Hello!
I'm using Hetzner VPS and have few apps on my server with Dokku.
When I used sslip.io free domains for my applications everything was fine, I could get SSL certificates without any issue.
Now I bought domain name for one of my sites on websupport.sk and trying to get SSL with Letsencrypt and having 403\404 errors in command output.
In the DNS settings of my domain I setup A and CNAME records with my hosting IP address:
A:
*.opravacomp.sk 23.88.117.56
opravacomp.sk 23.88.117.56
CNAME:
autodiscover.opravacomp.sk 23.88.117.56
autoconfig.opravacomp.sk 23.88.117.56
My domain is:
opravacomp.sk
I ran this command:
dokku letsencrypt:enable oprava
It produced this output:
=====> Enabling letsencrypt for oprava
-----> Enabling ACME proxy for oprava...
-----> Getting letsencrypt certificate for oprava via HTTP-01
- Domain 'opravacomp.sk'
2023/07/25 09:15:00 [INFO] [opravacomp.sk] acme: Obtaining bundled SAN certificate
2023/07/25 09:15:01 [INFO] [opravacomp.sk] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz-v3/248814995157
2023/07/25 09:15:01 [INFO] [opravacomp.sk] acme: Could not find solver for: tls-alpn-01
2023/07/25 09:15:01 [INFO] [opravacomp.sk] acme: use http-01 solver
2023/07/25 09:15:01 [INFO] [opravacomp.sk] acme: Trying to solve HTTP-01
2023/07/25 09:15:06 [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz-v3/248814995157
2023/07/25 09:15:06 Could not obtain certificates:
error: one or more domains had a problem:
[opravacomp.sk] acme: error: 403 :: urn:ietf:params:acme:error:unauthorized :: 2a00:4b40:aaaa:2007::5: Invalid response from http://opravacomp.sk/.well-known/acme-challenge/CveR4WO409y6E4Wo-EcF0_XhQYiCs0zN-U9Q-hbg2Ws: 404
-----> Certificate retrieval failed!
-----> Disabling ACME proxy for oprava...
! Failed to setup letsencrypt
! Check log output for further information on failure
dokku version 0.30.9
My web server is (include version):
nginx-vhosts 0.30.9
The operating system my web server runs on is (include version):
Ubuntu 20.04.4 LTS
My hosting provider, if applicable, is:
Hetzner VPS
I can login to a root shell on my machine (yes or no, or I don't know):
Yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
No
root@ubuntu-2gb-fsn1-2:~# dokku domains:report
=====> oprava domains information
Domains app enabled: true
Domains app vhosts: opravacomp.sk
Domains global enabled: false
Domains global vhosts:
=====> plants domains information
Domains app enabled: true
Domains app vhosts: plants.23.88.117.56.sslip.io
Domains global enabled: false
Domains global vhosts:
=====> web domains information
Domains app enabled: true
Domains app vhosts: web.23.88.117.56.sslip.io
Domains global enabled: false
Domains global vhosts:
root@ubuntu-2gb-fsn1-2:~# dokku proxy:report
=====> oprava proxy information
Proxy enabled: true
Proxy port map: http:80:5000 https:443:5000
Proxy type: nginx
=====> plants proxy information
Proxy enabled: true
Proxy port map: http:80:5000 https:443:5000
Proxy type: nginx
=====> web proxy information
Proxy enabled: true
Proxy port map: http:80:5000 https:443:5000
Proxy type: nginx
nslookup opravacomp.sk
Server: 127.0.0.53
Address: 127.0.0.53#53
Non-authoritative answer:
Name: opravacomp.sk
Address: 23.88.117.56
Name: opravacomp.sk
Address: 2a00:4b40:aaaa:2007::5
