Does auto-update need any other port then 80/443?


#1

I have a simple ubuntu 14.04 server with a pretty default firewall, allowing 80/443 and some other ports.

Problem is, if the firewall is enabled, letsencrypt-auto says:

WARNING: unable to check for updates.

and requesting/renewing certificates doesn’t work (I use virtualmin for this).

as soon as I disable the firewall, everything is fine.

root@:/opt/letsencrypt# iptables -L |grep http
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:http
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:https
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:http
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:https

#2

Does the firewall block outbound ?


#3

Yes. (But not port 80/443 as you can see from the iptables copy/paste in my post)


#4

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.