Zimbra Server ip blocked (unblock IP please)

elia.bellucci · December 10, 2021, 2:32pm

Hi.
I have a problem with my certificate renew for domain adalab.it
My zimbra server has is called mail.adalab.it
Can you unblock the server ip : 164.68.98.170 ?

Certbot can obtain and install HTTPS/TLS/SSL certificates.  By default,
it will attempt to use a webserver both for obtaining and installing the
certificate. 
certbot: error: unrecognized arguments: --force-renewal,
[root@mail certbot-zimbra-0.7.12]# ./certbot_zimbra.sh -n -c 
certbot-zimbra v0.7.12 - https://github.com/YetOpen/certbot-zimbra
Checking for dependencies...
Detected Zimbra 9.0.0 on RHEL7_64
Using zmhostname to detect domain.
Using domain mail.adalab.it (as certificate DN)
Is this correct? y
Detecting additional public service hostnames... Found 0 zimbraPublicServiceHostnames through auto-detection
Checking zimbra-proxy is running and enabled
Detecting port from zimbraMailProxyPort
Checking if process is listening on port 80 with name "nginx" user "zimbra"
Nginx templates already patched.
Nginx includes already patched, skipping zmproxy restart.
Detecting certbot version...
certbot 1.22.0
We will now run certbot to request the certificate. Proceed? y
Running /usr/bin/certbot certonly  --webroot -w /opt/zimbra/data/nginx/html --cert-name mail.adalab.it -d mail.adalab.it
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Requesting a certificate for mail.adalab.it
An unexpected error occurred:
**There were too many requests of a given type :: Error creating new order :: too many certificates (5) already issued for this exact set of domains in the last 168 hours: mail.adalab.it: see https://letsencrypt.org/docs/rate-limits/**
Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details.
Error: /usr/bin/certbot exit status 1. Cannot proceed, exiting.

An error seems to have occurred. Please read the output above for clues and try to rectify the situation.
If you believe this is an error with the script, please file an issue at https://github.com/YetOpen/certbot-zimbra.

Thanks

Osiris · December 10, 2021, 3:15pm

No, that's not possible. Rate limits are automated and cannot be unblocked manually. (They are also not bound to certain IP addresses, the Let's Encrypt software just reads the info from its database and calculates if a rate limit has been exceeded or not.)

Please use one of the 5 (!!!) previously issued duplicate certificates. Thank you.

system · January 9, 2022, 3:15pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.