Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
My domain is: m2start.com
I ran this command
It produced this output:
curl: (35) OpenSSL SSL_connect: Connection reset by peer in connection to acme-v02.api.letsencrypt.org:443
Nonce is empty. Exiting. dig output of acme-v02.api.letsencrypt.org:
Full nonce request output:
My web server is (include version): Apache 2.4
The operating system my web server runs on is (include version): Debian Buster
My hosting provider, if applicable, is: Myself
I can login to a root shell on my machine (yes or no, or I don’t know): Yes
I’m using a control panel to manage my site (no, or provide the name and version of the control panel): Latest Directadmin
The version of my client is (e.g. output of
certbot --version or
certbot-auto --version if you’re using Certbot): Handled by directadmin
The problem is that the error message changes with each attempt.
Within the last 4h I’ve gotten:
- Connection reset by peer during the first query ( “Requesting new certificate order…”)
- Connection reset by peer after 1-5 “challenge is valid” messages. (request contains 21 DNS names)
I’ve tried updating LE, using another IP to query.
Ping is stable to 126.96.36.199
Tcpdump shows, that our server is waiting for an answer from 188.8.131.52, but it gets closed.
Note: Definitely not a directadmin issue. Another setup (identical) works fine… So is our IP blocked or what’s the deal?