My (faulty?) domain is: ebnh.fr.eu.org
I ran this command: certbot renew --dry-run
It produced this output:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Processing /etc/letsencrypt/renewal/ebnh.fr.eu.org.conf
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Cert is due for renewal, auto-renewing...
Plugins selected: Authenticator standalone, Installer None
Simulating renewal of an existing certificate for ebnh.fr.eu.org and www.ebnh.fr.eu.org
Performing the following challenges:
http-01 challenge for ebnh.fr.eu.org
http-01 challenge for www.ebnh.fr.eu.org
Cleaning up challenges
Failed to renew certificate ebnh.fr.eu.org with error: Problem binding to port 80: Could not bind to IPv4 or IPv6.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Processing /etc/letsencrypt/renewal/huc.fr.eu.org.conf
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Cert not due for renewal, but simulating renewal for dry run
Plugins selected: Authenticator standalone, Installer None
Running pre-hook command: rcctl stop nginx
Output from pre-hook command rcctl:
nginx(ok)
Simulating renewal of an existing certificate for huc.fr.eu.org and 3 more domains
Performing the following challenges:
http-01 challenge for doc.huc.fr.eu.org
http-01 challenge for huc.fr.eu.org
http-01 challenge for jw.huc.fr.eu.org
http-01 challenge for www.huc.fr.eu.org
Waiting for verification...
Cleaning up challenges
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
new certificate deployed without reload, fullchain is
/etc/letsencrypt/live/huc.fr.eu.org/fullchain.pem
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Processing /etc/letsencrypt/renewal/stephane-huc.net.conf
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Cert not due for renewal, but simulating renewal for dry run
Plugins selected: Authenticator standalone, Installer None
Pre-hook command already run, skipping: rcctl stop nginx
Simulating renewal of an existing certificate for stephane-huc.net and 2 more domains
Performing the following challenges:
http-01 challenge for ns1.stephane-huc.net
http-01 challenge for stephane-huc.net
http-01 challenge for www.stephane-huc.net
Waiting for verification...
Cleaning up challenges
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
new certificate deployed without reload, fullchain is
/etc/letsencrypt/live/stephane-huc.net/fullchain.pem
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
The following simulated renewals succeeded:
/etc/letsencrypt/live/huc.fr.eu.org/fullchain.pem (success)
/etc/letsencrypt/live/stephane-huc.net/fullchain.pem (success)
The following simulated renewals failed:
/etc/letsencrypt/live/ebnh.fr.eu.org/fullchain.pem (failure)
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Running post-hook command: rcctl start nginx
Output from post-hook command rcctl:
nginx(ok)
1 renew failure(s), 0 parse failure(s)
My web server is (include version): nginx/1.18.0
The operating system my web server runs on is (include version): OpenBSD 6.9
My hosting provider, if applicable, is: @home
I can login to a root shell on my machine (yes or no, or I don't know): yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel): none
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you're using Certbot): certbot 1.13.0
Hi, normaly, for my 3 domains (stephane-huc.net, huc.fr.eu.org and ebnh.fr.eu.org) on my host, I renew the certs by the command:
/usr/local/bin/certbot renew --pre-hook "rcctl stop nginx" --post-hook "rcctl start nginx"
All my domains have a webservice functionnal, configured exactly by the same method, and reply on ports 80, 443 too.
But, for the domain ebnh.fr.eu.org, certbot cant connect on, and refuse to renew certs.
Any idea? or, suggestion?