Challenge failed for domain

I have used https://check-your-website.server-daten.de/?q=lms.alanyahep.edu.tr but only saw Warning: No ipv6 address found. Port 80 and 443 is forwarded va NAT and opened in firewall.

My domain is:lms.alanyahep.edu.tr

I ran this command: sudo certbot --verbose --nginx -d lms.alanyahep.edu.tr

It produced this output:
Storing nonce: 0001mU0-z8vt05L7aehQLh9bttM3QGh3XyzEFslkiDoGDiA
Challenge failed for domain lms.alanyahep.edu.tr
http-01 challenge for lms.alanyahep.edu.tr
Reporting to user: The following errors were reported by the server:

Domain: lms.alanyahep.edu.tr
Type: connection
Detail: Fetching http://lms.alanyahep.edu.tr/.well-known/acme-challenge/OXYgAzk2brW_aZSIzwSs38jDlqmMW-eBzrq1x67r3-0: Timeout during connect (likely firewall problem)

To fix these errors, please make sure that your domain name was entered correctly and the DNS A/AAAA record(s) for that domain contain(s) the right IP address. Additionally, please check that your computer has a publicly routable IP address and that no firewalls are preventing the server from communicating with the client. If you're using the webroot plugin, you should also verify that you are serving files from the webroot path you provided.
Encountered exception:
Traceback (most recent call last):
File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 91, in handle_authorizations
self._poll_authorizations(authzrs, max_retries, best_effort)
File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 180, in _poll_authorizations
raise errors.AuthorizationError('Some challenges have failed.')
certbot.errors.AuthorizationError: Some challenges have failed.

My web server is (include version): ngnx 1.18

The operating system my web server runs on is (include version):ubuntu 20.04

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don't know): yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel): no

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): certbot 0.40.0

Thank you very much

1 Like

Hi @isural

an ipv6 isn't required. It's good to have one, but one ipv4 is ok.

Critical: Your timeouts:

Domainname Http-Status redirect Sec. G
http://lms.alanyahep.edu.tr/ 95.0.155.81 -14 10.030 T
Timeout - The operation has timed out
https://lms.alanyahep.edu.tr/ 95.0.155.81 -14 10.040 T
Timeout - The operation has timed out
http://lms.alanyahep.edu.tr/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de 95.0.155.81 -14 10.047 T
Timeout - The operation has timed out

Works http / port 80 internal?

curl http://lms.alanyahep.edu.tr/

from that machine?

If yes, it's a routing / firewall problem you have to fix.

If no, a working port 80 is required.

1 Like

Hi @JuergenAuer,

Thank you for your fast reply. Actually I can visit my test page http://lms.alanyahep.edu.tr/
port 80 is open why i get The operation has timed out?

can you verify my web page?
Thanks

1 Like

Your site might be accessible from your location, which might be your internal network, your regional network or your countries network, but it isn't accessible from Germany (@JuergenAuer's location) nor The Netherlands (mine).

However, even from a Turkish Looking Glass located in Istanbul, I'm getting timeouts.. That means the issue isn't global, but at the least regional, but more likely locally at your premise. Perhaps another firewall or NAT router?

The fact even the TurkTelecom Looking Glass only gives timeouts strongly suggests it's an issue at your premise.

2 Likes

Use online tools to check that.

If one online tool reports a timeout, Letsencrypt may see the same timeout.

2 Likes

Dear @Osiris & @JuergenAuer,

You have saved my time. I really get mad about this issue and saw that you are absolutely right. Somehow this web page is not reachable from outside of some regions.
We will investigate the problem.

Thank you so much
Regards,

1 Like

Just as a point of reference:
https://lms.alanyahep.edu.tr/ is serving a 503 error from US west coast.

1 Like

Indeed it does now :wink:

1 Like

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.