Plesk SSL Let's Encrypt Error

Help
21

Okay, i'm try to debug wplesk first then uplesk.

[root@wplesk ~]# curl -4 http://ifconfig.co
103.123.16.178

there is no log information about in the error log or access log
http://uplesk.citrahost.com/.well-known/acme-challenge/letsdebug-test

so, what next should i do ? create file on which directory sir ?

22

OK. The DNS IP matches the public IP of that server.

There is no need to create any files. Just run a Let's Debug test for wplesk and then show us the most recent log entries. You should see at least one access log entry for the letsdebug-test file request. It is fine if it returns a 404.

You should also see up to 4 requests from the Let's Encrypt servers but we want to see how many and which ones get through.

If the uplesk logs don't show any then some system in front of your server is intercepting these requests. Could you have a pfSense firewall active?

3 Likes
23

here is the access.log

172.104.24.29 - - [22/Oct/2022:10:52:10 +0700] "GET /.well-known/acme-challenge/letsdebug-test HTTP/1.1" 404 196 "-" "Mozilla/5.0 (compatible; Let's Debug emulating Let's Encrypt validation server; +https://letsdebug.net)"
3.120.152.97 - - [22/Oct/2022:10:52:10 +0700] "GET /.well-known/acme-challenge/NtwDAWreCGN7SMJJ-OxHMRhF8FAcEbvfn61FJfD-S5U HTTP/1.1" 404 196 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)"
52.88.151.109 - - [22/Oct/2022:10:52:10 +0700] "GET /.well-known/acme-challenge/NtwDAWreCGN7SMJJ-OxHMRhF8FAcEbvfn61FJfD-S5U HTTP/1.1" 404 196 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)"
18.217.173.5 - - [22/Oct/2022:10:52:10 +0700] "GET /.well-known/acme-challenge/NtwDAWreCGN7SMJJ-OxHMRhF8FAcEbvfn61FJfD-S5U HTTP/1.1" 404 196 "-" "Mozilla/5.0 (compatible; Let's Encrypt validation server; +https://www.letsencrypt.org)"

24

I see @rg305 is now active and I was just signing off for night anyway. He will take good care of you.

3 Likes
25

of course, thanks for your help

2 Likes
26

404 error means something is off with your certbot command OR with your web server configuration.

1 Like
27

which should I check part of the web server configuration because all the default configurations are applied ?

28

I see you wrote that you have Apache and nginx.
Which one is expected on that system?
And what was the complete certbot command ran?

1 Like
29

I use reverse proxy nginx-apache. For webserver of course nginx as main

30

Please clarify that.
Maybe you can draw me a picture - lol

1 Like
31

:rofl:

nginx my webserver

32

But there is a proxy in front of that?
Or that is a proxy?

1 Like
33

image

at least like this

34

If the Internet comes in from the left side, then let's have a look at what the Apache system is doing with the HTTP requests.

2 Likes
35

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.