Nginx Internal error when configuring SSL

Help
1

Hello guys, maybe someone can help me with it. I do not have much experience with nginx and the commands. I just added a new proxy host and I am getting the "Internal error" on the nginx screen. I have other hosts there and they work just fine with the SSL.
All the configuration of this new hosts are similar to the working hosts and I can't figure what is missing.
Nginx gives the log below:

app ] [12/25/2024] [3:23:43 PM] [Global ] › ⬤ debug CMD: /usr/sbin/nginx -t
[app ] [12/25/2024] [3:23:43 PM] [Nginx ] › :information_source: info Reloading Nginx
[app ] [12/25/2024] [3:23:43 PM] [Global ] › ⬤ debug CMD: /usr/sbin/nginx -s reload
[app ] [12/25/2024] [3:23:49 PM] [SSL ] › :information_source: info Requesting Let'sEncrypt certificates for Cert #23: smart.bellausa.org
[app ] [12/25/2024] [3:23:49 PM] [SSL ] › :information_source: info Command: certbot certonly --config "/etc/letsencrypt.ini" --work-dir "/tmp/letsencrypt-lib" --logs-dir "/tmp/letsencrypt-log" --cert-name "npm-23" --agree-tos --authenticator webroot --email "redacted@icloud.com" --preferred-challenges "dns,http" --domains "smart.bellausa.org"
[app ] [12/25/2024] [3:23:49 PM] [Global ] › ⬤ debug CMD: certbot certonly --config "/etc/letsencrypt.ini" --work-dir "/tmp/letsencrypt-lib" --logs-dir "/tmp/letsencrypt-log" --cert-name "npm-23" --agree-tos --authenticator webroot --email "redacted@icloud.com" --preferred-challenges "dns,http" --domains "smart.bellausa.org"
[app ] [12/25/2024] [3:23:51 PM] [Nginx ] › ⬤ debug Deleting file: /data/nginx/temp/letsencrypt_23.conf
[app ] [12/25/2024] [3:23:51 PM] [Global ] › ⬤ debug CMD: /usr/sbin/nginx -t
[app ] [12/25/2024] [3:23:51 PM] [Nginx ] › :information_source: info Reloading Nginx
[app ] [12/25/2024] [3:23:51 PM] [Global ] › ⬤ debug CMD: /usr/sbin/nginx -s reload
[app ] [12/25/2024] [3:23:51 PM] [Express ] › :warning: warning Saving debug log to /tmp/letsencrypt-log/letsencrypt.log
[app ] Some challenges have failed.
[app ] Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile /tmp/letsencrypt-log/letsencrypt.log or re-run Certbot with -v for more details.

2

You will be better off posting at the NPM support forums. This is almost certainly a mis-configuration using NPM.

NPM is especially difficult to debug because it hides the most important failure messages.

Make sure you let the NPM forum people know you have your domain proxied at Cloudflare.

4 Likes
3

Hello @fcbella,

Using the online tool Let's Debug yields these results https://letsdebug.net/smart.bellausa.org/2319507 of 5 WARNINGS, here is the first one.


CloudflareCDN
Warning
The domain smart.bellausa.org is being served through Cloudflare CDN. Any Let's Encrypt certificate installed on the origin server will only encrypt traffic between the server and Cloudflare. It is strongly recommended that the SSL option 'Full SSL (strict)' be enabled.
https://support.cloudflare.com/hc/en-us/articles/200170416-What-do-the-SSL-options-mean-

As Mike as already shown above.

Please read https://support.cloudflare.com/hc/en-us/articles/200170416-What-do-the-SSL-options-mean-

1 Like
4

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.