Error getting validation data

Schamschula · January 13, 2026, 4:20pm

This was the same command as before.

However, the too frequent requests may be a clue. I've run into that once before, and made changes to avoid that. However, doing manual testing may well have exceeded the limit.

Schamschula · January 13, 2026, 4:25pm

Yes, when I'm not actually running the certbot command, my local firewall blocks bad CIDRs. As I mentioned earlier ipfw is stoped when a certbot challenge is performed. It has since been restarted giving predictable results. nginx also normally blocks the majority of the internet (i.e. places I would not try to access my server from). However, I have disabled the nginx ip block list until I find some solution to my cert renewal issue.

MikeMcQ · January 13, 2026, 4:32pm

If you show us the full output from the command we can help interpret the results.

Schamschula · January 25, 2026, 4:48pm

As this server is for personal use, I threw in the towel and generated a self signed certificate.

This is unfortunate, as I had successfully used certbot on this machine for many years and have been maintaining the MacPorts certbot port (before switching to new hardware and FreeBSD, my previous server was running macOS).

linkp · January 25, 2026, 5:14pm

Have you considered moving to a DNS-01 challenge?

Schamschula · January 25, 2026, 5:45pm

No. I was not familiar with that option.

A quick look at the list of providers who integrate with Let's Encrypt validation showed that my DNS provider was not there. It's a bit strange, as I have Dreamhost provide Let's Encrypt certificates for the sites I host there.

MikeMcQ · January 25, 2026, 5:59pm

Which list did you look at?

Because while I don't see Dreamhost supported by Certbot there are many other ACME Clients you can use.

This one, for example, supports Dreamhost: DNS Providers :: Let’s Encrypt client and ACME library written in Go.

As does this one: acme.sh/dnsapi/dns_dreamhost.sh at master · acmesh-official/acme.sh · GitHub

If you are skilled at writing scripts you could use Certbot with its --pre-hook and --post-hook to add and delete the needed TXT records. But, it is much easier to use a client that supports it already.

Schamschula · January 25, 2026, 6:10pm

I looked at DNS providers who easily integrate with Let's Encrypt DNS validation

However, this is issue is regarding my home server, which only has forward DNS, as it's on Mediacom cable.

system · February 24, 2026, 6:10pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Challenges failed for renewal Help	27	3383	July 30, 2022
Cert Renew Fail Help	19	1386	February 22, 2021
Certbot Renewal Fails Unauthorized Help	9	6684	December 5, 2021
Certbot renewal fails with "The client lacks sufficient authorization" error Help	2	4708	July 30, 2017
Unable to renew cert using nginx plugin, fresh cert creation succeeds Help	9	6015	November 8, 2019

Error getting validation data

Related topics