Certification stopped working

1. The problem I’m having:

I am running nextcloud and a few services on a local machine. I have been serving it on my public domain for the last months via Caddy reverse proxy without issue. Since yesterday however, the certification fails (error self signed certificate on mozilla). Since then I have re-created my Caddyfile. You can see the error message when I do “caddy run” below. I am honestly not sure if Caddy is the problem, or it is something with my DDNS (I am using ddclient to update the domain IPs at https://www.dynu.com/)

2. Error messages and/or full log output:

2025/07/11 09:53:06.250	INFO	maxprocs: Leaving GOMAXPROCS=4: CPU quota undefined
2025/07/11 09:53:06.251	INFO	GOMEMLIMIT is updated	{"package": "github.com/KimMachineGun/automemlimit/memlimit", "GOMEMLIMIT": 7340610355, "previous": 9223372036854775807}
2025/07/11 09:53:06.251	INFO	using adjacent Caddyfile
2025/07/11 09:53:06.252	INFO	adapted config to JSON	{"adapter": "caddyfile"}
2025/07/11 09:53:06.253	INFO	admin	admin endpoint started	{"address": ":2019", "enforce_origin": false, "origins": ["//:2019"]}
2025/07/11 09:53:06.253	WARN	admin	admin endpoint on open interface; host checking disabled	{"address": ":2019"}
2025/07/11 09:53:06.253	INFO	http.auto_https	server is listening only on the HTTPS port but has no TLS connection policies; adding one to enable TLS	{"server_name": "srv0", "https_port": 443}
2025/07/11 09:53:06.253	INFO	http.auto_https	enabling automatic HTTP->HTTPS redirects	{"server_name": "srv0"}
2025/07/11 09:53:06.254	INFO	tls.cache.maintenance	started background certificate maintenance	{"cache": "0xc0002ab900"}
2025/07/11 09:53:06.253	DEBUG	http.auto_https	adjusted config	{"tls": {"automation":{"policies":[{}]}}, "http": {"servers":{"remaining_auto_https_redirects":{"listen":[":80"],"routes":[{},{}]},"srv0":{"listen":[":443"],"routes":[{"handle":[{"handler":"subroute","routes":[{"handle":[{"handler":"vars","root":"/var/www/html"},{"encodings":{"gzip":{},"zstd":{}},"handler":"encode","prefer":["zstd","gzip"]},{"handler":"file_server","hide":["./Caddyfile"]}]}]}],"terminal":true}],"tls_connection_policies":[{}],"automatic_https":{}}}}}
2025/07/11 09:53:06.254	DEBUG	http	starting server loop	{"address": "[::]:443", "tls": true, "http3": false}
2025/07/11 09:53:06.254	INFO	http	enabling HTTP/3 listener	{"addr": ":443"}
2025/07/11 09:53:06.254	INFO	http.log	server running	{"name": "srv0", "protocols": ["h1", "h2", "h3"]}
2025/07/11 09:53:06.255	DEBUG	http	starting server loop	{"address": "[::]:80", "tls": false, "http3": false}
2025/07/11 09:53:06.255	WARN	http	HTTP/2 skipped because it requires TLS	{"network": "tcp", "addr": ":80"}
2025/07/11 09:53:06.255	WARN	http	HTTP/3 skipped because it requires TLS	{"network": "tcp", "addr": ":80"}
2025/07/11 09:53:06.255	INFO	http.log	server running	{"name": "remaining_auto_https_redirects", "protocols": ["h1", "h2", "h3"]}
2025/07/11 09:53:06.255	INFO	http	enabling automatic TLS certificate management	{"domains": ["hallo-caroline.cloud"]}
2025/07/11 09:53:06.255	DEBUG	events	event	{"name": "started", "id": "d8e6a737-2d43-4bec-8e7e-999adaca75a2", "origin": "", "data": null}
2025/07/11 09:53:06.255	INFO	autosaved config (load with --resume flag)	{"file": "/root/.config/caddy/autosave.json"}
2025/07/11 09:53:06.255	INFO	serving initial configuration
2025/07/11 09:53:06.260	INFO	tls.obtain	acquiring lock	{"identifier": "hallo-caroline.cloud"}
2025/07/11 09:53:06.261	INFO	tls	storage cleaning happened too recently; skipping for now	{"storage": "FileStorage:/root/.local/share/caddy", "instance": "0c702077-9fd6-48a1-a9a6-8c42bbc4d42c", "try_again": "2025/07/12 09:53:06.261", "try_again_in": 86399.999999261}
