The server could not connect to the client to verify the domain and getting Timeout!

I’m getting Timeout on all domains I’m trying to install certs on:

Failed authorization procedure. BOOP.se (tls-sni-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Timeout, www.BOOP.se (tls-sni-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Timeout

The domains are live and working well, but:

2017-11-04 13:50:36,373:DEBUG:certbot.reporter:Reporting to user: The following errors were reported by the server:

Domain: www.BOOP.nu
Type:   connection
Detail: Timeout

Domain: BOOP.nu
Type:   connection
Detail: Timeout

And

{
  "identifier": {
    "type": "dns",
    "value": "www.BOOP.nu"
  },
  "status": "invalid",
  "expires": "2017-11-11T13:50:23Z",
  "challenges": [
    {
      "type": "tls-sni-01",
      "status": "invalid",
      "error": {
        "type": "urn:acme:error:connection",
        "detail": "Timeout",
        "status": 400

Is this expected, or is that part of the problem?

Name: BOOP.se
Address: 93.158.68.46

Name: BOOP.nu
Address: 185.53.179.7

BOOP is just a random TLD do hide my real domain!

The error I’ve found is that the script/server can’t do the jump from incoming 443 to internal port 666 on the server due to port forwarding and closed 443 from ISP.

If you hide the real domain then we can only provide guesses.
If you provide a real domain then we can do a real investigation and propose an adequate solution.

So here is my GUESS:
You have IPv4 and IPv6 for your domain and the IPv6 is misconfigured.
And as LE prefers IPv6 over IPv4, it will continue to fail until you correct the IPv6 problem or remove IPv6 records from DNS.

How did I do?
And your lucky lotto numbers are: 17, 42, 69, 3.14, and -1.

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.