Waiting for HTTP-01 challenge propagation: failed to perform self check GET request

Hi Dears,
Hi Dears,
I really appreciate it if somebody gives me a solution to this. I am sticking with one issue for almost two weeks, I am trying to have cert in Kubernetes and i followed exactly like the example but always get issues as Waiting for HTTP-01 challenge propagation: failed to perform self-check GET request. Can somebody help me, please?
here is some info:
Let me explain to you the setup: we have bare-metal Kubernetes (Kubespray) where we have metallb loadbalancer assign ip address and NGINX ingress controller with a grabbed IP address from metallb. As IP address is not public, we mapped to an public IP address therefore our x.x.x.x nginx controller ip mapped to y.y.y.y with opened 80 and 443 ports.
Then i created cert-manager-v1.8.2 already checked all pods up and running. Then create two staging and production as following:
apiVersion: cert-manager.io/v1
kind: ClusterIssuer
metadata:
name: letsencrypt-staging
spec:
acme:
email: sarang.kahva@gmail.com
server: https://acme-staging-v02.api.letsencrypt.org/directory
privateKeySecretRef:
name: letsencrypt-staging-private-key
solvers:

• http01:
  ingress:
  class: nginxapiVersion: cert-manager.io/v1
  kind: ClusterIssuer
  metadata:
  name: letsencrypt-production
  spec:
  acme:
  email: sarang.kahva@gmail.com
  server: https://acme-v02.api.letsencrypt.org/directory
  privateKeySecretRef:
  name: mediahub-issuer-account-key
  solvers:
• http01:
  ingress:
  class: nginxboth checked and status are TRUE then i create and deployment in namespace test then create an ingress as following:
  apiVersion: networking.k8s.io/v1
  kind: Ingress
  metadata:
  name: vsp-ingress-nginx
  namespace: test
  annotations:kubernetes.io/ingress.class: "nginx"
  ingress.kubernetes.io/ssl-redirect: "false"
  nginx.org/redirect-to-https: "false"
  cert-manager.k8s.io/cluster-issuer: letsencrypt-staging
  acme.cert-manager.io/http01-edit-in-place: "true"
  spec:
  ingressClassName: nginx
  tls:hosts:
  cttc.netapps-5gmediahub.eu
  secretName: lets-encrypt-staging-tls
  rules:
  host: cttc.netapps-5gmediahub.eu
  http:
  paths:
  path: /
  pathType: Prefix
  backend:
  service:
  name: vsp
  port:
  number: 8080
  It will issue temporarily cert but as following you see the challenge remain as pending even for staging with error: Waiting for HTTP-01 challenge propagation: failed to perform self check GET request 'http://cttc.netapps-5gmediahub.eu/.well-known/acme-challenge/GWDAfzthwry22tWA7RKiI_LeEVB75dOTAqxXEF9dM9Y': Get "http://cttc.netapps-5gmediahub.eu/.well-known/acme-challenge/GWDAfzthwry22tWA7RKiI_LeEVB75dOTAqxXEF9dM9Y": dial tcp 84.88.63.181:80: i/o timeout (Client.Timeout exceeded while awaiting headers)
  Please i appreciate any guidance as i need to make it run this asap Thanks alot in advance

4 posts were merged into an existing topic: Help regarding timeout issues