Acme.sh: Issue create the certificate LetsEncrypt : acme.sh standalone mode
Hello!
i used CLI acme to generate cert LetsEncrypt . it showing timeout error all the time, have anyway to fix this issue ? Please give advice.
fab@znode:~$ sudo ~/.acme.sh/acme.sh --issue --standalone -d $FQDN
[Wed Dec 6 06:05:28 EST 2017] Standalone mode.
[Wed Dec 6 06:05:28 EST 2017] Single domain='zen.harrisvan.tk'
[Wed Dec 6 06:05:28 EST 2017] Getting domain auth token for each domain
[Wed Dec 6 06:05:28 EST 2017] Getting webroot for domain='zen.harrisvan.tk'
[Wed Dec 6 06:05:28 EST 2017] Getting new-authz for domain='zen.harrisvan.tk'
[Wed Dec 6 06:05:30 EST 2017] The new-authz request is ok.
[Wed Dec 6 06:05:30 EST 2017] Verifying:zen.harrisvan.tk
[Wed Dec 6 06:05:30 EST 2017] Standalone mode server
[Wed Dec 6 06:05:34 EST 2017] Pending
[Wed Dec 6 06:05:37 EST 2017] Pending
[Wed Dec 6 06:05:39 EST 2017] zen.harrisvan.tk:Verify error:Fetching http://zen .harrisvan.tk/.well-known/acme-challenge/RMWX2kv1m9Ashj_c7Hp8Z3cqTdtZlSFlvBuyBmP jKbA: Timeout
[Wed Dec 6 06:05:39 EST 2017] Please add '--debug' or '--log' to check more det ails.
[Wed Dec 6 06:05:39 EST 2017] See: https://github.com/Neilpang/acme.sh/wiki/How -to-debug-acme.sh
Debug log
fab@znode:~$ sudo ~/.acme.sh/acme.sh --issue --standalone -d $FQDN --debug
[Wed Dec 6 06:05:44 EST 2017] Lets find script dir.
[Wed Dec 6 06:05:44 EST 2017] _SCRIPT_='/home/fab/.acme.sh/acme.sh'
[Wed Dec 6 06:05:44 EST 2017] _script='/home/fab/.acme.sh/acme.sh'
[Wed Dec 6 06:05:44 EST 2017] _script_home='/home/fab/.acme.sh'
[Wed Dec 6 06:05:44 EST 2017] Using default home:/home/fab/.acme.sh
[Wed Dec 6 06:05:44 EST 2017] Using config home:/home/fab/.acme.sh
https://github.com/Neilpang/acme.sh
v2.7.5
[Wed Dec 6 06:05:44 EST 2017] Using config home:/home/fab/.acme.sh
[Wed Dec 6 06:05:44 EST 2017] DOMAIN_PATH='/home/fab/.acme.sh/zen.harrisvan.tk'
[Wed Dec 6 06:05:44 EST 2017] Using ACME_DIRECTORY: https://acme-v01.api.letsen crypt.org/directory
[Wed Dec 6 06:05:44 EST 2017] _init api for server: https://acme-v01.api.letsen crypt.org/directory
[Wed Dec 6 06:05:44 EST 2017] ACME_KEY_CHANGE='https://acme-v01.api.letsencrypt .org/acme/key-change'
[Wed Dec 6 06:05:44 EST 2017] ACME_NEW_AUTHZ='https://acme-v01.api.letsencrypt. org/acme/new-authz'
[Wed Dec 6 06:05:44 EST 2017] ACME_NEW_ORDER='https://acme-v01.api.letsencrypt. org/acme/new-cert'
[Wed Dec 6 06:05:44 EST 2017] ACME_NEW_ACCOUNT='https://acme-v01.api.letsencryp t.org/acme/new-reg'
[Wed Dec 6 06:05:44 EST 2017] ACME_REVOKE_CERT='https://acme-v01.api.letsencryp t.org/acme/revoke-cert'
[Wed Dec 6 06:05:44 EST 2017] Le_NextRenewTime
[Wed Dec 6 06:05:44 EST 2017] _on_before_issue
[Wed Dec 6 06:05:44 EST 2017] Le_LocalAddress
[Wed Dec 6 06:05:44 EST 2017] Check for domain='zen.harrisvan.tk'
[Wed Dec 6 06:05:44 EST 2017] _currentRoot='no'
[Wed Dec 6 06:05:44 EST 2017] Standalone mode.
[Wed Dec 6 06:05:44 EST 2017] _checkport='80'
[Wed Dec 6 06:05:44 EST 2017] _checkaddr
[Wed Dec 6 06:05:44 EST 2017] Using: ss
[Wed Dec 6 06:05:44 EST 2017] _saved_account_key_hash is not changed, skip regi ster account.
[Wed Dec 6 06:05:44 EST 2017] Read key length:
[Wed Dec 6 06:05:44 EST 2017] _createcsr
[Wed Dec 6 06:05:44 EST 2017] Single domain='zen.harrisvan.tk'
[Wed Dec 6 06:05:44 EST 2017] Getting domain auth token for each domain
[Wed Dec 6 06:05:44 EST 2017] Getting webroot for domain='zen.harrisvan.tk'
[Wed Dec 6 06:05:44 EST 2017] _w='no'
[Wed Dec 6 06:05:44 EST 2017] _currentRoot='no'
[Wed Dec 6 06:05:44 EST 2017] Getting new-authz for domain='zen.harrisvan.tk'
[Wed Dec 6 06:05:44 EST 2017] _init api for server: https://acme-v01.api.letsen crypt.org/directory
[Wed Dec 6 06:05:44 EST 2017] ACME_KEY_CHANGE='https://acme-v01.api.letsencrypt .org/acme/key-change'
[Wed Dec 6 06:05:44 EST 2017] ACME_NEW_AUTHZ='https://acme-v01.api.letsencrypt. org/acme/new-authz'
[Wed Dec 6 06:05:44 EST 2017] ACME_NEW_ORDER='https://acme-v01.api.letsencrypt. org/acme/new-cert'
[Wed Dec 6 06:05:44 EST 2017] ACME_NEW_ACCOUNT='https://acme-v01.api.letsencryp t.org/acme/new-reg'
[Wed Dec 6 06:05:44 EST 2017] ACME_REVOKE_CERT='https://acme-v01.api.letsencryp t.org/acme/revoke-cert'
[Wed Dec 6 06:05:44 EST 2017] Try new-authz for the 0 time.
[Wed Dec 6 06:05:44 EST 2017] url='https://acme-v01.api.letsencrypt.org/acme/ne w-authz'
[Wed Dec 6 06:05:44 EST 2017] payload='{"resource": "new-authz", "identifier": {"type": "dns", "value": "zen.harrisvan.tk"}}'
[Wed Dec 6 06:05:44 EST 2017] RSA key
[Wed Dec 6 06:05:44 EST 2017] GET
[Wed Dec 6 06:05:44 EST 2017] url='https://acme-v01.api.letsencrypt.org/directo ry'
[Wed Dec 6 06:05:44 EST 2017] timeout
[Wed Dec 6 06:05:44 EST 2017] _WGET='wget -q --content-on-error '
[Wed Dec 6 06:05:45 EST 2017] ret='0'
[Wed Dec 6 06:05:45 EST 2017] POST
[Wed Dec 6 06:05:45 EST 2017] url='https://acme-v01.api.letsencrypt.org/acme/ne w-authz'
[Wed Dec 6 06:05:45 EST 2017] _WGET='wget -q --content-on-error '
[Wed Dec 6 06:05:46 EST 2017] Using sed -i
[Wed Dec 6 06:05:46 EST 2017] _ret='0'
[Wed Dec 6 06:05:46 EST 2017] code='201'
[Wed Dec 6 06:05:46 EST 2017] The new-authz request is ok.
