Lets Encrypt SSL Error (Error: Let's Encrypt validation status 400 (domain.com). Details: 403:"MY-IP: Invalid response

reginaldohb · May 4, 2025, 3:05am

Since Hestia CP started having problems activating SSL Let’s Encrypt, what have I done:

I increased the limit of open files in NGINX;
I commented in the v-restart-service file;
I checked BIND9, according to the screen print sent previously.

All these processes did not help to activate SSL for my websites.

Now, there is this issue of IPV6, which, at the moment, I can’t imagine where to start, due to lack of knowledge.

I did a lot of research to understand this issue of IPV6 on Hestia CP and other panels, but I was unable to make any progress.

Could anyone help me at least so I can better understand the IPV6 settings on Hestia CP?

Thank you in advance.

nu01 · May 4, 2025, 3:27am

I am guessing it may be your IPV6 which is interfering and LE is unable to validate. If you are on Debian follow How To Disable IPv6 on Debian 12 - idroot or if you are on Ubuntu follow https://linuxconfig.org/how-to-disable-ipv6-on-ubuntu-24-04 to disable ipv6 first. Reboot the system and retry ssl for one domain first. If it fails in one try, do it again for the same domain after 5 minutes and retry maximum 3 times only in 24 hours. If it passes, please try for the next domain with a gap of minimum 5-10 minutes, suggest 600 seconds.

I had this issue initially myself. Did this and it worked perfectly. Found IPV6 was the issue for only during SSL part. After that the IPv6 caused no issues.

reginaldohb · May 4, 2025, 3:46am

Perfect. I’ve already deactivated it, restarted the server and I’m going to do these tests in relation to the domains. Well, at first, it hasn’t activated yet.

Then I’ll let you know if it worked.

Thank you very much!