To fix these errors, please make sure that your domain name was entered correctly and the DNS A/AAAA record(s) for that domain contain(s) the right IP address. Additionally, please check that your computer has a publicly routable IP address and that no firewalls are preventing the server from communicating with the client. If you’re using the webroot plugin, you should also verify that you are serving files from the webroot path you provided.
2018-04-02 21:56:09,216:INFO:certbot.auth_handler:Cleaning up challenges
My web server is (include version): apache 2.4
The operating system my web server runs on is (include version): ubuntu 16.04
My hosting provider, if applicable, is: HOSTED FROM HOME THRU OPTIMUM ONLINE
I can login to a root shell on my machine (yes or no, or I don’t know): yes
I’m using a control panel to manage my site (no, or provide the name and version of the control panel): NO
The problem is probably nothing to do with creating .well-known/acme-challenge (Certbot now creates that for you automatically with --apache), but probably with your ISP (or a firewall device) blocking incoming connections from the Internet to your port 80. Could you check that you don’t have a router or firewall policy preventing these inbound connections? And that your ISP doesn’t forbid them either?
its operating normally from my office is am using managed dns with noip with a domain name, ports 80 and 443 are open to traffic. Is there any other ports to open?
If you’re accessing it from within the same network where you’re hosting it, then this is not a reliable indicator that the ports are “open to traffic”.
OK it says its open on my router but in the help it says its only open for business customers
alternately is it possible to force certbot into port 443?
one more question on the DNS challenge it saysr Please deploy a DNS TXT record under the name
_acme-challenge.www.secaucuspentecostals.org with the following value: {value}
I cannot prepend the DNS TEXT to _acme-challenge.www.secaucuspentecostals.org
do it put
_acme-challenge.www.secaucuspentecostals.org={value} in the TXT record?
I was able to get the OOL support to escalate this and it turns out even though they have the port forwarding where you can enable it, they still have to open it up remotely from their end for any OOL user but they have to request it