Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
Failed authorization procedure. fancytank.com (http-01): urn:ietf:params:acme:error:connection :: The server could not connect to the client to verify the domain
V - ConnectFailure - Unable to connect to the remote server
My web server is (include version): Apache/2.4.38
The operating system my web server runs on is (include version): Raspbian GNU/Linux 10 (buster)
My hosting provider, if applicable, is: hosting.kr
I can login to a root shell on my machine (yes or no, or I don't know): yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): certbot 0.31.0
I was trying to renew my SSL certificate but keep failing.
I can connect my site through just "http", but everytime I try to use certbot, it keep telling me the errors above. I don't understand why.
I checked my ufw status, the ports 80, 443, and the other ports for port forwarding are also opened.
What am I missing here?
Could anyone help me to find my mistakes here? Please..I am spending over a week to figure out
Maybe Apache is at it again... [high probability] Apache is notorious for running at all cost.
Please confirm all is in order with: sudo apachectl -t -D DUMP_VHOSTS
[if you are unsure, just post the output here]
AH00558: apache2: Could not reliably determine the server's fully qualified domain name, using 127.0.1.1. Set the 'ServerName' directive globally to suppress this message
VirtualHost configuration:
*:80 127.0.1.1 (/etc/apache2/sites-enabled/000-default.conf:1)
*:8080 is a NameVirtualHost
default server fancytank.com (/etc/apache2/sites-enabled/001-fancytank.com.conf:3)
port 8080 namevhost fancytank.com (/etc/apache2/sites-enabled/001-fancytank.com.conf:3)
port 8080 namevhost thrive.fancytank.com (/etc/apache2/sites-enabled/002-thrive.fancytank.com.conf:3)
port 8080 namevhost blog.fancytank.com (/etc/apache2/sites-enabled/003-blog.fancytank.com.conf:3)
Does it say like I should set the 'ServerName' in the configuration file?
I am confused because I set it already.
Sorry. I just ran the second one. This time, I copy and paste it.
And this is the result.
usage: certbot [SUBCOMMAND] [options] [-d DOMAIN] [-d DOMAIN] ... Certbot can obtain and install HTTPS/TLS/SSL certificates. By default, it will attempt to use a webserver both for obtaining and installing the certificate. certbot: error: unrecognized arguments: --https-port 8081
usage: certbot [SUBCOMMAND] [options] [-d DOMAIN] [-d DOMAIN] ... Certbot can obtain and install HTTPS/TLS/SSL certificates. By default, it will attempt to use a webserver both for obtaining and installing the certificate. certbot: error: unrecognized arguments: --https-port 8081
Please follow my instructions more closely.
I did not ask for you to try to connect to the site securely - that is not yet possible.
We've only taken some small steps. You must learn to walk before you can run.
Please show the outputs of: certbot certificates sudo apachectl -t -D DUMP_VHOSTS
AH00558: apache2: Could not reliably determine the server's fully qualified domain name, using 127.0.1.1. Set the 'ServerName' directive globally to suppress this message
VirtualHost configuration:
*:80 127.0.1.1 (/etc/apache2/sites-enabled/000-default.conf:1)
*:443 fancytank.com (/etc/apache2/sites-enabled/001-fancytank.com-le-ssl.conf:2)
*:8080 is a NameVirtualHost
default server fancytank.com (/etc/apache2/sites-enabled/001-fancytank.com.conf:3)
port 8080 namevhost fancytank.com (/etc/apache2/sites-enabled/001-fancytank.com.conf:3)
port 8080 namevhost thrive.fancytank.com (/etc/apache2/sites-enabled/002-thrive.fancytank.com.conf:3)
port 8080 namevhost blog.fancytank.com (/etc/apache2/sites-enabled/003-blog.fancytank.com.conf:3)