My setup: CENTOS home server. Server is modem/router > has two NICs/firewalls: internal and external
I requested SSL certificate from letsencrypt and installed it correctly.
When I surf to some of the webpages I get the green ‘Secure’ (all these webpages start with https://www.mydomain/service e.g. piwigo, a CRM, webmail
When I serve to other webpages though I get errors: ERR_SSL_PROTOCOL_ERROR, ERR_CONNECTION_CLOSED. (e.g. media server emby)
Interesting enough, addresses of these webpages have the following format: https://www.mydomain:port
Any idea of what could be wrong?
Overall rating Qualys shows an A+
digicert report says
DNS resolves mydomain
SSL certioficate valid
SSL certificate has not been revoked
Certificate Name matches
Let’s Encrypt certificate
Certificate: Valid
This certificate is for the following purpose:
Ensures the identity of a remote computer
Proves your identity to a remote computer
2.23.140.1.2.1
1.3.6.1.4.1.44947.1.1.1
Sounds like your issue is that when you specify a port, you're hitting a different service (i.e. not your web server with the certificate installed.) You probably need to tell whatever software is serving on those ports about your certificate, and make sure they're properly configured for SSL/TLS. It sounds like they might be speaking HTTP when you're trying to connect to them over HTTPS.
You posted this in "Server" instead of "Help" (I moved it), so you didn't see the following, but answers to these questions would be helpful:
Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is:
I ran this command:
It produced this output:
My web server is (include version):
The operating system my web server runs on is (include version):
My hosting provider, if applicable, is:
I can login to a root shell on my machine (yes or no, or I don't know):
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
Sounds like your issue is that when you specify a port, you’re hitting a different service (i.e. not your web server with the certificate installed.).
Answer:: This is somewhat true in one case. I host the media server myself, but https goes sonehow via Plex. At least their certificate pops up in my browser. I am in contact with them.
This is not true for the case …wo-lar.com:81 this is a self-hosted service