Using ACME v.2, I am getting “405 Method not Allowed - DOSarrest Internet Security” from the Let’s Encrypt server. What is this? I can not get the wildcard sertificate.
I am using the following command and getting the above mentioned respond:
That is odd! I’m not sure why you would be getting an error from DOSarrest, since it’s not a product we use. Do you use DOSarrest? Are you running this command from a personal PC or on a server?
Key word “look”: an MITM fake CA is perfectly capable of imitating a real certificate’s CN, serial number, and issuer details, though I don’t think they typically bother?
“The log file you have provided was from March 16th. I have gone through
the logs and found that this IP did access an IP under our service
related to domain registration. It is like that part of the process
encountered a domain that had expired and was registered though that
clients service. I do not see any blocking action related to this
request since the events on the 16th reaching our service.”
My ip 88.200.167.9 is also banned on their contacts page: https://www.dosarrest.com/contact-sales/
And I do not know why. I am trying to get the answer from their support.
UPD:
“Currently this page does not allow IPs from Russia. The block is a Geo-IP based block, not a specific ACL block. Please feel free to forward any questions through support@dosarrest.com as we will be able to work with you on any network related issues faster though this contact.”
Can DOSarrest tell you what domain or URL was being accessed?
Perhaps one of the acme.sh DNS plugins, or a second instance of acme.sh doing something entirely different, ran at the same time, and made requests to some other service? And this isn’t about https://acme-v02.api.letsencrypt.org/ at all?
I don’t think any of acme.sh’s main DNS plugin API endpoints use DOSarrest, but I could be wrong, and I didn’t check the Lexicon plugins, and it could be something custom.