Last April, I asked for a HTTPS certificate "Let's Encrypt" for my application.
I installed a script to renew it autommatically.
Since April, I had no problem until last week and my HTTPS certificate has been renewed successfully.
Problem: My application is still reachable by my IP Adress but the redirection of my domain name to my IP Adress doesn't work anymore. I have no clue why.
When I check on: https://www.ssllabs.com/ssltest/index.html with my domain name, I have this error: Assessment failed: Unable to connect to the server (but the result still return my IP Adress).
When I check on: https://crt.sh/, I have my certificate who is valid unitl 26th of November: Validity Not Before: Aug 28 23:00:25 2020 GMT Not After : Nov 26 23:00:25 2020 GMT
Any clue where the problem can be ? What can I check to locate the problem ?
The problem is problably due to:
My port HTTPS is active on AWS.
How can I know on my server if I use a certificate or not ?
*Edit: My certificate was used during some months and renewed successfully as well more than 1 time.
Maybe a problem happened while my script was executed to renew my certificate (I stop and start my apache server)?
I don't think that will change anything, but if you can, sure.
I would focus on any firewalls along the way.
Then if that is all open, ensure that port 443 is actually listening on your server:
Show: netstat -pant | grep -i listen
I'm still getting:
curl -Iki https://promis2.laophenixconsulting.com/
curl: (7) Failed to connect to promis2.laophenixconsulting.com port 443: Connection refused
[&2* readers: Get involved; Be heard. It starts with: if you read something you like, then like it ]
My config indicate that my web server should listen the 443 port, right ?
I used for some months already my HTTPS port and I didn't touch about my config, I don't see why it goes down.
@rg305, I'm not sure if this could be a reason, but do you remember one user who is using AWS and several of his IPs stopped working? AWS was dropping packets which made it seem like it was a firewall blocking. In the last post (#6) the user included a reply from AWS.
To quote from end of his post:
Quoting from aws support:
"With the size and scale of AWS, traffic from different IPs can take different routes within the AWS network and a routing issue could cause a packet drop which looks very similar to a firewall that simply drops denied packets"
In the first picture I see <IfVersion 2.3 > around your NameVirtualHosts, which seems a very strange choice, but according to your web server it's running
Apache/2.4.18
which is the apache2 package version for Ubuntu 18.04.
I suggest you remove the <IfVersion 2.3 >condition.
While I doubt that an update of the Ubuntu apache2 package from 2.3 to 2.4 was what changed your working configuration, since 2.4 has been the apache2 version since at least 14.04, the non-default path you show suggests that this is a bundled httpd which may have been updated.
Okay @AJCxZ0, I removed my <IfVersion 2.3> condition for my appache config.
I restart as well my AWS server ... but still the same problem.
My application is reachabled by the port 80, but not the port 443. I don't knwo what to do now. Any suggestion ?