403 Invalid response from http://apolloresearch.com/.well-known/acme-challenge/

Help
1

My domain is: apolloresearch.com
My web server is IIS 10
The operating system my web server runs on is (include version): Windows Server 2019
The version of my client is win-acme (http://win-acme.com)

I have been trying to get a certificate for apolloresearch.com and it continues to give me a 403 error on my Windows Machine.

Challenge URL that it creates is accessible through my external browser but it still gives status: invalid on the command line

I have tried my best and checked all configurations but I can’t figure out exactly what is the cause of this problem.

Please help.

1 Like
2

Hi @techseed

there are two checks of your domain, created now - https://check-your-website.server-daten.de/?q=apolloresearch.com

You have ipv4 and ipv6.

Host T IP-Address is auth. ∑ Queries ∑ Timeout
apolloresearch.com A 109.228.48.80 Gloucester/England/United Kingdom (GB) - 1&1 Internet SE
No Hostname found yes 1 0
AAAA 2001:8d8:860:6400::b:a9b Karlsruhe/Baden-Württemberg/Germany (DE) - SCHLUND yes
www.apolloresearch.com A 109.228.48.80 Gloucester/England/United Kingdom (GB) - 1&1 Internet SE
No Hostname found yes 1 0
AAAA 2001:8d8:860:6400::b:a9b Karlsruhe/Baden-Württemberg/Germany (DE) - SCHLUND yes

But points your ipv6 to the same server as your ipv4?

If not, that can't work. The different /.well-known/acme-challenge checks have the same status.

But that

K http://apolloresearch.com/ 109.228.48.80, Status 404
http://apolloresearch.com/ 2001:8d8:860:6400::b:a9b, Status 200
configuration problem - different ip addresses with different status

looks that different servers are connected.

If you don't have the correct ipv6 of your ipv4 machine, remove the ipv6 AAAA record.

Checking your domain Letsencrypt prefers ipv6, so that's critical.

1 Like
3

Thanks, you caught it right.

1 Like
4

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.