Acme api server failure on server-hello

tyleeds · November 26, 2020, 11:13pm

Around 1600 CST on 2020-11-26 we observed that approximately 20% of the time the api server at https://acme-v02.api.letsencrypt.org/ will stall after ack'ing the client-hello when queried using curl. We observed this from multiple locations and network providers on IPv4 and IPv6. Next packet should be a server-hello but this is never sent.

This site is fronted by cloudflare and the intermittent but repeatable nature would point to a possible dead-node behind a load balancer which is periodically being round-robin'd and failing.

Osiris · November 26, 2020, 11:22pm

Sounds like a question/issue for @lestaff methinks.

JamesLE · November 26, 2020, 11:51pm

Hi, @tyleeds,

Thanks for the report! Can you confirm whether this was 1600 CST or 1600 UTC, and whether you're still observing timeouts? We've received a few other reports and have been investigating.

tyleeds · November 26, 2020, 11:58pm

Correction. 1600UTC.

Just checked again and it appears fixed. Ran 100 curl requests without seeing it hang.

Thanks!

system · December 26, 2020, 11:58pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Connectivity issues to acme-v02.api.letsencrypt.org Help	12	2025	April 23, 2020
LetsEncrypt fails to connect to server, curl can reach just fine ( Help	9	957	May 11, 2022
Making progress....but not http-01 query of the server? Client dev	4	432	July 31, 2023
Let's Encrypt Timeouts Help	10	1508	August 25, 2018
Http server intermittently unavailable Server	4	2039	June 9, 2016

Acme api server failure on server-hello

Related topics