6
Nginx proxy manager erneuert keine Zertifikate mehr
Hallo Gemeinde,
ich habe da ein etwas größeres (zumindest für mich) Problem. Ich kann keine Zertifikate über den nginx proxy Manager erneuern er kommt immer wieder mit einem internen Fehler auch wen ich den proxy Manager neu aufsetze kommt die selbe Meldung. Was habe ich übersehen oder was mache ich da falsch? Es hatte eine ganze Weile funktioniert auch das mit den Erneuerungen aber seit März mag er nicht mehr.
ich habe da ein etwas größeres (zumindest für mich) Problem. Ich kann keine Zertifikate über den nginx proxy Manager erneuern er kommt immer wieder mit einem internen Fehler auch wen ich den proxy Manager neu aufsetze kommt die selbe Meldung. Was habe ich übersehen oder was mache ich da falsch? Es hatte eine ganze Weile funktioniert auch das mit den Erneuerungen aber seit März mag er nicht mehr.
Share on Facebook
Share on Twitter
Share on Reddit
Share on LinkedinPlease also mark the comments that contributed to the solution of the article
Content-Key: 5639111152
Url: https://administrator.de/contentid/5639111152
Printed on: May 19, 2024 at 12:05 o'clock
6 Comments
Latest comment
Hi.
Gruß
einem internen Fehler
Ah, achsooo, ja dann musst Du einfach nur das tun:Gruß
Hallo,
evtl. hilft es einen Tee zu trinken.
Oder vielleicht irgendwelche sachdienlichen Informationen?
cya
evtl. hilft es einen Tee zu trinken.
Oder vielleicht irgendwelche sachdienlichen Informationen?
cya
sachdienlichen Informationen?
Du erwartest Sachen.. das wäre doch dann viel zu einfach.. :/
Moin,
Gruß,
Dani
Was habe ich übersehen oder was mache ich da falsch?
was steht dem im Logfile des NPM bzw. des Docker Containers (docker compose logs -f)? Es hatte eine ganze Weile funktioniert auch das mit den Erneuerungen aber seit März mag er nicht mehr.
Und was hat sich seit März an deiner Umgebung geändert?Gruß,
Dani
im Log vom Portainer steht:
6 renew failure(s), 0 parse failure(s)
at ChildProcess.exithandler (node:child_process:402:12)
at ChildProcess.emit (node:events:513:28)
at maybeClose (node:internal/child_process:1100:16)
at Process.ChildProcess._handle.onexit (node:internal/child_process:304:5)
[5/8/2024] [12:00:48 PM] [SSL ] › ℹ info Renewing SSL certs close to expiry...
[5/8/2024] [12:04:03 PM] [SSL ] › ✖ error Error: Command failed: certbot renew --non-interactive --quiet --config "/etc/letsencrypt.ini" --preferred-challenges "dns,http" --disable-hook-validation
Failed to renew certificate npm-1 with error: Some challenges have failed.
Failed to renew certificate npm-19 with error: Some challenges have failed.
Failed to renew certificate npm-2 with error: Some challenges have failed.
Failed to renew certificate npm-3 with error: Some challenges have failed.
Failed to renew certificate npm-6 with error: Some challenges have failed.
Failed to renew certificate npm-7 with error: Some challenges have failed.
All renewals failed. The following certificates could not be renewed:
/etc/letsencrypt/live/npm-1/fullchain.pem (failure)
/etc/letsencrypt/live/npm-19/fullchain.pem (failure)
/etc/letsencrypt/live/npm-2/fullchain.pem (failure)
/etc/letsencrypt/live/npm-3/fullchain.pem (failure)
/etc/letsencrypt/live/npm-6/fullchain.pem (failure)
/etc/letsencrypt/live/npm-7/fullchain.pem (failure)
6 renew failure(s), 0 parse failure(s)
at ChildProcess.exithandler (node:child_process:402:12)
at ChildProcess.emit (node:events:513:28)
at maybeClose (node:internal/child_process:1100:16)
at Process.ChildProcess._handle.onexit (node:internal/child_process:304:5)
[5/8/2024] [1:00:48 PM] [SSL ] › ℹ info Renewing SSL certs close to expiry...
[5/8/2024] [1:04:57 PM] [SSL ] › ✖ error Error: Command failed: certbot renew --non-interactive --quiet --config "/etc/letsencrypt.ini" --preferred-challenges "dns,http" --disable-hook-validation
Failed to renew certificate npm-1 with error: Some challenges have failed.
Failed to renew certificate npm-19 with error: Some challenges have failed.
Failed to renew certificate npm-2 with error: Some challenges have failed.
Failed to renew certificate npm-3 with error: Some challenges have failed.
Failed to renew certificate npm-6 with error: Some challenges have failed.
