Synology Lets Encrypt Certificates Lost

Help
1

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:
vivarium.durban

I deleted my LetsEncrypt certificates on my Synology NAS. Now when I try to get new ones it says Please check your IP Address, Reverse Proxy Rules and Firewall settings are correctly configured and try again.

I have checked all of the above. They haven't changed yet I still get the above error.

Please Help

2

Hello @Shumbies, welcome to the Let's Encrypt community. :slightly_smiling_face:

Please do not do that, always save a backup copy instead of just deleting.

Edit
I believe the redirect from HTTP to HTTPS is not redirecting to the proper location.

$ curl -Ii http://vivarium.durban/.well-known/acme-challenge/sometestfile
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
date: Sat, 02 Nov 2024 16:31:08 GMT
server: LiteSpeed
location: https://vivarium.durban/404.shtml

$ curl -k -Ii https://vivarium.durban/404.shtml
HTTP/2 404
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
x-powered-by: SitePad
vary: Accept-Encoding
date: Sat, 02 Nov 2024 16:31:34 GMT
server: LiteSpeed
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
1 Like
3

Hi Burce sorry I didnt enter the entire domain.

The corret domain is https://gymapp.vivarium.durban.

This is the one I deleted the certificates for and now I dont have a backup of them to reinstate them.

How do I get new one's?

4

You might be better off at the Synology forum. They will know better how to configure your system to get a fresh cert for your gunicorn setup. I don't see anything obviously wrong that would prevent you getting a cert. See: Let's Debug

3 Likes
5

With the updated domain name this what I see

$ curl -i http://gymapp.vivarium.durban/.well-known/acme-challenge/sometestfile
HTTP/1.1 404 NOT FOUND
Server: gunicorn
Date: Mon, 04 Nov 2024 02:28:28 GMT
Connection: keep-alive
Content-Type: text/html; charset=utf-8
Content-Length: 207
Access-Control-Allow-Origin: *

<!doctype html>
<html lang=en>
<title>404 Not Found</title>
<h1>Not Found</h1>
<p>The requested URL was not found on the server. If you entered the URL manually please check your spelling and try again.</p>
1 Like