[ale] let's encrypt cert renewals?

DJ-Pfulio DJPfulio at jdpfu.com
Wed May 10 20:40:15 EDT 2017


Anyone else having trouble renewing let's encrypt certs?

Apache2 on Ubuntu 16.04.

Failing tls-sni-01 challenge.

I have 2 sites on the same machine.  Both have renewed 3 times without
issues.  Today, they both failed. The script that always worked before:

#!/bin/sh
export PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin
/usr/bin/letsencrypt  renew



I've been through the log file(s). Not anything useful, just:

FailedChallenges: Failed authorization procedure. site.domain.com
(tls-sni-01): urn:acme:error:connection :: The server could not connect
to the client to verify the domain :: Failed to connect to
50.xx.xx.xx:443 for tls-sni-01 challenge

DNS is correct.
Site is up on 443, but not on 80.
I opened the site to everyone. Normally, only allow a few specific subnets.

Ideas?


More information about the Ale mailing list