My domain is:
I ran this command:
certbot certonly
--dry-run
--standalone
--agree-tos
--force-renewal
--cert-name ssl
-d stable.supportapi.smartmonitoring.liebherr.com
-m sxxxx@liebherr.com
It produced this output:
2021-05-27 06:36:45,843:WARNING:certbot.auth_handler:Challenge failed for domain stable.supportapi.smartmonitoring.liebherr.com
2021-05-27 06:36:45,843:INFO:certbot.auth_handler:http-01 challenge for stable.supportapi.smartmonitoring.liebherr.com
2021-05-27 06:36:45,843:DEBUG:certbot.reporter:Reporting to user: The following errors were reported by the server:
Domain: stable.supportapi.smartmonitoring.liebherr.com
Type: connection
Detail: Fetching http://stable.supportapi.smartmonitoring.liebherr.com/.well-known/acme-challenge/WXMLGJpXr2GKNUgLQBihnZcjsP136_BbuhJH-tmONKg: Timeout during connect (likely firewall problem)
My web server is (include version): Well, standalone. Using package python3-certbot-apache
The operating system my web server runs on is (include version):
Ubuntu 20.04
I can login to a root shell on my machine (yes or no, or I don't know):
yes
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you're using Certbot):
certbot 0.40.0
The domain name is fine, the IP (v4) is fine.
Seeing a
2021-05-27 06:51:17,127:DEBUG:acme.standalone:Successfully bound to :80 using IPv6
2021-05-27 06:51:17,127:DEBUG:acme.standalone:Certbot wasn't able to bind to :80 using IPv4, this is often expected due to the dual stack nature of IPv6 socket implementations.
Not sure if that's an issue.
In the end I get a
"challenges": [
{
"type": "http-01",
"status": "invalid",
"error": {
"type": "urn:ietf:params:acme:error:connection",
"detail": "Fetching http://stable.supportapi.smartmonitoring.liebherr.com/.well-known/acme-challenge/WXMLGJpXr2GKNUgLQBihnZcjsP136_BbuhJH-tmONKg: Timeout during connect (likely firewall problem)",
"status": 400
},
"url": "https://acme-staging-v02.api.letsencrypt.org/acme/chall-v3/56698959/9oh8jA",
"token": "WXMLGJpXr2GKNUgLQBihnZcjsP136_BbuhJH-tmONKg",
"validationRecord": [
{
"url": "http://stable.supportapi.smartmonitoring.liebherr.com/.well-known/acme-challenge/WXMLGJpXr2GKNUgLQBihnZcjsP136_BbuhJH-tmONKg",
"hostname": "stable.supportapi.smartmonitoring.liebherr.com",
"port": "80",
"addressesResolved": [
"52.166.67.166"
],
"addressUsed": "52.166.67.166"
}
],
"validated": "2021-05-27T06:51:17Z"
}
]
I think that port 80 is open on 52.166.67.166.
I am hoping that someone sees what's wrong. I am out of my wits. Thanks in advance.
Regards,
Sascha