Certificate not renewing

My domain is:
comhost.equillex.ru

I ran this command:
certbot-auto renew --post-hook “/usr/sbin/apachectl restart”

It produced this output:
Waiting for verification…
Challenge failed for domain comhost.equillex.ru
http-01 challenge for comhost.equillex.ru
Cleaning up challenges
Attempting to renew cert (comhost.equillex.ru) from /etc/letsencrypt/renewal/comhost.equillex.ru.conf produced an unexpected error: Some challenges have failed… Skipping.
All renewal attempts failed. The following certs could not be renewed:
/etc/letsencrypt/live/comhost.equillex.ru/fullchain.pem (failure)


All renewal attempts failed. The following certs could not be renewed:
/etc/letsencrypt/live/comhost.equillex.ru/fullchain.pem (failure)


1 renew failure(s), 0 parse failure(s)

My web server is (include version):
apache 2.4.37
The operating system my web server runs on is (include version):
CentOS Linux 8.2.2004
My hosting provider, if applicable, is:
my server
I can login to a root shell on my machine (yes or no, or I don’t know):
yes
I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
no
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot):
1.6.0

For some time, the update was standard, but on July 12 everything broke.
There were no changes to the system settings.

Hi @Equil

that’s wrong. You have created that bug.

http://comhost.equillex.ru/

Bad Request

Your browser sent a request that this server could not understand.
Reason: You’re speaking plain HTTP to an SSL-enabled server port.
Instead use the HTTPS scheme to access this URL, please.

Please fix your error.

Your port 80 is a https port, so it’s impossible to use that port regular. May be a wrong port forwarding port 80 extern -> port 443 intern.

2 Likes

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.