【待反馈】自动续签Let's Encrypt证书失败
为了能快速了解并处理您的问题,请提供以下基础信息:面板、插件版本:8.0.1系统版本:OpenCloudOS 8.6.2205 x86_64(Py3.7.16)
问题描述:使用shell脚本续签Let's Encrypt证书,结果失败
相关截图(日志、错误):shell命令为:/www/server/panel/pyenv/bin/python3 -u /www/server/panel/class/acme_v2.py --renew=1报错:|-共需要续签 1 张证书Traceback (most recent call last):File "/www/server/panel/class/acme_v2.py", line 1699, in renew_cert self.get_apis()File "/www/server/panel/class/acme_v2.py", line 90, in get_apis raise Exception(res.content)Exception: curl: (7) Couldn't connect to server
您好,您在服务器上使用curl以及ping命令访问看下是否正常呢?
ping letsencrypt.status.io
curl -v letsencrypt.status.io 本帖最后由 宝塔用户_vgjlku 于 2023-8-19 21:56 编辑
谢花郎 发表于 2023-8-19 09:20
您好,您在服务器上使用curl以及ping命令访问看下是否正常呢?
好的,谢谢回复~
ping letsencrypt.status.io的反馈应该是通的:
PING d2kxz9smk6axnj.cloudfront.net (54.192.150.109) 56(84) bytes of data.
64 bytes from server-54-192-150-109.sin2.r.cloudfront.net (54.192.150.109): icmp_seq=1 ttl=246 time=0.715 ms
64 bytes from server-54-192-150-109.sin2.r.cloudfront.net (54.192.150.109): icmp_seq=2 ttl=246 time=0.670 ms
64 bytes from server-54-192-150-109.sin2.r.cloudfront.net (54.192.150.109): icmp_seq=3 ttl=246 time=0.680 ms
64 bytes from server-54-192-150-109.sin2.r.cloudfront.net (54.192.150.109): icmp_seq=4 ttl=246 time=0.684 ms
curl -v letsencrypt.status.io的反馈是:
* Rebuilt URL to: letsencrypt.status.io/
* Trying 54.192.150.114...
* TCP_NODELAY set
* Connected to letsencrypt.status.io (54.192.150.114) port 80 (#0)
> GET / HTTP/1.1
> Host: letsencrypt.status.io
> User-Agent: curl/7.61.1
> Accept: */*
>
< HTTP/1.1 301 Moved Permanently
< Server: CloudFront
< Date: Sat, 19 Aug 2023 13:53:34 GMT
< Content-Type: text/html
< Content-Length: 167
< Connection: keep-alive
< Location: https://letsencrypt.status.io/
< X-Cache: Redirect from cloudfront
< Via: 1.1 2a45d2b5ea9ef7dcb9d372459729c164.cloudfront.net (CloudFront)
< X-Amz-Cf-Pop: SIN2-C1
< X-Amz-Cf-Id: vrrQWQFYDr7E7NNaJEvBq1LxpA5nJ_gzXoLOjN7i8xfDd_1rO3ig8w==
<
<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>
* Connection #0 to host letsencrypt.status.io left intact
宝塔用户_vgjlku 发表于 2023-8-19 21:54
好的,谢谢回复~
ping letsencrypt.status.io的反馈应该是通的:
现在续签能正常吗?如果还是不行话的,所有错误信息截图完整提供下 谢花郎 发表于 2023-8-21 09:24
现在续签能正常吗?如果还是不行话的,所有错误信息截图完整提供下
现在我人工续签了,运行这个脚本就会提示“没有找到30天内到期的SSL证书,正在尝试去寻找其它可续签证书!”,不知道有什么测试的方法吗? 宝塔用户_vgjlku 发表于 2023-8-21 23:09
现在我人工续签了,运行这个脚本就会提示“没有找到30天内到期的SSL证书,正在尝试去寻找其它可续签证书! ...
您好,网站列表内有快到期的域名吗?
谢花郎 发表于 2023-8-22 09:49
您好,网站列表内有快到期的域名吗?
目前没有呢:'( 宝塔用户_vgjlku 发表于 2023-8-23 21:31
目前没有呢
可以尝试调整服务器系统时间,然后去测试 您好,这个问题解决了吗 |-正在发送CSR..
|-错误: 发送CSR: 响应状态404 响应值:{'type': 'urn:ietf:params:acme:error:malformed', 'detail': 'No order for ID 295954919586', 'status': 404}
这个怎么处理? curl 提示301的错误
curl -v letsencrypt.status.io
* Trying 3.160.150.124:80...
* Connected to letsencrypt.status.io (3.160.150.124) port 80 (#0)
> GET / HTTP/1.1
> Host: letsencrypt.status.io
> User-Agent: curl/7.88.1
> Accept: */*
>
< HTTP/1.1 301 Moved Permanently
< Server: CloudFront
< Date: Fri, 01 Nov 2024 08:00:11 GMT
< Content-Type: text/html
< Content-Length: 167
< Connection: keep-alive
< Location: https://letsencrypt.status.io/
< X-Cache: Redirect from cloudfront
< Via: 1.1 69114e4ea0aa4e532a5be63a75c51e2c.cloudfront.net (CloudFront)
< X-Amz-Cf-Pop: FRA60-P7
< X-Amz-Cf-Id: D5ru5cvHCgh2eJcleCgfNl3isH99kIA2VjWYCQG2jVgdBVurAKtVEQ==
<
<html>
<head><title>301 Moved Permanently</title></head>
<body>
<center><h1>301 Moved Permanently</h1></center>
<hr><center>CloudFront</center>
</body>
</html>
* Connection #0 to host letsencrypt.status.io left intact
页:
[1]