| SYSTEM INFORMATION | |
|---|---|
| OS type and version | Ubuntu 20.04.4 |
| Webmin version | latest |
| Virtualmin version | latest |
Hi,
I could really use a hand properly setting up the DNS on my system, it was workin alright then i addedd a couple nameserver records then everything changed. The problem its causing Postifx not to function properly, here is the errors i get when i try and get SSL certificate.
Saving debug log to /var/log/letsencrypt/letsencrypt.log. Plugins selected: Authenticator webroot, Installer None.
An unexpected error occurred:
Traceback (most recent call last):
File "/usr/lib/python3/dist-packages/urllib3/connection.py", line 159, in _new_conn
conn = connection.create_connection(
File "/usr/lib/python3/dist-packages/urllib3/util/connection.py", line 61, in create_connection
for res in socket.getaddrinfo(host, port, family, socket.SOCK_STREAM):
File "/usr/lib/python3.8/socket.py", line 918, in getaddrinfo
for res in _socket.getaddrinfo(host, port, family, type, proto, flags):
socket.gaierror: [Errno -3] Temporary failure in name resolution
During handling of the above exception, another exception occurred:
Traceback (most recent call last):
File "/usr/lib/python3/dist-packages/urllib3/connectionpool.py", line 665, in urlopen
httplib_response = self._make_request(
File "/usr/lib/python3/dist-packages/urllib3/connectionpool.py", line 376, in _make_request
self._validate_conn(conn)
File "/usr/lib/python3/dist-packages/urllib3/connectionpool.py", line 996, in _validate_conn
conn.connect()
File "/usr/lib/python3/dist-packages/urllib3/connection.py", line 314, in connect
conn = self._new_conn()
File "/usr/lib/python3/dist-packages/urllib3/connection.py", line 171, in _new_conn
raise NewConnectionError(
urllib3.exceptions.NewConnectionError: <urllib3.connection.VerifiedHTTPSConnection object at 0x7fa4699f73d0>: Failed to establish a new connection: [Errno -3] Temporary failure in name resolution
During handling of the above exception, another exception occurred:
Traceback (most recent call last):
File "/usr/lib/python3/dist-packages/requests/adapters.py", line 439, in send
resp = conn.urlopen(
File "/usr/lib/python3/dist-packages/urllib3/connectionpool.py", line 719, in urlopen
retries = retries.increment(
File "/usr/lib/python3/dist-packages/urllib3/util/retry.py", line 436, in increment
raise MaxRetryError(_pool, url, error or ResponseError(cause))
urllib3.exceptions.MaxRetryError: HTTPSConnectionPool(host='acme-v02.api.letsencrypt.org', port=443): Max retries exceeded with url: /directory (Caused by NewConnectionError('<urllib3.connection.VerifiedHTTPSConnection object at 0x7fa4699f73d0>: Failed to establish a new connection: [Errno -3] Temporary failure in name resolution'))
During handling of the above exception, another exception occurred:
requests.exceptions.ConnectionError: HTTPSConnectionPool(host='acme-v02.api.letsencrypt.org', port=443): Max retries exceeded with url: /directory (Caused by NewConnectionError('<urllib3.connection.VerifiedHTTPSConnection object at 0x7fa4699f73d0>: Failed to establish a new connection: [Errno -3] Temporary failure in name resolution'))
Please see the logfiles in /var/log/letsencrypt for more details.
