• If you are still using CentOS 7.9, it's time to convert to Alma 8 with the free centos2alma tool by Plesk or Plesk Migrator. Please let us know your experiences or concerns in this thread:
    CentOS2Alma discussion

Question Let's Encrypt fail over IPv6

C

Creativados

Basic Pleskian
Server operating system version
Debian 10.13
Plesk version and microupdate number
Versión 18.0.47
Sorry my english, use translator.

I'm having trouble getting ssl certificates with Let's Encrypt .

When I try to get the certificate it returns this error

Captura de pantalla 2022-11-03 055030.png

when I try to pass the debug it tells me this

Test result for aceval.eu: Error

2 unique issue(s) detected (AAAANotWorking, IssueFromLetsEncrypt)
letsdebug.net
1667451139601.png

I think I have the server properly configured with IPv6, but I don't know what to think


.\curl.exe -6 aceval.eu

return this

curl: (7) Couldn't connect to server


Any ideas or help.

Thank you
 
aceval.eu has an AAAA (IPv6) record (2001:41d0:203:4b76:)
Click to expand...

But I see:

# host aceval.eu
aceval.eu has address 51.83.2.118
aceval.eu has IPv6 address 2001:41d0:701:1000::14cb

Are sure that AAAA record is correctly configured in DNS settings?
 
My result this command

# host aceval.eu
aceval.eu has address 51.83.2.118
aceval.eu has IPv6 address 2001:41d0:203:4b76::
aceval.eu mail is handled by 10 aceval.eu.
 
Creativados said:
My result this command

# host aceval.eu
aceval.eu has address 51.83.2.118
aceval.eu has IPv6 address 2001:41d0:203:4b76::
aceval.eu mail is handled by 10 aceval.eu.
Click to expand...
Yes, I see the same now.
Is the problem still actual?
 
Do you have an enabled firewall? Try to disable it.
 
@Creativados ,
please be sure that your site available via IPv6.
LE has a priority: it uses IPv6 in case AAAA record exists. so it looks like some misconfiguration on your side.
 
You have a firewall and dns (your two nameservers have different config for this domain) and/or ip configuration problem
I randomly get "2001:41d0:701:1000::14cb" or "2001:41d0:203:4b76::" as the AAAA record for aceval.eu, depending on the nameserver I ask.

And on both IPv6 addresses your webserver is not reachable... (IPv4 is OK)

aceval.png
 
ChristophRo said:
You have a firewall and dns (your two nameservers have different config for this domain) and/or ip configuration problem
I randomly get "2001:41d0:701:1000::14cb" or "2001:41d0:203:4b76::" as the AAAA record for aceval.eu, depending on the nameserver I ask.

And on both IPv6 addresses your webserver is not reachable... (IPv4 is OK)

View attachment 21853
Click to expand...
2001:41d0:701:1000::14cb
It was a server configuration error, but I don't know how to get rid of that IP trace

with what NS do you get that name resolution?
 
Other domain, afartis.com1667487860544.png

but not resolve
# dig +short aaaa afartis.com @sdns2.ovh.net

Ans ys resolve my server
# dig +short aaaa afartis.com @hosting.servidor-nombres.com
2001:41d0:203:4b76::


I'm lost
 
You must log in or register to reply here.

Similar threads

D
Issue Lets Encrypt Not Successful over port 80
Replies
8
Views
337
Daiv
D
F
Question How can I renew the Lets Encrypt certificates on a VPS Server from the Ionos company?
Replies
0
Views
230
fonorola
F
W
Issue IPv6 set up under Plesk, but not served for vhost
Replies
3
Views
401
MartinT
M
Nextgen-Networks
Issue Lets Encrypt - error in certificate renew process
2
Replies
21
Views
2K
Peter Debik
P
f0rtem
Question Unable to use SSL unless I expose my IP?
Replies
2
Views
788
f0rtem
f0rtem
Back
Top