echo | openssl s_client -connect acme-v02.api.letsencrypt.org:443 | head
write:errno=104
CONNECTED(00000003)
---
no peer certificate available
---
No client certificate CA names sent
---
SSL handshake has read 0 bytes and written 289 bytes
---
New, (NONE), Cipher is (NONE)
Secure Renegotiation IS NOT supported
curl https://www.cloudflare.com/cdn-cgi/trace curl: (35) TCP connection reset by peer
curl https://google.com
<HTML><HEAD><meta http-equiv="content-type" content="text/html;charset=utf-8">
<TITLE>301 Moved</TITLE></HEAD><BODY>
<H1>301 Moved</H1>
The document has moved
<A HREF="https://www.google.com/">here</A>.
</BODY></HTML>
Im not getting a captcha from my pc, however its not on the same network as the hosting server, not sure how to check command line if get one on remote server
I was hoping you had a browser on the failing IP. At least some Cloudflare blocks will apparently show you a Captcha screen where you can prove you are a nice human and not a bad bot.
I understand if you don't have a browser on the server though.
The failing connect to Cloudflare likely means it is not a Let's Encrypt problem. Except of course that LE uses Cloudflare so you can't get to LE.
I'm not sure what to do. Hopefully another volunteer will. Maybe Rudy.
I'd guess it's just that the IP is blocked, or it previously did something to flag itself as a bot to Cloudflare. Just try a different CA (like ZeroSSL or BuyPass Go).
Ok after involving my upstream peering ISP, and ssh tunnel proxy in and testing with a browser, looks like the upstream vendor is having some routing issues, They changed the way its routing and now it resolved and all my certs updated and connection reset is gone. Thanks you again all for the quick help