Can you remove Rate Limit for my IPs

#1

Hi there,
I am running a few cluster for the domains *.sufalo.com

Since we configured the server incorrectly, after reinstalling it was rate limtited IP. Can you please remove the rate limit?

List of Rate-Limited IPs:

45.77.29.7 (sufalo.com)

Again, apologies from our side for hammering your servers, this has been addressed on our side.

Thank you!

#2

Just to make sure, which rate limit, or rate limits, have you encountered? What were the error messages from Let’s Encrypt?

Was it the one about “ridiculously excessive traffic”? The other rate limits go away automatically over time.

2 Likes
#3

Hi @sufalo

I can confirm that this IP address is not one that we have blocked administratively for sending excessive traffic.

Can you answer @mnordhoff’s questions (thanks!) about the exact error you’re receiving?

Thanks!

1 Like
#4

Hi @sufalo

you have created 5 certificates in the last days:

https://crt.sh/?q=sufalo.com

That hits the limit.

Isn’t it possible to use one of these? If not, you have to wait a few days (~~ 2019-03-07) to create the next certificate.

Or create one certificate with one domain name.

Your last certificate has two domain names:

DNS:sufalo.com
DNS:www.sufalo.com

But then you need two certificates.

3 Likes
#5

To clarify this, there are several different kinds of rate limits. Most of them expire automatically (and can’t be changed by Let’s Encrypt staff). However, one special rate limit (called “ridiculously excessive traffic”) does not expire automatically and requires intervention by Let’s Encrypt staff, which must be requested on the forum.

It can be confusing because people sometimes ask about both kinds on the forum, which might lead to the impression that all rate limits need a request here. But if the rate limit in question is any kind other than “ridiculously excessive traffic”, it’s not useful to request a response here because the staff can’t change the other limits.

It seems from @JuergenAuer’s and @cpu’s responses that the limit is not one that the staff can change, but is one that resets out automatically within a week.

3 Likes
#6

Hi all,
Thanks @cpu, @JuergenAuer for helping me answer my questions.
Thank you very much!

#7

Hi @schoen ,
I understood my problem.
Thank you very much.

#8

hi @JuergenAuer,
Today is March 7, 2019, but I have not yet created an SSL certificate for my domain: sufalo.com
How can I install it when I give an error message?

Cannot Execute Your Request

Details

Requesting new certificate order…
new-order error: HTTP/1.1 100 Continue
Expires: Thu, 07 Mar 2019 21:27:06 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache

HTTP/1.1 429 Too Many Requests
Server: nginx
Content-Type: application/problem+json
Content-Length: 250
Boulder-Requester: 52864728
Link: ;rel=“index”
Replay-Nonce: oGELm2wIl4gCfjkF5w3priaYt0Vep9GUHyCQKEII7r4
Expires: Thu, 07 Mar 2019 21:27:06 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Thu, 07 Mar 2019 21:27:06 GMT
Connection: close

{
“type”: “urn:ietf:params:acme:error:rateLimited”,
“detail”: “Error creating new order :: too many certificates already issued for exact set of domains: sufalo.com,www.sufalo.com: see https://letsencrypt.org/docs/rate-limits/”,
“status”: 429
}. Exiting…

#9

Looks like you didn’t read the list:

https://crt.sh/?q=sufalo.com

Your oldest certificate:

2019-03-01 03:06:57 UTC

Add 7 * 24 hours.

#10

Hi,
My problem has been solved.
Thanks for providing the information that helped me understand the problem.

Thanks all.

2 Likes
closed #11

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.