1. Caddy version (caddy version
):
caddy/latest
Caddy V2.5.1
2. How I run Caddy:
a. System environment:
Synology DSM 6.2.1-23824 Update 6
Docker 20.10.3-0554
Edgerouter x
b. Command:
Paste command here.
c. Service/unit/compose file:
d. My complete Caddyfile or JSON config:
{
admin 0.0.0.0:2019
email email@gmail.com
}
test123.com {
templates
}
# Synology
liquidxpe.test123.com {
reverse_proxy 10.66.66.48:5001
# reverse_proxy 10.66.66.48:5000 # line commented if the above line isn't
}
3. The problem I’m having:
I am using dsm, unifi, sonarr, radarr, sabnzbd, home assistant and many other sites I want to put behind caddy. I am setting this up cause i want an automated way to renew certs
4. Error messages and/or full log output:
2022/05/18 14:16:10.706 ERROR tls.issuance.acme.acme_client challenge failed {“identifier”: “test123.com”, “challenge_type”: “tls-alpn-01”, “problem”: {“type”: “urn:ietf:params:acme:error:connection”, “title”: “”, “detail”: “XX.XX.XX.17: Timeout during connect (likely firewall problem)”, “instance”: “”, “subproblems”: []}}
2022/05/18 14:16:10.706 ERROR tls.issuance.acme.acme_client validating authorization {“identifier”: “test123.com”, “problem”: {“type”: “urn:ietf:params:acme:error:connection”, “title”: “”, “detail”: “XX.XX.XX.17: Timeout during connect (likely firewall problem)”, “instance”: “”, “subproblems”: []}, “order”: “https://acme-v02.api.letsencrypt.org/acme/order/547802866/89767181206”, “attempt”: 2, “max_attempts”: 3}
2022/05/18 14:16:10.706 ERROR tls.obtain could not get certificate from issuer {“identifier”: “test123.com”, “issuer”: “acme-v02.api.letsencrypt.org-directory”, “error”: “HTTP 400 urn:ietf:params:acme:error:connection - XX.XX.XX.17: Timeout during connect (likely firewall problem)”}
5. What I already tried:
I have my domain at cloudflare. I have made sure that the tls/ssl is none, i have made sure the cloudflare firewall is not running, I have made sure that no A records are being proxied. I have port 7443 and 7080 in my router port forwarded to my synology nas. In Docker on the NAS I have the caddy docker set to ports 7443 > 443 and 7080 > 80 Port checker shows 7080 and 7443 closed which makes no sense cause I have a docker running plex, sab, radarr and sonarr and all show open ports for their respective ports. The caddy docker is setup no different. I do not understand the “Likely a firewall problem”.