[Wed Dec 6 06:05:46 EST 2017] entry='"type":"http-01","status":"pending","uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/zcZnT3Dz8PsBciYJdWw-DXTyuyZ jw8YbVJgOqsbKwI8/2662264351","token":"1ktZsCPaVcd7NF_EVnaGmvR1rO7FJGqO0nxZigwLst 8"'
[Wed Dec 6 06:05:46 EST 2017] token='1ktZsCPaVcd7NF_EVnaGmvR1rO7FJGqO0nxZigwLst 8'
[Wed Dec 6 06:05:46 EST 2017] uri='https://acme-v01.api.letsencrypt.org/acme/ch allenge/zcZnT3Dz8PsBciYJdWw-DXTyuyZjw8YbVJgOqsbKwI8/2662264351'
[Wed Dec 6 06:05:46 EST 2017] keyauthorization='1ktZsCPaVcd7NF_EVnaGmvR1rO7FJGq O0nxZigwLst8.0h1GbjTwTXGzRTYCq1dcwS4pI33E05YpHLVB5IOQ080'
[Wed Dec 6 06:05:46 EST 2017] dvlist='zen.harrisvan.tk#1ktZsCPaVcd7NF_EVnaGmvR1 rO7FJGqO0nxZigwLst8.0h1GbjTwTXGzRTYCq1dcwS4pI33E05YpHLVB5IOQ080#https://acme-v01 .api.letsencrypt.org/acme/challenge/zcZnT3Dz8PsBciYJdWw-DXTyuyZjw8YbVJgOqsbKwI8/ 2662264351#http-01#no'
[Wed Dec 6 06:05:46 EST 2017] vlist='zen.harrisvan.tk#1ktZsCPaVcd7NF_EVnaGmvR1r O7FJGqO0nxZigwLst8.0h1GbjTwTXGzRTYCq1dcwS4pI33E05YpHLVB5IOQ080#https://acme-v01. api.letsencrypt.org/acme/challenge/zcZnT3Dz8PsBciYJdWw-DXTyuyZjw8YbVJgOqsbKwI8/2 662264351#http-01#no,'
[Wed Dec 6 06:05:46 EST 2017] ok, let's start to verify
[Wed Dec 6 06:05:46 EST 2017] Verifying:zen.harrisvan.tk
[Wed Dec 6 06:05:46 EST 2017] d='zen.harrisvan.tk'
[Wed Dec 6 06:05:46 EST 2017] keyauthorization='1ktZsCPaVcd7NF_EVnaGmvR1rO7FJGq O0nxZigwLst8.0h1GbjTwTXGzRTYCq1dcwS4pI33E05YpHLVB5IOQ080'
[Wed Dec 6 06:05:46 EST 2017] uri='https://acme-v01.api.letsencrypt.org/acme/ch allenge/zcZnT3Dz8PsBciYJdWw-DXTyuyZjw8YbVJgOqsbKwI8/2662264351'
[Wed Dec 6 06:05:46 EST 2017] _currentRoot='no'
[Wed Dec 6 06:05:46 EST 2017] Standalone mode server
[Wed Dec 6 06:05:46 EST 2017] ncaddr
[Wed Dec 6 06:05:46 EST 2017] startserver: 5714
[Wed Dec 6 06:05:46 EST 2017] Le_HTTPPort='80'
[Wed Dec 6 06:05:46 EST 2017] Le_Listen_V4
[Wed Dec 6 06:05:46 EST 2017] Le_Listen_V6
[Wed Dec 6 06:05:46 EST 2017] _NC='socat'
[Wed Dec 6 06:05:47 EST 2017] serverproc='6138'
[Wed Dec 6 06:05:47 EST 2017] url='https://acme-v01.api.letsencrypt.org/acme/ch allenge/zcZnT3Dz8PsBciYJdWw-DXTyuyZjw8YbVJgOqsbKwI8/2662264351'
[Wed Dec 6 06:05:47 EST 2017] payload='{"resource": "challenge", "keyAuthorizat ion": "1ktZsCPaVcd7NF_EVnaGmvR1rO7FJGqO0nxZigwLst8.0h1GbjTwTXGzRTYCq1dcwS4pI33E0 5YpHLVB5IOQ080"}'
[Wed Dec 6 06:05:47 EST 2017] POST
[Wed Dec 6 06:05:47 EST 2017] url='https://acme-v01.api.letsencrypt.org/acme/ch allenge/zcZnT3Dz8PsBciYJdWw-DXTyuyZjw8YbVJgOqsbKwI8/2662264351'
[Wed Dec 6 06:05:47 EST 2017] _WGET='wget -q --content-on-error '
[Wed Dec 6 06:05:47 EST 2017] Using sed -i
[Wed Dec 6 06:05:47 EST 2017] _ret='0'
[Wed Dec 6 06:05:47 EST 2017] code='202'
[Wed Dec 6 06:05:47 EST 2017] sleep 2 secs to verify
[Wed Dec 6 06:05:49 EST 2017] checking
[Wed Dec 6 06:05:49 EST 2017] GET
[Wed Dec 6 06:05:49 EST 2017] url='https://acme-v01.api.letsencrypt.org/acme/ch allenge/zcZnT3Dz8PsBciYJdWw-DXTyuyZjw8YbVJgOqsbKwI8/2662264351'
[Wed Dec 6 06:05:49 EST 2017] timeout
[Wed Dec 6 06:05:49 EST 2017] _WGET='wget -q --content-on-error '
[Wed Dec 6 06:05:50 EST 2017] ret='0'
[Wed Dec 6 06:05:50 EST 2017] Pending
[Wed Dec 6 06:05:50 EST 2017] sleep 2 secs to verify
[Wed Dec 6 06:05:52 EST 2017] checking
[Wed Dec 6 06:05:52 EST 2017] GET
[Wed Dec 6 06:05:52 EST 2017] url='https://acme-v01.api.letsencrypt.org/acme/challenge/zcZnT3Dz8PsBciYJdWw-DXTyuyZjw8YbVJgOqsbKwI8/2662264351'
[Wed Dec 6 06:05:52 EST 2017] timeout
[Wed Dec 6 06:05:52 EST 2017] _WGET='wget -q --content-on-error '
[Wed Dec 6 06:05:52 EST 2017] ret='0'
[Wed Dec 6 06:05:52 EST 2017] Pending
[Wed Dec 6 06:05:52 EST 2017] sleep 2 secs to verify
[Wed Dec 6 06:05:54 EST 2017] checking
[Wed Dec 6 06:05:54 EST 2017] GET
[Wed Dec 6 06:05:54 EST 2017] url='https://acme-v01.api.letsencrypt.org/acme/challenge/zcZnT3Dz8PsBciYJdWw-DXTyuyZjw8YbVJgOqsbKwI8/2662264351'
[Wed Dec 6 06:05:54 EST 2017] timeout
[Wed Dec 6 06:05:54 EST 2017] _WGET='wget -q --content-on-error '
[Wed Dec 6 06:05:55 EST 2017] ret='0'
[Wed Dec 6 06:05:55 EST 2017] zen.harrisvan.tk:Verify error:Fetching http://zen.harrisvan.tk/.well-known/acme-challenge/1ktZsCPaVcd7NF_EVnaGmvR1rO7FJGqO0nxZigwLst8: Timeout
[Wed Dec 6 06:05:55 EST 2017] Debug: get token url.
