Hello,
after a long time my renew of the certificates does not work anymore.
I did not make any changes except System debian updates
I use debian stretch, ISP3Config, certbot 0.28.0
Processing /etc/letsencrypt/renewal/my-domain.de.conf
Cert is due for renewal, auto-renewing...
Plugins selected: Authenticator webroot, Installer None
Renewing an existing certificate
Performing the following challenges:
http-01 challenge for my-domain.de
http-01 challenge for www.my-domain.de
Waiting for verification...
Cleaning up challenges
Attempting to renew cert (my-domain.de) from /etc/letsencrypt/renewal/my-domain.de.conf produced an unexpected error: Failed authorization procedure. my-domain.de (http-01): urn:ietf:params:acme:error:connection :: The server could not connect to the client to verify the domain :: xx.xx.xx.xx: Fetching http://my-domain.de/.well-known/acme-challenge/-Wa1X8LJ2byy69HNxjRpTknHeR4V1IgptYN6WADc4Q8: Timeout during connect (likely firewall problem), www.my-domain.de (http-01): urn:ietf:params:acme:error:connection :: The server could not connect to the client to verify the domain :: xx.xx.xx.xx: Fetching http://www.my-domain.de/.well-known/acme-challenge/vcRvRjs2REj3qPtskmYteqlU_YEQ5hq_zXrL5H23geI: Timeout during connect (likely firewall problem). Skipping.
Domain: www.my-domain.de
Type: connection
Detail: xx.xx.xx.xx: Fetching http://www.my-domain.de/.well-known/acme-challenge/vcRvRjs2REj3qPtskmYteqlU_YEQ5hq_zXrL5H23geI: Timeout during connect (likely firewall problem)
To fix these errors, please make sure that your domain name was entered correctly and the DNS A/AAAA record(s) for that domain contain(s) the right IP address. Additionally, please check that your computer has a publicly routable IP address and that no firewalls are preventing the server from communicating with the client. If you're using the webroot plugin, you should also verify that you are serving files from the webroot path you provided.
2022-10-21 11:37:15,814:DEBUG:certbot.error_handler:Encountered exception:
Traceback (most recent call last):
File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 82, in handle_authorizations
self._respond(aauthzrs, resp, best_effort)
File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 161, in _respond
self._poll_challenges(aauthzrs, chall_update, best_effort)
File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 232, in _poll_challenges
raise errors.FailedChallenges(all_failed_achalls)
certbot.errors.FailedChallenges: Failed authorization procedure. my-domain.de (http-01): urn:ietf:params:acme:error:connection :: The server could not connect to the client to verify the domain :: xx.xx.xx.xx: Fetching http://my-domain.de/.well-known/acme-challenge/-Wa1X8LJ2byy69HNxjRpTknHeR4V1IgptYN6WADc4Q8: Timeout during connect (likely firewall problem), www.my-domain.de (http-01): urn:ietf:params:acme:error:connection :: The server could not connect to the client to verify the domain :: xx.xx.xx.xx: Fetching http://www.my-domain.de/.well-known/acme-challenge/vcRvRjs2REj3qPtskmYteqlU_YEQ5hq_zXrL5H23geI: Timeout during connect (likely firewall problem)
2022-10-21 11:37:15,814:DEBUG:certbot.error_handler:Calling registered functions
2022-10-21 11:37:15,814:INFO:certbot.auth_handler:Cleaning up challenges
2022-10-21 11:37:15,814:DEBUG:certbot.plugins.webroot:Removing /usr/local/ispconfig/interface/acme/.well-known/acme-challenge/-Wa1X8LJ2byy69HNxjRpTknHeR4V1IgptYN6WADc4Q8
2022-10-21 11:37:15,815:DEBUG:certbot.plugins.webroot:Removing /usr/local/ispconfig/interface/acme/.well-known/acme-challenge/vcRvRjs2REj3qPtskmYteqlU_YEQ5hq_zXrL5H23geI
2022-10-21 11:37:15,815:DEBUG:certbot.plugins.webroot:All challenges cleaned up
2022-10-21 11:37:15,815:WARNING:certbot.renewal:Attempting to renew cert (my-domain.de) from /etc/letsencrypt/renewal/my-domain.de.conf produced an unexpected error: Failed authorization procedure. my-domain.de (http-01): urn:ietf:params:acme:error:connection :: The server could not connect to the client to verify the domain :: xx.xx.xx.xx: Fetching http://my-domain.de/.well-known/acme-challenge/-Wa1X8LJ2byy69HNxjRpTknHeR4V1IgptYN6WADc4Q8: Timeout during connect (likely firewall problem), www.my-domain.de (http-01): urn:ietf:params:acme:error:connection :: The server could not connect to the client to verify the domain :: xx.xx.xx.xx: Fetching http://www.my-domain.de/.well-known/acme-challenge/vcRvRjs2REj3qPtskmYteqlU_YEQ5hq_zXrL5H23geI: Timeout during connect (likely firewall problem). Skipping.
2022-10-21 11:37:15,816:DEBUG:certbot.renewal:Traceback was:
Traceback (most recent call last):
File "/usr/lib/python3/dist-packages/certbot/renewal.py", line 443, in handle_renewal_request
main.renew_cert(lineage_config, plugins, renewal_candidate)
File "/usr/lib/python3/dist-packages/certbot/main.py", line 1168, in renew_cert
renewed_lineage = _get_and_save_cert(le_client, config, lineage=lineage)
File "/usr/lib/python3/dist-packages/certbot/main.py", line 116, in _get_and_save_cert
renewal.renew_cert(config, domains, le_client, lineage)
File "/usr/lib/python3/dist-packages/certbot/renewal.py", line 318, in renew_cert
new_cert, new_chain, new_key, _ = le_client.obtain_certificate(domains, new_key)
File "/usr/lib/python3/dist-packages/certbot/client.py", line 335, in obtain_certificate
orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
File "/usr/lib/python3/dist-packages/certbot/client.py", line 371, in _get_order_and_authorizations
authzr = self.auth_handler.handle_authorizations(orderr, best_effort)
File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 82, in handle_authorizations
self._respond(aauthzrs, resp, best_effort)
File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 161, in _respond
self._poll_challenges(aauthzrs, chall_update, best_effort)
File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 232, in _poll_challenges
raise errors.FailedChallenges(all_failed_achalls)
certbot.errors.FailedChallenges: Failed authorization procedure. my-domain.de (http-01): urn:ietf:params:acme:error:connection :: The server could not connect to the client to verify the domain :: xx.xx.xx.xx: Fetching http://my-domain.de/.well-known/acme-challenge/-Wa1X8LJ2byy69HNxjRpTknHeR4V1IgptYN6WADc4Q8: Timeout during connect (likely firewall problem), www.my-domain.de (http-01): urn:ietf:params:acme:error:connection :: The server could not connect to the client to verify the domain :: xx.xx.xx.xx: Fetching http://www.my-domain.de/.well-known/acme-challenge/vcRvRjs2REj3qPtskmYteqlU_YEQ5hq_zXrL5H23geI: Timeout during connect (likely firewall problem)
...
Any idea ?
Ralph