The name resolves to IPv4 and IPv6 addresses
You must ensure that IPv6 can reach your site as IPv6 is preferred over IPv4 by LE.
Also, at least from an IPv4 perspective, http://your.domain/ and http://your.domain/.well-known/acme-challenge/test.txt return the exact same thing.
According to the ipv6-test.com/validate.php :
IPv6 validation for http://***.com/.well-known/acme-challenge/test.txt
Congratulations, this website is IPv6 ready
I suggest using an IPv6 proxy to ensure that the content of the website is the same in IPv4 and IPv6 (not just that a website exists at all in IPv6).
The certificate worked for about three months. It stopped working for no (objective) reason, I didn’t change anything. Do you really think there’s a problem in IPv4/IPv6? I can provide domain name in PM it really works and works right, but certbot can’t get files.
I’m happy to take a look with IPv6 if you send me the domain name.
Okay, thanks. Sended in PM.
Using the domain name that you sent in your PM, I checked with IPv4 and IPv6 and found that while they both answer requests, they have different content. So that’s probably the reason; your IPv6 webroot or equivalent doesn’t match your IPv4 webroot.
Wow! I really had correct ipv4 and incorrect ipv6 DNS records. Thank you so much, guys! It was not obvious (for me) and certbot used to work well for about 3 months. I am very grateful to you. How can I thank you? I eat this banana for your health!
Thanks @Nobler! In return, I shall eat this banana for your health.
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.