Skip to content

Instantly share code, notes, and snippets.


hesco/0010-certbot-output Secret

Last active Apr 16, 2020
What would you like to do?
+ docker run -i --rm --name certcont --publish --volume letsencrypt-etc:/etc/letsencrypt --volume letsencrypt-var-lib:/var/lib/letsencrypt --volume letsencrypt-var-log:
/var/log/letsencrypt certbot/certbot:latest certonly --standalone -d --non-interactive --preferred-challenges http --agree-tos --email hesco@yourmessagedeliver --staging --http-01-port=8888
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator standalone, Installer None
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for
Waiting for verification...
Challenge failed for domain
http-01 challenge for
Cleaning up challenges
Some challenges have failed.
- The following errors were reported by the server:
Type: unauthorized
Detail: Invalid response from
[]: "<html><head><meta http-equiv='refresh'
To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address.
+ cat /exports/data/letsencrypt/etc/letsencrypt/live/ /exports/data/letsencrypt/etc/letsencrypt/live/
cat: /exports/data/letsencrypt/etc/letsencrypt/live/ No such file or directory
cat: /exports/data/letsencrypt/etc/letsencrypt/live/ No such file or directory
root@dessalines021:/exports/data/letsencrypt# ls -alht /exports/data/letsencrypt/etc/letsencrypt | grep live
drwx------ 5 root root 4.0K Aug 25 2019 live
but no new path for this domain. And the resultant written for the haproxy certificate
winds up 0 length, and it must be removed to restart the haproxy.
maxconn 4000
tune.ssl.default-dh-param 2048
log local0
stats socket ipv4@ level admin
stats socket /var/run/haproxy/haproxy.sock mode 666 level admin
stats timeout 10m
log global
maxconn 8000
option redispatch
retries 3
stats enable
timeout http-request 10s
timeout queue 1m
timeout connect 10s
timeout client 1m
timeout server 1m
timeout check 10s
frontend http_proxy
acl letsencrypt-acl path_beg -i /.well-known\/acme-challenge/
mode http
option httplog
option forwardfor
use_backend letsencrypt if letsencrypt-acl
backend letsencrypt
mode http
# server letsencrypt_node_01
server letsencrypt_node_02
timeout connect 1h
timeout server 1h
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.