Some other info:
My registrar is Namecheap, and I’m using their dynamic dns, so this domain has a A+ @ record and an A+ www record, both pointing to my WAN IP.
I’m on Verizon FiOS. My router is configured to pass HTTP/HTTPS requests to my server. That’s all working fine. Website is accessible by name, locally and remotely. If it matters, the local hostname of my server is teapot.hynoom.net, IP 192.168.1.9.
I followed the linuxize tutorial on setting up virtual hosts, and another on securing with Let’sEncrypt.
Q: It looks like /.well-known, etc., is not accessible.
Q: Does the local host name make a difference?
I’ve contacted Namecheap twice, and they say everything is fine on their end, and told me to come here.
Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is:
I ran this command:
sudo /usr/local/bin/certbot-auto certonly --agree-tos --email codevark@aim.com --webroot -w /var/lib/letsencrypt/ -d hynoom.com -d www.hynoom.com
It produced this output:
(a bunch of stuff installed without errors)
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for hynoom.com
http-01 challenge for www.hynoom.com
Using the webroot path /var/lib/letsencrypt for all unmatched domains.
Waiting for verification…
Challenge failed for domain hynoom.com
Challenge failed for domain www.hynoom.com
http-01 challenge for hynoom.com
http-01 challenge for www.hynoom.com
Cleaning up challenges
Some challenges have failed.
IMPORTANT NOTES:
-
The following errors were reported by the server:
Domain: hynoom.com
Type: unauthorized
Detail: Invalid response from
http://hynoom.com/.well-known/acme-challenge/fiXEyuv4ElBQVJdpi3cBQS2fv8AYPw_ghSzU9_bRmQE
[98.110.230.159]: “\n\n403
Forbidden\n\nForbidden
\n<p”Domain: www.hynoom.com
Type: unauthorized
Detail: Invalid response from
http://www.hynoom.com/.well-known/acme-challenge/5A-6A5sbHAD_ZpgEoUSPsVhpExDh_JLtHom7AmelOwo
[98.110.230.159]: “\n\n403
Forbidden\n\nForbidden
\n<p”
My web server is (include version):
Apache 2.4.37-16.module_el8.1.0+256
The operating system my web server runs on is (include version):
CentOS Linux 8 (Core)
Kernel: Linux 4.18.0-193.6.3.el8_2
My hosting provider, if applicable, is:
me!
I can login to a root shell on my machine (yes or no, or I don’t know):
yes
I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
no
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you’re using Certbot):
Certbot 1.5.0