My domain is: zeronc.ddns.net
I ran this command: sudo certbot renew
It produced this output: {
"identifier": {
"type": "dns",
"value": "zeronc.ddns.net"
},
"status": "invalid",
"expires": "2024-07-28T10:19:07Z",
"challenges": [
{
"type": "http-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall-v3/379883362717/bcafZg",
"status": "invalid",
"validated": "2024-07-21T10:19:11Z",
"error": {
"type": "urn:ietf:params:acme:error:connection",
"detail": "47.14.19.123: Fetching http://zeronc.ddns.net/.well-known/acme-challenge/VU8XOyOQFwuR4dWBsn6ZZXiSxsJsGK7PFi-VRLrIiqk: Timeout during connect (likely firewall problem)",
"status": 400
},
"token": "VU8XOyOQFwuR4dWBsn6ZZXiSxsJsGK7PFi-VRLrIiqk",
"validationRecord": [
{
"url": "http://zeronc.ddns.net/.well-known/acme-challenge/VU8XOyOQFwuR4dWBsn6ZZXiSxsJsGK7PFi-VRLrIiqk",
"hostname": "zeronc.ddns.net",
"port": "80",
"addressesResolved": [
"47.14.19.123"
],
"addressUsed": "47.14.19.123"
}
]
}
]
}Domain: zeronc.ddns.net
Type: connection
Detail: 47.14.19.123: Fetching http://zeronc.ddns.net/.well-known/acme-challenge/VU8XOyOQFwuR4dWBsn6ZZXiSxsJsGK7PFi-VRLrIiqk: Timeout during connect (likely firewall problem)
My web server is (include version): Apache Server version: Apache/2.4.61 (Debian)
Server built: 2024-07-07T12:53:54
The operating system my web server runs on is (include version): Linux nextcloudpi 6.1.21-v8+
My hosting provider, if applicable, is: me
I can login to a root shell on my machine (yes or no, or I don't know): yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel): no
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you're using Certbot): certbot 1.12.0
I am new to certbot and RPI, but not linux. It seems I need port 80 open to renew my cert, but when I go to my site, i get the following " zeronc.ddns.net has a security policy called HTTP Strict Transport Security (HSTS), ..."
Do i need 80 for certbot to work? I could have sworn this had been working but I have not been running it all that long. If so, I need to disable HSTS I imagine? How do I do that?