Timeout during connect (likely firewall problem) unable to renew certificate

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:ppupload1.co.uk

I ran this command:sudo certbot -v renew --dry-run

It produced this output:Processing /etc/letsencrypt/renewal/ppupload1.co.uk.conf

Certificate is due for renewal, auto-renewing...
Plugins selected: Authenticator apache, Installer apache
Simulating renewal of an existing certificate for ppupload1.co.uk and www.ppupload1.co.uk
Performing the following challenges:
http-01 challenge for ppupload1.co.uk
http-01 challenge for www.ppupload1.co.uk
Waiting for verification...
Challenge failed for domain ppupload1.co.uk
Challenge failed for domain www.ppupload1.co.uk
http-01 challenge for ppupload1.co.uk
http-01 challenge for www.ppupload1.co.uk

Certbot failed to authenticate some domains (authenticator: apache). The Certificate Authority reported these problems:
Domain: ppupload1.co.uk
Type: connection
Detail: 109.228.47.235: Fetching http://ppupload1.co.uk/.well-known/acme-challenge/lO0TlQfyG_W04nCeCTZsqPNtm2MiRhS9b_J4zKIA_4A: Timeout during connect (likely firewall problem)

Domain: www.ppupload1.co.uk
Type: connection
Detail: 109.228.47.235: Fetching http://www.ppupload1.co.uk/.well-known/acme-challenge/PZzrFIm78H9S5PBh-PcMvIrFGMlRL33NBu6jiwmoZpE: Timeout during connect (likely firewall problem)

My web server is (include version):Apache/2.4.52 (Ubuntu)
The operating system my web server runs on is (include version):Ubuntu 22.04.5 LTS

My hosting provider, if applicable, is:fasthosts

I can login to a root shell on my machine (yes or no, or I don't know):yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel):no

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):certbot 1.21.0

I have made sure port 80 is open. I have even disabled the firewall completely and then reenabled just to check.

The renewal has worked flawlessly over the last year and then I went to renew on 2nd of Nov as it was due to expire on the 3rd and I got the errors in the post.

My ssl has now expired. Any help would be very greatly appreciated.

Have you checked from outside your network? Here's one tool I sometimes use; it shows that nobody can connect:

Thank you for the prompt reply. Just used that tool and all looks ok.

An HTTP test is failing now. Did you change something ? Or, did you run one of the other tests instead of HTTP?

Here's the permalink to the HTTP test I just ran: Check website performance and response : Check host - online website monitoring

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.