My domain is: dekranasda.tobakab.go.id
My web server is : Apache/2.4.6 (CentOS)
The operating system my web server runs on is : CentOS7
I can login to a root shell on my machine : yes
The version of my client is : certbot 1.11.0
1 Like
Hello @reinhardws, welcome to the Let's Encrypt community. 
Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is: dekranasda.tobakab.go.id
I ran this command: certbot renew
It produced this output:
My web server is (include version):
The operating system my web server runs on is (include version):
My hosting provider, if applicable, is:
I can login to a root shell on my machine (yes or no, or I don't know):
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot --version):
Thank you for assisting us in helping YOU!
2 Likes
Looks like you filter Ports 80 & 443
$ nmap -Pn -p80,443 dekranasda.tobakab.go.id
Starting Nmap 7.80 ( https://nmap.org ) at 2024-01-23 03:48 UTC
Nmap scan report for dekranasda.tobakab.go.id (103.16.48.156)
Host is up.
PORT STATE SERVICE
80/tcp filtered http
443/tcp filtered https
Nmap done: 1 IP address (1 host up) scanned in 7.56 seconds
Also see https://letsdebug.net/dekranasda.tobakab.go.id/1779355 has ERRORs.
ANotWorking
ERROR
dekranasda.tobakab.go.id has an A (IPv4) record (103.16.48.156) but a request to this address over port 80 did not succeed. Your web server must have at least one working IPv4 or IPv6 address.
A timeout was experienced while communicating with dekranasda.tobakab.go.id/103.16.48.156: Get "http://dekranasda.tobakab.go.id/.well-known/acme-challenge/letsdebug-test": context deadline exceeded
Trace:
@0ms: Making a request to http://dekranasda.tobakab.go.id/.well-known/acme-challenge/letsdebug-test (using initial IP 103.16.48.156)
@6ms: Dialing 103.16.48.156
@10001ms: Experienced error: context deadline exceeded
IssueFromLetsEncrypt
ERROR
A test authorization for dekranasda.tobakab.go.id to the Let's Encrypt staging service has revealed issues that may prevent any certificate for this domain being issued.
103.16.48.156: Fetching http://dekranasda.tobakab.go.id/.well-known/acme-challenge/jQetId6KM5cjbS1f-W7ChPaq5UTOtYZRoWpxNByGcyg: Timeout during connect (likely firewall problem)
2 Likes
Is your httpd server running right now?
If not, would you start it and leave it running? It is difficult to debug the --standalone method and testing with Apache first will help. Thanks
3 Likes
httpd server already running
Can't connect with HTTP or HTTPS. Probably a firewall. Might be other communications config. You need to be able to reach your server with HTTP on port 80 for --standalone to work. Easier to test with your Apache running and try to get HTTP or HTTPS working.
curl -i -m10 http://dekranasda.tobakab.go.id
curl: (28) Connection timed out after 10001 milliseconds
curl -i -m10 https://dekranasda.tobakab.go.id
curl: (28) Connection timed out after 10001 milliseconds
If you don't have a machine on the public internet try a mobile phone with wifi disabled to use your carrier network. Or, use https://letsdebug.net to test HTTP on port 80.
3 Likes
how to get it work? im nubie here
thx
1 Like
how can i unfilter the port?
You need a working web site before you can secure it.
This is not a forum for "how to create a web site".
4 Likes
Usually the firewall(s), including the ISP.
2 Likes
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.