Failed to renew certificate npm-7 with error: Some challenges have failed.
All renewals failed. The following certificates could not be renewed:
/etc/letsencrypt/live/npm-1/fullchain.pem (failure)
/etc/letsencrypt/live/npm-19/fullchain.pem (failure)
/etc/letsencrypt/live/npm-2/fullchain.pem (failure)
/etc/letsencrypt/live/npm-3/fullchain.pem (failure)
/etc/letsencrypt/live/npm-6/fullchain.pem (failure)
/etc/letsencrypt/live/npm-7/fullchain.pem (failure)
6 renew failure(s), 0 parse failure(s)
at ChildProcess.exithandler (node:child_process:402:12)
at ChildProcess.emit (node:events:513:28)
at maybeClose (node:internal/child_process:1100:16)
at Process.ChildProcess._handle.onexit (node:internal/child_process:304:5)
[5/8/2024] [2:00:48 PM] [SSL ] › ℹ info Renewing SSL certs close to expiry...
[5/8/2024] [2:00:48 PM] [IP Ranges] › ℹ info Fetching IP Ranges from online services...
[5/8/2024] [2:00:48 PM] [IP Ranges] › ℹ info Fetching https://ip-ranges.amazonaws.com/ip-ranges.json
[5/8/2024] [2:00:48 PM] [IP Ranges] › ℹ info Fetching https://www.cloudflare.com/ips-v4
[5/8/2024] [2:00:49 PM] [IP Ranges] › ℹ info Fetching https://www.cloudflare.com/ips-v6
[5/8/2024] [2:00:49 PM] [Nginx ] › ℹ info Reloading Nginx
[5/8/2024] [2:08:50 PM] [SSL ] › ✖ error Error: Command failed: certbot renew --non-interactive --quiet --config "/etc/letsencrypt.ini" --preferred-challenges "dns,http" --disable-hook-validation
Failed to renew certificate npm-1 with error: Some challenges have failed.
Failed to renew certificate npm-19 with error: Some challenges have failed.
Failed to renew certificate npm-2 with error: Some challenges have failed.
Failed to renew certificate npm-3 with error: Some challenges have failed.
Failed to renew certificate npm-6 with error: Some challenges have failed.
Failed to renew certificate npm-7 with error: Some challenges have failed.
All renewals failed. The following certificates could not be renewed:
/etc/letsencrypt/live/npm-1/fullchain.pem (failure)
/etc/letsencrypt/live/npm-19/fullchain.pem (failure)
/etc/letsencrypt/live/npm-2/fullchain.pem (failure)
/etc/letsencrypt/live/npm-3/fullchain.pem (failure)
/etc/letsencrypt/live/npm-6/fullchain.pem (failure)
/etc/letsencrypt/live/npm-7/fullchain.pem (failure)
6 renew failure(s), 0 parse failure(s)
at ChildProcess.exithandler (node:child_process:402:12)
at ChildProcess.emit (node:events:513:28)
at maybeClose (node:internal/child_process:1100:16)
at Process.ChildProcess._handle.onexit (node:internal/child_process:304:5)
6 renew failure(s), 0 parse failure(s)
at ChildProcess.exithandler (node:child_process:402:12)
at ChildProcess.emit (node:events:513:28)
at maybeClose (node:internal/child_process:1100:16)
at Process.ChildProcess._handle.onexit (node:internal/child_process:304:5)
[5/8/2024] [12:00:48 PM] [SSL ] › ℹ info Renewing SSL certs close to expiry...
[5/8/2024] [12:04:03 PM] [SSL ] › ✖ error Error: Command failed: certbot renew --non-interactive --quiet --config "/etc/letsencrypt.ini" --preferred-challenges "dns,http" --disable-hook-validation
Failed to renew certificate npm-1 with error: Some challenges have failed.
Failed to renew certificate npm-19 with error: Some challenges have failed.
Failed to renew certificate npm-2 with error: Some challenges have failed.
Failed to renew certificate npm-3 with error: Some challenges have failed.
Failed to renew certificate npm-6 with error: Some challenges have failed.
Failed to renew certificate npm-7 with error: Some challenges have failed.
All renewals failed. The following certificates could not be renewed:
/etc/letsencrypt/live/npm-1/fullchain.pem (failure)
/etc/letsencrypt/live/npm-19/fullchain.pem (failure)
/etc/letsencrypt/live/npm-2/fullchain.pem (failure)
/etc/letsencrypt/live/npm-3/fullchain.pem (failure)
/etc/letsencrypt/live/npm-6/fullchain.pem (failure)
/etc/letsencrypt/live/npm-7/fullchain.pem (failure)
6 renew failure(s), 0 parse failure(s)
at ChildProcess.exithandler (node:child_process:402:12)
at ChildProcess.emit (node:events:513:28)
at maybeClose (node:internal/child_process:1100:16)
at Process.ChildProcess._handle.onexit (node:internal/child_process:304:5)
[5/8/2024] [1:00:48 PM] [SSL ] › ℹ info Renewing SSL certs close to expiry...
