๐Ÿ“š node [[let s encrypt certificate renewal issue]]
Welcome to the Agora! Nobody has noded "let s encrypt certificate renewal issue" yet. You can:
  • Write something here!
    • There should be at least one public document for you to write in anywhere in the Agora. Look for it in the Stoas section below :)
  • Write to the Agora elsewhere!
  • Sign in to contribute your self hosted writing :)
    • You can contribute resources directly from your blog, digital garden or personal wiki into this knowledge commons.
    • Some setup required :) Please reach out if interested and we'll try to help!
The Agora will try to surface related nodes below.
Receiving pushes... (requires JavaScript)
๐ŸŒ‰ bridge to [[lets encrypt certificate renewal issue]] offered by the Agora

Let's Encrypt certificate renewal issue

I got an email that my certificates were going to expire.

Given they are set to auto-renew, this seemed odd.

I logged in to the server and some errors indeed in ~/var/log/letsencrypt/letsencrypt.log

Along the lines of

Detail: 37.218.246.201: Fetching http://commonplace.doubleloop.net/.well-known/acme-challenge/xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx: Timeout during connect (likely firewall problem)

And indeed it was a firewall problem. I did not have port 80 open, just 443 and some others.

ufw allow http
certbot -q renew

sorted it.

Weird that this just manifested though. What changed?

Loading context... (requires JavaScript)
๐Ÿ“– stoas (collaborative spaces) for [[let s encrypt certificate renewal issue]]