Hello @Rayner, welcome to the Let's Encrypt community.
Using the online tool Let's Debug yields these results for the HTTP-01 challenge https://letsdebug.net/mdm.qmoss.eu/1556231
mdm.qmoss.eu has an A (IPv4) record (220.127.116.11) but a request to this address over port 80 did not succeed. Your web server must have at least one working IPv4 or IPv6 address.
A timeout was experienced while communicating with mdm.qmoss.eu/18.104.22.168: Get "http://mdm.qmoss.eu/.well-known/acme-challenge/letsdebug-test": context deadline exceeded
@0ms: Making a request to http://mdm.qmoss.eu/.well-known/acme-challenge/letsdebug-test (using initial IP 22.214.171.124)
@0ms: Dialing 126.96.36.199
@10001ms: Experienced error: context deadline exceeded
A test authorization for mdm.qmoss.eu to the Let's Encrypt staging service has revealed issues that may prevent any certificate for this domain being issued.
188.8.131.52: Fetching http://mdm.qmoss.eu/.well-known/acme-challenge/W-LYgh-J-W5MJGpd9A-XXs6r-9bD0nLcyzXTSjba3ac: Timeout during connect (likely firewall problem)
nmap show Port 80 is not Open which is a requirement for the HTTP-01 challenge of the Challenge Types - Let's Encrypt
Possibly a firewall issue.
$ nmap -Pn -p80,443 mdm.qmoss.eu
Starting Nmap 7.80 ( https://nmap.org ) at 2023-07-20 07:45 PDT
Nmap scan report for mdm.qmoss.eu (184.108.40.206)
Host is up.
PORT STATE SERVICE
80/tcp filtered http
443/tcp filtered https
Nmap done: 1 IP address (1 host up) scanned in 4.20 seconds
Best Practice - Keep Port 80 Open
Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is:
I ran this command:
It produced this output:
My web server is (include version):
The operating system my web server runs on is (include version):
My hosting provider, if applicable, is:
I can login to a root shell on my machine (yes or no, or I don't know):
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
The version of my client is (e.g. output of
certbot --version or
certbot-auto --version if you're using Certbot):
Thank you for assisting us in helping YOU!