1. The problem I’m having:
I am running nextcloud and a few services on a local machine. I have been serving it on my public domain for the last months via Caddy reverse proxy without issue. Since yesterday however, the certification fails (error self signed certificate on mozilla). Since then I have re-created my Caddyfile. You can see the error message when I do “caddy run” below. I am honestly not sure if Caddy is the problem, or it is something with my DDNS (I am using ddclient to update the domain IPs at https://www.dynu.com/)
2. Error messages and/or full log output:
2025/07/11 09:53:06.250 INFO maxprocs: Leaving GOMAXPROCS=4: CPU quota undefined
2025/07/11 09:53:06.251 INFO GOMEMLIMIT is updated {"package": "github.com/KimMachineGun/automemlimit/memlimit", "GOMEMLIMIT": 7340610355, "previous": 9223372036854775807}
2025/07/11 09:53:06.251 INFO using adjacent Caddyfile
2025/07/11 09:53:06.252 INFO adapted config to JSON {"adapter": "caddyfile"}
2025/07/11 09:53:06.253 INFO admin admin endpoint started {"address": ":2019", "enforce_origin": false, "origins": ["//:2019"]}
2025/07/11 09:53:06.253 WARN admin admin endpoint on open interface; host checking disabled {"address": ":2019"}
2025/07/11 09:53:06.253 INFO http.auto_https server is listening only on the HTTPS port but has no TLS connection policies; adding one to enable TLS {"server_name": "srv0", "https_port": 443}
2025/07/11 09:53:06.253 INFO http.auto_https enabling automatic HTTP->HTTPS redirects {"server_name": "srv0"}
2025/07/11 09:53:06.254 INFO tls.cache.maintenance started background certificate maintenance {"cache": "0xc0002ab900"}
2025/07/11 09:53:06.253 DEBUG http.auto_https adjusted config {"tls": {"automation":{"policies":[{}]}}, "http": {"servers":{"remaining_auto_https_redirects":{"listen":[":80"],"routes":[{},{}]},"srv0":{"listen":[":443"],"routes":[{"handle":[{"handler":"subroute","routes":[{"handle":[{"handler":"vars","root":"/var/www/html"},{"encodings":{"gzip":{},"zstd":{}},"handler":"encode","prefer":["zstd","gzip"]},{"handler":"file_server","hide":["./Caddyfile"]}]}]}],"terminal":true}],"tls_connection_policies":[{}],"automatic_https":{}}}}}
2025/07/11 09:53:06.254 DEBUG http starting server loop {"address": "[::]:443", "tls": true, "http3": false}
2025/07/11 09:53:06.254 INFO http enabling HTTP/3 listener {"addr": ":443"}
2025/07/11 09:53:06.254 INFO http.log server running {"name": "srv0", "protocols": ["h1", "h2", "h3"]}
2025/07/11 09:53:06.255 DEBUG http starting server loop {"address": "[::]:80", "tls": false, "http3": false}
2025/07/11 09:53:06.255 WARN http HTTP/2 skipped because it requires TLS {"network": "tcp", "addr": ":80"}
2025/07/11 09:53:06.255 WARN http HTTP/3 skipped because it requires TLS {"network": "tcp", "addr": ":80"}
2025/07/11 09:53:06.255 INFO http.log server running {"name": "remaining_auto_https_redirects", "protocols": ["h1", "h2", "h3"]}
2025/07/11 09:53:06.255 INFO http enabling automatic TLS certificate management {"domains": ["hallo-caroline.cloud"]}
2025/07/11 09:53:06.255 DEBUG events event {"name": "started", "id": "d8e6a737-2d43-4bec-8e7e-999adaca75a2", "origin": "", "data": null}
2025/07/11 09:53:06.255 INFO autosaved config (load with --resume flag) {"file": "/root/.config/caddy/autosave.json"}
2025/07/11 09:53:06.255 INFO serving initial configuration
2025/07/11 09:53:06.260 INFO tls.obtain acquiring lock {"identifier": "hallo-caroline.cloud"}
2025/07/11 09:53:06.261 INFO tls storage cleaning happened too recently; skipping for now {"storage": "FileStorage:/root/.local/share/caddy", "instance": "0c702077-9fd6-48a1-a9a6-8c42bbc4d42c", "try_again": "2025/07/12 09:53:06.261", "try_again_in": 86399.999999261}
2025/07/11 09:53:06.261 INFO tls finished cleaning storage units
2025/07/11 09:53:06.264 INFO tls.obtain lock acquired {"identifier": "hallo-caroline.cloud"}
2025/07/11 09:53:06.264 INFO tls.obtain obtaining certificate {"identifier": "hallo-caroline.cloud"}
2025/07/11 09:53:06.264 DEBUG events event {"name": "cert_obtaining", "id": "3927ab20-93b4-4e76-a013-4bcbf065e750", "origin": "tls", "data": {"identifier":"hallo-caroline.cloud"}}
