Ports open but not seen by certbot

Tired of waiting.
Please repost the nginx -T output.
But add on a line above and below it (three backticks - not the single quote):

```
nginx output
```

3 Likes

While you are waiting you could look at :slight_smile:

PORT    STATE    SERVICE VERSION
80/tcp  filtered http
443/tcp filtered https

3 Likes

We saw part of that, with:

But we seem to be missing/confirming the IP.

3 Likes

Could be separate firewall in front of the forwarder too

3 Likes

But where does it port forward to?
What shows when you click that right arrow?

Also show:
ifconfig | grep -Ei 'addr|inet'

1 Like
        inet 172.18.0.1  netmask 255.255.0.0  broadcast 172.18.255.255
        inet6 fe80::42:a5ff:fe17:2e02  prefixlen 64  scopeid 0x20<link>
        inet 172.17.0.1  netmask 255.255.0.0  broadcast 172.17.255.255
        inet 192.168.4.60  netmask 255.255.252.0  broadcast 192.168.7.255
        inet6 fe80::ba27:ebff:fe87:7cf1  prefixlen 64  scopeid 0x20<link>
        inet 127.0.0.1  netmask 255.0.0.0
        inet6 ::1  prefixlen 128  scopeid 0x10<host>
        inet6 fe80::ec5c:82ff:fe77:b0c4  prefixlen 64  scopeid 0x20<link>

OK
That needs to be matched by the port forwarding.

2 Likes

Also, that looks very AWS...
Are you running this on any such type environment?

2 Likes

nope, this is self hosted

OK
Must be Docker related.

Is there any other system inline that could be blocking inbound port 80 connections?
OR
Geo-Location blocking?

2 Likes

not that I am aware of

Topic read:
"ports open but not seen by certbot"

Thing looks more like:
"not seen by anyone anywhere"

That needs fixing
But hard to fix when you don't know where it is broken

3 Likes

Does your home ISP allow connections to you on port 80? Some do not.

Can you confirm your public IP? What does this say?

curl -4 ifconfig.co

DNS=184.60.27.164

3 Likes

Please show:
ufw status

3 Likes

Can you confirm your public IP? What does this say?
184.60.27.164

sudo ufw status
Status: inactive

hmm...

Describe all the "parts" from the ubuntu server to the ISP/Internet.
[don't leave anything out]

What O/S is on your other system/PC?

3 Likes

My isp does not say they block port 80, but i also would not put it above them

1 Like

Yay!
[the missing/eaten post has returned]

2 Likes