I have major annoying issue with a fresh install of Debian 10, Apache2.4, BIND9 DNS, PureFTP, Postfix, MariaDB, Dovecot, RSPAMD and have been unable to get a valid cert assigned and always falls back to self-signed-cert. I have never lost access to to the control panel via port 8080. Firewall has TCP 80 & 443 with TCP/UDP 53 open to primary server as I am the SOA for my domain. I can create the "test.txt" file using the "touch" command and access it from outside my network via FQDN displaying a blank page as it should. Then I run "ispconfig_update.sh --force" select defaults until the section to "create new SSL certificate" where I select "yes" and it ultimately says the same error every time "server":Verify error:Fetching Connection refused". Log file shows the token is created, the host is verified, but when it attempts to write the token it shows "retrying post" repeatedly. I first get a trigger validation code=200, the log file says the CA is processing my order, then a couple more post retries with code=200, then it skips DNS _on_issue_err, retries one more post, then gives error=400. That's when it falls back to a new self-signed cert. I am going nuts trying to figure this out and any help or feedback would be appreciated. This is literally the only thing prevented me from going live. I can provide the log file if needed.