Enabling IPV6 on CertBot

Hi everyone.
I am trying to host a BitWarden server using Docker on a Raspberry Pi
Manual - Install Bitwarden on Raspberry Pi: The ultimate guide – RaspberryTips
It needs HTTPS to work
My IPv4 has CGNAT so I can only use IPv6
I have already posted this on letsencrypt reddit - [Reddit - Dive into anything]

Down below you can see the result of my command
Thanks

CertBot Version - 2.1.0
Docker Version - 27.1.1, build 6312585

My domain is: bitwarden.webhop.me (Using No-IP)

I ran this command: sudo certbot certonly -d bitwarden.webhop.me

It produced this output:Saving debug log to /var/log/letsencrypt/letsencrypt.log

How would you like to authenticate with the ACME CA?


1: Spin up a temporary webserver (standalone)
2: Place files in webroot directory (webroot)


Select the appropriate number [1-2] then [enter] (press 'c' to cancel): 1
Requesting a certificate for bitwarden.webhop.me

Certbot failed to authenticate some domains (authenticator: standalone). The Certificate Authority reported these problems:
Domain: bitwarden.webhop.me
Type: connection
Detail: 49.36.114.218: Fetching http://bitwarden.webhop.me/.well-known/acme-challenge/TwuWrfT3GsfXcSSyDMsHGFwbPBw6d9EMOhcQQNyHRtA: Timeout during connect (likely firewall problem)

Hint: The Certificate Authority failed to download the challenge files from the temporary standalone webserver started by Certbot on port 80. Ensure that the listed domains point to this machine and that it can accept inbound connections from the internet.

Some challenges have failed.
Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details.
-x-x-x-x-x-x-x-x-x-
My web server is (include version): Docker????

The operating system my web server runs on is : (Debian) Linux version 6.6.44-v8+:

My hosting provider, if applicable, is: My Raspberry Pi 5 4GB

I can login to a root shell on my machine : Yes

I'm using a control panel to manage my site: No

The version of my client is : 2.1.0

1 Like

Welcome to the Let's Encrypt Community! :slightly_smiling_face:

You can't "enable IPv6 on certbot" because certbot is your ACME client software, not the CA, which is Let's Encrypt. In order for Let's Encrypt to use an IPv6 address for an HTTP-01 challenge, the public DNS zone for the domain name being validated must have a valid AAAA record containing your IPv6 address.

5 Likes

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.