Letsencrypt not working anymore

Discussion in 'Installation/Configuration' started by Thomas Schachtner, May 16, 2018.

Tags:
Page 2 of 2
  1. RomeoD

    RomeoD New Member

    I have some updates in admin panel, but it does not install when I upgrade the system. They hang there.
    Is it possible to have a conflict between python2 and python3 versions?
    Maybe some updates from Ubuntu conflict?
    But, I repeat, the old sites automatically extend their SSL certificates. For new domains the certificates are generated but it seems that they cannot be verified.
     

    Attached Files:

    Last edited: Nov 25, 2019
    RomeoD, Nov 25, 2019
    #21
  2. RomeoD

    RomeoD New Member

    Traceback (most recent call last):
    File "/usr/bin/letsencrypt", line 11, in <module>
    load_entry_point('certbot==0.27.0', 'console_scripts', 'certbot')()
    File "/usr/lib/python3/dist-packages/certbot/main.py", line 1364, in main
    return config.func(config, plugins)
    File "/usr/lib/python3/dist-packages/certbot/main.py", line 1254, in certonly
    lineage = _get_and_save_cert(le_client, config, domains, certname, lineage)
    File "/usr/lib/python3/dist-packages/certbot/main.py", line 120, in _get_and_save_cert
    lineage = le_client.obtain_and_enroll_certificate(domains, certname)
    File "/usr/lib/python3/dist-packages/certbot/client.py", line 391, in obtain_and_enroll_certificate
    cert, chain, key, _ = self.obtain_certificate(domains)
    File "/usr/lib/python3/dist-packages/certbot/client.py", line 334, in obtain_certificate
    orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
    File "/usr/lib/python3/dist-packages/certbot/client.py", line 370, in _get_order_and_authorizations
    authzr = self.auth_handler.handle_authorizations(orderr, best_effort)
    File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 82, in handle_authorizations
    self._respond(aauthzrs, resp, best_effort)
    File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 155, in _respond
    self._poll_challenges(aauthzrs, chall_update, best_effort)
    File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 226, in _poll_challenges
    raise errors.FailedChallenges(all_failed_achalls)
    certbot.errors.FailedChallenges: Failed authorization procedure.
     
    RomeoD, Nov 25, 2019
    #22
  3. RomeoD

    RomeoD New Member

    It safe for Ispconfig and Ubuntu 18.04?
    Code:
    sudo add-apt-repository ppa:certbot/certbot
    This is the PPA for packages prepared by Debian Let's Encrypt Team and backported for Ubuntu.
    Note: Packages are only provided for currently supported Ubuntu releases.
    More info: https://launchpad.net/~certbot/+archive/ubuntu/certbot
    Press [ENTER] to continue or Ctrl-c to cancel adding it.
     
    Last edited: Nov 27, 2019
    RomeoD, Nov 26, 2019
    #23
  4. till

    till Super Moderator Staff Member ISPConfig Developer

    That should be ok, basically you can use any method to install certbot for ISPConfig.
     
    till, Nov 27, 2019
    #24
  5. RomeoD

    RomeoD New Member

    After using the above command, new packages appeared (cerbot + python3).
    I'm trying tonight to make the updates and I'll come back with the result.
     

    Attached Files:

    RomeoD, Nov 27, 2019
    #25
  6. RomeoD

    RomeoD New Member

    Same problem.

    2019-11-27 23:31:17,250:DEBUG:acme.client:Storing nonce: 0002-Ef9Su7OmvfBj6ppsog-iXg36acQPkizQAgsznUuW4w
    2019-11-27 23:31:17,251:DEBUG:certbot.reporter:Reporting to user: The following errors were reported by the server:

    Domain: .........info
    Type: connection
    Detail: Fetching ..........info/.well-known/acme-challenge/KIiF4bGGsdhN3nYlJAodg0LgpTU618Cb_AWHm3Paatg: Timeout during connect (likely firewall problem)

    Domain: ............info
    Type: connection
    Detail: Fetching ................info/.well-known/acme-challenge/TSXHlovUGbJ4-QQW6TI8xuihp3vmmVdiw-g_cT4a6Ss: Timeout during connect (likely firewall problem)

    To fix these errors, please make sure that your domain name was entered correctly and the DNS A/AAAA record(s) for that domain contain(s) the right IP address. Additionally, please check that your computer has a publicly routable IP address and that no firewalls are preventing the server from communicating with the client. If you're using the webroot plugin, you should also verify that you are serving files from the webroot path you provided.
    2019-11-27 23:31:17,255:DEBUG:certbot.error_handler:Encountered exception:
    Traceback (most recent call last):
    File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 82, in handle_authorizations
    self._respond(aauthzrs, resp, best_effort)
    File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 168, in _respond
    self._poll_challenges(aauthzrs, chall_update, best_effort)
    File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 239, in _poll_challenges
    raise errors.FailedChallenges(all_failed_achalls)
    certbot.errors.FailedChallenges: Failed authorization procedure. ..............info (http-01): urn:ietf:params:acme:error:connection :: The server could not connect to the client to verify the domain :: Fetching ................info/.well-known/acme-challenge/KIiF4bGGsdhN3nYlJAodg0LgpTU618Cb_AWHm3Paatg: Timeout during connect (likely firewall problem), .............info (http-01): urn:ietf:params:acme:error:connection :: The server could not connect to the client to verify the domain :: Fetching .................info/.well-known/acme-challenge/TSXHlovUGbJ4-QQW6TI8xuihp3vmmVdiw-g_cT4a6Ss: Timeout during connect (likely firewall problem)

