I'm having troubles verifying 2 websites with letsencrypt. Running on latest ISPConfig on latest Ubuntu 17.04 DNS records are alright, i'm not sure where it goes wrong. Maybe in updating vhost for the .acme challenge? Logfile is to long so its on ubuntu's pastebin: http://paste.ubuntu.com/25751344/ It does create the files Code: root@panel:/var/log/letsencrypt# ls -ahlp /usr/local/ispconfig/interface/acme/.well-known/acme-challenge/ total 20K drwxr-xr-x 2 ispconfig ispconfig 4.0K Oct 16 09:16 ./ drwxr-xr-x 3 ispconfig ispconfig 4.0K Sep 17 21:08 ../ -rw-r--r-- 1 root root 87 Oct 16 09:16 8J-gtkBNl7Y8VuHcEBtlROezqpUV1k1QfJNCoF0SqOU -rwxr-xr-x 1 ispconfig ispconfig 45 Sep 27 08:58 empty.dir -rw-r--r-- 1 root root 87 Oct 16 09:16 gxjASg9ra47GZnHnuhVxJY3Odpm8GxXP-Zipyt1xo5E But somehow they cant be read? -edit- Solution: It seems that my IPv6 configuration wasnt in order. The configured IP addres in /etc/network wasnt the same that ISPConfig auto filled after installing. Changed the IP Address in ISPCOnfig to match the /128 i have in /etc/network. After this, i updated my DNS records (since i just clicked on the IPv6 address) and IPv6 on my websites and waited for DNS to catch up. Then i could issues new certs.
Ok, for my part it's solved. When you run the task, add the verbose attribute. Then you'll see what's wrong. => for my part, the IPV6 address was not responding…
How did you do you get the verbose? I disabled crontab of server.sh Then run the command manually and also with -v but didnt get much out of it.. except (running LE for tsgaming.nl) : Code: root@panel:~# /usr/local/ispconfig/server/server.sh -v -v 2017-11-10 07:42:39,323:WARNING:letsencrypt.cli:Renewal conf file /etc/letsencrypt/renewal/tsictdiensten.nl.conf is broken. Skipping. Failed authorization procedure. www.tsgaming.nl (http-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: Fetching http://www.tsgaming.nl/.well-known/acme-challenge/AKgUvXj0U9rpH_p--xO6Fg9vnh1yepxRJzCzr1qy6x4: Timeout finished.
@till any help here buddy? I have a fresh install of ISPConfig, and still have the same issues. I think it has to do as @stef157 says with IPv6 reachability. According to https://ip6.nl/#!tsictdiensten.nl it is working, but not according to http://ipv6-test.com/validate.php or http://ready.chair6.net/ Virtual host contains: <VirtualHost [2001:41d0:401:3100::1]:80> while ifconfig shows: inet6 addr: 2001:41d0:401:3100::1c1/128 Scope:Global Isnt apache missing something there?
What do you mean by this? I have now manually altered the available IP Addresses for ISPConfig, updated the DNS and sites with the right address. -edit- It seems to be working now So, i dont know if it works as intended, but ISPConfig reads the systems IPv6 address? While mine was set to 2001:41d0:401:3100::1c1, ISPConfig made some read 2001:41d0:401:3100::1 somehow?
