Hi,
I have some troubles being online.
It is a custom domain : galusik.fr
The repo is : https://git.sr.ht/~fredg/galusik.fr
The build file is : https://git.sr.ht/~fredg/galusik.fr/tree/master/item/.build.yml
The build logs seem fine : https://builds.sr.ht/~fredg/job/793726
I waited a day before asking for help in case it was about a tls cert cron job
but no :(.
I have followed your guides and my DNS look good :
; <<>> dig 9.10.8-P1 <<>> galusik.fr
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 10464
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
;; QUESTION SECTION:
;galusik.fr. IN A
;; ANSWER SECTION:
galusik.fr. 3600 IN A 173.195.146.139
;; Query time: 37 msec
;; SERVER: 127.0.0.1#53(127.0.0.1)
;; WHEN: Mon Jul 04 20:29:36 CEST 2022
;; MSG SIZE rcvd: 44
Maybe, I have missed something.
Do you have any clue ?
Best regards.
-fredg
Le Monday 04 Jul 2022 à 20:39 (+0200), Drew DeVault a écrit :
> We've been rate limited by Let's Encrypt, try again tomorrow.
It's been 3 days.
Do you have an idea when it will be OK ?
-fredg
Hi Frédéric,
On Wednesday, July 6th, 2022 at 20:56, Frédéric Galusik <dev@galusik.fr> wrote:
> Le Monday 04 Jul 2022 à 20:39 (+0200), Drew DeVault a écrit :>> > We've been rate limited by Let's Encrypt, try again tomorrow.>> It's been 3 days.> Do you have an idea when it will be OK ?
From our logs:
2022-07-07T08:40:44.038Z ERROR acme_client challenge failed {"identifier": "galusik.fr", "challenge_type": "tls-alpn-01", "problem": {"type": "urn:ietf:params:acme:error:connection", "title": "", "detail": "2a01:cb19:67c:5700:769d:79ff:fecd:12a: Timeout during connect (likely firewall problem)", "instance": "", "subproblems": []}}
It seems like Let's Encrypt ACME validation servers are trying to
connect via IPv6. It sounds like you have an AAAA record set up on this
domain:
> drill AAAA galusik.fr
;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 15672
;; flags: qr rd ra ; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0
;; QUESTION SECTION:
;; galusik.fr. IN AAAA
;; ANSWER SECTION:
galusik.fr. 1761 IN AAAA 2a01:cb19:67c:5700:769d:79ff:fecd:12a
Maybe it points to an old host?
Can you try removing it, waiting a bit for the deletion to propagate,
then try again?
Thanks,
Simon
> > drill AAAA galusik.fr> > ;; ->>HEADER<<- opcode: QUERY, rcode: NOERROR, id: 15672> ;; flags: qr rd ra ; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0> ;; QUESTION SECTION:> ;; galusik.fr. IN AAAA> > ;; ANSWER SECTION:> galusik.fr. 1761 IN AAAA 2a01:cb19:67c:5700:769d:79ff:fecd:12a> > Maybe it points to an old host?> > Can you try removing it, waiting a bit for the deletion to propagate,> then try again?
Oh you found it!
I'm online \o/
Thank you very much.
Best regards.