Problem getting Let's Encrypt working through DuckDNS

Hamilwicke · February 6, 2018, 2:44pm

After reading the setup guide, the initial blog post and numerous forum posts I still can’t get Let’s encrypt working through DuckDNS add on.

First, in my DuckDNS Options through Hass.io

   {
      "lets_encrypt": {
        "accept_terms": true,
        "certfile": "fullchain.pem",
        "keyfile": "privkey.pem"
      },
      "token": "12345678-meow-ilikecats-this-ismytoken",
      "domains": [
        "myDomain.duckdns.org"
      ],
      "seconds": 300
    }

My Configuration yaml

    http:
      base_url: https:// myDomain.duckdns.org: 8123
      api_password: !secret http_password
      ssl_certificate: /ssl/fullchain.pem
      ssl_key: /ssl/privkey.pem

And my port forwarding rules

Before making these changes, DuckDNS was working correctly, however, I get the following error when trying to access the https version

This site can’t be reached
myDomain.duckdns.org refused to connect.

Can anyone see what I’m doing wrong?

Thanks in advance

Hamilwicke · February 6, 2018, 2:50pm

Here is what is in my log at DuckDNS

starting version 3.2.2
# INFO: Using main config file /data/workdir/config
+ Account already registered!
Tue Feb  6 08:51:00 EST 2018: OK
2XX.XX.XX.118
NOCHANGE
INFO: Using main config file /data/workdir/config
Processing myDomain.duckdns.org
 + Checking domain name(s) of existing cert... unchanged.
 + Checking expire date of existing cert...
 + Valid till May  7 11:01:42 2018 GMT (Longer than 30 days). Skipping renew!
Tue Feb  6 08:56:04 EST 2018: OK
2XX.XX.XX.118

j.assuncao · February 6, 2018, 2:53pm

I think you have to forward external port 80 to internal port 8123

theetron · February 6, 2018, 2:58pm

I see spaces in the base_url, That should not be the case.
Also I notice a 4 spaces in your config at duckdns and in the configuration.yaml at the beginning of every line.
That might be a copy paste issue…

Regards
Erik

Hamilwicke · February 6, 2018, 2:59pm

Gah I fixed it! That pointed me in the right direction.

When I was looking at my router, on a hunch I just checked what the internal IP of my HA pi was. It had dynamically changed.

So my next logical question would be how to fix the IP of the pi through hass.io CLI?

Hamilwicke · February 6, 2018, 3:00pm

Was trying to get around the 2 link limit, and yes copy paste issue.

j.assuncao · February 6, 2018, 3:02pm

Not directly from the CLI. Read this:

https://docs.resin.io/deployment/network/2.x/