[Bug]: WebUI 404 but telnet ok in version 2026.3.2

[aaronchen2k]

Bug type

Regression (worked before, now fails)

Summary

---

aaron@ubt:~$ telnet 127.0.0.1 18789
Trying 127.0.0.1...
Connected to 127.0.0.1.
Escape character is '^]'.

---

aaron@ubt:~$ curl -v http://127.0.0.1:18789

• Trying 127.0.0.1:18789...
• Connected to 127.0.0.1 (127.0.0.1) port 18789

GET / HTTP/1.1
Host: 127.0.0.1:18789
User-Agent: curl/8.5.0
Accept: /

< HTTP/1.1 404 Not Found
< X-Content-Type-Options: nosniff
< Referrer-Policy: no-referrer
< X-Frame-Options: DENY
< Content-Security-Policy: default-src 'self'; base-uri 'none'; object-src 'none'; frame-ancestors 'none'; script-src 'self'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' data: https:; font-src 'self' https://fonts.gstatic.com; connect-src 'self' ws: wss:
< Content-Type: text/plain; charset=utf-8
< Date: Tue, 03 Mar 2026 11:14:58 GMT
< Connection: keep-alive
< Keep-Alive: timeout=5
< Content-Length: 9
<

• Connection #0 to host 127.0.0.1 left intact

Steps to reproduce

curl -v http://127.0.0.1:18789

Expected behavior

Should return a html

Actual behavior

Got 404 error.

• Trying 127.0.0.1:18789...
• Connected to 127.0.0.1 (127.0.0.1) port 18789

GET / HTTP/1.1
Host: 127.0.0.1:18789
User-Agent: curl/8.5.0
Accept: /

< HTTP/1.1 404 Not Found
< X-Content-Type-Options: nosniff
< Referrer-Policy: no-referrer
< X-Frame-Options: DENY
< Content-Security-Policy: default-src 'self'; base-uri 'none'; object-src 'none'; frame-ancestors 'none'; script-src 'self'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' data: https:; font-src 'self' https://fonts.gstatic.com; connect-src 'self' ws: wss:
< Content-Type: text/plain; charset=utf-8
< Date: Tue, 03 Mar 2026 11:14:58 GMT
< Connection: keep-alive
< Keep-Alive: timeout=5
< Content-Length: 9
<

• Connection #0 to host 127.0.0.1 left intact

OpenClaw version

2026.3.2

Operating system

ubuntu 24.04

Install method

pnpm

Logs, screenshots, and evidence

Impact and severity

No response

Additional information

No response

[SoPudge]

same here, using SSH tunnel forwarding port 18789 to local.

[the-yex]

How was it resolved? I encountered the same issue.

[alehpineda]

Same problem as the others have reported:

curl -i http://127.0.0.1:18789
HTTP/1.1 404 Not Found
X-Content-Type-Options: nosniff
Referrer-Policy: no-referrer
X-Frame-Options: DENY
Content-Security-Policy: default-src 'self'; base-uri 'none'; object-src 'none'; frame-ancestors 'none'; script-src 'self'; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com; img-src 'self' data: https:; font-src 'self' https://fonts.gstatic.com; connect-src 'self' ws: wss:
Content-Type: text/plain; charset=utf-8
Date: Wed, 04 Mar 2026 06:33:33 GMT
Connection: keep-alive
Keep-Alive: timeout=5
Content-Length: 9

Not Found

OS: ubuntu 24.04.04 LTS
openclaw version: 2026.3.2

openclaw.json

  "gateway": {
    "port": 18789,
    "mode": "local",
    "bind": "loopback",
    "auth": {
      "mode": "token",
      "token": 123456789asdfqwerzxcv
      "allowTailscale": true
    },
    "tailscale": {
      "mode": "serve"
    },
    "trustedProxies": [
        "127.0.0.1"
    ]
  },

[Golden-Pigeon]

Reproducible here on v2026.3.2 too.

Environment:

• OS: Ubuntu
• Gateway bind: loopback (127.0.0.1:18789)
• Auth mode: token

Symptoms:

• Gateway process is running and RPC probe is OK
• http://127.0.0.1:18789/ returns 404 Not Found
• http://127.0.0.1:18789/control-ui/ also returns 404 Not Found

Potentially related: Control UI cron run history sometimes sends params that backend rejects (cron.runs appears to accept minimal params like id in this build).

Happy to provide extra logs/config snippets if helpful.