starred/dehydrated
1
0
Fork 0
mirror of https://github.com/dehydrated-io/dehydrated.git synced 2026-01-11 22:30:44 +01:00
Code Issues 79 Packages Projects Releases 10 Wiki Activity

Port 80 is open but timeout (Error 400) #320

New Issue
Closed
opened 2025-12-29 01:22:36 +01:00 by adam · 1 comment
adam commented 2025-12-29 01:22:36 +01:00
Owner
Copy Link

Originally created by @white-rabbit07 on GitHub (Mar 28, 2018).

Hi.
I installed dehydrated on an internal server. It's behind a firewall but I opened port 80 and set a CNAME (DDNS) on our vServer (with PLESK). The Plesk-Server is
(www.)example.org and the internal server is server.intern.example.org.

This internal server can be reached via port 80. When I call
http://server.intern.example.org/.well-known/acme-challenge/ I can access an index.html and the token will be generated correctly. But when I try "dehydrated --cron" I get this:

dehydrated --cron
# INFO: Using main config file /etc/dehydrated/config
Processing server.intern.example.org
+ Signing domains...
+ Generating private key...
+ Generating signing request...
+ Requesting challenge for server.intern.example.org...
+ Hook: Nothing to do...
+ Responding to challenge for server.intern.example.org...
+ Hook: Nothing to do...
+ Hook: Nothing to do...
ERROR: Challenge is invalid! (returned: invalid) (result: {
"type": "http-01",
"status": "invalid",
"error": {
  "type": "urn:acme:error:connection",
  "detail": "Fetching http://server.intern.example.org/.well-known/acme-challenge/mbskngekürztO3yk: Timeout",
  "status": 400
},
"uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/Q1gbjgekürzt920524828",
"token": "mbsknIOgekürzt29U3yk",
"keyAuthorization": "mbskgekürzt29U3yk.9MqbIWBPjs",
"validationRecord": [
  {
    "url": "http://server.intern.example.org/.well-known/acme-challenge/mgekürzt9U3yk",
    "hostname": "server.intern.example.org",
    "port": "80",
    "addressesResolved": [
      "178.xxx.yyy.zzz"
    ],
    "addressUsed": "178.xxx.yyy.zzz"
  }
]
})

I have no idea what to do. IPv6 is not activated -- so the fallback to IPv4 should work.
Any hints what to do?
Thanks.

Originally created by @white-rabbit07 on GitHub (Mar 28, 2018). Hi. I installed _dehydrated_ on an internal server. It's behind a firewall but I opened port 80 and set a CNAME (DDNS) on our vServer (with PLESK). The Plesk-Server is (www.)example.org and the internal server is server.intern.example.org. This internal server can be reached via port 80. When I call http://server.intern.example.org/.well-known/acme-challenge/ I can access an index.html and the token will be generated correctly. But when I try "dehydrated --cron" I get this: ``` dehydrated --cron # INFO: Using main config file /etc/dehydrated/config Processing server.intern.example.org + Signing domains... + Generating private key... + Generating signing request... + Requesting challenge for server.intern.example.org... + Hook: Nothing to do... + Responding to challenge for server.intern.example.org... + Hook: Nothing to do... + Hook: Nothing to do... ERROR: Challenge is invalid! (returned: invalid) (result: { "type": "http-01", "status": "invalid", "error": { "type": "urn:acme:error:connection", "detail": "Fetching http://server.intern.example.org/.well-known/acme-challenge/mbskngekürztO3yk: Timeout", "status": 400 }, "uri": "https://acme-v01.api.letsencrypt.org/acme/challenge/Q1gbjgekürzt920524828", "token": "mbsknIOgekürzt29U3yk", "keyAuthorization": "mbskgekürzt29U3yk.9MqbIWBPjs", "validationRecord": [ { "url": "http://server.intern.example.org/.well-known/acme-challenge/mgekürzt9U3yk", "hostname": "server.intern.example.org", "port": "80", "addressesResolved": [ "178.xxx.yyy.zzz" ], "addressUsed": "178.xxx.yyy.zzz" } ] }) ``` I have no idea what to do. IPv6 is not activated -- so the fallback to IPv4 should work. Any hints what to do? Thanks.
adam closed this issue 2025-12-29 01:22:36 +01:00
adam commented 2025-12-29 01:22:37 +01:00
Author
Owner
Copy Link

@lukas2511 commented on GitHub (Mar 28, 2018):

Dehydrated can't really do anything about this. The CA is trying to access your server, and there are no options to be set. You probably have configured something wrong with your firewall.

@lukas2511 commented on GitHub (Mar 28, 2018): Dehydrated can't really do anything about this. The CA is trying to access your server, and there are no options to be set. You probably have configured something wrong with your firewall.
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
Complicated
bug
enhancement
help wanted
pull-request
Mirrored from GitHub Pull Request
 suggestions wanted
testing
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
adam
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: starred/dehydrated#320
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?