Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is: ootede.com
I ran this command:
service lsws stop
certbot certonly
1
ootede.com
service lsws start
It produced this output: renew success
My web server is (include version): OpenLiteSpeed 1.7.16
The operating system my web server runs on is (include version): Ubuntu 20.04.5 LTS
My hosting provider, if applicable, is: Google Compute Engine
I can login to a root shell on my machine (yes or no, or I don't know): yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel): OpenLiteSpeed Admin Panel 1.7.16
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you're using Certbot): certbot 0.40.0
after renew certificate suddenly port 80 & 443 are refused. I was checking ufw status
and it seems firewall config settings is fine.
Status: active
Logging: on (low)
Default: deny (incoming), allow (outgoing), disabled (routed)
New profiles: skip
To Action From
-- ------ ----
22 ALLOW IN Anywhere
80 ALLOW IN Anywhere
443 ALLOW IN Anywhere
80,443,7080,8088/tcp ALLOW IN Anywhere
443/tcp ALLOW IN Anywhere
22 (v6) ALLOW IN Anywhere (v6)
80 (v6) ALLOW IN Anywhere (v6)
443 (v6) ALLOW IN Anywhere (v6)
80,443,7080,8088/tcp (v6) ALLOW IN Anywhere (v6)
443/tcp (v6) ALLOW IN Anywhere (v6)
root@openlitespeed-awawtede-vm:/usr/local/lsws/conf# ufw status verbose
Status: active
Logging: on (low)
Default: deny (incoming), allow (outgoing), disabled (routed)
New profiles: skip
To Action From
-- ------ ----
22 ALLOW IN Anywhere
80 ALLOW IN Anywhere
443 ALLOW IN Anywhere
80,443,7080,8088/tcp ALLOW IN Anywhere
443/tcp ALLOW IN Anywhere
22 (v6) ALLOW IN Anywhere (v6)
80 (v6) ALLOW IN Anywhere (v6)
443 (v6) ALLOW IN Anywhere (v6)
80,443,7080,8088/tcp (v6) ALLOW IN Anywhere (v6)
443/tcp (v6) ALLOW IN Anywhere (v6)
i check my ip address and name server on ootede.com - Make your website better - DNS, redirects, mixed content, certificates also look fine.
when i run ssl checker [spoiler]SSL Checker it seems only my old certificate is working.
additional information is: i was delete several previous renewal certificate (following lot of tutorial) and yet my connection to ootede.com still refused since 1st renewal.
here my current renewal certificates: certbot certificates
Found the following certs:
Certificate Name: ootede.com
Domains: ootede.com *.ootede.com
Expiry Date: 2023-02-22 10:13:17+00:00 (VALID: 88 days)
Certificate Path: /etc/letsencrypt/live/ootede.com/fullchain.pem
Private Key Path: /etc/letsencrypt/live/ootede.com/privkey.pem
it is my 2nd days exploring possible solution and i am stuck for this issue, please enlighten me how to fix this as this things really frustating me.