Nginx in Proxmox enviroment cant fetch certificates for reverse proxy

I ran this command: Command: certbot certonly --config /etc/letsencrypt.ini --work-dir /tmp/letsencrypt-lib --logs-dir /data/logs --cert-name npm-2 --agree-tos --authenticator webroot -m E-mail@email.de --preferred-challenges http --domains navidrome.kelldrome.de

It produced this output: Some challenges have failed.
Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile /data/logs/letsencrypt.log or re-run Certbot with -v for more details.

I can login to a root shell on my machine: Yes

The version of my client is: Certbot 2.9.0

Hello Let's Encrypt Community,

I'm currently setting up SSL for my self-hosted services for my selfhosted navidrome client and have been struggling with the domain verification for a few days. I hope someone here can point me in the right direction.

My Setup:

• Hardware: Mac mini (acting as a server)
• Host OS: Proxmox VE (running on the Mac mini)
• VM: Ubuntu Server 24.04 (running as a Proxmox guest)
• Container: Nginx (official Docker image) running inside the Ubuntu VM
• Domain: Dynamic DNS via No-IP (e.g., mydomain.ddns.net ), which correctly resolves to my public IP
• Goal: Obtain a Let's Encrypt SSL certificate for mydomain.ddns.net to enable HTTPS
• My web server is: nginx-1.29.5

I have set up port forwarding on my router. Port 80 and 443 are forwarded to the IP address of my Ubuntu VM (the host running Docker).

im also able to enter the nginx manager per Web

My navidrome client works as it should.

The Problem:
When I try to obtain a certificate using Certbot, the verification fails with a connection timeout.

i have assured that the configuration is right but i cant get the certificate. Also, i used an free domain form noip.com so i can redirect to mydomain.ddns.net by using my kelldrome.de domain on cloudflare.

Has anyone experienced a similar issue with Proxmox and port forwarding? Could it be that I need to configure port forwarding on the Proxmox host level as well? Or is there a specific network mode for the VM I need to use?

Any help or debugging tips would be greatly appreciated! I am happy to provide more details about my network configuration.

Thank you in advance!

Are you able to access http://navidrome.kelldrome.de/ locally i.e. from within the same network?

Hello, sorry for the late reply. It seems like im not able to access the domain inside of my network. I get a time out after some time.