Not sure why the request is failing

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: gamechat.social

I ran this command:

sudo certbot --nginx --agree-tos --redirect --hsts --staple-ocsp --email 144steve@gmail.com -d gamechat.social

It produced this output:
2022-12-21 07:57:57,449:DEBUG:acme.client:Storing nonce: A5FEkeVqpIFql_2tvXNi4TNDzqgYE5SYCoB4OpXKnmpO9kE
2022-12-21 07:57:57,451:INFO:certbot._internal.auth_handler:Challenge failed for domain gamechat.social
2022-12-21 07:57:57,451:INFO:certbot._internal.auth_handler:http-01 challenge for gamechat.social
2022-12-21 07:57:57,452:DEBUG:certbot._internal.display.obj:Notifying user:
Certbot failed to authenticate some domains (authenticator: nginx). The Certificate Authority reported these problems:
Domain: gamechat.social
Type: connection
Detail: 65.132.237.231: Fetching http://gamechat.social/.well-known/acme-challenge/5QMXwZQuEt33aSwhMFsYTPrKiwEBBcWX_Ugks-KbYC4: Timeout during connect (likely firewall problem)

Hint: The Certificate Authority failed to verify the temporary nginx configuration changes made by Certbot. Ensure the listed domains point to this nginx server and that it is accessible from the internet.

2022-12-21 07:57:57,454:DEBUG:certbot._internal.error_handler:Encountered exception:
Traceback (most recent call last):
File "/usr/lib/python3/dist-packages/certbot/_internal/auth_handler.py", line 90, in handle_authorizations
self._poll_authorizations(authzrs, max_retries, best_effort)
File "/usr/lib/python3/dist-packages/certbot/_internal/auth_handler.py", line 178, in _poll_authorizations
raise errors.AuthorizationError('Some challenges have failed.')
certbot.errors.AuthorizationError: Some challenges have failed.

2022-12-21 07:57:57,454:DEBUG:certbot._internal.error_handler:Calling registered functions
2022-12-21 07:57:57,455:INFO:certbot._internal.auth_handler:Cleaning up challenges
2022-12-21 07:57:58,618:DEBUG:certbot._internal.log:Exiting abnormally:
Traceback (most recent call last):
File "/usr/bin/certbot", line 33, in
sys.exit(load_entry_point('certbot==1.21.0', 'console_scripts', 'certbot')())
File "/usr/lib/python3/dist-packages/certbot/main.py", line 15, in main
return internal_main.main(cli_args)
File "/usr/lib/python3/dist-packages/certbot/_internal/main.py", line 1574, in main
return config.func(config, plugins)
File "/usr/lib/python3/dist-packages/certbot/_internal/main.py", line 1287, in run
new_lineage = _get_and_save_cert(le_client, config, domains,
File "/usr/lib/python3/dist-packages/certbot/_internal/main.py", line 133, in _get_and_save_cert
lineage = le_client.obtain_and_enroll_certificate(domains, certname)
File "/usr/lib/python3/dist-packages/certbot/_internal/client.py", line 459, in obtain_and_enroll_certificate
cert, chain, key, _ = self.obtain_certificate(domains)
File "/usr/lib/python3/dist-packages/certbot/_internal/client.py", line 389, in obtain_certificate
orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
File "/usr/lib/python3/dist-packages/certbot/_internal/client.py", line 439, in _get_order_and_authorizations
authzr = self.auth_handler.handle_authorizations(orderr, self.config, best_effort)
File "/usr/lib/python3/dist-packages/certbot/_internal/auth_handler.py", line 90, in handle_authorizations
self._poll_authorizations(authzrs, max_retries, best_effort)
File "/usr/lib/python3/dist-packages/certbot/_internal/auth_handler.py", line 178, in _poll_authorizations
raise errors.AuthorizationError('Some challenges have failed.')
certbot.errors.AuthorizationError: Some challenges have failed.
2022-12-21 07:57:58,622:ERROR:certbot._internal.log:Some challenges have failed.
2022-12-21 08:32:55,053:DEBUG:certbot._internal.main:certbot version: 1.21.0
2022-12-21 08:32:55,053:DEBUG:certbot._internal.main:Location of certbot entry point: /usr/bin/certbot
2022-12-21 08:32:55,053:DEBUG:certbot._internal.main:Arguments: ['-q']
2022-12-21 08:32:55,053:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#nginx,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2022-12-21 08:32:55,061:DEBUG:certbot._internal.log:Root logging level set at 40
2022-12-21 08:32:55,061:DEBUG:certbot._internal.display.obj:Notifying user:


2022-12-21 08:32:55,061:DEBUG:certbot._internal.display.obj:Notifying user: No renewals were attempted.
2022-12-21 08:32:55,061:DEBUG:certbot._internal.display.obj:Notifying user: - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
2022-12-21 08:32:55,061:DEBUG:certbot._internal.renewal:no renewal failures

My web server is (include version): nginx version: nginx/1.18.0 (Ubuntu)

The operating system my web server runs on is (include version): Ubuntu 22.04.1 LTS

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don't know): Yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
No

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): certbot 1.21.0

Hello @Steve144, welcome to the Let's Encrypt community. :slightly_smiling_face:

You are using HTTP-01 challenge and need Port 80 open.

Best Practice - Keep Port 80 Open

$ nmap -Pn gamechat.social
Starting Nmap 7.80 ( https://nmap.org ) at 2022-12-21 16:56 UTC
Nmap scan report for gamechat.social (65.132.237.231)
Host is up (0.028s latency).
Not shown: 998 filtered ports
PORT    STATE SERVICE
22/tcp  open  ssh
443/tcp open  https

Nmap done: 1 IP address (1 host up) scanned in 4.89 seconds

And using the online tool https://letsdebug.net/ yields these results https://letsdebug.net/gamechat.social/1308442

4 Likes

That did it, thanks for the help :slight_smile:

4 Likes

You are welcome @Steve144 :slight_smile:
Have pleasant day.

2 Likes

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.