design verry nice thx!