Apply letsencrypt to my server and it says cant find webpage

#1

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: nytramsystems.co.uk

I ran this command: sudo certbot --nginx -d nytramsystems.co.uk -d www.nytramsystems.co.uk

It produced this output: all goes through OK and edits my conf file with the SSL indormation from certbot

My web server is (include version): Nginx

The operating system my web server runs on is (include version): Ubuntu Server 18.04

My hosting provider, if applicable, is: local

I can login to a root shell on my machine (yes or no, or I don’t know): yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot): unknown

I can access my domain and sub domains fine before the lets encrypt is applied. I have turned off the ufw firewall to see if it was that causing the issue but it still does not work.

I have removed the certificates a few times now and port 80 works again and now I cant apply for a new certificates until the first application exceeds 7 days.

I chose option 2 to repoint http to https also.

I have used letsencrypt before on raspberry pi and all works fine.

if you need anymore information, please ask and I will supply to the best of my knowledge

#2

Hi @martyn

you have created 10 certificates in the last 7 days ( https://check-your-website.server-daten.de/?q=nytramsystems.co.uk ):

CertSpotter-Id Issuer not before not after Domain names LE-Duplicate next LE
915111577 CN=Let’s Encrypt Authority X3, O=Let’s Encrypt, C=US 2019-05-16 12:21:37 2019-08-14 12:21:37 nytramsystems.co.uk, www.nytramsystems.co.uk
2 entries duplicate nr. 5 next Letsencrypt certificate: 2019-05-22 14:08:59
914878382 CN=Let’s Encrypt Authority X3, O=Let’s Encrypt, C=US 2019-05-16 09:11:30 2019-08-14 09:11:30 nytramsystems.co.uk, www.nytramsystems.co.uk
2 entries duplicate nr. 4
913927459 CN=Let’s Encrypt Authority X3, O=Let’s Encrypt, C=US 2019-05-15 21:20:18 2019-08-13 21:20:18 iot.nytramsystems.co.uk
1 entries duplicate nr. 3

–removed the other certificates–

So please don’t create new certificates.

But your https isn’t visible.

Domainname Http-Status redirect Sec. G
• http://nytramsystems.co.uk/
87.81.7.124 200 0.097 H
• http://www.nytramsystems.co.uk/
87.81.7.124 200 0.097 H
• https://nytramsystems.co.uk/
87.81.7.124 -14 10.027 T
Timeout - The operation has timed out
• https://www.nytramsystems.co.uk/
87.81.7.124 -14 10.027 T
Timeout - The operation has timed out

https - only timeouts.

Is there a blocking firewall? Or a missing router forwarding? Looks like your home environment has a wrong configuration.

2 Likes
#3

Hi

Thanks for your reply.

I am a novice with let’s encrypt and didn’t know that about the limit. I can’t create anymore, if I could delete them all, I would and start again.

What an oversight. I had my port 80 point to my new server but not 443.

Do I have to wait for the 7 days to go for me to try and put a new ssl on my server or is there a way to delete them ?

I have my old server that I could possibly copy the 2 .pem files over to the new server and certificates if they are still valid ?

Thanks martyn

#4

Then change that.

I don’t see if there is a certificate installed because of that timeout.

#5

Hi

Done that but not near a laptop to do that. Will be an hour or so till I am.

Thanks for spotting the obvious as I’d over looked that

Regards

Martyn

#6

Just configured another sub domain and HTTPS is now working.

Is there a way to delete any of the certificates to create another one without waiting 5 more days ?

Thanks

Regards

Martyn

#7

Please read

Revoking certificates does not reset rate limits, because the resources used to issue those certificates have already been consumed.

Where are these certificates?

What says

certbot certificates
1 Like
#8

I only have 1 certificate on my new server for the sub domain that I got working…not nytramsystems.co.uk

I have a certificate on my old server which was live till last week and in that list you provided in the link.

Any way I can copy the files and certificates across to my new server ?

Thanks

Martyn