I have tried through many guides trying to fix my SSL issue. It simply won't make the let's encrypt and it's automatically removing them from my sites. Anyone know a solution? I'm lost. I'm guessing it's because i have a NAT Loop back with Public IP issues. Only selfsign works. Code: root@admin:/home# cat htf_report.txt | more ##### SERVER ##### IP-address (as per hostname): ***.***.***.*** [WARN] could not determine server's ip address by ifconfig [INFO] OS version is Ubuntu 24.04.3 LTS [INFO] uptime: 18:46:51 up 1:53, 1 user, load average: 0.00, 0.00, 0.00 [INFO] memory: total used free shared buff/cache available Mem: 17Gi 2.4Gi 14Gi 76Mi 1.3Gi 15Gi Swap: 8.0Gi 0B 8.0Gi [INFO] systemd failed services status: UNIT LOAD ACTIVE SUB DESCRIPTION 0 loaded units listed. [INFO] ISPConfig is installed. ##### ISPCONFIG ##### ISPConfig version is 3.3.0p3 ##### VERSION CHECK ##### [INFO] php (cli) version is 8.3.27 [INFO] php-cgi (used for cgi php in default vhost!) is version 8.3.27 ##### PORT CHECK ##### ##### MAIL SERVER CHECK ##### [WARN] I found no "smtps" entry in your postfix master.cf [INFO] this is not critical, but if you want to offer SSL for smtp (not TLS) connections you have to enable this. ##### RUNNING SERVER PROCESSES ##### [INFO] I found the following web server(s): Apache 2 (PID 31963) [INFO] I found the following mail server(s): Postfix (PID 19350) [INFO] I found the following pop3 server(s): Dovecot (PID 19377) [INFO] I found the following imap server(s): Dovecot (PID 19377) [INFO] I found the following ftp server(s): PureFTP (PID 19502) ##### LISTENING PORTS ##### (only () Local (Address) ***.***.***.***:53 (715/systemd-resolve) [localhost]:6379 (798/redis-server) [anywhere]:465 (19350/master) [anywhere]:143 (19377/dovecot) [anywhere]:110 (19377/dovecot) [anywhere]:25 (19350/master) [anywhere]:22 (1/init) [anywhere]:21 (19502/pure-ftpd) [anywhere]:995 (19377/dovecot) [anywhere]:993 (19377/dovecot) [anywhere]:587 (19350/master) [anywhere]:3306 (18944/mariadbd) ***.***.***.***:53 (715/systemd-resolve) [anywhere]:4190 (19377/dovecot) [localhost]:953 (19661/named) [localhost]:953 (19661/named) [localhost]:953 (19661/named) [localhost]:953 (19661/named) [localhost]:953 (19661/named) [localhost]:953 (19661/named) [localhost]:953 (19661/named) [localhost]:953 (19661/named) [localhost]:53 (19661/named) [localhost]:53 (19661/named) [localhost]:53 (19661/named) [localhost]:53 (19661/named) [localhost]:53 (19661/named) [localhost]:53 (19661/named) [localhost]:53 (19661/named) [localhost]:53 (19661/named) [localhost]:11211 (779/memcached) [localhost]:11332 (19361/rspamd:) [localhost]:11333 (19361/rspamd:) [localhost]:11334 (19361/rspamd:) [localhost]:10023 (797/postgrey) ***.***.***.***:53 (19661/named) ***.***.***.***:53 (19661/named) ***.***.***.***:53 (19661/named) ***.***.***.***:53 (19661/named) ***.***.***.***:53 (19661/named) ***.***.***.***:53 (19661/named) ***.***.***.***:53 (19661/named) ***.***.***.***:53 (19661/named) *:*:*:*::**:*:*:*::*53 (19661/named) *:*:*:*::**:*:*:*::*53 (19661/named) *:*:*:*::**:*:*:*::*53 (19661/named) *:*:*:*::**:*:*:*::*53 (19661/named) *:*:*:*::**:*:*:*::*53 (19661/named) *:*:*:*::**:*:*:*::*53 (19661/named) *:*:*:*::**:*:*:*::*53 (19661/named) *:*:*:*::**:*:*:*::*53 (19661/named) *:*:*:*::*:465 (19350/master) *:*:*:*::*:443 (31963/apache2) [localhost]43 (19377/dovecot) [localhost]10 (19377/dovecot) *:*:*:*::*:80 (31963/apache2) *:*:*:*::*:25 (19350/master) *:*:*:*::*:22 (1/init) *:*:*:*::*:21 (19502/pure-ftpd) *:*:*:*::*:995 (19377/dovecot) *:*:*:*::*:993 (19377/dovecot) *:*:*:*::*:587 (19350/master) *:*:*:*::*:3306 (18944/mariadbd) *:*:*:*::*:953 (19661/named) *:*:*:*::*:953 (19661/named) *:*:*:*::*:953 (19661/named) *:*:*:*::*:953 (19661/named) *:*:*:*::*:953 (19661/named) *:*:*:*::*:953 (19661/named) *:*:*:*::*:953 (19661/named) *:*:*:*::*:953 (19661/named) *:*:*:*::*:53 (19661/named) *:*:*:*::*:53 (19661/named) *:*:*:*::*:53 (19661/named) *:*:*:*::*:53 (19661/named) *:*:*:*::*:53 (19661/named) *:*:*:*::*:53 (19661/named) *:*:*:*::*:53 (19661/named) *:*:*:*::*:53 (19661/named) *:*:*:*::*:4190 (19377/dovecot) *:*:*:*::*:6379 (798/redis-server) *:*:*:*::*:8081 (31963/apache2) *:*:*:*::*:8080 (31963/apache2) *:*:*:*::*:11211 (779/memcached) ##### IPTABLES ##### Chain INPUT (policy ACCEPT) target prot opt source destination Chain FORWARD (policy ACCEPT) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination ##### LET'S ENCRYPT ##### acme.sh is installed in /root/.acme.sh/acme.sh
It seems you have not followed these instructions: https://forum.howtoforge.com/threads/lets-encrypt-error-faq.74179/
As you are behind NAT, you must disable Let's Encrypt check under System > Server config web (as described in the Let's Encrypt error FAQ that @Taleman posted the link to.
The error FAQ is very precise about what to post to get help when you do not get a LE cert. By not posting the requested info, you just show that you did not read and follow the guide. Please read it again, follow each step until the end, then you will know either the solution already or you will know what to post here so we can help you.