[Wed Dec 6 06:05:55 EST 2017] GET
[Wed Dec 6 06:05:55 EST 2017] url='http://zen.harrisvan.tk/.well-known/acme-challenge/1ktZsCPaVcd7NF_EVnaGmvR1rO7FJGqO0nxZigwLst8'
[Wed Dec 6 06:05:55 EST 2017] timeout='1'
[Wed Dec 6 06:05:55 EST 2017] _WGET='wget -q --content-on-error --timeout=1'
hvtgame
All 24 comments
I can't seem to be able to resolve http://zen.harrisvan.tk/
Is that working for you?
--
Fernando Miguel
On 7 Dec 2017, at 03:45, hvtgame notifications@github.com wrote:
Hello!
i used CLI acme to generate cert LetsEncrypt . it showing timeout error all the time, have anyway to fix this issue ? Please give advice.fab@znode:~$ sudo ~/.acme.sh/acme.sh --issue --standalone -d $FQDN
[Wed Dec 6 06:05:28 EST 2017] Standalone mode.
[Wed Dec 6 06:05:28 EST 2017] Single domain='zen.harrisvan.tk'
[Wed Dec 6 06:05:28 EST 2017] Getting domain auth token for each domain
[Wed Dec 6 06:05:28 EST 2017] Getting webroot for domain='zen.harrisvan.tk'
[Wed Dec 6 06:05:28 EST 2017] Getting new-authz for domain='zen.harrisvan.tk'
[Wed Dec 6 06:05:30 EST 2017] The new-authz request is ok.
[Wed Dec 6 06:05:30 EST 2017] Verifying:zen.harrisvan.tk
[Wed Dec 6 06:05:30 EST 2017] Standalone mode server
[Wed Dec 6 06:05:34 EST 2017] Pending
[Wed Dec 6 06:05:37 EST 2017] Pending
[Wed Dec 6 06:05:39 EST 2017] zen.harrisvan.tk:Verify error:Fetching http://zen .harrisvan.tk/.well-known/acme-challenge/RMWX2kv1m9Ashj_c7Hp8Z3cqTdtZlSFlvBuyBmP jKbA: Timeout
[Wed Dec 6 06:05:39 EST 2017] Please add '--debug' or '--log' to check more det ails.
[Wed Dec 6 06:05:39 EST 2017] See: https://github.com/Neilpang/acme.sh/wiki/How -to-debug-acme.shDebug log
fab@znode:~$ sudo ~/.acme.sh/acme.sh --issue --standalone -d $FQDN --debug
[Wed Dec 6 06:05:44 EST 2017] Lets find script dir.
[Wed Dec 6 06:05:44 EST 2017] SCRIPT='/home/fab/.acme.sh/acme.sh'
[Wed Dec 6 06:05:44 EST 2017] _script='/home/fab/.acme.sh/acme.sh'
[Wed Dec 6 06:05:44 EST 2017] _script_home='/home/fab/.acme.sh'
[Wed Dec 6 06:05:44 EST 2017] Using default home:/home/fab/.acme.sh
[Wed Dec 6 06:05:44 EST 2017] Using config home:/home/fab/.acme.sh
https://github.com/Neilpang/acme.sh
v2.7.5
[Wed Dec 6 06:05:44 EST 2017] Using config home:/home/fab/.acme.sh
[Wed Dec 6 06:05:44 EST 2017] DOMAIN_PATH='/home/fab/.acme.sh/zen.harrisvan.tk'
[Wed Dec 6 06:05:44 EST 2017] Using ACME_DIRECTORY: https://acme-v01.api.letsen crypt.org/directory
[Wed Dec 6 06:05:44 EST 2017] _init api for server: https://acme-v01.api.letsen crypt.org/directory
[Wed Dec 6 06:05:44 EST 2017] ACME_KEY_CHANGE='https://acme-v01.api.letsencrypt .org/acme/key-change'
[Wed Dec 6 06:05:44 EST 2017] ACME_NEW_AUTHZ='https://acme-v01.api.letsencrypt. org/acme/new-authz'
[Wed Dec 6 06:05:44 EST 2017] ACME_NEW_ORDER='https://acme-v01.api.letsencrypt. org/acme/new-cert'
[Wed Dec 6 06:05:44 EST 2017] ACME_NEW_ACCOUNT='https://acme-v01.api.letsencryp t.org/acme/new-reg'
[Wed Dec 6 06:05:44 EST 2017] ACME_REVOKE_CERT='https://acme-v01.api.letsencryp t.org/acme/revoke-cert'
[Wed Dec 6 06:05:44 EST 2017] Le_NextRenewTime
[Wed Dec 6 06:05:44 EST 2017] _on_before_issue
[Wed Dec 6 06:05:44 EST 2017] Le_LocalAddress
[Wed Dec 6 06:05:44 EST 2017] Check for domain='zen.harrisvan.tk'
[Wed Dec 6 06:05:44 EST 2017] _currentRoot='no'
[Wed Dec 6 06:05:44 EST 2017] Standalone mode.
[Wed Dec 6 06:05:44 EST 2017] _checkport='80'
[Wed Dec 6 06:05:44 EST 2017] _checkaddr
[Wed Dec 6 06:05:44 EST 2017] Using: ss
[Wed Dec 6 06:05:44 EST 2017] _saved_account_key_hash is not changed, skip regi ster account.
[Wed Dec 6 06:05:44 EST 2017] Read key length:
[Wed Dec 6 06:05:44 EST 2017] _createcsr
[Wed Dec 6 06:05:44 EST 2017] Single domain='zen.harrisvan.tk'
[Wed Dec 6 06:05:44 EST 2017] Getting domain auth token for each domain
[Wed Dec 6 06:05:44 EST 2017] Getting webroot for domain='zen.harrisvan.tk'
[Wed Dec 6 06:05:44 EST 2017] _w='no'
[Wed Dec 6 06:05:44 EST 2017] _currentRoot='no'
[Wed Dec 6 06:05:44 EST 2017] Getting new-authz for domain='zen.harrisvan.tk'
[Wed Dec 6 06:05:44 EST 2017] _init api for server: https://acme-v01.api.letsen crypt.org/directory
[Wed Dec 6 06:05:44 EST 2017] ACME_KEY_CHANGE='https://acme-v01.api.letsencrypt .org/acme/key-change'
[Wed Dec 6 06:05:44 EST 2017] ACME_NEW_AUTHZ='https://acme-v01.api.letsencrypt. org/acme/new-authz'
[Wed Dec 6 06:05:44 EST 2017] ACME_NEW_ORDER='https://acme-v01.api.letsencrypt. org/acme/new-cert'
[Wed Dec 6 06:05:44 EST 2017] ACME_NEW_ACCOUNT='https://acme-v01.api.letsencryp t.org/acme/new-reg'
[Wed Dec 6 06:05:44 EST 2017] ACME_REVOKE_CERT='https://acme-v01.api.letsencryp t.org/acme/revoke-cert'
[Wed Dec 6 06:05:44 EST 2017] Try new-authz for the 0 time.