[5/8/2024] [1:04:57 PM] [SSL ] › ✖ error Error: Command failed: certbot renew --non-interactive --quiet --config "/etc/letsencrypt.ini" --preferred-challenges "dns,http" --disable-hook-validation
Failed to renew certificate npm-1 with error: Some challenges have failed.
Failed to renew certificate npm-19 with error: Some challenges have failed.
Failed to renew certificate npm-2 with error: Some challenges have failed.
Failed to renew certificate npm-3 with error: Some challenges have failed.
Failed to renew certificate npm-6 with error: Some challenges have failed.
Failed to renew certificate npm-7 with error: Some challenges have failed.
All renewals failed. The following certificates could not be renewed:
/etc/letsencrypt/live/npm-1/fullchain.pem (failure)
/etc/letsencrypt/live/npm-19/fullchain.pem (failure)
/etc/letsencrypt/live/npm-2/fullchain.pem (failure)
/etc/letsencrypt/live/npm-3/fullchain.pem (failure)
/etc/letsencrypt/live/npm-6/fullchain.pem (failure)
/etc/letsencrypt/live/npm-7/fullchain.pem (failure)
6 renew failure(s), 0 parse failure(s)
at ChildProcess.exithandler (node:child_process:402:12)
at ChildProcess.emit (node:events:513:28)
at maybeClose (node:internal/child_process:1100:16)
at Process.ChildProcess._handle.onexit (node:internal/child_process:304:5)
[5/8/2024] [2:00:48 PM] [SSL ] › ℹ info Renewing SSL certs close to expiry...
[5/8/2024] [2:00:48 PM] [IP Ranges] › ℹ info Fetching IP Ranges from online services...
[5/8/2024] [2:00:48 PM] [IP Ranges] › ℹ info Fetching https://ip-ranges.amazonaws.com/ip-ranges.json
[5/8/2024] [2:00:48 PM] [IP Ranges] › ℹ info Fetching https://www.cloudflare.com/ips-v4
[5/8/2024] [2:00:49 PM] [IP Ranges] › ℹ info Fetching https://www.cloudflare.com/ips-v6
[5/8/2024] [2:00:49 PM] [Nginx ] › ℹ info Reloading Nginx
[5/8/2024] [2:08:50 PM] [SSL ] › ✖ error Error: Command failed: certbot renew --non-interactive --quiet --config "/etc/letsencrypt.ini" --preferred-challenges "dns,http" --disable-hook-validation
Failed to renew certificate npm-1 with error: Some challenges have failed.
Failed to renew certificate npm-19 with error: Some challenges have failed.
Failed to renew certificate npm-2 with error: Some challenges have failed.
Failed to renew certificate npm-3 with error: Some challenges have failed.
Failed to renew certificate npm-6 with error: Some challenges have failed.
Failed to renew certificate npm-7 with error: Some challenges have failed.
All renewals failed. The following certificates could not be renewed:
/etc/letsencrypt/live/npm-1/fullchain.pem (failure)
/etc/letsencrypt/live/npm-19/fullchain.pem (failure)
/etc/letsencrypt/live/npm-2/fullchain.pem (failure)
/etc/letsencrypt/live/npm-3/fullchain.pem (failure)
/etc/letsencrypt/live/npm-6/fullchain.pem (failure)
/etc/letsencrypt/live/npm-7/fullchain.pem (failure)
6 renew failure(s), 0 parse failure(s)
at ChildProcess.exithandler (node:child_process:402:12)
at ChildProcess.emit (node:events:513:28)
at maybeClose (node:internal/child_process:1100:16)
at Process.ChildProcess._handle.onexit (node:internal/child_process:304:5)
Und was hat sich seit März an deiner Umgebung geändert?
nein ich wüste nichts was sich geändert hat
Moin,
Gruß,
Dani
Failed to renew certificate npm-1 with error: Some challenges have failed.
Prüfe doch einmal das verwendete Challenge Verfahren. Wenn du z.B. HTTP-01 verwendest, ist GeoBlocking oder eine Access-List meistens der Grund warum LE den Server nicht erreichen kann.certbot renew --non-interactive --quiet --config "/etc/letsencrypt.ini" --preferred-challenges "dns,http" --disable-hook-validation
Ansonsten den Befehl einmal manuell im Container ausführen. Wobei ich den Parameter --quiet weglassen würde.Gruß,
Dani
