lnmp 1.5 ssl不成功
ssl不成功 acme.sh.log如下,大神帮忙看看Try new-authz for the 0 time.
url='https://acme-v01.api.letsencrypt.org/acme/new-authz'
payload='{"resource": "new-authz", "identifier": {"type": "dns", "value": "XXXX.com"}}'
POST
_post_url='https://acme-v01.api.letsencrypt.org/acme/new-authz'
_CURL='curl -L --silent --dump-header /usr/local/acme.sh/http.header-g '
_ret='0'
code='201'
The new-authz request is ok.
entry='"type":"http-01","status":"pending","uri":"https://acme-v01.api.letsencrypt.org/acme/challenge/mzKlPwzPEN9Qf80b7JSM7vcrkth96JwvjiY3rAWieG4/6582363135","token":"EjgrwuX1UWYlJ5zKfKl5GHgQXHuI366hlsDtrOpQAqY"'
token='EjgrwuX1UWYlJ5zKfKl5GHgQXHuI366hlsDtrOpQAqY'
uri='https://acme-v01.api.letsencrypt.org/acme/challenge/mzKlPwzPEN9Qf80b7JSM7vcrkth96JwvjiY3rAWieG4/6582363135'
keyauthorization='EjgrwuX1UWYlJ5zKfKl5GHgQXHuI366hlsDtrOpQAqY.6qBdVdSWwUgkR6KzT_z1k4eozUrKUDfKs61KYd8UF-U'
dvlist='XXXX.com#EjgrwuX1UWYlJ5zKfKl5GHgQXHuI366hlsDtrOpQAqY.6qBdVdSWwUgkR6KzT_z1k4eozUrKUDfKs61KYd8UF-U#https://acme-v01.api.letsencrypt.org/acme/challenge/mzKlPwzPEN9Qf80b7JSM7vcrkth96JwvjiY3rAWieG4/6582363135#http-01#/app/data/XXXX'
d
vlist='www.XXXX.com#verified_ok#https://acme-v01.api.letsencrypt.org/acme/challenge/ZQYIxtsOIUr7DRuAeepIyjpGY5Hd7Hi1tMbXs0cJAGM/6580508428#http-01#/app/data/XXXX,XXXX.com#EjgrwuX1UWYlJ5zKfKl5GHgQXHuI366hlsDtrOpQAqY.6qBdVdSWwUgkR6KzT_z1k4eozUrKUDfKs61KYd8UF-U#https://acme-v01.api.letsencrypt.org/acme/challenge/mzKlPwzPEN9Qf80b7JSM7vcrkth96JwvjiY3rAWieG4/6582363135#http-01#/app/data/XXXX,'
d='www.XXXX.com'
www.XXXX.com is already verified, skip http-01.
d='XXXX.com'
ok, let's start to verify
www.XXXX.com is already verified, skip http-01.
Verifying:XXXX.com
d='XXXX.com'
keyauthorization='EjgrwuX1UWYlJ5zKfKl5GHgQXHuI366hlsDtrOpQAqY.6qBdVdSWwUgkR6KzT_z1k4eozUrKUDfKs61KYd8UF-U'
uri='https://acme-v01.api.letsencrypt.org/acme/challenge/mzKlPwzPEN9Qf80b7JSM7vcrkth96JwvjiY3rAWieG4/6582363135'
_currentRoot='/app/data/XXXX'
wellknown_path='/app/data/XXXX/.well-known/acme-challenge'
writing token:EjgrwuX1UWYlJ5zKfKl5GHgQXHuI366hlsDtrOpQAqY to /app/data/XXXX/.well-known/acme-challenge/EjgrwuX1UWYlJ5zKfKl5GHgQXHuI366hlsDtrOpQAqY
Changing owner/group of .well-known to www:www
url='https://acme-v01.api.letsencrypt.org/acme/challenge/mzKlPwzPEN9Qf80b7JSM7vcrkth96JwvjiY3rAWieG4/6582363135'
payload='{"resource": "challenge", "keyAuthorization": "EjgrwuX1UWYlJ5zKfKl5GHgQXHuI366hlsDtrOpQAqY.6qBdVdSWwUgkR6KzT_z1k4eozUrKUDfKs61KYd8UF-U"}'
POST
_post_url='https://acme-v01.api.letsencrypt.org/acme/challenge/mzKlPwzPEN9Qf80b7JSM7vcrkth96JwvjiY3rAWieG4/6582363135'
_CURL='curl -L --silent --dump-header /usr/local/acme.sh/http.header-g '
_ret='0'
code='202'
sleep 2 secs to verify
checking
GET
url='https://acme-v01.api.letsencrypt.org/acme/challenge/mzKlPwzPEN9Qf80b7JSM7vcrkth96JwvjiY3rAWieG4/6582363135'
timeout=
_CURL='curl -L --silent --dump-header /usr/local/acme.sh/http.header-g '
ret='0'
XXXX.com:Verify error:Fetching https://www.XXXX.com/.well-known/acme-challenge/EjgrwuX1UWYlJ5zKfKl5GHgQXHuI366hlsDtrOpQAqY: Connection reset by peer
pid
No need to restore nginx, skip.
_clearupdns
skip dns.
_on_issue_err
Please check log file for more details: /usr/local/acme.sh/acme.sh.log
url='https://acme-v01.api.letsencrypt.org/acme/challenge/ZQYIxtsOIUr7DRuAeepIyjpGY5Hd7Hi1tMbXs0cJAGM/6580508428'
payload='{"resource": "challenge", "keyAuthorization": "verified_ok"}'
POST
_post_url='https://acme-v01.api.letsencrypt.org/acme/challenge/ZQYIxtsOIUr7DRuAeepIyjpGY5Hd7Hi1tMbXs0cJAGM/6580508428'
_CURL='curl -L --silent --dump-header /usr/local/acme.sh/http.header-g '
_ret='0'
code='202'
url='https://acme-v01.api.letsencrypt.org/acme/challenge/mzKlPwzPEN9Qf80b7JSM7vcrkth96JwvjiY3rAWieG4/6582363135'
payload='{"resource": "challenge", "keyAuthorization": "EjgrwuX1UWYlJ5zKfKl5GHgQXHuI366hlsDtrOpQAqY.6qBdVdSWwUgkR6KzT_z1k4eozUrKUDfKs61KYd8UF-U"}'
POST
_post_url='https://acme-v01.api.letsencrypt.org/acme/challenge/mzKlPwzPEN9Qf80b7JSM7vcrkth96JwvjiY3rAWieG4/6582363135'
_CURL='curl -L --silent --dump-header /usr/local/acme.sh/http.header-g '
_ret='0'
code='400'
[ 本帖最后由 linx124 于 2018-8-19 00:09 编辑 ] 按日志看访问你网站时Connection reset by peer 无法访问网站进行验证 用lnmp vhost add 创建ssl成功了。
这样会自动续期吗?
回复 3# 的帖子
只要配置文件不变动,crontab规则没动就会自动续期回复 4# 的帖子
感谢军哥!感谢军哥!:)
页:
[1]