2025/07/11 09:53:06.265 DEBUG tls created CSR {"identifiers": ["hallo-caroline.cloud"], "san_dns_names": ["hallo-caroline.cloud"], "san_emails": [], "common_name": "", "extra_extensions": 0}
2025/07/11 09:53:06.265 DEBUG tls.obtain trying issuer 1/1 {"issuer": "acme-v02.api.letsencrypt.org-directory"}
2025/07/11 09:53:06.266 DEBUG http using existing ACME account because key found in storage associated with email{"email": "default", "ca": "https://acme-v02.api.letsencrypt.org/directory"}
2025/07/11 09:53:06.266 DEBUG http using existing ACME account because key found in storage associated with email{"email": "", "ca": "https://acme-v02.api.letsencrypt.org/directory"}
2025/07/11 09:53:06.266 INFO http waiting on internal rate limiter {"identifiers": ["hallo-caroline.cloud"], "ca": "https://acme-v02.api.letsencrypt.org/directory", "account": ""}
2025/07/11 09:53:06.266 INFO http done waiting on internal rate limiter {"identifiers": ["hallo-caroline.cloud"], "ca": "https://acme-v02.api.letsencrypt.org/directory", "account": ""}
2025/07/11 09:53:06.266 INFO http using ACME account {"account_id": "https://acme-v02.api.letsencrypt.org/acme/acct/2522082141", "account_contact": []}
2025/07/11 09:53:07.304 DEBUG http request {"method": "GET", "url": "https://acme-v02.api.letsencrypt.org/directory", "headers": {"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["995"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:07 GMT"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:07.304 DEBUG creating order {"account": "https://acme-v02.api.letsencrypt.org/acme/acct/2522082141", "identifiers": ["hallo-caroline.cloud"]}
2025/07/11 09:53:07.498 DEBUG http request {"method": "HEAD", "url": "https://acme-v02.api.letsencrypt.org/acme/new-nonce", "headers": {"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Cache-Control":["public, max-age=0, no-cache"],"Date":["Fri, 11 Jul 2025 09:53:07 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["a-xDzxYJ4Uggf-SW7tOr6G_OLjcWftBSzOUtXIVs_-XJERfkL1A"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:07.866 DEBUG http request {"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/new-order", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["354"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:07 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Location":["https://acme-v02.api.letsencrypt.org/acme/order/2522082141/405299348471"],"Replay-Nonce":["oG9lZsuDZNJbOqD1GVf-8zZNUI2nD-suQKwZNwyvr39V3NCX8K8"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 201}
2025/07/11 09:53:08.196 DEBUG http request {"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:07 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["a-xDzxYJRyW67SQxXaQXaXzEOXBSdbG81pg6PJNO9ZHkwiy51tc"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:08.196 INFO trying to solve challenge {"identifier": "hallo-caroline.cloud", "challenge_type": "tls-alpn-01", "ca": "https://acme-v02.api.letsencrypt.org/directory"}
2025/07/11 09:53:08.203 DEBUG waiting for solver before continuing {"identifier": "hallo-caroline.cloud", "challenge_type": "tls-alpn-01"}
2025/07/11 09:53:08.203 DEBUG done waiting for solver {"identifier": "hallo-caroline.cloud", "challenge_type": "tls-alpn-01"}
2025/07/11 09:53:08.567 DEBUG http request {"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/chall/2522082141/550995653551/z4QJnA", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["199"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:08 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\"","<https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551>;rel=\"up\""],"Location":["https://acme-v02.api.letsencrypt.org/acme/chall/2522082141/550995653551/z4QJnA"],"Replay-Nonce":["oG9lZsuDcE49gM4pftn6wkhV3PpW9eiN7-7mP37ahqhqiRt6hn0"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:08.567 DEBUG challenge accepted {"identifier": "hallo-caroline.cloud", "challenge_type": "tls-alpn-01"}
