打印

[Nginx] 求助,https证书续期错误

求助,https证书续期错误

错误信息,配置文件刚好自配置好3个月今天到期了,定时任务好像根本没效果,过期了手动续才发现有问题
root@VM_3_227_centos /]# /root/certbot-auto renew --disable-hook-
alidation --renew-hook "/etc/init.d/nginx reload"
Saving debug log to /var/log/letsencrypt/letsencrypt.log

------------------------------------------------------------------
------------
Processing /etc/letsencrypt/renewal/www.syxjd.xyz.conf
------------------------------------------------------------------
------------
Cert is due for renewal, auto-renewing...
Plugins selected: Authenticator webroot, Installer None
Renewing an existing certificate
Performing the following challenges:
http-01 challenge for www.syxjd.xyz
Waiting for verification...
Cleaning up challenges
Attempting to renew cert (www.syxjd.xyz) from /etc/letsencrypt/ren
wal/www.syxjd.xyz.conf produced an unexpected error: Failed author
zation procedure. www.syxjd.xyz (http-01): urn:acme:error:connecti
n :: The server could not connect to the client to verify the doma
n :: Fetching http://www.syxjd.xyz/.well-known/acme-challenge/NYJF
diVHN7ooR3lhkXcFDd6hu1ldE7Q1Cz9dI9gxKU: Connection refused. Skippi
g.
All renewal attempts failed. The following certs could not be rene
ed:
  /etc/letsencrypt/live/www.syxjd.xyz/fullchain.pem (failure)

------------------------------------------------------------------
------------

All renewal attempts failed. The following certs could not be rene
ed:
  /etc/letsencrypt/live/www.syxjd.xyz/fullchain.pem (failure)
------------------------------------------------------------------
------------
1 renew failure(s), 0 parse failure(s)

IMPORTANT NOTES:
- The following errors were reported by the server:

   Domain: www.syxjd.xyz
   Type:   connection
   Detail: Fetching
   http://www.syxjd.xyz/.well-known/acme-challenge/NYJFudiVHN7ooR3
hkXcFDd6hu1ldE7Q1Cz9dI9gxKU:
   Connection refused

   To fix these errors, please make sure that your domain name was
   entered correctly and the DNS A/AAAA record(s) for that domain
   contain(s) the right IP address. Additionally, please check tha
   your computer has a publicly routable IP address and that no
   firewalls are preventing the server from communicating with the
   client. If you're using the webroot plugin, you should also ver
fy
   that you are serving files from the webroot path you provided.
root@VM_3_227_centos:/[root@VM_3_227_centos /]# /root/certbot-auto
alidation --renew-hook "/etc/init.d/nginx reload"/root/certbot-aut
[root@VM_3_227_centos /]# /root/certbot-auto renew --disable-hook-
alidation --renew-hook "/etc/init.d/nginx reload"/root/certbot-aut
[root@VM_3_227_centos /]#
附件: 您所在的用户组无法下载或查看附件

TOP

上面都有提示访问你网站都提示Connection refused,网站访问不了肯定没法续期

TOP

回复 2# 的帖子

网站没有问题,可以正常访问就是证书过期了,需要续期续不了

TOP

回复 3# 的帖子

不清楚,测试时均访问不到
root@buyvm:~# curl www.syxjd.xyz
curl: (7) Failed to connect to www.syxjd.xyz port 80: Connection refused
root@buyvm:~# curl www.syxjd.xyz
curl: (7) Failed to connect to www.syxjd.xyz port 80: Connection refused
C:\Users\Administrator>curl www.syxjd.xyz
curl: (7) Failed to connect to www.syxjd.xyz port 80: Connection refused

C:\Users\Administrator>curl www.syxjd.xyz
curl: (7) Failed to connect to www.syxjd.xyz port 80: Connection refused
而且letsencrypt上的日志也是和我测试时是同样的错误提示,现在看已经正常

TOP