Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is: mdm.qmoss.eu
Our certificate for the name listed above will expire in 19 days (on 2023-08-09).
How can I do this?
To start by not removing the relevant questions from the questionnaire.
Hello @Rayner, welcome to the Let's Encrypt community. 
Using the online tool Let's Debug yields these results for the HTTP-01 challenge https://letsdebug.net/mdm.qmoss.eu/1556231
ANotWorking
Error
mdm.qmoss.eu has an A (IPv4) record (20.86.188.224) but a request to this address over port 80 did not succeed. Your web server must have at least one working IPv4 or IPv6 address.
A timeout was experienced while communicating with mdm.qmoss.eu/20.86.188.224: Get "http://mdm.qmoss.eu/.well-known/acme-challenge/letsdebug-test": context deadline exceeded
Trace:
@0ms: Making a request to http://mdm.qmoss.eu/.well-known/acme-challenge/letsdebug-test (using initial IP 20.86.188.224)
@0ms: Dialing 20.86.188.224
@10001ms: Experienced error: context deadline exceeded
IssueFromLetsEncrypt
Error
A test authorization for mdm.qmoss.eu to the Let's Encrypt staging service has revealed issues that may prevent any certificate for this domain being issued.
20.86.188.224: Fetching http://mdm.qmoss.eu/.well-known/acme-challenge/W-LYgh-J-W5MJGpd9A-XXs6r-9bD0nLcyzXTSjba3ac: Timeout during connect (likely firewall problem)
And with nmap show Port 80 is not Open which is a requirement for the HTTP-01 challenge of the Challenge Types - Let's Encrypt
Possibly a firewall issue.
$ nmap -Pn -p80,443 mdm.qmoss.eu
Starting Nmap 7.80 ( https://nmap.org ) at 2023-07-20 07:45 PDT
Nmap scan report for mdm.qmoss.eu (20.86.188.224)
Host is up.
PORT STATE SERVICE
80/tcp filtered http
443/tcp filtered https
Nmap done: 1 IP address (1 host up) scanned in 4.20 seconds
Best Practice - Keep Port 80 Open
Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is:
I ran this command:
It produced this output:
My web server is (include version):
The operating system my web server runs on is (include version):
My hosting provider, if applicable, is:
I can login to a root shell on my machine (yes or no, or I don't know):
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):
Thank you for assisting us in helping YOU!
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.