Hey,
my SSL cert is expiring in 10 days and it did not auto-renew.
I’ve tried using:
/etc/letsencrypt/acme.sh --cron --home /etc/letsencrypt > /dev/null
But I got this error message:
mysite.com:Verify error:Invalid response from http://mysite.com/.well-known/acme-challenge/dYla8wY4VX-nN70ie2iH8Sjdqr0r0HnFZ-bJl0LAUWg
I don’t know if it helps, but here’s my nginx config:
## mysite.com.conf
server {
listen 80;
listen [::]:80;
server_name mysite.com;
root /var/www/ghost/system/nginx-root; # Used for acme.sh SSL verification (https://acme.sh)
location / {
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header Host $http_host;
proxy_pass http://127.0.0.1:2368;
}
location ~ /.well-known {
allow all;
}
client_max_body_size 50m;
}
and
## mysite.com-ssl.conf
server {
listen 443 ssl http2;
listen [::]:443 ssl http2;
server_name mysite.com;
root /var/www/ghost/system/nginx-root; # Used for acme.sh SSL verification (https://acme.sh)
ssl_certificate /etc/letsencrypt/mysite.com/fullchain.cer;
ssl_certificate_key /etc/letsencrypt/mysite.com/mysite.com.key;
include /etc/nginx/snippets/ssl-params.conf;
location / {
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header X-Forwarded-Proto $scheme;
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header Host $http_host;
proxy_pass http://127.0.0.1:2368;
}
location ~ /.well-known {
allow all;
}
client_max_body_size 50m;
}
Any help much appreciated.