- 我的英语技能不够 -
我尝试在CentOS上设置Lets Encrypt(VPS固定IP地址) - >它成功了!
我尝试设置我们在Debian上加密(没有固定的IP地址和内部服务器) - >它失败了
我尝试使用此命令的手动模式
./letsencrypt-auto certonly --manual -d #MY-DOMAIN# --server HTTPS://acme-v01.api.letsencrypt.org/directory
并且该命令说放置密钥文件。 随机字符串显示。 FileName和密钥代码。 2随机字符串。
http://#MY-DOMAIN#/.well-known/acme-challenge/#LONG-RANDOM-FILENAME#
是的,我确实保存了该关键域文档根目录。
/ My-Domain / Doc Root / .well-known / acme-challenge / #LONG-RANDOM-FILENAME#
5.通过其他网络检查文件。 访问http://#MY-DOMAIN#/.well-known/acme-challenge/#LONG-RANDOM-FILENAME# - >它成功了!
6.Continue让加密设置。但...
IMPORTANT NOTES:
- The following errors were reported by the server:
Domain: #MY-DOMAIN#
Type: connection
Detail: Could not connect to
http://#MY-DOMAIN#/.well-known/acme-challenge/#LONG-RANDOM-FILENAME#
To fix these errors, please make sure that your domain name was
entered correctly and the DNS A record(s) for that domain
contain(s) the right IP address. Additionally, please check that
your computer has a publicly routable IP address and that no
firewalls are preventing the server from communicating with the
client. If you're using the webroot plugin, you should also verify
that you are serving files from the webroot path you provided.
他说错误。不能连接我的服务器。 但是我的域名已经发布。
并通过Dig命令检查DNS
;; QUESTION SECTION:
;#MY-DOMAIN#. IN A
;; ANSWER SECTION:
#MY-DOMAIN#. 120 IN A #MY-SERVER-IPADDR#
我家的服务器IP地址是在2个月前修复的。 和Apache Logfile不包括访问日志。 为什么让加密服务器无法监视我的服务器?
答案 0 :(得分:-1)
我已经在我的博客文章中发布了100%有效的解决方案。您可以检查
How to install wildcard letsencrypt certificate with certbot
您必须确定DNS TXT条目,并且不得删除旧的TXT记录。