Urn:ietf:params:acme:error:connection

Entwickelter · February 19, 2023, 12:44am

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: my.pelvan.host

I ran this command: -

It produced this output:

Invalid response from https://acme-v02.api.letsencrypt.org/acme/authz-v3/204587814696.

Details:

Type: urn:ietf:params:acme:error:connection

Status: 400

Detail: 37.221.92.47: Fetching http://my.pelvan.host/.well-known/acme-challenge/11fFSgYgRUJbd_aBD8c-PnLpnzQWhvONEsYA_gzuc64: Connection reset by peer

My web server is (include version): plesk

The operating system my web server runs on is (include version): plesk

My hosting provider, if applicable, is: plesk

I can login to a root shell on my machine (yes or no, or I don't know): yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel): yes

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): -

_az · February 19, 2023, 12:49am

Something is weird about your server.

The first HTTP request seems to get abruptly interrupted, and then follow-up ones work okay. This is happening to me from multiple locations:

root@letsdebug:~# curl -i my.pelvan.host
curl: (56) Recv failure: Connection reset by peer

root@letsdebug:~# curl -i my.pelvan.host
HTTP/1.1 301 Moved Permanently
Server: nginx

and

root@army-p-nutty:~# curl -i my.pelvan.host
curl: (56) Recv failure: Connection reset by peer

root@army-p-nutty:~# curl -i my.pelvan.host
HTTP/1.1 301 Moved Permanently
Server: nginx

Whatever is doing that (some kind of weird firewall?) is definitely going to cause you problems for your attempts to get a certificate.

Bruce5051 · February 19, 2023, 12:51am

Here is what I presently see

$ curl -k -Ii http://my.pelvan.host/.well-known/acme-challenge/11fFSgYgRUJbd_aBD8c-PnLpnzQWhvONEsYA_gzuc64
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 19 Feb 2023 00:50:31 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://my.pelvan.host/.well-known/acme-challenge/11fFSgYgRUJbd_aBD8c-PnLpnzQWhvONEsYA_gzuc64

$ curl -k -Ii https://my.pelvan.host/.well-known/acme-challenge/11fFSgYgRUJbd_aBD8c-PnLpnzQWhvONEsYA_gzuc64
HTTP/2 200
server: nginx
date: Sun, 19 Feb 2023 00:50:38 GMT
content-type: text/plain
content-length: 87
last-modified: Sun, 19 Feb 2023 00:40:49 GMT
etag: "63f17011-57"
x-powered-by: PleskLin
accept-ranges: bytes

$ curl -k https://my.pelvan.host/.well-known/acme-challenge/11fFSgYgRUJbd_aBD8c-PnLpnzQWhvONEsYA_gzuc64 ; echo
11fFSgYgRUJbd_aBD8c-PnLpnzQWhvONEsYA_gzuc64.q09c5Prp57LDmuqC3UaBu3xxJ7BtLEeSbL6mgrQ0eNM

And Let's Debug show OK https://letsdebug.net/my.pelvan.host/1379323

system · March 21, 2023, 12:52am

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Urn:ietf:params:acme:error:connection Help	3	8335	April 7, 2019
Urn:ietf:params:acme:error:connection Status: 400 Timeout after connect (your server may be slow or overloaded) Help	4	598	December 26, 2023
Error: urn:ietf:params:acme:error:serverInternal :: The server experienced an internal error :: Error retrieving account Help	3	5082	August 31, 2020
All ports and files verified and accessible. Failed authorization procedure. (http-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain Help	3	1584	December 22, 2017
Urn:ietf:params:acme:error:connection (one more) Help	9	1703	August 6, 2020

Urn:ietf:params:acme:error:connection

Related topics