[Wed Dec 6 06:05:44 EST 2017] url='https://acme-v01.api.letsencrypt.org/acme/ne w-authz'
[Wed Dec 6 06:05:44 EST 2017] payload='{"resource": "new-authz", "identifier": {"type": "dns", "value": "zen.harrisvan.tk"}}'
[Wed Dec 6 06:05:44 EST 2017] RSA key
[Wed Dec 6 06:05:44 EST 2017] GET
[Wed Dec 6 06:05:44 EST 2017] url='https://acme-v01.api.letsencrypt.org/directo ry'
[Wed Dec 6 06:05:44 EST 2017] timeout
[Wed Dec 6 06:05:44 EST 2017] _WGET='wget -q --content-on-error '
[Wed Dec 6 06:05:45 EST 2017] ret='0'
[Wed Dec 6 06:05:45 EST 2017] POST
[Wed Dec 6 06:05:45 EST 2017] url='https://acme-v01.api.letsencrypt.org/acme/ne w-authz'
[Wed Dec 6 06:05:45 EST 2017] _WGET='wget -q --content-on-error '
[Wed Dec 6 06:05:46 EST 2017] Using sed -i
[Wed Dec 6 06:05:46 EST 2017] _ret='0'
[Wed Dec 6 06:05:46 EST 2017] code='201'
[Wed Dec 6 06:05:46 EST 2017] The new-authz request is ok.
[Wed Dec 6 06:05:46 EST 2017] entry='"type":"http-01","status":"pending","uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/zcZnT3Dz8PsBciYJdWw-DXTyuyZ jw8YbVJgOqsbKwI8/2662264351","token":"1ktZsCPaVcd7NF_EVnaGmvR1rO7FJGqO0nxZigwLst 8"'
[Wed Dec 6 06:05:46 EST 2017] token='1ktZsCPaVcd7NF_EVnaGmvR1rO7FJGqO0nxZigwLst 8'
[Wed Dec 6 06:05:46 EST 2017] uri='https://acme-v01.api.letsencrypt.org/acme/ch allenge/zcZnT3Dz8PsBciYJdWw-DXTyuyZjw8YbVJgOqsbKwI8/2662264351'
[Wed Dec 6 06:05:46 EST 2017] keyauthorization='1ktZsCPaVcd7NF_EVnaGmvR1rO7FJGq O0nxZigwLst8.0h1GbjTwTXGzRTYCq1dcwS4pI33E05YpHLVB5IOQ080'
[Wed Dec 6 06:05:46 EST 2017] dvlist='zen.harrisvan.tk#1ktZsCPaVcd7NF_EVnaGmvR1 rO7FJGqO0nxZigwLst8.0h1GbjTwTXGzRTYCq1dcwS4pI33E05YpHLVB5IOQ080#https://acme-v01 .api.letsencrypt.org/acme/challenge/zcZnT3Dz8PsBciYJdWw-DXTyuyZjw8YbVJgOqsbKwI8/ 2662264351#http-01#no'
[Wed Dec 6 06:05:46 EST 2017] vlist='zen.harrisvan.tk#1ktZsCPaVcd7NF_EVnaGmvR1r O7FJGqO0nxZigwLst8.0h1GbjTwTXGzRTYCq1dcwS4pI33E05YpHLVB5IOQ080#https://acme-v01. api.letsencrypt.org/acme/challenge/zcZnT3Dz8PsBciYJdWw-DXTyuyZjw8YbVJgOqsbKwI8/2 662264351#http-01#no,'
[Wed Dec 6 06:05:46 EST 2017] ok, let's start to verify
[Wed Dec 6 06:05:46 EST 2017] Verifying:zen.harrisvan.tk
[Wed Dec 6 06:05:46 EST 2017] d='zen.harrisvan.tk'
[Wed Dec 6 06:05:46 EST 2017] keyauthorization='1ktZsCPaVcd7NF_EVnaGmvR1rO7FJGq O0nxZigwLst8.0h1GbjTwTXGzRTYCq1dcwS4pI33E05YpHLVB5IOQ080'
[Wed Dec 6 06:05:46 EST 2017] uri='https://acme-v01.api.letsencrypt.org/acme/ch allenge/zcZnT3Dz8PsBciYJdWw-DXTyuyZjw8YbVJgOqsbKwI8/2662264351'
[Wed Dec 6 06:05:46 EST 2017] _currentRoot='no'
[Wed Dec 6 06:05:46 EST 2017] Standalone mode server
[Wed Dec 6 06:05:46 EST 2017] ncaddr
[Wed Dec 6 06:05:46 EST 2017] startserver: 5714
[Wed Dec 6 06:05:46 EST 2017] Le_HTTPPort='80'
[Wed Dec 6 06:05:46 EST 2017] Le_Listen_V4
[Wed Dec 6 06:05:46 EST 2017] Le_Listen_V6
[Wed Dec 6 06:05:46 EST 2017] _NC='socat'
[Wed Dec 6 06:05:47 EST 2017] serverproc='6138'
[Wed Dec 6 06:05:47 EST 2017] url='https://acme-v01.api.letsencrypt.org/acme/ch allenge/zcZnT3Dz8PsBciYJdWw-DXTyuyZjw8YbVJgOqsbKwI8/2662264351'
[Wed Dec 6 06:05:47 EST 2017] payload='{"resource": "challenge", "keyAuthorizat ion": "1ktZsCPaVcd7NF_EVnaGmvR1rO7FJGqO0nxZigwLst8.0h1GbjTwTXGzRTYCq1dcwS4pI33E0 5YpHLVB5IOQ080"}'
[Wed Dec 6 06:05:47 EST 2017] POST
[Wed Dec 6 06:05:47 EST 2017] url='https://acme-v01.api.letsencrypt.org/acme/ch allenge/zcZnT3Dz8PsBciYJdWw-DXTyuyZjw8YbVJgOqsbKwI8/2662264351'
[Wed Dec 6 06:05:47 EST 2017] _WGET='wget -q --content-on-error '
[Wed Dec 6 06:05:47 EST 2017] Using sed -i
[Wed Dec 6 06:05:47 EST 2017] _ret='0'
[Wed Dec 6 06:05:47 EST 2017] code='202'
[Wed Dec 6 06:05:47 EST 2017] sleep 2 secs to verify
[Wed Dec 6 06:05:49 EST 2017] checking
[Wed Dec 6 06:05:49 EST 2017] GET
[Wed Dec 6 06:05:49 EST 2017] url='https://acme-v01.api.letsencrypt.org/acme/ch allenge/zcZnT3Dz8PsBciYJdWw-DXTyuyZjw8YbVJgOqsbKwI8/2662264351'
[Wed Dec 6 06:05:49 EST 2017] timeout
[Wed Dec 6 06:05:49 EST 2017] _WGET='wget -q --content-on-error '
[Wed Dec 6 06:05:50 EST 2017] ret='0'
[Wed Dec 6 06:05:50 EST 2017] Pending
[Wed Dec 6 06:05:50 EST 2017] sleep 2 secs to verify
[Wed Dec 6 06:05:52 EST 2017] checking
[Wed Dec 6 06:05:52 EST 2017] GET
[Wed Dec 6 06:05:52 EST 2017] url='https://acme-v01.api.letsencrypt.org/acme/challenge/zcZnT3Dz8PsBciYJdWw-DXTyuyZjw8YbVJgOqsbKwI8/2662264351'
[Wed Dec 6 06:05:52 EST 2017] timeout
[Wed Dec 6 06:05:52 EST 2017] _WGET='wget -q --content-on-error '
[Wed Dec 6 06:05:52 EST 2017] ret='0'
[Wed Dec 6 06:05:52 EST 2017] Pending
[Wed Dec 6 06:05:52 EST 2017] sleep 2 secs to verify
[Wed Dec 6 06:05:54 EST 2017] checking
[Wed Dec 6 06:05:54 EST 2017] GET
[Wed Dec 6 06:05:54 EST 2017] url='https://acme-v01.api.letsencrypt.org/acme/challenge/zcZnT3Dz8PsBciYJdWw-DXTyuyZjw8YbVJgOqsbKwI8/2662264351'
[Wed Dec 6 06:05:54 EST 2017] timeout
[Wed Dec 6 06:05:54 EST 2017] _WGET='wget -q --content-on-error '
[Wed Dec 6 06:05:55 EST 2017] ret='0'
[Wed Dec 6 06:05:55 EST 2017] zen.harrisvan.tk:Verify error:Fetching http://zen.harrisvan.tk/.well-known/acme-challenge/1ktZsCPaVcd7NF_EVnaGmvR1rO7FJGqO0nxZigwLst8: Timeout
[Wed Dec 6 06:05:55 EST 2017] Debug: get token url.
