Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
When I run the wizard to get a new certificate I get the following error: Please check if your IP address, reverse proxy rules, and firewall settings are correctly configured and try again.
My domain is:kildare.mooo.com
I ran this command:curl -I https://acme-v02.api.letsencrypt.org
It produced this output:HTTP/2 200
server: nginx
date: Thu, 20 Apr 2023 16:15:23 GMT
content-type: text/html
content-length: 1540
last-modified: Thu, 23 Jun 2022 21:17:41 GMT
etag: "62b4d875-604"
x-frame-options: DENY
strict-transport-security: max-age=604800
My web server is (include version):
The operating system my web server runs on is (include version):
My hosting provider, if applicable, is:
I can login to a root shell on my machine (yes or no, or I don't know):yes
I'm using a control panel to manage my site (no, or provide the name and version of the control panel): No
The version of my client is (e.g. output of certbot --version
or certbot-auto --version
if you're using Certbot):The Synology naitively does not have certbot. However the Synology DSM version is 7.1.1-42962 Update 5
I have run this command from the unit : curl -Iki http://dns.thelazyfox.xyz/.well-known/acme-challenge/test
I got this result : HTTP/1.1 522
Date: Thu, 20 Apr 2023 16:26:37 GMT
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https://a.nel.cloudflare.com/report/v3?s=2GGJVCigNzxI87zh5ACpgkNQDMh9S4EVI4C3P8GI5OooftfQHzNdxpcw0N4ZuXqPwTuhCBgdGL2Lob1UKu814jSYHKOoeVWrrkB7RH%2F0GZ4lnSPFYzKH3oWZAqFWQNhjn4DmUfg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 7baebf41f8c08dae-MIA
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
when I run certbot renew --dry-run
I get this result : -sh: certbot: command not found
I don't believe that the synology has the option to install certbot, so I am stuck with the GUI only option...