LETSENCRYPT SSL Certificate invalid - cant reach nginx landing page

    • OMV 4.x

    This site uses cookies. By continuing to browse this site, you are agreeing to our Cookie Policy.

    • LETSENCRYPT SSL Certificate invalid - cant reach nginx landing page

      Hi there I am trying to get the LETSENCRYPT docker up and running. I followed the TDL tutorial. I have no issues generating the cert, however, #1 when I type in my domain xxxxx.duckdns.org I get a timeout error. No NGINX landing page. #2 , when I import the certificate to OMV (fullchain.pem and prvkey.pem) and type in 192.168.1.## it tells me the certificate is invalid and not secure (NET::ERR_CERT_COMMON_NAME_INVALID). Which would make sense if I can get to the NGINX landing page, right?

      Any help would be appreciated I am at a loss.


      Docker config here

      Source Code

      1. [s6-init] making user provided files available at /var/run/s6/etc...exited 0.
      2. [s6-init] ensuring user provided files have correct perms...exited 0.
      3. [fix-attrs.d] applying ownership & permissions fixes...
      4. [fix-attrs.d] done.
      5. [cont-init.d] executing container initialization scripts...
      6. [cont-init.d] 01-envfile: executing...
      7. [cont-init.d] 01-envfile: exited 0.
      8. [cont-init.d] 10-adduser: executing...
      9. -------------------------------------
      10. _ ()
      11. | | ___ _ __
      12. | | / __| | | / \
      13. | | \__ \ | | | () |
      14. |_| |___/ |_| \__/
      15. Brought to you by linuxserver.io
      16. We gratefully accept donations at:
      17. https://www.linuxserver.io/donate/
      18. -------------------------------------
      19. GID/UID
      20. -------------------------------------
      21. User uid: 1000
      22. User gid: 100
      23. -------------------------------------
      24. [cont-init.d] 10-adduser: exited 0.
      25. [cont-init.d] 20-config: executing...
      26. [cont-init.d] 20-config: exited 0.
      27. [cont-init.d] 30-keygen: executing...
      28. using keys found in /config/keys
      29. [cont-init.d] 30-keygen: exited 0.
      30. [cont-init.d] 50-config: executing...
      31. Variables set:
      32. PUID=1000
      33. PGID=100
      34. TZ=America/New_York
      35. URL=thehomelab.duckdns.org
      36. SUBDOMAINS=omv,lidarr,radarr,sonarr
      37. EXTRA_DOMAINS=
      38. ONLY_SUBDOMAINS=false
      39. DHLEVEL=2048
      40. VALIDATION=http
      41. DNSPLUGIN=
      42. EMAIL=xxx@gmail.com
      43. STAGING=
      44. 2048 bit DH parameters present
      45. SUBDOMAINS entered, processing
      46. SUBDOMAINS entered, processing
      47. Sub-domains processed are: -d omv.thehomelab.duckdns.org -d lidarr.thehomelab.duckdns.org -d radarr.thehomelab.duckdns.org -d sonarr.thehomelab.duckdns.org
      48. E-mail address entered: ejm330@gmail.com
      49. http validation is selected
      50. Different validation parameters entered than what was used before. Revoking and deleting existing certificate, and an updated one will be created
      51. /usr/lib/python3.8/site-packages/jmespath/visitor.py:32: SyntaxWarning: "is" with a literal. Did you mean "=="?
      52. if x is 0 or x is 1:
      53. /usr/lib/python3.8/site-packages/jmespath/visitor.py:32: SyntaxWarning: "is" with a literal. Did you mean "=="?
      54. if x is 0 or x is 1:
      55. /usr/lib/python3.8/site-packages/jmespath/visitor.py:34: SyntaxWarning: "is" with a literal. Did you mean "=="?
      56. elif y is 0 or y is 1:
      57. /usr/lib/python3.8/site-packages/jmespath/visitor.py:34: SyntaxWarning: "is" with a literal. Did you mean "=="?
      58. elif y is 0 or y is 1:
      59. /usr/lib/python3.8/site-packages/jmespath/visitor.py:260: SyntaxWarning: "is" with a literal. Did you mean "=="?
      60. if original_result is 0:
      61. Saving debug log to /var/log/letsencrypt/letsencrypt.log
      62. No match found for cert-path /config/etc/letsencrypt/live/thehomelab.duckdns.org/fullchain.pem!
      63. Generating new certificate
      64. Saving debug log to /var/log/letsencrypt/letsencrypt.log
      65. Plugins selected: Authenticator standalone, Installer None
      66. Obtaining a new certificate
      67. Performing the following challenges:
      68. http-01 challenge for lidarr.xxxx.duckdns.org
      69. http-01 challenge for omv.xxxx.duckdns.org
      70. http-01 challenge for radarr.xxxx.duckdns.org
      71. http-01 challenge for sonarr.xxxx.duckdns.org
      72. http-01 challenge for xxxx.duckdns.org
      73. Waiting for verification...
      74. Cleaning up challenges
      75. IMPORTANT NOTES:
      76. - Congratulations! Your certificate and chain have been saved at:
      77. /etc/letsencrypt/live/xxxx.duckdns.org/fullchain.pem
      78. Your key file has been saved at:
      79. /etc/letsencrypt/live/xxxx.duckdns.org/privkey.pem
      80. Your cert will expire on 2020-05-07. To obtain a new or tweaked
      81. version of this certificate in the future, simply run certbot
      82. again. To non-interactively renew *all* of your certificates, run
      83. "certbot renew"
      84. - Your account credentials have been saved in your Certbot
      85. configuration directory at /etc/letsencrypt. You should make a
      86. secure backup of this folder now. This configuration directory will
      87. also contain certificates and private keys obtained by Certbot so
      88. making regular backups of this folder is ideal.
      89. - If you like Certbot, please consider supporting our work by:
      90. Donating to ISRG / Let's Encrypt: https://letsencrypt.org/donate
      91. Donating to EFF: https://eff.org/donate-le
      92. New certificate generated; starting nginx
      93. Starting 2019/12/30, GeoIP2 databases require personal license key to download. Please manually download/update the GeoIP2 db and save as /config/geoip2db/GeoLite2-City.mmdb
      94. [cont-init.d] 50-config: exited 0.
      95. [cont-init.d] 99-custom-files: executing...
      96. [custom-init] no custom files found exiting...
      97. [cont-init.d] 99-custom-files: exited 0.
      98. [cont-init.d] done.
      99. [services.d] starting services
      100. [services.d] done.
      101. nginx: [alert] detected a LuaJIT version which is not OpenResty's; many optimizations will be disabled and performance will be compromised (see https://github.com/openresty/luajit2 for OpenResty's LuaJIT or, even better, consider using the OpenResty releases from https://openresty.org/en/download.html)
      102. Server ready
      Display All

      The post was edited 1 time, last by MINERVA ().