Trouble connecting to Let's Encrypt from Synology DS218play


#1

Hi. I have been trying to get a Let’s Encrypt SSL Cert for my Synology DS218play NAS as their Cert is failing as not from a trusted source. Well, when I enter my domain and email to apply for the cert it fails to connect to Let’s Encrypt and queries the domain. What should I do? Can you issue me a cert? Can I send you a CSR? Thanks in advance, Níall


Generate cert for Synology Disk Station?
#2

Hi,

Whats the detailed error message?
What failed? (Connection from your NAS to let’s encrypt ? or vise versa?)

You’ll need to do that by yourself. We can’t help you obtain a certificate without proper validation from your domain.

No.

Thank you


#3

Whats the detailed error message?
What failed? (Connection from your NAS to let’s encrypt ? or vise versa?)

AquaDome: Message is Unable to connect to Let’s Encrypt. Domain name not valid. - When trying to connect from NAS to Let’s Encrypt.


#4

Hi @AquaDome

and what’s your domain name? You must have a public visible domain name if you want to get a Letsencrypt certificate.


#5

Perhaps there are some settings that I have overlooked on the NAS which need to be adjusted?


#6

Our Domain name is: aquadome.ie


#7

Is this the domain name of your Synology DS218play NAS?

There - https://aquadome.ie/ - is a self signed certificate:

MOZILLA_PKIX_ERROR_SELF_SIGNED_CERT


#8

I had tried a self signed cert thinking that might suffice but that didn’t pass either. I have now reverted to the original cert from synology.com but cannot connect to Let’s Encrypt. Error message: Cannot connect to Let’s Encrypt. Check that the Domain name is valid. What Domain name should be in the request? Am I missing something?


#9

aquadome.ie is our website domain. The NAS is on our network. What is the NAS domain? Do I need to join it to a domain? Please enlighten me. The exact error message I’m getting is: Failed to connect to Let’s Encrypt. Please make sure the domain name is valid.


#10

A lot of Synology things have integrated solutions. Normally, these should work.

This

sounds that your Synology DS218play can’t connect to a server outside.

Is there a firewall which blocks outgoing connections? You need a domain name like

nas.aquadome.ie

with an A-record nas.aquadome.ie -> your Synology DS218play public ip address.

The Synology DS218play tries to connect Letsencrypt, creates a new order, validates the ownership of nas.aquadome.ie, then gets the certificate.

Your error message looks like outgoing connections are not allowed.


#11

Also, there’s no public accessible IP address assigned to this hostname.

Thank you


#12

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.