I find that on a server with several websites one in particular there is no way to renew the SSL.
I try with
v-add-letsencrypt-domain user domain
But it just stops and doesn’t go forward or backward. If I do it from the HestiaCP panel the same thing happens to me, so much that I have to restart it from the ISP to make it functional again.
Can you help me with some inspiration to solve the problem?
Well, I think I’ve found the problem… now I have to solve it.
I have changed the A record of the domain to another server and it doesn’t change or propagate. So I deduce that BIND9 is not working as it should.
From the Hestia panel I have restarted the service and still the same I have restarted the service by SSH and also not.
I will see if I can find the logs to see if there is something wrong.
@sahsanu help me please
Just for the records.
The problem is fixed and it was caused by wrong SRV records. Due these incorrectly added SRV records, bind was not able to load the zone. So when Hestia tries to issue the LE certificate, it performs a nslookup and as the resolver for the machine was 127.0.0.1, it couldn’t resolve the domain name and the process got stuck.
Once the malformed SRV records have been removed and bind restarted, Hestia succeed to issued a new LE certificate.
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.