My own site's https access (signed by Letsencrypt) cannot be accessed today suddenly! http access is still good. It is the error message from the Firefox browser: ------------------- The OCSP server suggests trying again later. Error code: SEC_ERROR_OCSP_TRY_SERVER_LATER ------------------- How do I correct it? My system is Ubuntu 16.04, ISPConfig 3.1.2, Letsencrypt ssl cert was created last month and still valid!
I just find these in the apache log! ----------------------------------------- [ssl:error] [pid 14280] (70007)The timeout specified has expired AH01974: could not connect to OCSP responder 'ocsp.int-x3.letsencrypt.org' [ssl:error] [pid 14280] AH01941: stapling_renew_response: responder error
Either the letsencrypt server ocsp.int-x3.letsencrypt.org was down at that moment you tried to connect to it or some kind of firewall on your server or in front of your server blocked the outgoing connection to it.
Oh yeah! I loaded an huge list of BL in CSF which exceeded the allowed memory and systemd halted its operation. And finally CSF blocked everything out!