I found
[code]
NameVirtualHost *:443
# If you add NameVirtualHost *:443 here, you will also have to change
# the VirtualHost statement in /etc/apache2/sites-available/default-ssl
# to
# Server Name Indication for SSL named virtual hosts is currently not
# supported by MSIE on Windows XP.
Listen 443
Listen 443
[/code]
In /etc/apache2/ports.conf
I commented out these lines and confirmed that apache is no longer listening on port 443.
Then letsencrypt still outputs DVSNI error.
2016-01-07 02:50:11,681:DEBUG:letsencrypt.cli:Exiting abnormally:
Traceback (most recent call last):
File "/root/letsencrypt/venv/bin/letsencrypt", line 9, in <module>
load_entry_point('letsencrypt', 'console_scripts', 'letsencrypt')()
File "/root/letsencrypt/letsencrypt/cli.py", line 1398, in main
return args.func(args, config, plugins)
File "/root/letsencrypt/letsencrypt/cli.py", line 559, in run
lineage = _auth_from_domains(le_client, config, domains)
File "/root/letsencrypt/letsencrypt/cli.py", line 404, in _auth_from_domains
lineage = le_client.obtain_and_enroll_certificate(domains)
File "/root/letsencrypt/letsencrypt/client.py", line 283, in obtain_and_enroll_certificate
certr, chain, key, _ = self.obtain_certificate(domains)
File "/root/letsencrypt/letsencrypt/client.py", line 266, in obtain_certificate
return self._obtain_certificate(domains, csr) + (key, csr)
File "/root/letsencrypt/letsencrypt/client.py", line 224, in _obtain_certificate
authzr = self.auth_handler.get_authorizations(domains)
File "/root/letsencrypt/letsencrypt/auth_handler.py", line 84, in get_authorizations
self._respond(cont_resp, dv_resp, best_effort)
File "/root/letsencrypt/letsencrypt/auth_handler.py", line 142, in _respond
self._poll_challenges(chall_update, best_effort)
File "/root/letsencrypt/letsencrypt/auth_handler.py", line 204, in _poll_challenges
raise errors.FailedChallenges(all_failed_achalls)
FailedChallenges: Failed authorization procedure. fgo.arimil.com (tls-sni-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Failed to connect to host for DVSNI challenge, files.arimil.com (tls-sni-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Failed to connect to host for DVSNI challenge, arimil.com (tls-sni-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Failed to connect to host for DVSNI challenge, wsdb.arimil.com (tls-sni-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Failed to connect to host for DVSNI challenge