Troubleshooting¶
When something isn't working, start with the built-in diagnostics:
lerd doctor # full check: podman, systemd, DNS, ports, images, config
lerd status # quick health snapshot of all running services
lerd doctor reports OK/FAIL/WARN for each check with a hint for every failure.
.test domains not resolving
Run the DNS check first:
If it fails, restart NetworkManager and check again:
On systems using systemd-resolved (Ubuntu), check that the per-interface DNS configuration was applied:
Nginx not serving a site
Check that nginx and the PHP-FPM container are running, then inspect the generated vhost:
PHP-FPM container not running
Check the systemd unit status and logs:
systemctl --user status lerd-php84-fpm
systemctl --user start lerd-php84-fpm
podman logs lerd-php84-fpm
If the image is missing (e.g. after podman rmi):
Permission denied on port 80/443
Rootless Podman cannot bind to ports below 1024 by default. Allow it:
sudo sysctl -w net.ipv4.ip_unprivileged_port_start=80
# Make permanent:
echo 'net.ipv4.ip_unprivileged_port_start=80' | sudo tee /etc/sysctl.d/99-lerd.conf
lerd install sets this automatically, but it may need to be re-applied after a kernel update.
Watcher service not running
The watcher monitors parked directories, site config files, git worktrees, and DNS health. If sites aren't being auto-registered or queue workers aren't restarting on .env changes:
lerd status # shows watcher running/stopped
systemctl --user start lerd-watcher # start it from the terminal
# or use the Start button in the UI → System → Watcher
To see what the watcher is doing:
For verbose output (DEBUG level), set LERD_DEBUG=1 in the service environment:
HTTPS certificate warning in browser
The mkcert CA must be installed in your browser's trust store. Ensure certutil / nss-tools is installed, then re-run lerd install:
- Arch:
sudo pacman -S nss - Debian/Ubuntu:
sudo apt install libnss3-tools - Fedora:
sudo dnf install nss-tools
After installing the package, run lerd install again to register the CA.