I d’ont understand what is going wrong. On the same machine, I have several certificates and I can’t renew any of them since few days. I revoked one : cloud-formation.paquerette.eu and tried to getting it again and here is the output. It is the same problem when I want to renew another one : cloud-test.paquerette.eu. I can still reach this address in http or https, so ip is routable, and ports 80 and 443 are open, as shown in the output of ufw.
Thanks for help !
My domain is: cloud-formation.paquerette.eu
I ran this command:
certbot certonly --standalone -d cloud-formation.paquerette.eu --agree-tos -m postmaster@paquerette.eu -n
It produced this output:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator standalone, Installer None
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for cloud-formation.paquerette.eu
Waiting for verification…
Cleaning up challenges
Failed authorization procedure. cloud-formation.paquerette.eu (http-01): urn:ietf:params:acme:error:connection :: The server could not connect to the client to verify the domain :: Fetching http://cloud-formation.paquerette.eu/.well-known/acme-challenge/IFmV1_fzvEElzQFlvvJRAP9jumhVZDUKYfbS5CNy_cU: Timeout during connect (likely firewall problem)
My web server is (include version): nginx 1.10.3
The operating system my web server runs on is (include version): ubuntu 16.04
My hosting provider, if applicable, is: Infomaniak (Jelastic cloud)
I can login to a root shell on my machine (yes or no, or I don’t know): yes
I’m using a control panel to manage my site (no, or provide the name and version of the control panel): no
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you’re using Certbot): 0.28.0
ufw status verbose :
Status: active
Logging: on (low)
Default: deny (incoming), allow (outgoing), deny (routed)
New profiles: skip
To Action From
22/tcp LIMIT IN Anywhere
22/tcp (OpenSSH) ALLOW IN Anywhere
80,443/tcp (Nginx Full) ALLOW IN Anywhere
80/tcp ALLOW IN Anywhere
443/tcp ALLOW IN Anywhere
22/tcp (v6) LIMIT IN Anywhere (v6)
22/tcp (OpenSSH (v6)) ALLOW IN Anywhere (v6)
80,443/tcp (Nginx Full (v6)) ALLOW IN Anywhere (v6)
80/tcp (v6) ALLOW IN Anywhere (v6)
443/tcp (v6) ALLOW IN Anywhere (v6)