Could not create a certificate for Draytek DDNS.Error: "Connect acme server failed"

My domain is: tedsmarthome.drayddns.com

I am using a Draytek Vigor 2926 router and created a DrayDDNS domain to access to my router from internet. I want to have the SSL certificate for this DDNS domain to avoid browser's security warning everytime I connect to it. Everything is ok except when I request to have a Let's Encrypt certificate, I got error "Connect acme server failed". Pls see the log below. So please help me to get the certificate in this situation. Thank you.

1 Like

I'm not familiar with that router, but that kind of message sounds like it's having trouble connecting to the Let's Encrypt servers. Does it have some kind of outbound firewall, or maybe have trouble resolving DNS? Is it somehow possible to test if your router can access https://acme-v02.api.letsencrypt.org/directory, maybe from some sort of console?

(The other possibility is that it's trying to connect to the old ACME v1 API which is shut down for this week, but then I think it'd be getting an error message rather than a request timeout, so I don't think that's the case.)

Hopefully somebody actually familiar with that router can chime in.

2 Likes

I still can connect to the URL you sent. It showed as below.

1 Like

Is that connecting from the router itself? I'm wondering not about your systems behind the router, but about if the router itself can connect. Since that error message makes it sound to me like it can't. But again, I'm guessing a lot from that "ERR_REQUEST_TIMEOUT" and I'm not really familiar with that router.

1 Like

Can you confirm with Draytek that they support acme v2? I think it's much more likely that this is because v1 of the Let's Encrypt API is no longer supported and is currently down. https://acme-v01.api.letsencrypt.org/directory

If they don't support acme v2 then you'll need to look for an alternative way to get and apply your certificate.

2 Likes

I submitted a ticket to Draytek to ask about this issue. I will update to you after I have their response. Thank you :slight_smile:

2 Likes

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.