Timeout when requesting certificate


#1

Hi,

I try to request an certificate for following domain: www.fianostics.at via Virtualmin which fails with a timeout. On the same server I already installed successfully several certificates via Virtualmin script. Here is the complete outpout:
Starting new HTTPS connection (1): acme-v01.api.letsencrypt.org
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for fianostics.at
http-01 challenge for www.fianostics.at
Using the webroot path /home/fianostics/public_html for all unmatched domains.
Waiting for verification…
Cleaning up challenges
Unable to clean up challenge directory /home/fianostics/public_html/.well-known/acme-challenge
Failed authorization procedure. www.fianostics.at (http-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Fetching http://www.fianostics.at/.well-known/acme-challenge/ZL2zGQycj0EuINZ5jO1HSM7dqTDmUNiKNNs1Byei_sY: Timeout
IMPORTANT NOTES:
- The following errors were reported by the server:

   Domain: www.fianostics.at
   Type:   connection
   Detail: Fetching
   http://www.fianostics.at/.well-known/acme-challenge/ZL2zGQycj0EuINZ5jO1HSM7dqTDmUNiKNNs1Byei_sY:
   Timeout

What should I check next?

Best regards,
Chris


#2

Hi,

It seems that you have a universal redirection prevent certbot’s from getting the verification file.

Can you please try set a file under your document root/.well-known/acme-challenge/ ?

Thank you


#3

I have already done this, just forgot to mention. Her is the link:
http://www.fianostics.at/.well-known/acme-challenge/test.txt


#4

Connecting to http://www.fianostics.at/ over IPv6 seems to time out.

www.fianostics.at.  (unsigned)  3600  A     213.239.215.231
www.fianostics.at.  (unsigned)  3600  AAAA  2a01:4f8:a0:9048::69

#5

Thanks mnordhoff, that was it. I forgot just a this server to add the IPv6 address.
Thank you for the quick help! :grinning:


#6

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.