Can't get a new certificate because challenges failed

My domain is:

I ran this command:
docker logs -f letsencrypt

It produced this output:
Obtaining a new certificate

Performing the following challenges:

http-01 challenge for

Waiting for verification…

Challenge failed for domain

http-01 challenge for

Cleaning up challenges

Some challenges have failed.

  • The following errors were reported by the server:

    Type: connection
    Detail: Fetching
    Timeout during connect (likely firewall problem)

    To fix these errors, please make sure that your domain name was
    entered correctly and the DNS A/AAAA record(s) for that domain
    contain(s) the right IP address. Additionally, please check that
    your computer has a publicly routable IP address and that no
    firewalls are preventing the server from communicating with the
    client. If you’re using the webroot plugin, you should also verify
    that you are serving files from the webroot path you provided.
    ERROR: Cert does not exist! Please see the validation error above. The issue may be due to incorrect dns or port forwarding settings. Please fix your settings and recreate the container

My web server is:
OMV5 running on raspberry pi 4

I set up the router to forward the traffic on the port 80 to the 81 and, during the installation of letsencrypt container I specified -ports 81:80 and 444:443

1 Like

Hi @amassaro96

there you see your problem.

Your port 80 doesn't work. A working port 80 is required.

Checking your domain there are only timeouts -

Domainname Http-Status redirect Sec. G -14 10.017 T
Timeout - The operation has timed out -14 10.030 T
Timeout - The operation has timed out -14 10.050 T
Timeout - The operation has timed out

So it's impossible that Letsencrypt checks your domain.

May be your port forwarding is wrong. May be there is a firewall.

80 extern -> 80 intern.

1 Like

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.