Error at LetsEncrypt validation

MihaVuk · April 11, 2022, 3:45pm

I have setup the self-hosted Docker environment and enabled HTTPS using Let’s Encrypt following the tutorial.

It always fails on the step below. Setup without HTTPS works fine and the forum is publicly available on HTTP.

root@discoursetest3-app:/shared/letsencrypt# cat acme.sh.log
…
[Mon 11 Apr 2022 02:56:35 PM UTC] discourse-test3.docentric.com:Verify error:Fetching http://discourse-test3.docentric.com/.well-known/acme-challenge/iEFjgyseuVL1IzIrTjmfhwv0HqV7EgUmQUVhy1nmnCE: Timeout after connect (your server may be slow or overloaded)

It seems that ACME challenge is not accessible.

pfaffman · April 11, 2022, 4:04pm

Did you read the first sentence in that guide that says that if you’re doing a standard install you don’t need to follow that guide?

Is this a recent standard install? Did you run discourse-setup?

It looks like you may have port 80 (and perhaps also port 443) blocked for incoming connections.

supermathie · April 11, 2022, 4:26pm

Oddly, the first works but the second doesn’t:

○ → curl http://discourse-test3.docentric.com/srv/status
ok

○ → timeout -v 5s curl http://discourse-test3.docentric.com/.well-known/acme-challenge/iEFjgyseuVL1IzIrTjmfhwv0HqV7EgUmQUVhy1nmnCE
timeout: sending signal TERM to command ‘curl’

I’m not sure what would cause that if it’s a standard setup.

MihaVuk · April 12, 2022, 8:37am

It is an old test installation without HTTPS and now I would like to enable HTTPS.
I have tried to edit app.yml manually and also to run discourse-setup. In both cases the same error.
I have also tried to delete Discourse (containers and files) and install from scratch, but the result is the same.

I agree that it looks that port 80 in not available, but if I comment the following two lines in app.yml, the forum runs on HTTP without problem.

“templates/web.ssl.template.yml”
“templates/web.letsencrypt.ssl.template.yml”

Where on the disk are static files like http://discourse-test3.docentric.com/.well-known/acme-challenge/iEFjgyseuVL1IzIrTjmfhwv0HqV7EgUmQUVhy1nmnCE?

MihaVuk · April 13, 2022, 12:18pm

It has turned out that just ACME protocol was blocked on the company firewall. Now it works

system · May 13, 2022, 12:19pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Set up HTTPS support with Let's Encrypt Self-Hosting how-to , domains	2	107384	February 25, 2024
Installed without error but site wont come up Installation	12	1814	February 13, 2017
Unable To Connect/Connection Refused due to https certificates Installation	9	8405	May 22, 2021
HTTPS : issue while trying to set up SSL certification Installation	25	2136	September 30, 2019
SSL certificate expired and after that - Error 404 Not Found Installation	2	903	January 6, 2023

Error at LetsEncrypt validation

Related topics