Some challenges have failed

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:
mi-prueba.online
I ran this command:
sudo certbot --nginx
It produced this output:

My web server is (include version):
Nginx
The operating system my web server runs on is (include version):
Ubuntu 22.04
My hosting provider, if applicable, is:
Go daddy
I can login to a root shell on my machine (yes or no, or I don't know):
yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
no
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):

Hello @luisjc21 using the online tool Let's Debug yields these results https://letsdebug.net/mi-prueba.online/1841806

ANotWorking
ERROR
mi-prueba.online has an A (IPv4) record (192.169.20.20) but a request to this address over port 80 did not succeed. Your web server must have at least one working IPv4 or IPv6 address.
A timeout was experienced while communicating with mi-prueba.online/192.169.20.20: Get "http://mi-prueba.online/.well-known/acme-challenge/letsdebug-test": context deadline exceeded

Trace:
@0ms: Making a request to http://mi-prueba.online/.well-known/acme-challenge/letsdebug-test (using initial IP 192.169.20.20)
@0ms: Dialing 192.169.20.20
@10000ms: Experienced error: context deadline exceeded
ANotWorking
ERROR
mi-prueba.online has an A (IPv4) record (192.169.20.78) but a request to this address over port 80 did not succeed. Your web server must have at least one working IPv4 or IPv6 address.
A timeout was experienced while communicating with mi-prueba.online/192.169.20.78: Get "http://mi-prueba.online/.well-known/acme-challenge/letsdebug-test": context deadline exceeded

Trace:
@0ms: Making a request to http://mi-prueba.online/.well-known/acme-challenge/letsdebug-test (using initial IP 192.169.20.78)
@0ms: Dialing 192.169.20.78
@10000ms: Experienced error: context deadline exceeded
ANotWorking
ERROR
mi-prueba.online has an A (IPv4) record (3.33.130.190) but a request to this address over port 80 did not succeed. Your web server must have at least one working IPv4 or IPv6 address.
Get "http://mi-prueba.online/.well-known/acme-challenge/letsdebug-test": EOF

Trace:
@0ms: Making a request to http://mi-prueba.online/.well-known/acme-challenge/letsdebug-test (using initial IP 3.33.130.190)
@0ms: Dialing 3.33.130.190
@205ms: Experienced error: EOF
ANotWorking
ERROR
mi-prueba.online has an A (IPv4) record (15.197.148.33) but a request to this address over port 80 did not succeed. Your web server must have at least one working IPv4 or IPv6 address.
Get "http://mi-prueba.online/.well-known/acme-challenge/letsdebug-test": EOF

Trace:
@0ms: Making a request to http://mi-prueba.online/.well-known/acme-challenge/letsdebug-test (using initial IP 15.197.148.33)
@0ms: Dialing 15.197.148.33
@201ms: Experienced error: EOF
InternalProblem
WARNING
An internal error occurred while checking the domain
An unknown issue occurred when performing a test authorization against the Let's Encrypt staging service: acme: error sending request: Post "https://acme-staging-v02.api.letsencrypt.org/acme/new-order": net/http: TLS handshake timeout
2 Likes
$ nmap -Pn -p80,443 mi-prueba.online
Starting Nmap 7.80 ( https://nmap.org ) at 2024-03-19 22:34 UTC
Nmap scan report for mi-prueba.online (192.169.20.78)
Host is up.
Other addresses for mi-prueba.online (not scanned): 192.169.20.20 15.197.148.33 3.33.130.190

PORT    STATE    SERVICE
80/tcp  filtered http
443/tcp filtered https

Nmap done: 1 IP address (1 host up) scanned in 3.35 seconds

And at least one of the IPv4 Address is filtered (i.e. blocked) to the Internet.
Likely a Firewall Issue.

3 Likes

image

That doesn't look like a GoDaddy hosting IP.
See: ARIN Whois/RDAP - American Registry for Internet Numbers - IP 192.169.20.20

It looks more like someone tried to expand the network 192.168.0.0/16 without a clear understanding of how Internet IP routing is handled.

4 Likes