Renovar certificado

Help Ayuda (en Español)
1

Buenos días, tengo un error al intentar renovar mi certificado para homeassistant. Cuando intento renovarlo me sale el siguiente error.

My domain is: domoticajsaiz2.duckdns.org

I ran this command: renovar certificado con addon duckdns

It produced this output:

  • Checking domain name(s) of existing cert... unchanged.
  • Checking expire date of existing cert...
  • Valid till Dec 7 14:32:49 2020 GMT Certificate will expire
    (Less than 30 days). Renewing!
  • Signing domains...
  • Generating private key...
  • Generating signing request...
  • Requesting new certificate order from CA...
  • ERROR: An error occurred while sending head-request to https://acme-v02.api.letsencrypt.org/acme/new-nonce (Status 000)
    Details:
    ERROR: Problem connecting to server (post for https://acme-v02.api.letsencrypt.org/acme/new-order; curl returned with 6)

My web server is (include version): hassos

No sé cómo renovar para volver a tener acceso https.
http://domoticajsaiz2.duckdns.org/.well-known/acme-challenge/NsigawE5M44AFWwL9cy7c7tovILB8w1T5vvQqN6SHV4
[89.131.141.9]: 404
Al renovar. El puerto 80 me dice el equipo que está ocupado por lo que lo hago con otro puerto.

1 Like
2

Your firewall may be blocking the outbound HTTPS request.

1 Like
3

Buenas, no puedo regularizar mis certificados caducados. Del sitio domoticajsaiz2.duckdns.org
Al levantar el addon me sale el error:

[s6-init] making user provided files available at /var/run/s6/etc...exited 0.
[s6-init] ensuring user provided files have correct perms...exited 0.
[fix-attrs.d] applying ownership & permissions fixes...
[fix-attrs.d] done.
[cont-init.d] executing container initialization scripts...
[cont-init.d] done.
[services.d] starting services
[services.d] done.

INFO: Using main config file /data/workdir/config

ERROR: Problem connecting to server (get for https://acme-v02.api.letsencrypt.org/directory; curl returned with 7)
[cmd] /run.sh exited 1
[cont-finish.d] executing container finish scripts...
[cont-finish.d] done.
[s6-finish] waiting for services.
[s6-finish] sending all processes the TERM signal.

Y cuando intento renovarlo me sale:

1 Like
4

Login to your server and try:
curl https://acme-v02.api.letsencrypt.org/directory

2 Likes
5

respuesta a la ultima ejecucion del comando
curl (6) no resolve host
anteriormente me ha salido informacion sobre diversas url

1 Like
6

Then you may have a DNS problem, try:
nslookup acme-v02.api.letsencrypt.org

Show this:
cat /etc/resolv.conf

1 Like
7

c'ant find acme....
el segundo comando:
search local.hass.io
name server 127.0.0.11
options ndots:0
estas son las respuestas
puede existir algo relacionado con el router? acutalmente redirecciono el 443 al 8123 y el 80 al 80.
cuando intento la renovacion por el addon me sale que el puerto 80 está ocupado.
ping a mi dominio domoticajsaiz2.duckdns.org correcto. hay problema de renocacion de certificado. desconozco el procedimiento correcto

1 Like
8

One step at a time.
First, we fix DNS.
Try these:
nslookup acme-v02.api.letsencrypt.org 8.8.8.8
nslookup acme-v02.api.letsencrypt.org 1.1.1.1

1 Like
9

Existen respuestas a los comandos
image
perdon pero soy muy novato en el tema.
el sistema es una raspberry pi que ejecuta hassio.

1 Like
10

The picture is too small to read clearly.
But looks like DNS works when using external global DNS systems.
Please show all of (if more was there than you already showed above):
cat /etc/resolv.conf

If same as above, try changing the nameserver line to:
nameserver 1.1.1.1

[and save the file]

1 Like
11

sorry. the picture:

image
image582×569 90.5 KB

1 Like
12

No problem.
That is what I thought it showed :slight_smile:
Edit the file and try again:
curl https://acme-v02.api.letsencrypt.org/directory

1 Like
13

the 1 picture

image
image507×556 86.2 KB

perdon pero no se como editar el archivo indicado en el comentario

image
respuesta de curl

14

That screenshot is confusing me.
The first curl command fails, and then works immediately following that line.
Then it fails again three more times.
Even nslookup fails.
I don't understand how it worked that one time.

To edit the file you need to learn how to use an editor.
But the file is privileged so you have to edit it as root user.
sudo editor /etc/resolv.conf
sudo vi /etc/resolv.conf

15

the first entry is a mistake of mys. then if there is a response to the curl command. regarding editing the file I need some help. and know which file name I should edit. I appreciate your patience

16

You can use nano editor or vi editor with root privileges as:
sudo editor /etc/resolv.conf
OR
sudo vi /etc/resolv.conf

Change:
nameserver 127.0.0.11
to
nameserver 1.1.1.1

and save the file and exit the editor

1 Like
17

it should contain the file since I think I've loaded it content from the screen
me funciona vi pero no se moverme con sus comandos. creo que he corrompido el contenido del archivo con elementos de la pantalla

18

Close that the Terminal.
Open a new Terminal.
Issue these commands in the Terminal window:
sudo rm /etc/resolv.conf
sudo echo 'nameserver 1.1.1.1' > /etc/resolv.conf

then show it with
cat /etc/resolv.conf

1 Like
19

ahora me sale nuevamente el error que no resuelve curl

20

^^^ read my last post ^^^