So I see, the webserver is accessible, the challenge was created and accessed by letsencrypt. I checked with Wireshark, it’s the correct file sent out. Seems to be no firewall or DNS issue. There is no AAAA record, A only.
Additionally, Let’s Encrypt connects from multiple sources to increase the barrier for malicious issuance by attackers who are able to modify network routes from some locations. It’s possible something is blocking one of these other attempts.
If you would completely fill out the questionnaire presented when you created this topic, it would help us provide better support. At a minimum, knowing your real domain name and a bit about your infrastructure (e.g. behind Cloudflare, VPS on some hosting provider, your own hardware) would help us greatly. Without that, we’re just wasting your time and ours stabbing in the dark.
Thank you for your support. There is no questionnaire presented when I create a topic. So I do not know which details could be important or helpful.
Edit: Additionaly tested to deactivate iptables at all, renewal was successful. There are four IP addresses attempting to connect to my server. Three of them were blocked by iptables.