Just trying to get SSL working and installed the Duck DNS add-on
Here is the configuration
{
"lets_encrypt": {
"accept_terms": true,
"certfile": "fullchain.pem",
"keyfile": "privkey.pem"
},
"token": "XXXXXXXXXXXX",
"domains": [
"mydomain.duckdns.org"
],
"seconds": 300
}
My configuration.yaml file
http:
base_url: https://mydomain.duckdns.org:8123
ssl_certificate: /ssl/fullchain.pem
ssl_key: /ssl/privkey.pem
I have allowed my router to port forward 443>8123 on TCP
I can now browse to https://192.168.0.100:8123 ( internally first ), I get a error because I’m not using a FQDN but I accept the certificate and can then see its valid and signed Let’s Encrypt Authority X3
I can see in the /ssl directory the fullchain.pem and privkey.pem files
So when I connect to the external site https://mydomain.duckdns.org I can see the DNS lookup and then the inbound connection to my router on TCP:443 and that translates to TCP:8123
But I don’t get any connection
Using CURL I get a SSL error
When looking at my Hassio logs I see this and thousands of them
Log Details (ERROR)
Fri May 03 2019 16:48:59 GMT+0100 (BST)
Error doing job: SSL handshake failed
Traceback (most recent call last):
File “uvloop/sslproto.pyx”, line 500, in uvloop.loop.SSLProtocol._on_handshake_complete
File “uvloop/sslproto.pyx”, line 484, in uvloop.loop.SSLProtocol._do_handshake
File “/usr/local/lib/python3.7/ssl.py”, line 763, in do_handshake
self._sslobj.do_handshake()
ssl.SSLError: [SSL: HTTP_REQUEST] http request (_ssl.c:1056)
I’m not at a total loss as to what this could be. Could some please help
Thanks