Certificate let's encrypt

HI.

I'm trying to create a certificate and I get this error: (IMG: https://prnt.sc/OLneiK9ASA14 )

and get the following error: (IMG: Screenshot by Lightshot )

I would appreciate your help
How do I solve this?

I have a domain in no-ip

Thank you

Hello @maorphp, and welcome to the LE community forum :slight_smile:

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:

I ran this command:

It produced this output:

My web server is (include version):

The operating system my web server runs on is (include version):

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don't know):

I'm using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):

2 Likes

My domain is: pronas.hopto.org (no-ip)
I ran this command: Trying to get a certificate in NAS
It produced this output: Invalid domain. Please make sure the domain can be resolved into a public IP address.
My web server is (include version): I ran on my NAS: web staiton
The operating system my web server runs on is (include version): Screenshot by Lightshot

What version of Synology NAS are you running?
[try updating to the latest version]

Does that name now point to the current IP?

Name:    pronas.hopto.org
Address: 89.139.50.6

Can the Internet reach your NAS [via that name/IP] on port 80?
[if not, please check the port forwarding/NAT on your router]
[check that your ISP isn't blocking inbound port 80]

3 Likes

I get this:

$ ping pronas.hopto.org
PING pronas.hopto.org (89.139.50.6) 56(84) bytes of data.
64 bytes from 89-139-50-6.bb.netvision.net.il (89.139.50.6): icmp_seq=1 ttl=36 time=222 ms
64 bytes from 89-139-50-6.bb.netvision.net.il (89.139.50.6): icmp_seq=2 ttl=36 time=222 ms
64 bytes from 89-139-50-6.bb.netvision.net.il (89.139.50.6): icmp_seq=3 ttl=36 time=223 ms
2 Likes

OK, so there is some device at that IP.
But does that device lead to the NAS in question (and can it be made to reach it)?
[that is/are the question(s) - LOL]

4 Likes

The www is not pingable

$ping www.pronas.hopto.org
ping: www.pronas.hopto.org: Name or service not known
2 Likes

"www" is probably not required for this purpose.

3 Likes

It was only this that made me think to try www
image

3 Likes

NAS version: DSM 7.1-42661 Update 3

When I write down the address
pronas.hopto.org I arrive at the web station

1 Like

I made port 80 reach port 5000
Coming to DSM

No, port 80 is not open from the public internet. Only these:

PORT      STATE SERVICE
53/tcp    open  domain
443/tcp   open  https
52673/tcp open  unknown

Connecting with https (port 443) is successful but returns a cert with a different name.

subject= /CN=pronas1.synology.me
issuer= /C=US/O=Let's Encrypt/CN=R3
notBefore=Jul 18 02:53:27 2022 GMT
notAfter=Oct 16 02:53:26 2022 GMT
3 Likes

Port Forwarding:

Dynamic DNS Client

When I type www I get the error:
invalid domain. please make sure this domain can be resolved into a public ip address synology

From Windows 10:

>ping www.pronas.hopto.org
Ping request could not find host www.pronas.hopto.org. Please check the name and try again.

From Ubuntu 22.04 LTS Server:

$ ping www.pronas.hopto.org
ping: www.pronas.hopto.org: Name or service not known

I find no A, AAAA, nor CNAME DNS Record for www.pronas.hopto.org
so you will not find nor connect to www.pronas.hopto.org anywhere.

For www.pronas.hopto.org
DNS Lookup - Check DNS Records

For pronas.hopto.org
DNS Lookup - Check DNS Records

This is a DNS issue.

2 Likes

Can you explain to me where I add A records?
even connect to my computer and help please :slight_smile:

You wouldn't.
HOPTO.ORG (NO-IP) would need to do that for you.
Until then, you could avoid using the "www".

3 Likes

Where do I set this www on the noip site?

Help for noip is available here: Free Dynamic DNS : Getting Started Guide

2 Likes