I can't find a solution.
About a month ago I had to renew certbot. Since then, subdomains occasionally send empty responses, and could not find a solution.
Each time I was apparently able to find a fix, like here:
The website was turning back, running again. But then after some time I check back the website:
curl discovery.nifty.works curl: (52) Empty reply from server
And cannot find a solution.
I now tried again something else, I removed certbot and reinstalled via snapd:
I have certificates installed, included a wildcard one. And the main site works. But none of the subdomains.
Nginx configuration is fine and web servers up and running.
I set up DNS with _acme.challenge and it seems fine.
What's wrong ? I can't find a way to get back sites on subdomains, and find a solution that stays. At this point, I am even not sure that what I tried earlier (delete and new of new certificates; renewal of new certificates; different threads here) was a real solution to the problem.
Cannot find the error, but website won't appear, server sends no reply.
certbot certificates Saving debug log to /var/log/letsencrypt/letsencrypt.log - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Found the following certs: Certificate Name: nifty.works-0001 Serial Number: 499040cba88628d0aa87137afa0673395bf Key Type: RSA Domains: *.nifty.works Expiry Date: 2022-05-21 19:37:44+00:00 (VALID: 89 days) Certificate Path: /etc/letsencrypt/live/nifty.works-0001/fullchain.pem Private Key Path: /etc/letsencrypt/live/nifty.works-0001/privkey.pem Certificate Name: nifty.works-0002 Serial Number: 3297630963202b8da5e9d6cf8e88b7ff905 Key Type: RSA Domains: nifty.works www.nifty.works Expiry Date: 2022-05-21 20:00:17+00:00 (VALID: 89 days) Certificate Path: /etc/letsencrypt/live/nifty.works-0002/fullchain.pem Private Key Path: /etc/letsencrypt/live/nifty.works-0002/privkey.pem Certificate Name: nifty.works Serial Number: 3ac0fd9f46125d08d80d90819e173663457 Key Type: RSA Domains: nifty.works Expiry Date: 2022-05-18 15:14:24+00:00 (VALID: 86 days) Certificate Path: /etc/letsencrypt/live/nifty.works/fullchain.pem Private Key Path: /etc/letsencrypt/live/nifty.works/privkey.pem
certbot --version certbot 1.23.0
dig _acme-challenge.nifty.works ; <<>> DiG 9.10.3-P4-Ubuntu <<>> _acme-challenge.nifty.works ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 6699 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4096 ;; QUESTION SECTION: ;_acme-challenge.nifty.works. IN A ;; AUTHORITY SECTION: nifty.works. 233 IN SOA ns-935.awsdns-52.net. awsdns-hostmaster.amazon.com. 1 7200 900 1209600 86400 ;; Query time: 2 msec ;; SERVER: 220.127.116.11#53(18.104.22.168) ;; WHEN: Sun Feb 20 21:26:35 UTC 2022 ;; MSG SIZE rcvd: 140
nginx -t nginx: the configuration file /etc/nginx/nginx.conf syntax is ok nginx: configuration file /etc/nginx/nginx.conf test is successful