The website does not show after After installing Let's Encrypt

FreePBX Security
1

hey, everyone
I have a problem after creating and installing Let’s Encrypt certificate. I cannot access the server via the domain (http://sup.domain.com) server it still works on my local IP with port:8080.

This is what the website shows:

Internal Server Error

The server encountered an internal error or misconfiguration and was unable to complete your request.
Please contact the server administrator at [email protected] to inform them of the time this error occurred, and the actions you performed just before this error.
More information about this error may be available in the server error log.
Additionally, a 500 Internal Server Error error was encountered while trying to use an ErrorDocument to handle the request.

Forbidden

You don’t have permission to access this resource.
Additionally, a 403 Forbidden error was encountered while trying to use an ErrorDocument to handle the request.

System Admin:
PBX Version:15.0.17.34
PBX Distro:12.7.8-2104-1.sng7
Asterisk Version:16.17.0

Certificate Common Name: sup.domain.com
Certificate Alternative NamesDNS: sup.domain.com
Certificate Valid Until: 2021-08-14 (87 days)
Certificate Policies :
Policy: 2.23.140.1.2.1
Policy: 1.3.6.1.4.1.44947.1.1.1
CPS: http://cps.letsencrypt.org

±-----±------------+
| Port | Name |
±-----±------------+
| 82 | restapps |
| 83 | restapi |
| 81 | ucp |
| 8080 | acp |
| 84 | hpro |
| 80 | leport |
| 5443 | sslrestapps |
| 2443 | sslrestapi |
| 4443 | sslucp |
| 443 | sslacp |
| 1443 | sslhpro |
±-----±------------+
How do I know that the certificate is working properly?
The website’s IP is a Shared IP, Should it be unique?
What should I do now?
I tried to change many settings, but I did not succeed in fixing the problem.
Please help to solve this problem!

2

How did you install FreePBX and how did you install the SSL?

It seems like the web server redirects the traffic to http://www.sip.pbxsa.com/sip/

3

How did you install FreePBX and how did you install the SSL?
Freepbx was installed before 3 years ago and is installed on a standalone device and it works well
Do you mean SSL is Let’sEncryptCertificate, It was very difficult to generate it was failed attempts for two weeks, so I got it and installed

It seems like the web server redirects the traffic to http://www.sip.pbxsa.com/sip/
this is correct and the hostname on my freepbx server is the subdomain:sip.pbxsa.com
but the CP in WebHost redirects to this folder, I tried to put it directly on (public_html/) but it gives me an error because it is necessary when creating a subdomain.
Is what I did right.?

4

Apparently the cert you are trying to use was issued to mail.missilesandmoguls.com, does that ring a bell?

Lets start over with three questions,

What do you think is the domain name of your FreePBX server?
Do you have a static IPv4 address?
Who handles your DNS?

5

I contacted the webhosting provider about this domain, they told me IP address is shared and it is not unique,
I personally have not seen it before.
should I purchase a unique IP in this case?

domainname --all-fqdns

sip.pbxsa.com sip.pbxsa.com

domainname -A

sip.pbxsa.com sip.pbxsa.com

I don’t have a static IP in my router I used DDNS

Unfortunately, I handled with DNS of CP webhosting. I am not sure if I made a mistake in the recordings

6

You don’t need an IP, (but it helps), you need a controllable domain, you can buy a domain from namecheap.com for less than $4 a year.

https://www.namecheap.com/domains/new-tlds/explore/?gclid=CjwKCAjwy42FBhB2EiwAJY0yQvViTWGbSH4m1DqR5n180ASBhfJI8OyrdzkzJJ6g1GvYoHNDhPbomBoCpzQQAvD_BwE

for ddns on your $3.98/per year domain

https://www.namecheap.com/support/knowledgebase/article.aspx/36/11/how-do-i-start-using-dynamic-dns/

1 Like
7

Thanks dicko, I understand your response the problem is not in my OS settings, rather this issue is due to Webhosting on the Internet. Am I right?

Thanks for your advice. I will work on it in the coming days

8

you shouldn’t be using ‘webhosting’ (whatever that means to you), you have a perfectly adequate http server(FreePBX), you just need to be your own boss, and that needs control over your dns A and preferably TXT records that way https/tls/letsencrypt is free and easy. < $5 per annum should not be onerous :slight_smile:

9

This topic was automatically closed 31 days after the last reply. New replies are no longer allowed.