Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.
Unfortunately, our major-sysadmin politics is to prevent broadcasting opening 80 port.
Is there any other way to make a new LE sertificate without opening this port?
And of course to easely renew it in the future.
Thanks a lot. I will try )
And there is one more trouble. It looks like some times ago my renewing of LE was broken.
This is about my other site: arfa.travel
And this is other host with opened 80 port.
It was always everything good but now I receive letter that sertificate will gone soon.
What could have happened?
My wacs.exe writes this:
[INFO] A simple Windows ACMEv2 client (WACS)
[INFO] Software version 2.0.9.386 (RELEASE)
[INFO] IIS version 8.5
[INFO] Please report issues at https://github.com/PKISharp/win-acme
[INFO] Renewing certificate for [Manual] arfa.travel
[INFO] Authorize identifier: arfa.travel
[INFO] Authorizing arfa.travel using http-01 validation (SelfHosting)
[EROR] Authorization timed out
[EROR] Renewal for [Manual] arfa.travel failed, will retry on next run
Still dont work.
I’m very disappoint. It looks everything OK with my site on 80 port.
And win-acme doing everything without any error.
But my https://api.bolerotour.ru doesn’t want to work correct.
It returns ERR_CONNECTION_TIMED_OUT.
Both 80 and 443 ports are opened.
When my carma was broken?