Let's Encrypt problem

fateton · November 26, 2021, 12:42am

Any idea pls, when I start my let’s encrypt add on the next error is showing.

[s6-init] making user provided files available at /var/run/s6/etc…exited 0.
[s6-init] ensuring user provided files have correct perms…exited 0.
[fix-attrs.d] applying ownership & permissions fixes…
[fix-attrs.d] done.
[cont-init.d] executing container initialization scripts…
[cont-init.d] file-structure.sh: executing…
[cont-init.d] file-structure.sh: exited 0.
[cont-init.d] done.
[services.d] starting services
[services.d] done.
[01:18:17] INFO: Selected http verification
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Requesting a certificate for xxxxxxxxx.duckdns.org
Certbot failed to authenticate some domains (authenticator: standalone). The Certificate Authority reported these problems:
Domain: fateton1.duckdns.org
Type: connection
Detail: Fetching h t t p ://xxxxxxxx.duckdns.org/.well-known/acme challenge/xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx:

Connection refused

Hint: The Certificate Authority failed to download the challenge files from the temporary standalone webserver started by Certbot on port 80. Ensure that the listed domains point to this machine and that it can accept inbound connections from the internet.
Some challenges have failed.
[cont-finish.d] done.
[s6-finish] waiting for services.
[s6-finish] sending all processes the TERM signal.
[s6-finish] sending all processes the KILL signal and exiting.

I test my 80 port with sudo netstat -tulpn | grep :80 and is open.

Summary

This text will be hidden

tom_l · November 26, 2021, 12:50am

If you are using the DuckDNS addon you do not need to (and should not) install the LetsEncrypt addon. It is included in the DuckDNS addon.

Just make sure you set this in the DuckDNS addon configuration:

lets_encrypt:
  accept_terms: true

fateton · November 26, 2021, 1:19am

thanks the value is true.

I try install let`s because the installation of Ngnix give me the next error that spped about let´s encrypt

Some challenges have failed.
[11/26/2021] [1:57:28 AM] [Nginx    ] › ℹ  info      Reloading Nginx
[11/26/2021] [1:57:28 AM] [SSL      ] › ℹ  info      Requesting Let'sEncrypt certificates for Cert #12: fateton.duckdns.org
[11/26/2021] [1:57:41 AM] [Nginx    ] › ℹ  info      Reloading Nginx
[11/26/2021] [1:57:41 AM] [Express  ] › ⚠  warning   Command failed: /usr/bin/certbot certonly --non-interactive --config " / etc / etsencrypt.  ini" --cert-name "npm-12" --agree-tos --email "[email protected]" --preferred-challenges "dns,http" --domains "xxxxx.duckdns.org" 
Saving debug log to /data/logs/letsencrypt/letsencrypt.log
Plugins selected: Authenticator webroot, Installer None
Performing the following challenges:
http-01 challenge for xxxxxxx.duckdns.org
Using the webroot path / data /     letsencrypt-acme-challenge for all unmatched domains.
Waiting for verification...
Challenge failed for domain fateton.duckdns.org
http-01 challenge for xxxxxxxx.duckdns.org
Cleaning up challenges
Some challenges have failed.
Connection Error: Error: Packets out of order. Got: 1 Expected: 16
Connection Error: Error: Packets out of order. Got: 1 Expected: 23
[11/26/2021] [2:04:27 AM] [Access   ] ›   error     users:get 1 connect ECONNREFUSED 172.30.33.1:3306
[11/26/2021] [2:04:28 AM] [Access   ] ›   error     users:get 1 connect ECONNREFUSED 172.30.33.1:3306

And my main concert is about the creation of the new proxy host in Nginx the give me internal error message

tom_l · November 26, 2021, 1:30am

You should have mentioned that you were using a reverse proxy.

fateton · November 26, 2021, 1:41am

Sorry .

Yes , I try to use reverse proxy( isn’t working) .

Maria db show:

Aborted connection 27 to db: ‘nginxproxymanager’ user: ‘service’ host: ‘172.30.33.9’ (Got an error reading communication packets)

tom_l · November 26, 2021, 2:20am

I’ll let someone else help you. I don’t know enough about nginx.

koying · November 26, 2021, 7:58am

Let’s rewind…

As you have mariadb issues, I assume you’re trying the “nginx proxy manager” addon and not the “duckdns” one.
As indicated in the doc, did you install the mariadb addon as well?

Ensure you are running the MariaDB add-on. This add-on is required to use the Nginx Proxy Manager add-on as it uses the database services provided.

fateton · November 26, 2021, 10:19am

Thanks for you reply.
Yes;
Currently I have installed:
Maria DB and working with next log:
2021-11-26 10:54:18 38 [Warning] Aborted connection 38 to db: ‘nginxproxymanager’ user: ‘service’ host: ‘172.30.33.8’ (Got an error reading communication packets)
Duckdns;
Working fine any problem in the log
Nginx;
[11/26/2021] [10:56:35 AM] [Express ] › warning Command failed: / usr /bin/certbot certonly --non-interactive --config “/etc/letsencrypt.ini” --cert-name “npm-26” --agree-tos --email “[email protected]” --preferred-challenges “dns,http” --domains “xxxxxxx.duckdns.org”

And when a go to create Proxy host in Nginx receive and mesage of internal error

jsanmart · May 14, 2022, 5:30am

Hi, i’m new here and I’m having the same problem.

I guess that letsencrypt site is calling to “h t t p ://xxxxxxxx.duckdns.org/.well-known/…” address, but only I could setup “h t t p ://xxxxxxxx.duckdns.org/local/.well-known/…” address (local is maped to config/www filesystem directory)
Now I need to map “.well-known” web address to a filesystem directory, but I couldn’t.

I don’t know if I can force to lestencrypt call include the “local” part to my domain call or map “.well-known” path in my www server without the “local” part.

best regards

aruffell · August 12, 2022, 12:34am

Have you figured out what the error was?

My MariaDB logs show this:

[01:00:23] INFO: Lock tables using mariadb client...
[01:00:23] INFO: MariaDB tables locked.
[01:09:13] INFO: MariaDB tables unlocked.
2022-08-10 23:14:12 30 [Warning] Aborted connection 30 to db: 'nginxproxymanager' user: 'service' host: '172.30.33.9' (Got timeout reading communication packets)
[01:00:22] INFO: Lock tables using mariadb client...
[01:00:22] INFO: MariaDB tables locked.
[01:09:16] INFO: MariaDB tables unlocked.
2022-08-11 18:28:32 41 [Warning] Aborted connection 41 to db: 'nginxproxymanager' user: 'service' host: '172.30.33.9' (Got an error reading communication packets)
2022-08-11 18:28:32 43 [Warning] Aborted connection 43 to db: 'nginxproxymanager' user: 'service' host: '172.30.33.9' (Got an error reading communication packets)

I can’t tell if it is an issue I need to fix or just some warning that I can ignore (even though I’d love to just fix it).