Can't renew with apache more VirtualHosts

Help
22

It looks like Firefox is running on a machine on your local network. What happens from outside your network like with a mobile phone and wifi off so use your mobile carrier network.

5 Likes
23

As in the past I had a successful connections, in my mobile both Firefox and Brave force the http to https and then complain that the connection isn't safe.

24

I assume that's because the cert has expired? Did those browsers explain why it wasn't safe? Because the most recent cert I see expired Jun30

But, I don't know what else to say because that does not happen with my tests. From my own test server I get connection failures using HTTPS. And, I cannot reach with HTTP at all.

I cannot reach you with other test sites either
https://www.ssllabs.com/ssltest/analyze.html?d=www.munerotto.it&hideResults=on
or

3 Likes
25

Please confirm the outside IP is current.
Show:
curl -4 ifconfig.io

4 Likes
26

Yes

$ url -4 ifconfig.io
93.49.253.65
1 Like
27

Ok, then let's see what the FastGate is doing with the HTTP requests.

3 Likes
28

True but partially.

I removed both the Apache virtual hosting for port 433 while iI'm testing the simply connection (moreover the certificates were expired)..

As the instance of nextcloud force http to upgrade to https, the only site to check is http://www.munerotto.it

29

433?
OR
443?

3 Likes
30

OK, but to do that? (traceroute?)

31

Typo :slight_smile: but it doesn't matter because o moved away both the Apache virtual hosts conf.

$ ls /etc/apache2/sites-enabled/ nextmune.munerotto.it.conf www.munerotto.it.conf

$ ls /home/mune/hid/ nextmune.munerotto.it nextmune.munerotto.it-le-ssl.conf nextmune.munerotto.it.conf www.munerotto.it-le-ssl.conf

32

Show the menu that does the port forwarding.

2 Likes
33

Schermata del 2023-07-25 00-38-47

34

better image

Schermata del 2023-07-25 01-14-26
Schermata del 2023-07-25 01-14-26783×328 16 KB

1 Like
35

It's possible that these browsers are remembering the fact that they previously saw an HTTP to HTTPS redirect, rather than successfully seeing it live on the Internet now!

3 Likes
36

The ISP support wrote me that IP isn't changed and ports are opened.

2 Likes
37

I totally agree.

Where is the "clear cache" there was a long ago :slight_smile:

38

Try opening an incognito browser window.

2 Likes
39

This is interesting:

curl -Ii https://www.munerotto.it/
curl: (35) error:0A00010B:SSL routines::wrong version number

curl -Ii http://www.munerotto.it:443/
HTTP/1.1 200 OK
Date: Tue, 25 Jul 2023 01:38:26 GMT
Server: Apache/2.4.52 (Ubuntu)
Last-Modified: Sat, 26 Nov 2022 10:38:40 GMT
ETag: "f02-5ee5d3dd832a7"
Accept-Ranges: bytes
Content-Length: 3842
Vary: Accept-Encoding
Content-Type: text/html

It seems the router is sending port 443 [external] to port 80 [internal].

3 Likes
40

CTRL+SHIFT+DEL will clear your cache

3 Likes
41

On the mobile phone? :slight_smile: