Challange failed for domain

Hi all,

I am trying to get Letsencrypt certificates on
a linux system with apache2, but I am getting the
following errors:

Challenge failed for domain www.revolutionary-arts.com
Timeout during connect (likely firewall problem)

To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address.

I can reach my website through the domain name, with and without
the www and I got a ufw rule to allow 'Apache Full'.

I followed the following link to configure Letsencrypt
yet I am unable to get a certificate.

Can anyone help me resolve this issue?

Thanks in advance.

1 Like

I cannot reach your domain from the public internet. And, neither can Let's Encrypt. Port 80 is not open. You should check your router or other network config.

The Let's Debug test site is helpful when setting up new sites (link here). Just click ReRun Test after you make changes. Once Let's Debug is OK try getting a cert again.

5 Likes

Thanks for your reply. I found out that I cannot
access my own domain via another IP address either,
I can only access it via the IP address of the domain.

I tried the exact same UFW rules that I had on another server,
yet it doesn't work.

80 ALLOW Anywhere
443 ALLOW Anywhere
80 (v6) ALLOW Anywhere (v6)
443 (v6) ALLOW Anywhere (v6)

I truly hope that it is a firewall issue and that they are not
blocking my server somehow.

1 Like
traceroute 192.99.247.46
traceroute to 192.99.247.46 (192.99.247.46), 30 hops max, 60 byte packets
 1  _gateway (51.161.32.1)  0.459 ms  0.402 ms  0.382 ms
 2  192.168.143.254 (192.168.143.254)  0.364 ms  0.345 ms  0.326 ms
 3  10.69.219.190 (10.69.219.190)  0.308 ms  0.377 ms  0.360 ms
 4  10.69.215.28 (10.69.215.28)  0.342 ms  0.340 ms  0.321 ms
 5  10.69.229.70 (10.69.229.70)  0.287 ms 10.69.229.126 (10.69.229.126)  0.286 ms  0.292 ms
 6  10.34.1.100 (10.34.1.100)  0.717 ms 10.34.1.48 (10.34.1.48)  0.482 ms 10.34.1.102 (10.34.1.102)  0.682 ms
 7  10.74.8.82 (10.74.8.82)  0.282 ms 10.74.8.86 (10.74.8.86)  0.264 ms 10.74.8.84 (10.74.8.84)  0.244 ms
 8  10.74.9.191 (10.74.9.191)  0.540 ms  0.679 ms  1.018 ms
 9  10.34.49.65 (10.34.49.65)  0.209 ms  0.244 ms  0.227 ms
10  10.98.243.232 (10.98.243.232)  0.229 ms 10.98.243.236 (10.98.243.236)  0.295 ms 10.98.243.232 (10.98.243.232)  0.272 ms
11  149.56.58.38 (149.56.58.38)  0.204 ms  0.260 ms  0.322 ms
12  * * *
13  * * *
14  * * *
15  * * *
16  * * *

whois 149.56.58.38

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2023, American Registry for Internet Numbers, Ltd.
#



# start

NetRange:       149.56.0.0 - 149.56.255.255
CIDR:           149.56.0.0/16
NetName:        HO-2
NetHandle:      NET-149-56-0-0-1
Parent:         NET149 (NET-149-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   OVH Hosting, Inc. (HO-2)
RegDate:        2016-02-09
Updated:        2016-02-10
Ref:            https://rdap.arin.net/registry/ip/149.56.0.0



OrgName:        OVH Hosting, Inc.
OrgId:          HO-2
Address:        800-1801 McGill College
City:           Montreal
StateProv:      QC
PostalCode:     H3A 2N4
Country:        CA
RegDate:        2011-06-22
Updated:        2023-01-30
Ref:            https://rdap.arin.net/registry/entity/HO-2


OrgTechHandle: NOC11876-ARIN
OrgTechName:   NOC
OrgTechPhone:  +1-855-684-5463 
OrgTechEmail:  noc@ovh.net
OrgTechRef:    https://rdap.arin.net/registry/entity/NOC11876-ARIN

OrgAbuseHandle: ABUSE3956-ARIN
OrgAbuseName:   Abuse
OrgAbusePhone:  +1-855-684-5463 
OrgAbuseEmail:  abuse@ovh.ca
OrgAbuseRef:    https://rdap.arin.net/registry/entity/ABUSE3956-ARIN

# end


# start

NetRange:       149.56.48.0 - 149.56.63.255
CIDR:           149.56.48.0/20
NetName:        OVH-DEDICATED-149-56-48-NET
NetHandle:      NET-149-56-48-0-1
Parent:         HO-2 (NET-149-56-0-0-1)
NetType:        Reassigned
OriginAS:       AS16276
Organization:   OVH Hosting, Inc. (HO-2)
RegDate:        2016-07-29
Updated:        2016-07-29
Comment:        OVH-DEDICATED-149-56-48-NET
Ref:            https://rdap.arin.net/registry/ip/149.56.48.0



OrgName:        OVH Hosting, Inc.
OrgId:          HO-2
Address:        800-1801 McGill College
City:           Montreal
StateProv:      QC
PostalCode:     H3A 2N4
Country:        CA
RegDate:        2011-06-22
Updated:        2023-01-30
Ref:            https://rdap.arin.net/registry/entity/HO-2


OrgTechHandle: NOC11876-ARIN
OrgTechName:   NOC
OrgTechPhone:  +1-855-684-5463 
OrgTechEmail:  noc@ovh.net
OrgTechRef:    https://rdap.arin.net/registry/entity/NOC11876-ARIN

OrgAbuseHandle: ABUSE3956-ARIN
OrgAbuseName:   Abuse
OrgAbusePhone:  +1-855-684-5463 
OrgAbuseEmail:  abuse@ovh.ca
OrgAbuseRef:    https://rdap.arin.net/registry/entity/ABUSE3956-ARIN

# end



#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2023, American Registry for Internet Numbers, Ltd.
#

Does this indicate that I am being blocked by OVH?

1 Like

Asking them is good place to start. Are they your ISP or hosting service?

Have you checked that your public IP matches what is in the public DNS?

Try this from your server and make sure the value returned is 192.99.247.46:

curl -4 ifconfig.io
curl -6 ifconfig.io

The -6 will probably not return a result in your case (it's for IPv6)

3 Likes

"Asking them is good place to start. Are they your ISP or hosting service?"

Yes, OVH is my hosting service provider

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.