[Wed Dec 6 06:05:55 EST 2017] GET
[Wed Dec 6 06:05:55 EST 2017] url='http://zen.harrisvan.tk/.well-known/acme-challenge/1ktZsCPaVcd7NF_EVnaGmvR1rO7FJGqO0nxZigwLst8'
[Wed Dec 6 06:05:55 EST 2017] timeout='1'
[Wed Dec 6 06:05:55 EST 2017] _WGET='wget -q --content-on-error --timeout=1'—
You are receiving this because you are subscribed to this thread.
Reply to this email directly, view it on GitHub, or mute the thread.
FernandoMiguel
on 7 Dec 2017
ping to domain still work. Have any wrong ?
hvtgame
on 7 Dec 2017
not sure about you, but i cant load it
$ curl -vvvv http://zen.harrisvan.tk/
* Trying 27.74.124.195...
* TCP_NODELAY set
When using standalone mode you have to be able to accept connections on port 80 from the internet. LE does not publish their origin IPs so you have to open port 80 from everywhere
speedmann
on 7 Dec 2017
I have the same error: even with port 80 open
amaczen
on 7 Dec 2017
@amaczen do you have a log we can look at ?
FernandoMiguel
on 7 Dec 2017
Debug:
[Thu Dec 7 14:52:55 EST 2017] Lets find script dir.
[Thu Dec 7 14:52:55 EST 2017] _SCRIPT_='/home/mac/.acme.sh/acme.sh'
[Thu Dec 7 14:52:55 EST 2017] _script='/home/mac/.acme.sh/acme.sh'
[Thu Dec 7 14:52:55 EST 2017] _script_home='/home/mac/.acme.sh'
[Thu Dec 7 14:52:55 EST 2017] Using default home:/home/mac/.acme.sh
[Thu Dec 7 14:52:55 EST 2017] Using config home:/home/mac/.acme.sh
https://github.com/Neilpang/acme.sh
v2.7.5
[Thu Dec 7 14:52:55 EST 2017] Using config home:/home/mac/.acme.sh
[Thu Dec 7 14:52:55 EST 2017] DOMAIN_PATH='/home/mac/.acme.sh/znode.maczen.trad e'
[Thu Dec 7 14:52:55 EST 2017] Using ACME_DIRECTORY: https://acme-v01.api.letsen crypt.org/directory
[Thu Dec 7 14:52:55 EST 2017] _init api for server: https://acme-v01.api.letsen crypt.org/directory
[Thu Dec 7 14:52:55 EST 2017] ACME_KEY_CHANGE='https://acme-v01.api.letsencrypt .org/acme/key-change'
[Thu Dec 7 14:52:55 EST 2017] ACME_NEW_AUTHZ='https://acme-v01.api.letsencrypt. org/acme/new-authz'
[Thu Dec 7 14:52:55 EST 2017] ACME_NEW_ORDER='https://acme-v01.api.letsencrypt. org/acme/new-cert'
[Thu Dec 7 14:52:55 EST 2017] ACME_NEW_ACCOUNT='https://acme-v01.api.letsencryp t.org/acme/new-reg'
[Thu Dec 7 14:52:55 EST 2017] ACME_REVOKE_CERT='https://acme-v01.api.letsencryp t.org/acme/revoke-cert'
[Thu Dec 7 14:52:55 EST 2017] Le_NextRenewTime
[Thu Dec 7 14:52:55 EST 2017] _on_before_issue
[Thu Dec 7 14:52:55 EST 2017] Le_LocalAddress
[Thu Dec 7 14:52:55 EST 2017] Check for domain='znode.maczen.trade'
[Thu Dec 7 14:52:55 EST 2017] _currentRoot='no'
[Thu Dec 7 14:52:55 EST 2017] Standalone mode.
[Thu Dec 7 14:52:55 EST 2017] _checkport='80'
[Thu Dec 7 14:52:55 EST 2017] _checkaddr
[Thu Dec 7 14:52:55 EST 2017] Using: ss
[Thu Dec 7 14:52:55 EST 2017] _saved_account_key_hash is not changed, skip regi ster account.
[Thu Dec 7 14:52:55 EST 2017] Read key length:
[Thu Dec 7 14:52:55 EST 2017] _createcsr
[Thu Dec 7 14:52:55 EST 2017] Single domain='znode.maczen.trade'
[Thu Dec 7 14:52:55 EST 2017] Getting domain auth token for each domain
[Thu Dec 7 14:52:55 EST 2017] Getting webroot for domain='znode.maczen.trade'
[Thu Dec 7 14:52:55 EST 2017] _w='no'
[Thu Dec 7 14:52:55 EST 2017] _currentRoot='no'
[Thu Dec 7 14:52:55 EST 2017] Getting new-authz for domain='znode.maczen.trade'
[Thu Dec 7 14:52:55 EST 2017] _init api for server: https://acme-v01.api.letsen crypt.org/directory
[Thu Dec 7 14:52:55 EST 2017] ACME_KEY_CHANGE='https://acme-v01.api.letsencrypt .org/acme/key-change'
[Thu Dec 7 14:52:55 EST 2017] ACME_NEW_AUTHZ='https://acme-v01.api.letsencrypt. org/acme/new-authz'
[Thu Dec 7 14:52:55 EST 2017] ACME_NEW_ORDER='https://acme-v01.api.letsencrypt. org/acme/new-cert'
[Thu Dec 7 14:52:55 EST 2017] ACME_NEW_ACCOUNT='https://acme-v01.api.letsencryp t.org/acme/new-reg'
[Thu Dec 7 14:52:55 EST 2017] ACME_REVOKE_CERT='https://acme-v01.api.letsencryp t.org/acme/revoke-cert'
[Thu Dec 7 14:52:55 EST 2017] Try new-authz for the 0 time.
