Hello,
I can't find a solution.
About a month ago I had to renew certbot. Since then, subdomains occasionally send empty responses, and could not find a solution.
Each time I was apparently able to find a fix, like here:
The website was turning back, running again. But then after some time I check back the website:
curl discovery.nifty.works
curl: (52) Empty reply from server
And cannot find a solution.
I now tried again something else, I removed certbot and reinstalled via snapd:
I have certificates installed, included a wildcard one. And the main site works. But none of the subdomains.
Nginx configuration is fine and web servers up and running.
I set up DNS with _acme.challenge and it seems fine.
What's wrong ? I can't find a way to get back sites on subdomains, and find a solution that stays. At this point, I am even not sure that what I tried earlier (delete and new of new certificates; renewal of new certificates; different threads here) was a real solution to the problem.
Cannot find the error, but website won't appear, server sends no reply.
certbot certificates
Saving debug log to /var/log/letsencrypt/letsencrypt.log
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Found the following certs:
Certificate Name: nifty.works-0001
Serial Number: 499040cba88628d0aa87137afa0673395bf
Key Type: RSA
Domains: *.nifty.works
Expiry Date: 2022-05-21 19:37:44+00:00 (VALID: 89 days)
Certificate Path: /etc/letsencrypt/live/nifty.works-0001/fullchain.pem
Private Key Path: /etc/letsencrypt/live/nifty.works-0001/privkey.pem
Certificate Name: nifty.works-0002
Serial Number: 3297630963202b8da5e9d6cf8e88b7ff905
Key Type: RSA
Domains: nifty.works www.nifty.works
Expiry Date: 2022-05-21 20:00:17+00:00 (VALID: 89 days)
Certificate Path: /etc/letsencrypt/live/nifty.works-0002/fullchain.pem
Private Key Path: /etc/letsencrypt/live/nifty.works-0002/privkey.pem
Certificate Name: nifty.works
Serial Number: 3ac0fd9f46125d08d80d90819e173663457
Key Type: RSA
Domains: nifty.works
Expiry Date: 2022-05-18 15:14:24+00:00 (VALID: 86 days)
Certificate Path: /etc/letsencrypt/live/nifty.works/fullchain.pem
Private Key Path: /etc/letsencrypt/live/nifty.works/privkey.pem
certbot --version
certbot 1.23.0
dig _acme-challenge.nifty.works
; <<>> DiG 9.10.3-P4-Ubuntu <<>> _acme-challenge.nifty.works
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 6699
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;_acme-challenge.nifty.works. IN A
;; AUTHORITY SECTION:
nifty.works. 233 IN SOA ns-935.awsdns-52.net. awsdns-hostmaster.amazon.com. 1 7200 900 1209600 86400
;; Query time: 2 msec
;; SERVER: 50.116.61.5#53(50.116.61.5)
;; WHEN: Sun Feb 20 21:26:35 UTC 2022
;; MSG SIZE rcvd: 140
nginx -t
nginx: the configuration file /etc/nginx/nginx.conf syntax is ok
nginx: configuration file /etc/nginx/nginx.conf test is successful