Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Let's Encrpyt AutoSSL error - Connection Timed Out

Discussion in 'Security' started by seuntaylor, Mar 5, 2017.

  1. seuntaylor

    seuntaylor Registered

    Joined:
    Mar 5, 2017
    Messages:
    4
    Likes Received:
    1
    Trophy Points:
    3
    Location:
    Lagos, Nigeria
    cPanel Access Level:
    Root Administrator
    Hello cPanel Forums Community,

    I was really excited when the AutoSSL feature was implemented in WHM 58 and I was really really happy when the Let's Encrypt plugin was also released!

    I went ahead to install the plugin on one of my servers. I ran command below and everything was okay.

    Code:
    /scripts/install_lets_encrypt_autossl_provider
    I went to the AutoSSL area in WHM and saw that the option was now included. I activated it and it worked out successfully.

    Now, I didn't want all the hosting accounts getting the SSL automatically so disabled the AutoSSL option in the Features area.

    I then went back to the AutoSSL area and to activate the SSL certificate for ONE account. I went to the Manage Users tab, searched for the account and selected the Enable AutoSSL option, then clicked on the Check "account_name" button. The green notification popped up stating it was being processed.

    I switch to the Logs tab and clicked on the Refresh link and saw the log for the account. Waited for the + in front of the log line to go and then clicked on the View Log button, and this was my output:

    Code:
    Log for the AutoSSL run for “account_name”: Sunday, March 5, 2017 8:47:42 PM GMT+0100 (Let’s Encrypt™)
    
     8:47:42 PM This system has AutoSSL set to use “Let’s Encrypt™”.
     8:47:42 PM Checking websites for “account_name” …
     8:47:42 PM The website “domain_name.xyz”, owned by “account_name”, has no SSL certificate. AutoSSL will attempt to obtain a new certificate and install it.
     8:48:43 PM WARN The domain “domain_name.xyz” failed domain control validation: The system failed to fetch the <abbr title="Domain Control Validation">DCV</abbr> file at “<a href="http://domain_name.xyz/.well-known/acme-challenge/LONG_FILE_NAME_001">http://domain_name.xyz/.well-known/acme-challenge/LONG_FILE_NAME_001</a>” because of an error: The system failed to send an <abbr title="Hypertext Transfer Protocol">HTTP</abbr> “GET” request to “http://domain_name.xyz/.well-known/acme-challenge/LONG_FILE_NAME_001” because of an error: Could not connect to 'domain_name.xyz:80': Connection timed out . at bin/autossl_check.pl line 562.
     8:49:43 PM WARN The domain “www.domain_name.xyz” failed domain control validation: The system failed to fetch the <abbr title="Domain Control Validation">DCV</abbr> file at “<a href="http://www.domain_name.xyz/.well-known/acme-challenge/LONG_FILE_NAME_002">http://www.domain_name.xyz/.well-known/acme-challenge/LONG_FILE_NAME_002</a>” because of an error: The system failed to send an <abbr title="Hypertext Transfer Protocol">HTTP</abbr> “GET” request to “http://www.domain_name.xyz/.well-known/acme-challenge/LONG_FILE_NAME_002” because of an error: Could not connect to 'www.domain_name.xyz:80': Connection timed out . at bin/autossl_check.pl line 562.
     8:50:43 PM WARN The domain “mail.domain_name.xyz” failed domain control validation: The system failed to fetch the <abbr title="Domain Control Validation">DCV</abbr> file at “<a href="http://mail.domain_name.xyz/.well-known/acme-challenge/LONG_FILE_NAME_003">http://mail.domain_name.xyz/.well-known/acme-challenge/LONG_FILE_NAME_003</a>” because of an error: The system failed to send an <abbr title="Hypertext Transfer Protocol">HTTP</abbr> “GET” request to “http://mail.domain_name.xyz/.well-known/acme-challenge/LONG_FILE_NAME_003” because of an error: Could not connect to 'mail.domain_name.xyz:80': Connection timed out . at bin/autossl_check.pl line 562.
     8:50:43 PM The system has completed the AutoSSL check for “account_name”.
    
    The DCV files are created successfully - I am able to see them in the File Manager during the process (they are also changed when I keep refreshing the page). So I do not know why the Connection timed out error occurs.

    I have tried it with a different account and I got the same Connection timed out result as well.

    Is there something I am missing? What other log can I produce to pinpoint the cause of this failure?

    Thank you everyone!
     
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    38,658
    Likes Received:
    1,419
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello,

    Do you have any firewall rules on your system that block or filter incoming traffic over port 80?

    Thank you.
     
  3. seuntaylor

    seuntaylor Registered

    Joined:
    Mar 5, 2017
    Messages:
    4
    Likes Received:
    1
    Trophy Points:
    3
    Location:
    Lagos, Nigeria
    cPanel Access Level:
    Root Administrator
    Hmmm Michael, very good question.

    So I searched using the keyword "firewall" and I found HG Firewall Administration.

    Port 80 wasn't listed under the Inbound port or Outbound port areas, so I added 80 in both of them using the textbox and the button on the side that read Open an outbound port and Open an inbound port respectively. The values 80 were added to the outbound and inbound areas and I then clicked on the Restart button under the Manage Firewall Service.

    I tried adding the SSL again and got the same errors. So I don't think it was the firewall. I really don't want to disable the firewall entirely and test again.

    I have also removed the added ports (80) from the lists to revert back to how the settings were before.

    I guess I could say it wasn't the firewall. I wonder what I should try next...
     
  4. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    38,658
    Likes Received:
    1,419
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
    Hello,

    Could you open a support ticket using the link in my signature so we can take a closer look? You can post the ticket number here so we can update this thread with the outcome.

    Thank you.
     
  5. seuntaylor

    seuntaylor Registered

    Joined:
    Mar 5, 2017
    Messages:
    4
    Likes Received:
    1
    Trophy Points:
    3
    Location:
    Lagos, Nigeria
    cPanel Access Level:
    Root Administrator
    Hey cPanelMichael,

    I am so so sorry for my late reply!

    Following the link, I discovered I had I will need to raise a ticket with your Partner. I still haven't done that but when I do, I will report the findings here and the solutions applied, hopefully when it all works out!

    Thank you very much.
     
    cPanelMichael likes this.
  6. seuntaylor

    seuntaylor Registered

    Joined:
    Mar 5, 2017
    Messages:
    4
    Likes Received:
    1
    Trophy Points:
    3
    Location:
    Lagos, Nigeria
    cPanel Access Level:
    Root Administrator
    Okay so an update,

    I spoke to the server provider and they said I needed to speak to a developer to look into the problem and have it fixed.

    I spoke to my team in house but we haven't assigned a resource for this - it isn't really pressing as such.

    When we do and have the issue solved, I will try and post the remedy here.

    Thanks guys!
     
Loading...

Share This Page