Hi. I'm hosting a DoT-Server on ubuntu. Since today, almost 3 Minutes after the X3-expiration Android won't connect to that DoT-Server anymore. This also happens with dot1.applied-privacy.net (a public DoT-Server using LE for the TLS-Cert). This behaviour was repoted to me from ppl using followin…

Regarding my own Problem: Renewing the cert with certbot and --preferred-chain="ISRG Root X1" did indeed help. After doing that my android happily accepts connections to my own DoT-Server again. I've posted the same issue (and now solution) on reddit as well: r/letsencrypt - Self-Hosted…

Android devices with DoT configured; interaction with new default chain

Help

rg305 October 4, 2021, 6:41am 37

Those are two different FQDNs that resolve to very different IPs.

Topic		Replies	Views
Understanding DST Root expiry and the older default cert chain Help	36	3679	December 8, 2021
Several sites unreachable with Android 4.4 since Chain Changes Help	34	6470	December 21, 2021
--preferred-chain not taking effect Help	36	10589	December 17, 2021
Android Browser Showing Security Risk or Connection Not Secured Help	34	5920	December 25, 2021
Connection is not private on Android Chrome Help	7	4113	September 30, 2021

Android devices with DoT configured; interaction with new default chain

Related topics