velbon
February 8, 2022, 2:17pm
1
Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com ), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is: https://crt.sh/?q=vaccines.mohs.gov.sl
I ran this command: Click on issue
It produced this output:
My web server is (include version):
The operating system my web server runs on is (include version):
My hosting provider, if applicable, is:
I can login to a root shell on my machine (yes or no, or I don't know): NO
I'm using a control panel to manage my site (no, or provide the name and version of the control panel): YES
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you're using Certbot):
rg305
February 8, 2022, 5:16pm
2
Hi @velbon and welcome to the LE community forum
I get:
curl -Ii www.vaccines.mohs.gov.sl
HTTP/1.1 404 Not Found
content-length: 163
content-type: text/html
date: Tue, 08 Feb 2022 17:14:31 GMT
server: Fix Solution
curl -i www.vaccines.mohs.gov.sl
HTTP/1.1 404 Not Found
content-length: 163
content-type: text/html
date: Tue, 08 Feb 2022 17:14:36 GMT
server: Fix Solution
<html><head><title>404 Not Found</title></head> <body><center><h1>404 Not Found</h1> </center><hr><center><b>Fix Solution</b> load balancer</center></body> </html>
Which shows the sites aren't accessible and are behind a load balancer.
1 Like
velbon
February 9, 2022, 1:39pm
3
Dear rg305
Can you try again? We have done some workaround but the SSL certificate still has some issues.
rg305
February 9, 2022, 1:41pm
4
Better now:
curl -Ii www.vaccines.mohs.gov.sl
HTTP/1.1 200 OK
etag: "4cec4-jcWNWjNX1kjBmqmm+I+TpURibJU"
content-type: text/html; charset=utf-8
accept-ranges: none
content-length: 315076
vary: Accept-Encoding
date: Wed, 09 Feb 2022 13:40:30 GMT
server: Fix Solution
Now you should place a sample text file in the expected challenge location.
Something like:
http://www.vaccines.mohs.gov.sl/.well-known/acme-challenge/Test_File-1234
And then see if it can be reached from the Internet.
1 Like
velbon
February 9, 2022, 1:43pm
5
@rg305 ,
We have done that and it can be reached. Kindly try http://vaccines.mohs.gov.sl
rg305
February 9, 2022, 1:48pm
6
Not exactly sure what you mean by "try"...
But I get this:
curl -Ii vaccines.mohs.gov.sl
HTTP/1.1 200 OK
etag: "4cec4-jcWNWjNX1kjBmqmm+I+TpURibJU"
content-type: text/html; charset=utf-8
accept-ranges: none
content-length: 315076
vary: Accept-Encoding
date: Wed, 09 Feb 2022 13:47:55 GMT
server: Fix Solution
1 Like
rg305
February 9, 2022, 1:51pm
7
Have you tried to obtain a new cert since?
1 Like
velbon
February 9, 2022, 1:53pm
8
Dear rg305,
I am sure you asking to test through the browser whether there is a landing page. I am confirming now that the landing is existing and it is OK.
velbon
February 9, 2022, 1:55pm
9
Dear rg305,
I already tried again and it is still not OK. Should I uninstall the self-assigned certificates and try again?
rg305
February 9, 2022, 2:59pm
10
HTTPS is "broken", no certificate is being served.
As confirmed by:
SSL Server Test: vaccines.mohs.gov.sl (Powered by Qualys SSL Labs)
1 Like
velbon
February 11, 2022, 3:00am
11
Dear @rg305 ,
What is the fix for it since I am pointing the server with IP 34.136.194.239 to the sub-domain vaccines.mohs.gov.sl and expect it to have a certificate? I already checked using the debug and it says everything is OK
1 Like
rg305
February 11, 2022, 3:06am
13
velbon:
vaccines.mohs.gov.sl
Sorry, I was under the impression that you were able to obtain a cert and are having trouble using it.
But it seems you are still trying to get a cert (via cPanel).
Are there any firewalls/IPS/Load-balancers inline?
[anything that could intercept HTTP]
1 Like
velbon
February 11, 2022, 4:16am
14
Dear rg305,
The is a Load-balancer inline
rg305
February 11, 2022, 4:41am
15
I would check the logs there.
1 Like
system
Closed
March 13, 2022, 4:41am
16
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.