Can’t certbot renew in nginx - files are accessible


I am trying to certbot renew at Nginx and getting following problem:

Attempting to renew cert from /etc/letsencrypt/renewal/ produce an unexpected error: Failed authorization procedure. (http-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Fetching Timeout,

I checked accessibility of thru browser and it works fine.

/etc/letsencrypt/renewal/ is correct, paths checked.

Nothing changed on my server since i renewed my certificates last time same way.

Any idea?


Hi @Romin,

Maybe it is an IPv6 issue, maybe it is DNS issue, maybe it is a redirection issue, maybe it is web server issue, maybe it is a network issue, maybe it is... what is your real domain name?..


Hi, i do not want to publish the domain name now.

No IPv6 listening set in Nginx conf, no DNS IPv6 addresses defined.

No redirections.

Server is listening clearly only on 80:

server {
listen 80;

All files on server are accessible like HTTP/1.1 200 OK.

Certbot creates files correctly in .well-known folder owned by root:www-data or www-data:www-data.

Hi @Romin,

Maybe it is a firewall rule, it is really hard to help you to debug the issue without the domain name.


Firewall is clear.

I will install new domain for these purposes and will let you know later.


This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.