here is error log
2022-05-01 01:18:21,070:DEBUG:certbot.main:certbot version: 0.40.0
2022-05-01 01:18:21,070:DEBUG:certbot.main:Arguments: ['-q']
2022-05-01 01:18:21,070:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2022-05-01 01:18:21,076:DEBUG:certbot.log:Root logging level set at 30
2022-05-01 01:18:21,076:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log
2022-05-01 01:18:21,081:DEBUG:certbot.plugins.selection:Requested authenticator <certbot.cli._Default object at 0x7f4b847aee80> and installer <certbot.cli._Default object at 0x7f4b847aee80>
2022-05-01 01:18:21,087:INFO:certbot.renewal:Cert not yet due for renewal
2022-05-01 01:18:21,087:DEBUG:certbot.plugins.selection:Requested authenticator manual and installer None
2022-05-01 01:18:21,089:INFO:certbot.renewal:Cert not yet due for renewal
2022-05-01 01:18:21,089:DEBUG:certbot.plugins.selection:Requested authenticator manual and installer None
2022-05-01 01:18:21,091:INFO:certbot.renewal:Cert not yet due for renewal
2022-05-01 01:18:21,091:DEBUG:certbot.plugins.selection:Requested authenticator manual and installer None
2022-05-01 01:18:21,093:INFO:certbot.renewal:Cert not yet due for renewal
2022-05-01 01:18:21,093:DEBUG:certbot.plugins.selection:Requested authenticator manual and installer None
2022-05-01 01:18:21,095:INFO:certbot.renewal:Cert not yet due for renewal
2022-05-01 01:18:21,095:DEBUG:certbot.plugins.selection:Requested authenticator manual and installer None
2022-05-01 01:18:21,095:DEBUG:certbot.renewal:no renewal failures
2022-05-01 08:44:25,342:DEBUG:certbot.main:certbot version: 0.40.0
2022-05-01 08:44:25,342:DEBUG:certbot.main:Arguments: ['-a', 'webroot', '-d', 'hostmax.online', '-d', 'www.hostmax.online', '-d', 'mail.hostmax.online', '-d', 'admin.hostmax.online', '-d', 'webmail.hostmax.online', '--webroot-path', '/home/hostmax.online/public_html', '--duplicate', '--force-renewal', '--manual-public-ip-logging-ok', '--non-interactive', '--agree-tos', '--config', '/tmp/.webmin/762717_2202452_1_letsencrypt.cgi', '--rsa-key-size', '2048', '--cert-name', 'hostmax.online']
2022-05-01 08:44:25,342:DEBUG:certbot.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#manual,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2022-05-01 08:44:25,348:DEBUG:certbot.log:Root logging level set at 20
2022-05-01 08:44:25,348:INFO:certbot.log:Saving debug log to /var/log/letsencrypt/letsencrypt.log
2022-05-01 08:44:25,348:DEBUG:certbot.plugins.selection:Requested authenticator webroot and installer None
2022-05-01 08:44:25,348:DEBUG:certbot.plugins.selection:Single candidate plugin: * webroot
Description: Place files in webroot directory
Interfaces: IAuthenticator, IPlugin
Entry point: webroot = certbot.plugins.webroot:Authenticator
Initialized: <certbot.plugins.webroot.Authenticator object at 0x7f8e2d584e20>
Prep: True
2022-05-01 08:44:25,348:DEBUG:certbot.plugins.selection:Selected authenticator <certbot.plugins.webroot.Authenticator object at 0x7f8e2d584e20> and installer None
2022-05-01 08:44:25,348:INFO:certbot.plugins.selection:Plugins selected: Authenticator webroot, Installer None
2022-05-01 08:44:25,350:DEBUG:certbot.main:Picked account: <Account(RegistrationResource(body=Registration(key=None, contact=(), agreement=None, status=None, terms_of_service_agreed=None, only_return_existing=None, external_account_binding=None), uri='https://acme-v02.api.letsencrypt.org/acme/acct/481816020', new_authzr_uri=None, terms_of_service=None), bccbd6d6434f68856f8096f5c7376fe3, Meta(creation_dt=datetime.datetime(2022, 4, 4, 5, 11, 26, tzinfo=<UTC>), creation_host='ubuntu.hostmax.online'))>
2022-05-01 08:44:25,351:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory.
2022-05-01 08:44:25,351:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org:443
2022-05-01 08:44:27,287:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "GET /directory HTTP/1.1" 200 658
2022-05-01 08:44:27,288:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Sat, 30 Apr 2022 22:44:27 GMT
Content-Type: application/json
Content-Length: 658
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change",
"meta": {
"caaIdentities": [
"letsencrypt.org"
],
"termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf",
"website": "https://letsencrypt.org"
},
"newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct",
"newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce",
"newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order",
"revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert",
"wb-F0mK5dUM": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417"
}
2022-05-01 08:44:27,293:DEBUG:certbot.renewal:Auto-renewal forced with --force-renewal...
2022-05-01 08:44:27,293:INFO:certbot.main:Renewing an existing certificate
2022-05-01 08:44:27,321:DEBUG:certbot.crypto_util:Generating key (2048 bits): /etc/letsencrypt/keys/0010_key-certbot.pem
2022-05-01 08:44:27,322:DEBUG:certbot.crypto_util:Creating CSR: /etc/letsencrypt/csr/0010_csr-certbot.pem
2022-05-01 08:44:27,322:DEBUG:acme.client:Requesting fresh nonce
2022-05-01 08:44:27,322:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce.