[Thu Dec 7 14:52:55 EST 2017] url='https://acme-v01.api.letsencrypt.org/acme/ne w-authz'
[Thu Dec 7 14:52:55 EST 2017] payload='{"resource": "new-authz", "identifier": {"type": "dns", "value": "znode.maczen.trade"}}'
[Thu Dec 7 14:52:55 EST 2017] RSA key
[Thu Dec 7 14:52:55 EST 2017] GET
[Thu Dec 7 14:52:55 EST 2017] url='https://acme-v01.api.letsencrypt.org/directo ry'
[Thu Dec 7 14:52:55 EST 2017] timeout
[Thu Dec 7 14:52:55 EST 2017] _CURL='curl -L --silent --dump-header /home/mac/. acme.sh/http.header '
[Thu Dec 7 14:52:55 EST 2017] ret='0'
[Thu Dec 7 14:52:55 EST 2017] POST
[Thu Dec 7 14:52:55 EST 2017] url='https://acme-v01.api.letsencrypt.org/acme/ne w-authz'
[Thu Dec 7 14:52:55 EST 2017] _CURL='curl -L --silent --dump-header /home/mac/. acme.sh/http.header '
[Thu Dec 7 14:52:56 EST 2017] _ret='0'
[Thu Dec 7 14:52:56 EST 2017] code='201'
[Thu Dec 7 14:52:56 EST 2017] The new-authz request is ok.
[Thu Dec 7 14:52:56 EST 2017] entry='"type":"http-01","status":"pending","uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/ge2pu2hADgtXuqJWC1qFeVbS2WL bzSEuS63LYkH_n6Q/2667853177","token":"jKesKlug2a5xs37CEoBC0NTqQs-SemnP_WOrFkmKQQ U"'
[Thu Dec 7 14:52:56 EST 2017] token='jKesKlug2a5xs37CEoBC0NTqQs-SemnP_WOrFkmKQQ U'
[Thu Dec 7 14:52:56 EST 2017] uri='https://acme-v01.api.letsencrypt.org/acme/ch allenge/ge2pu2hADgtXuqJWC1qFeVbS2WLbzSEuS63LYkH_n6Q/2667853177'
[Thu Dec 7 14:52:56 EST 2017] keyauthorization='jKesKlug2a5xs37CEoBC0NTqQs-Semn P_WOrFkmKQQU.DLM-1w5vFfYcdnYRmbz9eYg5LjIdogWqEKY3q8QCTR4'
[Thu Dec 7 14:52:56 EST 2017] dvlist='znode.maczen.trade#jKesKlug2a5xs37CEoBC0N TqQs-SemnP_WOrFkmKQQU.DLM-1w5vFfYcdnYRmbz9eYg5LjIdogWqEKY3q8QCTR4#https://acme-v 01.api.letsencrypt.org/acme/challenge/ge2pu2hADgtXuqJWC1qFeVbS2WLbzSEuS63LYkH_n6 Q/2667853177#http-01#no'
[Thu Dec 7 14:52:56 EST 2017] vlist='znode.maczen.trade#jKesKlug2a5xs37CEoBC0NT qQs-SemnP_WOrFkmKQQU.DLM-1w5vFfYcdnYRmbz9eYg5LjIdogWqEKY3q8QCTR4#https://acme-v0 1.api.letsencrypt.org/acme/challenge/ge2pu2hADgtXuqJWC1qFeVbS2WLbzSEuS63LYkH_n6Q /2667853177#http-01#no,'
[Thu Dec 7 14:52:56 EST 2017] ok, let's start to verify
[Thu Dec 7 14:52:56 EST 2017] Verifying:znode.maczen.trade
[Thu Dec 7 14:52:56 EST 2017] d='znode.maczen.trade'
[Thu Dec 7 14:52:56 EST 2017] keyauthorization='jKesKlug2a5xs37CEoBC0NTqQs-Semn P_WOrFkmKQQU.DLM-1w5vFfYcdnYRmbz9eYg5LjIdogWqEKY3q8QCTR4'
[Thu Dec 7 14:52:56 EST 2017] uri='https://acme-v01.api.letsencrypt.org/acme/ch allenge/ge2pu2hADgtXuqJWC1qFeVbS2WLbzSEuS63LYkH_n6Q/2667853177'
[Thu Dec 7 14:52:56 EST 2017] _currentRoot='no'
[Thu Dec 7 14:52:56 EST 2017] Standalone mode server
[Thu Dec 7 14:52:56 EST 2017] ncaddr
[Thu Dec 7 14:52:56 EST 2017] startserver: 30563
[Thu Dec 7 14:52:56 EST 2017] Le_HTTPPort='80'
[Thu Dec 7 14:52:56 EST 2017] Le_Listen_V4
[Thu Dec 7 14:52:56 EST 2017] Le_Listen_V6
[Thu Dec 7 14:52:56 EST 2017] _NC='socat'
[Thu Dec 7 14:52:57 EST 2017] serverproc='30983'
[Thu Dec 7 14:52:57 EST 2017] url='https://acme-v01.api.letsencrypt.org/acme/ch allenge/ge2pu2hADgtXuqJWC1qFeVbS2WLbzSEuS63LYkH_n6Q/2667853177'
[Thu Dec 7 14:52:57 EST 2017] payload='{"resource": "challenge", "keyAuthorizat ion": "jKesKlug2a5xs37CEoBC0NTqQs-SemnP_WOrFkmKQQU.DLM-1w5vFfYcdnYRmbz9eYg5LjIdo gWqEKY3q8QCTR4"}'
[Thu Dec 7 14:52:58 EST 2017] POST
[Thu Dec 7 14:52:58 EST 2017] url='https://acme-v01.api.letsencrypt.org/acme/ch allenge/ge2pu2hADgtXuqJWC1qFeVbS2WLbzSEuS63LYkH_n6Q/2667853177'
[Thu Dec 7 14:52:58 EST 2017] _CURL='curl -L --silent --dump-header /home/mac/. acme.sh/http.header '
[Thu Dec 7 14:52:58 EST 2017] _ret='0'
[Thu Dec 7 14:52:58 EST 2017] code='202'
[Thu Dec 7 14:52:58 EST 2017] sleep 2 secs to verify
[Thu Dec 7 14:53:00 EST 2017] checking
[Thu Dec 7 14:53:00 EST 2017] GET
[Thu Dec 7 14:53:00 EST 2017] url='https://acme-v01.api.letsencrypt.org/acme/ch allenge/ge2pu2hADgtXuqJWC1qFeVbS2WLbzSEuS63LYkH_n6Q/2667853177'
[Thu Dec 7 14:53:00 EST 2017] timeout
[Thu Dec 7 14:53:00 EST 2017] _CURL='curl -L --silent --dump-header /home/mac/. acme.sh/http.header '
[Thu Dec 7 14:53:01 EST 2017] ret='0'
[Thu Dec 7 14:53:01 EST 2017] Pending
[Thu Dec 7 14:53:01 EST 2017] sleep 2 secs to verify
[Thu Dec 7 14:53:03 EST 2017] checking
[Thu Dec 7 14:53:03 EST 2017] GET
[Thu Dec 7 14:53:03 EST 2017] url='https://acme-v01.api.letsencrypt.org/acme/ch allenge/ge2pu2hADgtXuqJWC1qFeVbS2WLbzSEuS63LYkH_n6Q/2667853177'
[Thu Dec 7 14:53:03 EST 2017] timeout
[Thu Dec 7 14:53:03 EST 2017] _CURL='curl -L --silent --dump-header /home/mac/. acme.sh/http.header '
[Thu Dec 7 14:53:03 EST 2017] ret='0'
[Thu Dec 7 14:53:03 EST 2017] Pending
[Thu Dec 7 14:53:03 EST 2017] sleep 2 secs to verify
[Thu Dec 7 14:53:05 EST 2017] checking
[Thu Dec 7 14:53:05 EST 2017] GET
