• If you are still using CentOS 7.9, it's time to convert to Alma 8 with the free centos2alma tool by Plesk or Plesk Migrator. Please let us know your experiences or concerns in this thread:
    CentOS2Alma discussion

Resolved Let's Encrypt extensions and IPv6

Sir_Prikol

Sir_Prikol

New Pleskian
Sorry for my English

Good afternoon. Tell me how to solve the problem with the automatic update of SSL certificates Let's Encrypt when the domain has both IPv4 and IPv6 simultaneously. If I delete the IPv6 record, the certificate is updated quietly
 
Perhaps IPv6 is not working on your server since IPv6 kernel module is not loaded and not available at all. Check it with:

#modinfo ipv6
modinfo: ERROR: Module ipv6 not found.

The LetsEncrypt server is trying to validate domains through IPv6 as it is a preferred protocol. As a solution, you can either completely remove IPv6 addresses from the network interfaces in order to perform token validation through IPv4, or configure IPv6 properly.
 
This is not a solution. Again, when I write AAAA domain - Let's Encrypt - it works fine, when writing A - Let's Encrypt works fine, and if you record A and AAAA at the same time - Let's Encrypt does not work.
 
IPv6 module is a part of Linux kernel. Your kernel should be compiled with this module. Make sure that you have default kernel from OS vendor where IPv6 module is already compiled by default in most cases.
 
I now do not understand, I have installed debian 8. By IPv6, the connection goes quietly. Works without problems. The network goes, you can get on it, and everything on IPv6. But when a domain name is registered simultaneously records A and AAAA, then certificates are not put. By doing this manually, I can safely install certificates. Automatic updating does not work.
 
The error was present in:
Tools and settings -> IP addresses -> IPv6 address should have been written not clean 2a03: xxxx: xxxx: xxxx :: xx
but 2a03: xxxx: xxxx: xxxx :: xx/64

Despite the fact that it shows 2a03: xxxx: xxxx: xxxx :: xx/48

Thanx
 
You must log in or register to reply here.

Similar threads

R
  • Locked
Resolved Assign IPv6 address to Plesk
Replies
1
Views
912
Peter Debik
P
F
Question How can I renew the Lets Encrypt certificates on a VPS Server from the Ionos company?
Replies
0
Views
212
fonorola
F
D
Issue Lets Encrypt Not Successful over port 80
Replies
8
Views
280
Daiv
D
K
Question Renewing Let's Encrypt with external DNS servers
Replies
5
Views
110
klowet
K
Azurel
Resolved Mail for "Let`s Encrypt certificates for ***** have been issued/renewed" missing?
Replies
2
Views
233
Azurel
Azurel
Back
Top