2025/07/11 09:53:09.139 DEBUG http request {"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:08 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["oG9lZsuDIzJrobbP4WwVEhlSsijVvjSwjXDNudlU9PJHk2IoiKk"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:09.712 DEBUG http request {"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:09 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["a-xDzxYJof1wNMperWFVJCbJWnSCaEsAwQjPBAZ7O78FhmXUZHY"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:10.290 DEBUG http request {"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:10 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["a-xDzxYJPKMBr6ORbSwbycpb8NCi4nUQTKq1aMrRmbFO84N297w"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:10.869 DEBUG http request {"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:10 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["oG9lZsuDiozfZY65v1PRsZzmNBlGPksKjjFHWft2i9j2vkOzcZ0"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:11.447 DEBUG http request {"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:11 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["a-xDzxYJV17RO2rK1RwReL5wT7u1iM63QEDDGIFeZLblLK1R7Mo"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:12.021 DEBUG http request {"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:11 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["a-xDzxYJpWD3DD9CrzWxYNc_5P2UiWqvmEvcoqGSAC3a0uJv5XA"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:12.600 DEBUG http request {"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:12 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["a-xDzxYJHRbPpHXTVHSKcuIYRGQR7JiFi_GqJLfIzQ3ZHSjiRrw"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:13.174 DEBUG http request {"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:12 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["a-xDzxYJ5IqsW11o7uHFhc3DRFUry5Gb7vdL8BEYD_S3SAwh5qY"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:13.752 DEBUG http request {"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:13 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["a-xDzxYJ9ByccAuT_AZpZwS9O4ot5Djd0GhDKuWlpeFkPnuINYg"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:14.324 DEBUG http request {"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:14 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["oG9lZsuDvrxwA-yjmzGh8PwDhDrL4dgXvtGVoVL8bW8sb5WwUAs"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:14.899 DEBUG http request {"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:14 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["a-xDzxYJ56VsIiKxms4ABdDQf3NPgW1Tdytistvf1_gNgO-Y4tY"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:15.474 DEBUG http request {"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:15 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["a-xDzxYJLMiMQhcQIU0Pco7EhIyr5ipbI2VFCoZ92-Hn98b55HE"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:16.047 DEBUG http request {"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:15 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["oG9lZsuDJd3QEGSXwTn76__kPalOuRrbULGMqA-ifzq2e0E9KxM"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:16.626 DEBUG http request {"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:16 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["oG9lZsuDKRWe2dXHSvCoxDAMxSO5QSpO11Z2EssKFXrF9np5SZg"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:17.200 DEBUG http request {"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:16 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["a-xDzxYJMB-XDQ5cl6mjl8asZfEEgR-vf6MT04N6sRsE2_lpKSU"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:17.774 DEBUG http request {"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:17 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["oG9lZsuDKU9sedXc1LMpYkyLZuzmSc0jlAFGIl53urav_lNJXms"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:18.361 DEBUG http request {"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:18 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["a-xDzxYJkSF5OuwsGHcii71I40A1tKYD08quUvtvt2PnQjE_CSU"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:18.947 