[Thu Dec 7 14:53:05 EST 2017] url='https://acme-v01.api.letsencrypt.org/acme/ch allenge/ge2pu2hADgtXuqJWC1qFeVbS2WLbzSEuS63LYkH_n6Q/2667853177'
[Thu Dec 7 14:53:05 EST 2017] timeout
[Thu Dec 7 14:53:05 EST 2017] _CURL='curl -L --silent --dump-header /home/mac/. acme.sh/http.header '
[Thu Dec 7 14:53:06 EST 2017] ret='0'
[Thu Dec 7 14:53:06 EST 2017] Pending
[Thu Dec 7 14:53:06 EST 2017] sleep 2 secs to verify
[Thu Dec 7 14:53:08 EST 2017] checking
[Thu Dec 7 14:53:08 EST 2017] GET
[Thu Dec 7 14:53:08 EST 2017] url='https://acme-v01.api.letsencrypt.org/acme/ch allenge/ge2pu2hADgtXuqJWC1qFeVbS2WLbzSEuS63LYkH_n6Q/2667853177'
[Thu Dec 7 14:53:08 EST 2017] timeout
[Thu Dec 7 14:53:08 EST 2017] _CURL='curl -L --silent --dump-header /home/mac/. acme.sh/http.header '
[Thu Dec 7 14:53:08 EST 2017] ret='0'
[Thu Dec 7 14:53:08 EST 2017] Pending
[Thu Dec 7 14:53:08 EST 2017] sleep 2 secs to verify
[Thu Dec 7 14:53:10 EST 2017] checking
[Thu Dec 7 14:53:10 EST 2017] GET
[Thu Dec 7 14:53:10 EST 2017] url='https://acme-v01.api.letsencrypt.org/acme/ch allenge/ge2pu2hADgtXuqJWC1qFeVbS2WLbzSEuS63LYkH_n6Q/2667853177'
[Thu Dec 7 14:53:10 EST 2017] timeout
[Thu Dec 7 14:53:10 EST 2017] _CURL='curl -L --silent --dump-header /home/mac/. acme.sh/http.header '
[Thu Dec 7 14:53:11 EST 2017] ret='0'
[Thu Dec 7 14:53:11 EST 2017] znode.maczen.trade:Verify error:Fetching http://z node.maczen.trade/.well-known/acme-challenge/jKesKlug2a5xs37CEoBC0NTqQs-SemnP_WO rFkmKQQU: Timeout
[Thu Dec 7 14:53:11 EST 2017] Debug: get token url.
[Thu Dec 7 14:53:11 EST 2017] GET
[Thu Dec 7 14:53:11 EST 2017] url='http://znode.maczen.trade/.well-known/acme-c hallenge/jKesKlug2a5xs37CEoBC0NTqQs-SemnP_WOrFkmKQQU'
[Thu Dec 7 14:53:11 EST 2017] timeout='1'
[Thu Dec 7 14:53:11 EST 2017] _CURL='curl -L --silent --dump-header /home/mac/. acme.sh/http.header --connect-timeout 1'
jKesKlug2a5xs37CEoBC0NTqQs-SemnP_WOrFkmKQQU.DLM-1w5vFfYcdnYRmbz9eYg5LjIdogWqEKY3 q8QCTR4
[Thu Dec 7 14:53:11 EST 2017] ret='0'
[Thu Dec 7 14:53:11 EST 2017] Skip for removelevel:
[Thu Dec 7 14:53:11 EST 2017] pid='30983'
[Thu Dec 7 14:53:11 EST 2017] No need to restore nginx, skip.
[Thu Dec 7 14:53:11 EST 2017] _clearupdns
[Thu Dec 7 14:53:11 EST 2017] skip dns.
[Thu Dec 7 14:53:11 EST 2017] _on_issue_err
[Thu Dec 7 14:53:11 EST 2017] Please add '--debug' or '--log' to check more det ails.
[Thu Dec 7 14:53:11 EST 2017] See: https://github.com/Neilpang/acme.sh/wiki/How -to-debug-acme.sh
[Thu Dec 7 14:53:11 EST 2017] url='https://acme-v01.api.letsencrypt.org/acme/ch allenge/ge2pu2hADgtXuqJWC1qFeVbS2WLbzSEuS63LYkH_n6Q/2667853177'
[Thu Dec 7 14:53:11 EST 2017] payload='{"resource": "challenge", "keyAuthorizat ion": "jKesKlug2a5xs37CEoBC0NTqQs-SemnP_WOrFkmKQQU.DLM-1w5vFfYcdnYRmbz9eYg5LjIdo gWqEKY3q8QCTR4"}'
[Thu Dec 7 14:53:11 EST 2017] POST
[Thu Dec 7 14:53:11 EST 2017] url='https://acme-v01.api.letsencrypt.org/acme/ch allenge/ge2pu2hADgtXuqJWC1qFeVbS2WLbzSEuS63LYkH_n6Q/2667853177'
[Thu Dec 7 14:53:11 EST 2017] _CURL='curl -L --silent --dump-header /home/mac/. acme.sh/http.header '
[Thu Dec 7 14:53:12 EST 2017] _ret='0'
[Thu Dec 7 14:53:12 EST 2017] code='400'
[Thu Dec 7 14:53:12 EST 2017] Diagnosis versions:
amaczen
on 7 Dec 2017
@amaczen i can not ping to your domain ?
hvtgame
on 8 Dec 2017
Status: active
To Action From
-- ------ ----
[ 1] 22/tcp LIMIT IN Anywhere
[ 2] 80/tcp ALLOW IN Anywhere
mac@znode:~$ ping znode.maczen.trade
PING znode.maczen.trade (54.37.224.23) 56(84) bytes of data.
64 bytes from vps489949.ovh.net (54.37.224.23): icmp_seq=1 ttl=64 time=0.041 ms
64 bytes from vps489949.ovh.net (54.37.224.23): icmp_seq=2 ttl=64 time=0.040 ms
64 bytes from vps489949.ovh.net (54.37.224.23): icmp_seq=3 ttl=64 time=0.051 ms
mac@znode:~$ curl -vvvv znode.maczen.trade
- Rebuilt URL to: znode.maczen.trade/
- Trying 54.37.224.23...
- connect to 54.37.224.23 port 80 failed: Connection refused
- Trying 54.37.224.23...
- connect to 54.37.224.23 port 80 failed: Connection refused
- Failed to connect to znode.maczen.trade port 80: Connection refused
amaczen
on 8 Dec 2017
you are also gonna need to open 443 if you plan to serve TLS traffic :)
FernandoMiguel
on 8 Dec 2017
mac@znode:~$ sudo ufw status numbered
[sudo] password for mac:
Status: active
To Action From
-- ------ ----
[ 1] 22/tcp LIMIT IN Anywhere
[ 2] 80/tcp ALLOW IN Anywhere
[ 3] 443/tcp ALLOW IN Anywhere
[ 4] 9033/tcp ALLOW IN Anywhere
[ 5] 22/tcp (v6) LIMIT IN Anywhere (v6)
[ 6] 80/tcp (v6) ALLOW IN Anywhere (v6)
[ 7] 443/tcp (v6) ALLOW IN Anywhere (v6)
[ 8] 9033/tcp (v6) ALLOW IN Anywhere (v6)
amaczen
on 8 Dec 2017
i still cant resolve your domain @amaczen
curl -vvvv znode.maczen.trade
* Rebuilt URL to: znode.maczen.trade/
* Trying 88.80.190.66...
