Unable to obtain cert via HTTPS

My Traefilk is not getting a new certificate for the domain added to the container.

There was a domain: form.domain.ru, I added another app.domain.ru.

Traefilk: 2.6

Container labels:

labels:
    - "traefik.enable=true"
    - "traefik.http.routers.domain.entrypoints=http,https"
    - "traefik.http.routers.domain.tls=true"
    - "traefik.http.routers.domain.tls.certresolver=letsEncrypt"
    - "traefik.http.routers.domain.rule=Host(`form.domain.ru`, `app.domain.ru`)"
    - "traefik.http.services.domain-service.loadbalancer.server.port=80"

Log:

traefik    | time="2022-01-08T19:03:11+03:00" level=error msg="Unable to obtain ACME certificate for domains \"app.domain.ru\": cannot get ACME client get directory at 'https://acme-v02.api.letsencrypt.org/directory': Get \"https://acme-v02.api.letsencrypt.org/directory\": read tcp 172.18.0.2:42356->172.65.32.248:443: read: connection reset by peer" rule="Host(`app.domain.ru`)" ACME CA="https://acme-v02.api.letsencrypt.org/directory" providerName=letsEncrypt.acme routerName=domain@docker
traefik    | time="2022-01-08T19:03:38+03:00" level=error msg="Unable to obtain ACME certificate for domains \"app.domain.ru\": cannot get ACME client get directory at 'https://acme-v02.api.letsencrypt.org/directory': Get \"https://acme-v02.api.letsencrypt.org/directory\": read tcp 172.18.0.2:42494->172.65.32.248:443: read: connection reset by peer" providerName=letsEncrypt.acme routerName=domain@docker rule="Host(`app.domain.ru`)" ACME CA="https://acme-v02.api.letsencrypt.org/directory"
traefik    | time="2022-01-08T19:04:40+03:00" level=error msg="Unable to obtain ACME certificate for domains \"form.domain.ru,app.domain.ru\": unable to generate a certificate for the domains [app.domain.ru]: error: one or more domains had a problem:\n[app.domain.ru] acme: error: 403 :: urn:ietf:params:acme:error:unauthorized :: Invalid response from https://app.domain.ru:443/.well-known/acme-challenge/xd5RsxGpmMuQ-s0e9APX-ATHXdWTWNCqey1pw_KY20g [2a00:f940:2:2:1:3:0:121]: \"<html>\\r\\n<head><title>404 Not Found</title></head>\\r\\n<body>\\r\\n<center><h1>404 Not Found</h1></center>\\r\\n<hr><center>nginx</center>\\r\\n\"\n" rule="Host(`form.domain.ru`, `app.domain.ru`)" providerName=letsEncrypt.acme ACME CA="https://acme-v02.api.letsencrypt.org/directory" routerName=domain@docker

I wonder why it is checked through https? https://app.domain.ru:443/.well-known/....

I did not notice that IPv6 is displayed in the log. Be careful.

This topic was automatically closed 3 days after the last reply. New replies are no longer allowed.