DEBUG http request {"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:18 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["oG9lZsuDYOHoRil7iKUxy3t6L6U8qBByYFgoQw7-gRY5ErczLEE"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:19.539 DEBUG http request {"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["975"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:19 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["oG9lZsuDyk0fr4YaaYJJhDboumQ0sFXjhuQNKmNiemo8VwPmf88"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:19.539 ERROR challenge failed {"identifier": "hallo-caroline.cloud", "challenge_type": "tls-alpn-01", "problem": {"type": "urn:ietf:params:acme:error:connection", "title": "", "detail": "178.25.236.12: Timeout during connect (likely firewall problem)", "instance": "", "subproblems": null}}
github.com/mholt/acmez/v3.(*Client).pollAuthorization
github.com/mholt/acmez/v3@v3.1.2/client.go:557
github.com/mholt/acmez/v3.(*Client).solveChallenges
github.com/mholt/acmez/v3@v3.1.2/client.go:378
github.com/mholt/acmez/v3.(*Client).ObtainCertificate
github.com/mholt/acmez/v3@v3.1.2/client.go:136
github.com/caddyserver/certmagic.(*ACMEIssuer).doIssue
github.com/caddyserver/certmagic@v0.23.0/acmeissuer.go:489
github.com/caddyserver/certmagic.(*ACMEIssuer).Issue
github.com/caddyserver/certmagic@v0.23.0/acmeissuer.go:382
github.com/caddyserver/caddy/v2/modules/caddytls.(*ACMEIssuer).Issue
github.com/caddyserver/caddy/v2@v2.10.0/modules/caddytls/acmeissuer.go:288
github.com/caddyserver/certmagic.(*Config).obtainCert.func2
github.com/caddyserver/certmagic@v0.23.0/config.go:626
github.com/caddyserver/certmagic.doWithRetry
github.com/caddyserver/certmagic@v0.23.0/async.go:104
github.com/caddyserver/certmagic.(*Config).obtainCert
github.com/caddyserver/certmagic@v0.23.0/config.go:700
github.com/caddyserver/certmagic.(*Config).ObtainCertAsync
github.com/caddyserver/certmagic@v0.23.0/config.go:505
github.com/caddyserver/certmagic.(*Config).manageOne.func1
github.com/caddyserver/certmagic@v0.23.0/config.go:415
github.com/caddyserver/certmagic.(*jobManager).worker
github.com/caddyserver/certmagic@v0.23.0/async.go:73
2025/07/11 09:53:19.540 ERROR validating authorization {"identifier": "hallo-caroline.cloud", "problem": {"type": "urn:ietf:params:acme:error:connection", "title": "", "detail": "178.25.236.12: Timeout during connect (likely firewall problem)", "instance": "", "subproblems": null}, "order": "https://acme-v02.api.letsencrypt.org/acme/order/2522082141/405299348471", "attempt": 1, "max_attempts": 3}
github.com/mholt/acmez/v3.(*Client).ObtainCertificate
github.com/mholt/acmez/v3@v3.1.2/client.go:152
github.com/caddyserver/certmagic.(*ACMEIssuer).doIssue
github.com/caddyserver/certmagic@v0.23.0/acmeissuer.go:489
github.com/caddyserver/certmagic.(*ACMEIssuer).Issue
github.com/caddyserver/certmagic@v0.23.0/acmeissuer.go:382
github.com/caddyserver/caddy/v2/modules/caddytls.(*ACMEIssuer).Issue
github.com/caddyserver/caddy/v2@v2.10.0/modules/caddytls/acmeissuer.go:288
github.com/caddyserver/certmagic.(*Config).obtainCert.func2
github.com/caddyserver/certmagic@v0.23.0/config.go:626
github.com/caddyserver/certmagic.doWithRetry
github.com/caddyserver/certmagic@v0.23.0/async.go:104
github.com/caddyserver/certmagic.(*Config).obtainCert
github.com/caddyserver/certmagic@v0.23.0/config.go:700
github.com/caddyserver/certmagic.(*Config).ObtainCertAsync
github.com/caddyserver/certmagic@v0.23.0/config.go:505
github.com/caddyserver/certmagic.(*Config).manageOne.func1
github.com/caddyserver/certmagic@v0.23.0/config.go:415
github.com/caddyserver/certmagic.(*jobManager).worker
github.com/caddyserver/certmagic@v0.23.0/async.go:73
3. Caddy version:
v2.10.0
4. How I installed and ran Caddy:
a. System environment:
Ubuntu Server,
b. Command:
sudo caddy run
d. My complete Caddy config:
{
debug
admin :2019
}
hallo-caroline.cloud {
encode zstd gzip
root * /var/www/html
file_server
}
nextcloud.hallo-caroline.cloud {
reverse_proxy localhost:11000
}