Domain Issue with SSL

iamtalib13 · July 25, 2024, 11:20am

@NCP
my site_config.json
{
“db_name”: “_2ff5861374ae8eaa”,
“db_password”: “a47FuvEAX018cdVy”,
“db_type”: “mariadb”,
“developer_mode”: 1,
“encryption_key”: “Vsau9NLIyaYurftIiokUiuEQOcKzSCDiVQviCIBwv1s=”,
“maintenance_mode”: 0,
“nginx_port”: 80,
“server_script_enabled”: 1,
“domains”: [“mysahayog.com”],
“host_name”: “http://mysahayog.com/”,
“http_port”: 80,
“webserver_port”: 80
}

issue
frappe@ticketsrv:~/frappe-bench$ bench config dns_multitenant on
frappe@ticketsrv:~/frappe-bench$ bench setup add-domain mysahayog.com --site mysahayog.com
Domain mysahayog.com already exists
frappe@ticketsrv:~/frappe-bench$ bench setup nginx
nginx.conf already exists and this will overwrite it. Do you want to continue? [y/N]:
frappe@ticketsrv:~/frappe-bench$ bench setup nginx
nginx.conf already exists and this will overwrite it. Do you want to continue? [y/N]: y
frappe@ticketsrv:~/frappe-bench$ sudo service nginx reload
frappe@ticketsrv:~/frappe-bench$ sudo snap install core
snap “core” is already installed, see ‘snap help refresh’
frappe@ticketsrv:~/frappe-bench$ sudo snap refresh core
snap “core” has no updates available
frappe@ticketsrv:~/frappe-bench$ sudo ln -s /snap/bin/certbot /usr/bin/certbot
ln: failed to create symbolic link ‘/usr/bin/certbot’: File exists
frappe@ticketsrv:~/frappe-bench$ sudo certbot --nginx
Saving debug log to /var/log/letsencrypt/letsencrypt.log

Which names would you like to activate HTTPS for?
We recommend selecting either all domains, or all domains in a VirtualHost/server block.

1: mysahayog.com
2: sahayog.hr

Select the appropriate numbers separated by commas and/or spaces, or leave input
blank to select all options shown (Enter ‘c’ to cancel): 1
Requesting a certificate for mysahayog.com

Certbot failed to authenticate some domains (authenticator: nginx). The Certificate Authority reported these problems:
Domain: mysahayog.com
Type: unauthorized
Detail: 2a02:4780:22:ef6d:b1ba:98df:4531:d15b: Invalid response from http://mysahayog.com/.well-known/acme-challenge/cToGY7snL9AL-jB0AsZ1wkmXxYKd-RHUUMtrkEozJ3o: 404

Hint: The Certificate Authority failed to verify the temporary nginx configuration changes made by Certbot. Ensure the listed domains point to this nginx server and that it is accessible from the internet.

Some challenges have failed.
Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details.
frappe@ticketsrv:~/frappe-bench$

jls · August 12, 2024, 2:36pm

Check the AAAA record of your domain. It must be the same as the IPv6 of your server.
This is the one Let’s Encrypt is reading from the domain: 2a02:4780:22:ef6d:b1ba:98df:4531:d15b
If it’s not correct, it will result in a 404 error, which is what’s happening to you.
Change the AAAA record to the correct IPv6 of your server, wait a while, and try again.

Hope this helps