Restic just stopped working for me recently on my server and I’m not entirely sure why. I’ve tried talking to Wasabi and they sent me here saying it isn’t an issue on their end.
Fatal: create repository at s3:https://s3.us-west-1.wasabisys.com/zactmp failed: client.BucketExists: Get https://s3.us-west-1.wasabisys.com/zactmp/?location=: x509: certificate is valid for *.adguard.com, adguard.com, not s3.us-west-1.wasabisys.com
I’ve tried running with this flag, didn’t do anything
-o rclone.program="rclone --no-check-certificate"
Tried grabbing the Wasabi cert and
specifying it manually with no change
I am using a VPN, but not Adguard. I’m currently using Wireguard and have my IP tables setup to only route traffic from a single internal IP being a docker container.
PostUp = ip rule add from 192.168.104.5 table 42; ip route add default dev %i table 42;
PostDown = ip rule del from 192.168.104.5 table 42;
I have no idea where it’s getting this Adguard stuff to be honest. I don’t remember installing anything Adguard related… maybe it (or certs related to AG) tagged along with something else? I’m just not entirely sure how to investigate that to be honest.
Sorry to say this but I don’t see how this is caused by restic. You are getting a certificate for another host than the one you expect when you connect to it. That’s fishy.
To debug it I would probably use tools like openssl and tcpdump to try and inspect the connection that’s taking place.
Ahh it was a DNS issue! Thanks for pointing us in the right direction. I have no idea where my machine is getting the Adguard servers but for some reason it want’s to use these servers…