* TCP_NODELAY set
can you try again please: I have had someone else ping it successfully
amaczen
on 8 Dec 2017
@amaczen
sorry mate, you still havent that setup properly
$ curl -vvvvv znode.maczen.trade
* Rebuilt URL to: znode.maczen.trade/
* Trying 54.37.224.23...
* TCP_NODELAY set
* Connection failed
* connect to 54.37.224.23 port 80 failed: Connection refused
* Failed to connect to znode.maczen.trade port 80: Connection refused
* Closing connection 0
curl: (7) Failed to connect to znode.maczen.trade port 80: Connection refused
@amaczen you can ping, but 80 and 443 are closed:
Starting Nmap 7.40 ( https://nmap.org ) at 2018-01-06 14:37 CET
Nmap scan report for znode.maczen.trade (54.37.224.23)
Host is up (0.00029s latency).
rDNS record for 54.37.224.23: 23.ip-54-37-224.eu
Not shown: 997 filtered ports
PORT STATE SERVICE
22/tcp open ssh
80/tcp closed http
443/tcp closed https
dugwood
on 6 Jan 2018
@amaczen @dugwood @FernandoMiguel @speedmann @hvtgame
Im actually having the same problem, where Im getting a timeout on the creation of a certificate, on my computer/server it shows ports 80 and 443 are open with sudo ufw status, but using curl it shows that port 80 is closed. Im not super experienced in this. I created a domain name like OP for a zencash SN "aznode.chworkersn.club."
Here are the input and the output for ufw status
ak@ZNodeak-desktop:~$ sudo ufw status numbered
Status: active
To Action From
[ 1] 22/tcp LIMIT IN Anywhere
[ 2] 80/tcp ALLOW IN Anywhere
[ 3] 443/tcp ALLOW IN Anywhere
[ 4] 9033/tcp ALLOW IN Anywhere
[ 5] 80 ALLOW IN Anywhere
[ 6] 443 ALLOW IN Anywhere
[ 7] 22/tcp (v6) LIMIT IN Anywhere (v6)
[ 8] 80/tcp (v6) ALLOW IN Anywhere (v6)
[ 9] 443/tcp (v6) ALLOW IN Anywhere (v6)
[10] 9033/tcp (v6) ALLOW IN Anywhere (v6)
[11] 80 (v6) ALLOW IN Anywhere (v6)
[12] 443 (v6) ALLOW IN Anywhere (v6)
and below are the input and the output for curl
ak@ZNodeak-desktop:~$ curl -v aznode.chworkersn.club
* Rebuilt URL to: aznode.chworkersn.club/
* Trying 68.105.3.170...
* connect to 68.105.3.170 port 80 failed: Connection refused
* Failed to connect to aznode.chworkersn.club port 80: Connection refused
* Closing connection 0
curl: (7) Failed to connect to aznode.chworkersn.club port 80: Connection refused
wisterjeff
on 1 Mar 2018
@wisterjeff you're testing it wrong.
Your test on sudo ufw is just your desktop computer, not the distant server. So it doesn't matter.
Running nmap:
Starting Nmap 7.40 ( https://nmap.org ) at 2018-03-01 08:51 CET
Nmap scan report for aznode.chworkersn.club (68.105.3.170)
Host is up (0.16s latency).
rDNS record for 68.105.3.170: ip68-105-3-170.br.br.cox.net
PORT STATE SERVICE
80/tcp filtered http
443/tcp filtered https
=> both ports are fitered (also only the 80 is necessary here).
So you need to open ports on aznode.chworkersn.club, which is the server you want a certificate for. What is the setup on your server? Which http server do you use? Why are ports closed?
dugwood
on 1 Mar 2018
Ok that makes sense. Im at a loss of where to go to open the port though.
Im using namecheap.com to host the domain, but instead of using VPS Im using my own physical computer (ubuntu 16.04) to be the server. So it is a server/ubuntu computer behind a router. I have also tried port forwarding 80 and 9033 on the router for the server computer's IP address.
Using nmap -p 80 aznode.chworkersn.club I can see that port 80 is still closed. Im not sure where to go to open the port.
I've looked around the namecheap dashboard with no luck. I have also entered the router config and made sure port forwarding was configured for ports 80 and 9033 as advised by ZenCash support team. I've been googling for several hours on how to open the port, but Im missing something...
Im looking for a different interface to configure the ports on the domain name?
wisterjeff
on 1 Mar 2018
You're clearly asking for things that shouldn't be answered here... If you need a certificate for your domain:
- point your domain name to one IP
- add a webserver on this very IP
- run acme.sh from this IP
You don't need anything else. If you don't plan to set a webserver (port 80!) on your domain, maybe you just want an SSL certificate (for many other uses), and you have the DNS validation option for that: https://github.com/Neilpang/acme.sh/wiki/How-to-issue-a-cert => manual DNS (note that you'll have to do that every 3 months).
So when you've setup your webserver and your DNS record points to it, and you still have an issue, open a new issue. Else you just need to RTFM :-)
dugwood
on 1 Mar 2018
k thanks, if I knew the answer I wouldn't be asking. If things were clear to me, I wouldn't be here genius. Yeah and I read tons of support pages and readme for acme. Im doin this shit by the book. Sometimes people know so much they cant relate with not having known. Everything I've read so far hasn't worked out for me. If you don't want to help don't reply, but shocker, ppl come to this forum for help, not "read the manual" or "google."
As far as I know Ive done this and it isn't working. I was trying to be helpful by putting my questions here where the OP had the literal same issue.
point your domain name to one IP
add a webserver on this very IP
run acme.sh from this IP
but hey I've literally never worked on a server before. Maybe I'm missing something, maybe I should ask a pro. Im gonna go google "add a webserver to IP" because I don't know what that entails
So, nevermind I'm going to go waste my time elsewhere.
wisterjeff
on 1 Mar 2018
Sorry for trying to help you. My bad. Note that's not a forum: that's a bugtracker. You don't have an issue with acme.sh, you've got an issue with pointing a DNS to the right spot. Or installing a webserver (say nginx, Apache, ...). I'm sorry you ended up here before doing that. I'm sorry I tried to help, you're on your own now.
dugwood
on 1 Mar 2018
Thanks for clearing that up! You're right, im in the wrong place.
On Thu, Mar 1, 2018 at 12:41 PM, Yvan notifications@github.com wrote:
Sorry for trying to help you. My bad. Note that's not a forum: that's a
bugtracker. You don't have an issue with acme.sh, you've got an issue with
pointing a DNS to the right spot. Or installing a webserver (say nginx,
Apache, ...). I'm sorry you ended up here before doing that. I'm sorry I
tried to help, you're on your own now.—
You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub
https://github.com/Neilpang/acme.sh/issues/1133#issuecomment-369688883,
or mute the thread
https://github.com/notifications/unsubscribe-auth/AjOb0TPWWmK7ZFHVYyEBFH6VnOR0CCegks5taEDagaJpZM4Q484c
.
wisterjeff
on 1 Mar 2018
@wisterjeff your problem seems env specific. Sorry for not being able to help you.
If the standalone mode is not working for you, please use the dns api mode or dns manual mode.
@dugwood thanks for your answer.
Neilpang
on 2 Mar 2018
@wisterjeff
are you using Aliyun VPS?
80 port of Aliyun VPS is default closed, you need login your alinyun account and set it open
Chloe-Y
on 19 Aug 2018
Related issues
MarcusWolschon
·
3Comments
noplanman
·
4Comments
extensionsapp
·
4Comments
centminmod
·
4Comments
AriaLyy
·
5Comments