Hi everyone
Community, my problem is that cannot renew my ssl certificate in the last version of Vicibox (11), I don't have any problems with the firewall system because I have another Vicidial servers work fine. The log result acme.sh script is:
my.domain.com:Verify error:65.xx.xx.xx: Invalid response from http://my.domain.com/.well-known/acme-c ... r1OY7aJpec: 404
I had the same problem with other server, but, I had to delete it. I never knew what happening. But in this case, this is a production server
If anyone can tell me what to do, I'll appreciate it
Regards
i
Problems with update ssl certificate on Vicibox 11
Moderators: gerski, enjay, williamconley, Op3r, Staydog, gardo, mflorell, MJCoate, mcargile, Kumba, Michael_N
3 posts
• Page 1 of 1
Problems with update ssl certificate on Vicibox 11
by vanmido » Thu Dec 12, 2024 9:25 am
- vanmido
- Posts: 2
- Joined: Mon Feb 06, 2017 3:06 pm
Re: Problems with update ssl certificate on Vicibox 11
by carpenox » Fri Dec 13, 2024 5:34 am
try to turn the firewall off temp
service firewalld stop
then renew
service firewalld start
service firewalld stop
then renew
service firewalld start
Alma Linux 9.5 | SVN Version: 3920 | DB Schema Version: 1725 | Asterisk 18.26.0 | PHP8
https://dialer.one -:- 1-833-DIALER-1 -:- https://linktr.ee/CyburDial -:- WA: +19549477572
DC: https://discord.gg/DVktk6smbh -:- TG: https://t.me/+wkDmkF9U4aUxOGYx
https://dialer.one -:- 1-833-DIALER-1 -:- https://linktr.ee/CyburDial -:- WA: +19549477572
DC: https://discord.gg/DVktk6smbh -:- TG: https://t.me/+wkDmkF9U4aUxOGYx
- carpenox
- Posts: 2584
- Joined: Wed Apr 08, 2020 2:02 am
- Location: St Petersburg, FL
Re: Problems with update ssl certificate on Vicibox 11
by williamconley » Fri Dec 13, 2024 10:30 am
carpenox is likely 100% right... Assuming you're using firewalld and not iptables (which is very likely with Vicibox 11).
remember that the certbot has to hit your server to confirm the file it places there temporarily for this process. If your firewall is closed, they won't find the file and will reject your cert attempt.
But they do not post their IP ranges so you have to open to "the world" temporarily for them to check. However: If you do this quickly (less than 5 minutes) the likelihood of an intrusion during the event is very slim.
Also note that you CAN renew the certificate at 61 days, you do not have to wait until the last minute. That way if something goes wrong you have 28 days to figure it out before panicking.
remember that the certbot has to hit your server to confirm the file it places there temporarily for this process. If your firewall is closed, they won't find the file and will reject your cert attempt.
But they do not post their IP ranges so you have to open to "the world" temporarily for them to check. However: If you do this quickly (less than 5 minutes) the likelihood of an intrusion during the event is very slim.
Also note that you CAN renew the certificate at 61 days, you do not have to wait until the last minute. That way if something goes wrong you have 28 days to figure it out before panicking.
Vicidial Installation and Repair, plus Hosting and Colocation
Newest Product: Vicidial Agent Only Beep - Beta
http://www.PoundTeam.com # 352-269-0000 # +44(203) 769-2294
Newest Product: Vicidial Agent Only Beep - Beta
http://www.PoundTeam.com # 352-269-0000 # +44(203) 769-2294
- williamconley
- Posts: 20415
- Joined: Wed Oct 31, 2007 4:17 pm
- Location: Davenport, FL (By Disney!)
3 posts
• Page 1 of 1
Who is online
Users browsing this forum: Google [Bot] and 89 guests