Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
root@nextcloud:~ # service nginx restart
Performing sanity check on nginx configuration:
nginx: [warn] "ssl_stapling" ignored, no OCSP responder URL in the certificate "/usr/local/etc/letsencrypt/live/truenas/fullchain.pem"
nginx: [warn] "ssl_stapling" ignored, no OCSP responder URL in the certificate "/usr/local/etc/letsencrypt/live/truenas/fullchain.pem"
nginx: the configuration file /usr/local/etc/nginx/nginx.conf syntax is ok
nginx: configuration file /usr/local/etc/nginx/nginx.conf test is successful
Stopping nginx.
Waiting for PIDS: 17291, 17291.
Performing sanity check on nginx configuration:
nginx: [warn] "ssl_stapling" ignored, no OCSP responder URL in the certificate "
/usr/local/etc/letsencrypt/live/truenas/fullchain.pem"
nginx: [warn] "ssl_stapling" ignored, no OCSP responder URL in the certificate "
/usr/local/etc/letsencrypt/live/truenas/fullchain.pem"
nginx: the configuration file /usr/local/etc/nginx/nginx.conf syntax is ok
nginx: configuration file /usr/local/etc/nginx/nginx.conf test is successful
Starting nginx.
nginx: [warn] "ssl_stapling" ignored, no OCSP responder URL in the certificate "/usr/local/etc/letsencrypt/live/truenas/fullchain.pem"
My web server is (include version): nginx/1.24.0
The operating system my web server runs on is (include version): TrueNAS-13.0-U4
My hosting provider, if applicable, is: self
I can login to a root shell on my machine (yes or no, or I don't know): yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel): no
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): certbot 2.4.0
I dont know what could be the issue, I want my SSL to work, I am new to all of this
Your nginx HTTPS config is using the TrueNAS self-signed cert which does not support stapling. You might want to turn off stapling anyway until you understand what it does. Refer to the nginx docs for details.
What have you tried to do with Certbot? Was there a problem getting a Let's Encrypt cert?
I edited the nginx.conf file using ee /usr/local/etc/nginx/nginx.conf this command and removed the ocsp file lines, after that when I restarted nginx service and that error disappeared,
Yes with certbot, I want my SSL certificate enabled, I tried to run certbox --nginx but it failed with the following error
`Please enter the domain name(s) you would like on your certificate (comma and/or
space separated) (Enter 'c' to cancel): cloud.faimanworld.com
Requesting a certificate for cloud.faimanworld.com
Certbot failed to authenticate some domains (authenticator: nginx). The Certificate Authority reported these problems:
Domain: cloud.faimanworld.com
Type: connection
Detail: 223.177.178.7: Fetching http://cloud.faimanworld.com/.well-known/acme-challenge/ixNtDwZr-WgZu2Encck8oOstvW6Pfq_udk7lP9x9fEQ: Timeout during connect (likely firewall problem)
Hint: The Certificate Authority failed to verify the temporary nginx configuration changes made by Certbot. Ensure the listed domains point to this nginx server and that it is accessible from the internet.`
I have my 80 and 443 ports enabled on my router
Also I can access it over the internet
But accessing it over the internet has this weird issue which I do not understand,