    2019-11-27 23:31:17,255:DEBUG:certbot.error_handler:Calling registered functions
    2019-11-27 23:31:17,255:INFO:certbot.auth_handler:Cleaning up challenges
    2019-11-27 23:31:17,255:DEBUG:certbot.plugins.webroot:Removing /usr/local/ispconfig/interface/acme/.well-known/acme-challenge/KIiF4bGGsdhN3nYlJAodg0LgpTU618Cb_AWHm3Paatg
    2019-11-27 23:31:17,256:DEBUG:certbot.plugins.webroot:Removing /usr/local/ispconfig/interface/acme/.well-known/acme-challenge/TSXHlovUGbJ4-QQW6TI8xuihp3vmmVdiw-g_cT4a6Ss
    2019-11-27 23:31:17,256:DEBUG:certbot.plugins.webroot:All challenges cleaned up
    2019-11-27 23:31:17,256:DEBUG:certbot.log:Exiting abnormally:
    Traceback (most recent call last):
    File "/usr/bin/letsencrypt", line 11, in <module>
    load_entry_point('certbot==0.31.0', 'console_scripts', 'certbot')()
    File "/usr/lib/python3/dist-packages/certbot/main.py", line 1365, in main
    return config.func(config, plugins)
    File "/usr/lib/python3/dist-packages/certbot/main.py", line 1250, in certonly
    lineage = _get_and_save_cert(le_client, config, domains, certname, lineage)
    File "/usr/lib/python3/dist-packages/certbot/main.py", line 121, in _get_and_save_cert
    lineage = le_client.obtain_and_enroll_certificate(domains, certname)
    File "/usr/lib/python3/dist-packages/certbot/client.py", line 410, in obtain_and_enroll_certificate
    cert, chain, key, _ = self.obtain_certificate(domains)
    File "/usr/lib/python3/dist-packages/certbot/client.py", line 353, in obtain_certificate
    orderr = self._get_order_and_authorizations(csr.data, self.config.allow_subset_of_names)
    File "/usr/lib/python3/dist-packages/certbot/client.py", line 389, in _get_order_and_authorizations
    authzr = self.auth_handler.handle_authorizations(orderr, best_effort)
    File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 82, in handle_authorizations
    self._respond(aauthzrs, resp, best_effort)
    File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 168, in _respond
    self._poll_challenges(aauthzrs, chall_update, best_effort)
    File "/usr/lib/python3/dist-packages/certbot/auth_handler.py", line 239, in _poll_challenges
    raise errors.FailedChallenges(all_failed_achalls)
    certbot.errors.FailedChallenges: Failed authorization procedure. ...........info (http-01): urn:ietf:params:acme:error:connection :: The server could not connect to the client to verify the domain :: Fetching ...............info/.well-known/acme-challenge/KIiF4bGGsdhN3nYlJAodg0LgpTU618Cb_AWHm3Paatg: Timeout during connect (likely firewall problem), ...............info (http-01): urn:ietf:params:acme:error:connection :: The server could not connect to the client to verify the domain :: Fetching ............info/.well-known/acme-challenge/TSXHlovUGbJ4-QQW6TI8xuihp3vmmVdiw-g_cT4a6Ss: Timeout during connect (likely firewall problem)
    2019-11-27 23:31:17,689:DEBUG:certbot.main:certbot version: 0.31.0
    2019-11-27 23:31:17,690:DEBUG:certbot.main:Arguments: ['--domains', 'realestateny.info', '--domains', '..............info']
    2019-11-27 23:31:17,690:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
    2019-11-27 23:31:17,698:DEBUG:certbot.log:Root logging level set at 20
    2019-11-27 23:31:17,698:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log
     
    Last edited: Nov 27, 2019
    RomeoD, Nov 27, 2019
    #26
  7. Taleman

    Taleman Well-Known Member HowtoForge Supporter

    I tested your real.... domain in browser from here, it does not get answer and timeouts. I wrote about this in #15.
     
    Taleman, Nov 28, 2019
    #27
  8. RomeoD

    RomeoD New Member

    My IP was part of a class of IPs that was filtered. The internet provider changed my IP. Now it should be all right. Thank you for your support.
     
    RomeoD, Nov 29, 2019
    #28
Page 2 of 2

Share This Page