./letsencrypt-auto --apache -d "Failed to connect to 195.20.46.185:443 for TLS-SNI-01"


#1

Please fill out the fields below so we can help you better.

My domain is: zethago.tk

I ran this command: ./letsencrypt-auto --apache -d zethago.tk

It produced this output: Requesting root privileges to run certbot…
/home/erick/.local/share/letsencrypt/bin/letsencrypt --apache -d zethago.tk
Failed authorization procedure. zethago.tk (tls-sni-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Failed to connect to 195.20.46.185:443 for TLS-SNI-01 challenge

IMPORTANT NOTES:

  • The following errors were reported by the server:

    Domain: zethago.tk
    Type: connection
    Detail: Failed to connect to 195.20.46.185:443 for TLS-SNI-01
    challenge

My operating system is (include version): Linux Mint 18

My web server is (include version): Apache 2.4.18

My hosting provider, if applicable, is: http://www.dot.tk

I can login to a root shell on my machine (yes or no, or I don’t know): Yes.

I’m using a control panel to manage my site (no, or provide the name and version of the control panel): No.


#2

Have you got a firewall or anything that could be blocking access to 195.20.46.185:443 from the internet ?


#3

Linux mint comes with ufw firewall, which I add ‘in’ access.

$ sudo ufw app list
Available applications:
Apache
Apache Full
Apache Secure
CUPS

$ sudo ufw app info "Apache Full"
Profile: Apache Full
Title: Web Server (HTTP,HTTPS)
Description: Apache v2 is the next generation of the omnipresent Apache web
server.

Ports:
80,443/tcp

Please note that I can use curl, and get html content.

$ curl http://www.zethago.tk

Please also note that I am currently experiment this apache server on my laptop, which I would turn it off sometime.

Thank you so much for your help.


#4

http is port 80

the error / issue is regarding https ( port 443). using curl I can access http://www.zethago.tk but not https://www.zethago.tk. Can you access https (port 443 ) ?


#5

I have not set up any https. I keep thinking that I need to create certificate, first. I will try what you suggested now by going to the dns, and adding https.

Thank you.


#6

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.