Could not connect to server


#1

I know there is multiple of threads with this problem, but after nearly 6 hours of trying getting certificate from le I give up and asking for help:

Basically I only need certificate for email server and roundcube. I have port 80 and 443 open and I can see that packets flowing through router. I can get to default website through browser, everything is working fine, until I try to use LE.

I have installed apache (but I’m getting same errors with standalone).

Right now I minimized command to:
letsencrypt certonly --webroot -w /var/www/html -d mbox.{domain}.net --test-cert

from this I get:

Failed authorization procedure. mbox.{domain}.net (http-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Could not connect to http://mbox.{domain}.net/.well-known/acme-challenge/HYRu-MGFt0vL46aNen1j8XNz50b-IAJ0OgRxZXjhb2E

If I put something to /var/www/html/.well-known/acme-challenge/ …
I can access it just fine through web browser: http://mbox.{domain}.net/.well-known/acme-challenge/ …

If I change to
./certbot-auto certonly --apache -d mbox.{domain}.net --test-cert

I get:

Failed to connect to {IP}:443 for TLS-SNI-0
but again, I can access web page through this IP:443 without problem.

I just cant figure out what is wrong, firstly I thought that is something wrong with my apache config. But because same thing is happening with standalone mode, I’m not so sure anymore.

System: Ubuntu 16.04 runing as CT on Proxmox.

Please can someone try to point me right direction? Thanks!


#2

can a general request from anywhere on the internet get through your router to the server on port 443 (https ) ?

Are you happy to provide your domain name for us to test ?


#3

I tested some other things and it all started to act weird, I can connect to my server through domain with only Edge (Browser), chrome and opera both end up redirected to default domain root. But if I check some other world dns servers, they all seams to point do the right IP.

I wil PM you domain, as I don’t want to put it publicly on forum.


#4

OK. It does sound as if that “weirdness” is probably what stopped LE connecting to your domain to verify it.


#5

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.