2022-05-01 08:44:27,544:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "HEAD /acme/new-nonce HTTP/1.1" 200 0
2022-05-01 08:44:27,545:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Sat, 30 Apr 2022 22:44:27 GMT
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Replay-Nonce: 0101zPbe_n7fencma2L7LDjESE3jdeoa_1WhVq9BPL3wDdQ
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
2022-05-01 08:44:27,545:DEBUG:acme.client:Storing nonce: 0101zPbe_n7fencma2L7LDjESE3jdeoa_1WhVq9BPL3wDdQ
2022-05-01 08:44:27,546:DEBUG:acme.client:JWS payload:
b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "hostmax.online"\n },\n {\n "type": "dns",\n "value": "www.hostmax.online"\n },\n {\n "type": "dns",\n "value": "mail.hostmax.online"\n },\n {\n "type": "dns",\n "value": "admin.hostmax.online"\n },\n {\n "type": "dns",\n "value": "webmail.hostmax.online"\n }\n ]\n}'
2022-05-01 08:44:27,549:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvNDgxODE2MDIwIiwgIm5vbmNlIjogIjAxMDF6UGJlX243ZmVuY21hMkw3TERqRVNFM2pkZW9hXzFXaFZxOUJQTDN3RGRRIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9uZXctb3JkZXIifQ",
"signature": "gAvmxySxf7N4xDR__tR2FmYtLIJ-IXfdATVcxnefdAO1OKNGo9yEM9Oj0OkEne1Y0RUW3X69kPKTAMdARBhwsFXSG1CVZXqg6RUoGyjQ6uQEzgg5Q2ClC7eYlCdmrDF47s_hm1Wi3l0Ahp_fMl1C6EhCS193hMZABItfTMj6eY7pk7ZF8X78YPtW3E51xhD1p_0DMkaXjhoRRe0aneD7q0SbtBOA5jHLgugMbTWufihfFcMsLqtiaWUhae74BVgtBqUetsS0Boz7Ce_aaP68qJv7fE68677PKNbwiHDGQBe8NZ_kg1RaHzYRFBbmKkGS1Lm_SZ1I5DVPDDfbAqqh2A",
"payload": "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"
}
2022-05-01 08:44:27,977:DEBUG:urllib3.connectionpool:https://acme-v02.api.letsencrypt.org:443 "POST /acme/new-order HTTP/1.1" 201 902
2022-05-01 08:44:27,978:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Date: Sat, 30 Apr 2022 22:44:27 GMT
Content-Type: application/json
Content-Length: 902
Connection: keep-alive
Boulder-Requester: 481816020
Cache-Control: public, max-age=0, no-cache
Link: <https://acme-v02.api.letsencrypt.org/directory>;rel="index"
Location: https://acme-v02.api.letsencrypt.org/acme/order/481816020/84713006967
Replay-Nonce: 0102ms1AiJTs2glg9S-nRyZOjzU2DnqUAtv8n0NYcNxcrLE
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800
{
"status": "ready",
"expires": "2022-05-04T05:11:29Z",
"identifiers": [
{
"type": "dns",
"value": "admin.hostmax.online"
},
{
"type": "dns",
"value": "hostmax.online"
},
{
"type": "dns",
"value": "mail.hostmax.online"
},
{
"type": "dns",
"value": "webmail.hostmax.online"
},
{
"type": "dns",
"value": "www.hostmax.online"
}
],
"authorizations": [
"https://acme-v02.api.letsencrypt.org/acme/authz-v3/94635030890",
"https://acme-v02.api.letsencrypt.org/acme/authz-v3/94635030900",
"https://acme-v02.api.letsencrypt.org/acme/authz-v3/94635092970",
"https://acme-v02.api.letsencrypt.org/acme/authz-v3/94635092980",
"https://acme-v02.api.letsencrypt.org/acme/authz-v3/94635030930"
],
"finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/481816020/84713006967"
}
2022-05-01 08:44:27,978:DEBUG:acme.client:Storing nonce: 0102ms1AiJTs2glg9S-nRyZOjzU2DnqUAtv8n0NYcNxcrLE
2022-05-01 08:44:27,979:DEBUG:acme.client:JWS payload:
b''
2022-05-01 08:44:27,982:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz-v3/94635030890:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvNDgxODE2MDIwIiwgIm5vbmNlIjogIjAxMDJtczFBaUpUczJnbGc5Uy1uUnlaT2p6VTJEbnFVQXR2OG4wTlljTnhjckxFIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9hdXRoei12My85NDYzNTAzMDg5MCJ9",
"signature": "f5FOIyZjA_vhdp1d3qTgS3A6gfWUHSXisPSEQHPhoGJncxYsO_MGdJdyAtWQGahbk5G-1Z_TRWoVSbwdodGYGZ8FasLu6SipzCYr8NV2BGqxQp_IdWpiaVrDcjVfMawYjZCqiA4hjEp2Se-2eShRT1ru161Nf_uVmMA-ogj5R127eQ0jhXGtmFstU-hfLIVnecfhdIvmSxT7o1Y5EvPdnGGQ_tcadDgU8Q2gYjsl-7y50-jnPX3tJ_Il-UujZxbXbRuHuOZ32C85j7NPfA_CJyK-haCkmOHOqJHNsyBZpJV1NvOOoXuiEc4EDDRVZU3fXTNTUqGOK5G7fWHUM0YUIg",
"payload": ""
