So i have got 2 vm's one is running gitlab fgit server configured with http and ufw as firewall.
the other server is my reverseproxy running nginx
both vm's have ufw enabled as main firewall: both have port 80 and 443 allowed ipv4 and ipv6.
My gitlab is configured over http while my connection to the outside is https.
At this moment i usally ask my certificate using certbot and letsencrypt over dns chanllengen, however i'd like to get it in my reverse proxy as this is simpler and using it with auto renew.
However when i run the command: sudo certbot --nginx or (-d git.timclinckemalie.me) i stil l get connection refused.
my domain: git.timclinckemalie.me (should be accesible with http and https) however at this very moment my cert is expired.
both vm's are running ubuntu 18.04.4
my reverseproxy is running nginx 1.14.0
since the website is working both firewall router and dns should be correct i assume.
altough when using certbot --nginx
the output is always liek http://git.timclinckemalie.me/.well-known/acme-challenge. since the server is a reverseproxy and does not have any files on webroot what does it check?
How can i get this to work?
I used these resources: