Comments (10)
Is there an active proxy listening on port 80 which forwards traffic to the opt port 10443 you told lego to bind to?
LE will try to access your server on port 80 for HTTP-01.
from lego.
damn thank you. I hoped I would be able to use a different port than either 80/443. It sucks to disable the nginx to update the certificates.
But it works now, awesome =)
from lego.
You don't have to disable nginx. That's what the optPort is for. You could just add a temporary proxy directive to the nginx config to pass all traffic on the path /.well-known/acme/ to port 10443. :)
from lego.
let me try this. Thanks for the support! :-)
from lego.
No problem. I know that this is kind of a convoluted way to work around nginx at the moment but as soon as we merge #32 and #16 we are able to put the token into the nginx webroot to let nginx serve it.
from lego.
its also hard to find that workaround in the first place.
You probably have to read the whole spec get which folder to proxy.
from lego.
I agree. I should probably improve the documentation on what optPort is for.
from lego.
Thanks for the awesome project btw.
from lego.
My pleasure :)
from lego.
Just for the record, that's the nginx proxy i used:
location /.well-known/acme-challenge/ {
proxy_ssl_session_reuse off;
proxy_set_header X-Forwarded-Proto $scheme;
add_header Front-End-Https on;
add_header Strict-Transport-Security "max-age=31536000";
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $http_host;
proxy_pass http://172.17.42.1:9999;
}
Thanks again :D
from lego.
Related Issues (20)
- directadmin plugin HOT 1
- AutoDNS - mandatory credentials listed as additional HOT 2
- ionos: DNS records not removed HOT 12
- IONOS DNS Cleanup does not work HOT 1
- Misleading log output
- Enable option to use single command to create or renew cert HOT 1
- support several DNS providers at once HOT 3
- Support for provider: Abion
- Provider "do.de" not working, API call invalid HOT 3
- TransIP verification fails because of token error HOT 18
- Error during automated certificate renewal wildcard letsencrypt HOT 3
- Support for provider: shellrent HOT 3
- Support for provider: Gravity HOT 2
- pdns: API endpoint not at URL root resulting in incorrect URL queried and thus failing with error code 404 HOT 2
- azure: find zones via serviceDiscovery (or allow multiple values for AZURE_RESOURCE_GROUP) HOT 4
- Scaleway DNS Challenge credentials not correct HOT 1
- ERROR acme: error: 500 :: POST renewing with v4.16.0 --- v4.15.0 is OK HOT 7
- External accound binding fails with error "invalid key size for algorithm" HOT 6
- on armv7I-32 CPU: this CPU has no VFPv3 floating point hardware HOT 3
- renew doesn't take multiple domains HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from lego.