Waiting for verification


#1

I’m trying to get a certificate issued for a gitlab pages account via
certbot certonly --manual -d ...
There are two domains with apex and www, so four host names to verify.
After adding and pushing each auth token, waiting for the site to deploy and verifying by hitting enter, the certbot client just sits there with “Waiting for verification…” and then times out 20 minutes or so later with:

ReadTimeout: HTTPSConnectionPool(host='acme-v01.api.letsencrypt.org', port=443): Read timed out. (read timeout=None)
Please see the logfiles in /var/log/letsencrypt for more details.

Am I missing something?


#2

Can you provide the details from /var/log/letsencrypt ?

Have you got a firewall on outbound traffic that could be blocking access ? can you reach https://acme-v01.api.letsencrypt.org from that server ?


#3

including over IPv6?


#4

Hi,
thanks for the answers.

Doing curl --ipv6 https://acme-v01.api.letsencrypt.org didn’t work, but curl --ipv4 https://acme-v01.api.letsencrypt.org did. I went to http://test-ipv6.com/ and apparently my machine (I’m using Arch in VirtualBox from a Windows 10 host) isn’t ready - “Your IPv6 connection appears to be using Teredo”.

Oddly enough, after running through the same process again as before in order to record the log file, certbot did connect somehow (I guess via ipv4) and issued me the certs.

Maybe the first time was just an unlucky one-off.

Again, thanks to both of you for your help.


#5

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.