My web server is (include version):
nginx/1.14.0 (Ubuntu)
The operating system my web server runs on is (include version):
Docker on Ubuntu 18.04 x64
My hosting provider, if applicable, is:
vultr
I can login to a root shell on my machine (yes or no, or I don’t know):
Yes, I have a root login.
I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
Doing everything on the command line.
The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot):
certbot 0.31.0
I am following the instructions to create a Mastodon server which can be found here:
I am stuck at the following step:
You need to create the certificate twice - once with the TLS SNI method and the second time using the webroot method.
sudo certbot certonly --standalone -d example.com
Note that nginx is NOT running at this point. If I try to run it, it complains that the certificate is missing.
You have an (unrelated) issue with your DNS records:
canberrasocial.net. 1800 IN A 192.64.119.125
canberrasocial.net. 1799 IN A 45.76.124.78
One of those (the 192. address) is the Namecheap URL forwarding server. You'll want to get rid of it, otherwise half your traffic will go to the wrong place.
Check the firewall in your vultr.com control panel. You need to allow TCP ports 80 and 443. Currently they appear to be filtered, and I can only get through to port 22.
Check the firewall on your operating system as well (probably ufw status if you're using Ubuntu).
Hi az. I’m attaching a copy of the DNS configuration I have set up with namecheap. I don’t know where the 192.x IP is coming from because all my records show the 45.x address, which is the correct one.
Stupid question: does nginx need to be running when I execute the certbot certonly command?
I’m following some instructions which indicate it should not be running. Also, when I try to run it, nginx fails and complains that the certificate is missing.
