Hello,
I’m trying to install Nexcloud with the AIO container in docker on a Ubuntu 22.04 LTS server.
I’ve opened ports 80, 443, and 8443 on my router.
I’ve also opened all the necessary ports in ufw as:
80 ALLOW Anywhere # nextcloud aio test
443 ALLOW Anywhere # nextcloud aio test
8443 ALLOW Anywhere # nextcloud aio test
8080 ALLOW Anywhere # nextcloud aio test
I’m using no-ip.com DDNS service to map my public IP address (which is not static) to my domain.
I’m able to start the mastercontainer, log in to it via both http://my-local-ip:8080 and https://my-public-domain.tld:8443, and start all the containers. However, when I try to open Nextcloud via https://my-public-domain.tld:443 once the containers are all fired up, I receive the error ERR_SSL_PROTOCOL_ERROR.
The logs of the nextcloud-aio-apache container are indicating that the tls-alpn-01 challenge for the automatic certificate is not successful. Relevant part from the log looks as follows:
{“level”:“info”,“ts”:1672183107.9087918,“logger”:“http.acme_client”,“msg”:“trying to solve challenge”,“identifier”:“my-public-domain.net”,“challenge_type”:“tls-alpn-01”,“ca”:“https://acme-staging-v02.api.letsencrypt.org/directory”}
{“level”:“error”,“ts”:1672183118.4979508,“logger”:“http.acme_client”,“msg”:“challenge failed”,“identifier”:“my-public-domain.net”,“challenge_type”:“tls-alpn-01”,“problem”:{“type”:“urn:ietf:params:acme:error:connection”,“title”:“”,“detail”:“2a02:ab88:c3b:80:265e:beff:fe03:660b: Timeout during connect (likely firewall problem)”,“instance”:“”,“subproblems”:[ _ ]}}
{“level”:“error”,“ts”:1672183118.4980137,“logger”:“http.acme_client”,“msg”:“validating authorization”,“identifier”:“my-public-domain.net”,“problem”:{“type”:“urn:ietf:params:acme:error:connection”,“title”:“”,“detail”:“2a02:ab88:c3b:80:265e:beff:fe03:660b: Timeout during connect (likely firewall problem)”,“instance”:“”,“subproblems”:[ _ ]},“order”:“https://acme-staging-v02.api.letsencrypt.org/acme/order/81073583/6204535493",“attempt”:1,"max_attempts”:3}
{“level”:“error”,“ts”:1672183118.4980655,“logger”:“tls.obtain”,“msg”:“could not get certificate from issuer”,“identifier”:“my-public-domain.net”,“issuer”:“acme-v02.api.letsencrypt.org-directory”,“error”:“HTTP 400 urn:ietf:params:acme:error:connection - 2a02:ab88:c3b:80:265e:beff:fe03:660b: Timeout during connect (likely firewall problem)”}
{“level”:“error”,“ts”:1672183118.498123,“logger”:“tls.obtain”,“msg”:“will retry”,“error”:“[my-public-domain.net] Obtain: [my-public-domain.net] solving challenge: my-public-domain.net: [my-public-domain.net] authorization failed: HTTP 400 urn:ietf:params:acme:error:connection - 2a02:ab88:c3b:80:265e:beff:fe03:660b: Timeout during connect (likely firewall problem) (ca=https://acme-staging-v02.api.letsencrypt.org/directory)”,“attempt”:2,“retrying_in”:120,“elapsed”:83.807857868,“max_duration”:2592000}
(I had to intentionally ruin all the URLs so that I’m allowed to post the new thread.)
I already tried switching the firewall off, and using different versions from the AIO container with no success. Could you advise me how to proceed with troubleshooting?
Thank you very much in advance!