Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
Sorry cannot fill in any of the other information you requested as I have deleted the website as I did not have time to mess around with it due to school.
I have a synology NAS and host my own website (or at least I did, and want to get it up and running again)
The first time I did this I got my cert with no issues what so ever. The issue is renewing. I have never been able to just click renew with it working. So I have had to delete the certs, and just get a new free one. Well as you know the free ones are limited, so now I cannot get any more.
Issue coming up when trying to renew and setup auto renewal I get the error message could not download please make sure ports 80 is opened. Well this is strange because it is open, otherwise I would not have been able to get one in the first place.
I have spoken to Synology's support and they say its not their (my end) end as they can see that port 80 is indeed open.
Has anyone else had this issue and how did you overcome it. Also now how do I redo my website and obtain a new cert going forward as I seem to have reached my limit.
Let's Encrypt certs are always free. There are Rate Limits to prevent abuse of the system. One such limit is you are only allowed 5 identical certs per week from the production system per account. You are recommended to renew every 60 days so 5/week is very generous. A staging system allows testing with more relaxed rate limits.
I looked at the public logs (crt.sh and censys) and neither shows that you have exceeded Rate Limits. In fact, the most recent cert I see is from Apr2023.
The Synology has its own restrictions but problems with that is better addressed to a Synology forum
I don't see port 80 open from the public internet. Did you test from a machine on the public internet or just your own private network? The Let's Debug site is often helpful to test comms configs on new(ish) setups.
Sure, you probably had port 80 open last April but something has changed since.
Possibly a firewall issue? Ports 80 & 443 are being filtered. As @MikeMcQ had pointed out with results from Let's Debug.
$ nmap -Pn -p80,443 tsotsie.com
Starting Nmap 7.94SVN ( https://nmap.org ) at 2023-12-31 11:29 PST
Nmap scan report for tsotsie.com (203.109.145.86)
Host is up.
rDNS record for 203.109.145.86: UNASSIGNED.static.cust.vf.net.nz
PORT STATE SERVICE
80/tcp filtered http
443/tcp filtered https
Nmap done: 1 IP address (1 host up) scanned in 3.57 seconds
Hi Mike. Thanks so much for looking into this. When i last had my website up and running, once the cert had expired, I never bothered to try and sort it out. I also deleted all my webstation install, so not sure if that would have anything to do with your not being able to connect? I am a complete noob at this, and followed a youtube tutorial on how to setup wordpress on synology nas. I may try again at some point, just really busy with schoolwork and summer school starting in a few days. Once I get it up and running again, if I have issues with getting a new cert, I will screenshot and post here. I can not renew any certs, as I deleted them thinking I could just get a new cert once it expires, which is where I reached my limit, not sure if it the domain that has the limit, or the e-mail associated with cert.
What you have just explained is WAY above my pay grade lol. I initially wanted to host my own website as it would be a personal one, and not business related. There would be very little traffic so my connection would be ok. I may just try find a cheap hosting solution and go with that, then all I have to worry about is trying to be creative.