2025/07/11 09:53:06.261	INFO	tls	finished cleaning storage units
2025/07/11 09:53:06.264	INFO	tls.obtain	lock acquired	{"identifier": "hallo-caroline.cloud"}
2025/07/11 09:53:06.264	INFO	tls.obtain	obtaining certificate	{"identifier": "hallo-caroline.cloud"}
2025/07/11 09:53:06.264	DEBUG	events	event	{"name": "cert_obtaining", "id": "3927ab20-93b4-4e76-a013-4bcbf065e750", "origin": "tls", "data": {"identifier":"hallo-caroline.cloud"}}
2025/07/11 09:53:06.265	DEBUG	tls	created CSR	{"identifiers": ["hallo-caroline.cloud"], "san_dns_names": ["hallo-caroline.cloud"], "san_emails": [], "common_name": "", "extra_extensions": 0}
2025/07/11 09:53:06.265	DEBUG	tls.obtain	trying issuer 1/1	{"issuer": "acme-v02.api.letsencrypt.org-directory"}
2025/07/11 09:53:06.266	DEBUG	http	using existing ACME account because key found in storage associated with email{"email": "default", "ca": "https://acme-v02.api.letsencrypt.org/directory"}
2025/07/11 09:53:06.266	DEBUG	http	using existing ACME account because key found in storage associated with email{"email": "", "ca": "https://acme-v02.api.letsencrypt.org/directory"}
2025/07/11 09:53:06.266	INFO	http	waiting on internal rate limiter	{"identifiers": ["hallo-caroline.cloud"], "ca": "https://acme-v02.api.letsencrypt.org/directory", "account": ""}
2025/07/11 09:53:06.266	INFO	http	done waiting on internal rate limiter	{"identifiers": ["hallo-caroline.cloud"], "ca": "https://acme-v02.api.letsencrypt.org/directory", "account": ""}
2025/07/11 09:53:06.266	INFO	http	using ACME account	{"account_id": "https://acme-v02.api.letsencrypt.org/acme/acct/2522082141", "account_contact": []}
2025/07/11 09:53:07.304	DEBUG	http request	{"method": "GET", "url": "https://acme-v02.api.letsencrypt.org/directory", "headers": {"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["995"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:07 GMT"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:07.304	DEBUG	creating order	{"account": "https://acme-v02.api.letsencrypt.org/acme/acct/2522082141", "identifiers": ["hallo-caroline.cloud"]}
2025/07/11 09:53:07.498	DEBUG	http request	{"method": "HEAD", "url": "https://acme-v02.api.letsencrypt.org/acme/new-nonce", "headers": {"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Cache-Control":["public, max-age=0, no-cache"],"Date":["Fri, 11 Jul 2025 09:53:07 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["a-xDzxYJ4Uggf-SW7tOr6G_OLjcWftBSzOUtXIVs_-XJERfkL1A"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:07.866	DEBUG	http request	{"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/new-order", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["354"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:07 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Location":["https://acme-v02.api.letsencrypt.org/acme/order/2522082141/405299348471"],"Replay-Nonce":["oG9lZsuDZNJbOqD1GVf-8zZNUI2nD-suQKwZNwyvr39V3NCX8K8"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 201}
2025/07/11 09:53:08.196	DEBUG	http request	{"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:07 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["a-xDzxYJRyW67SQxXaQXaXzEOXBSdbG81pg6PJNO9ZHkwiy51tc"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:08.196	INFO	trying to solve challenge	{"identifier": "hallo-caroline.cloud", "challenge_type": "tls-alpn-01", "ca": "https://acme-v02.api.letsencrypt.org/directory"}
2025/07/11 09:53:08.203	DEBUG	waiting for solver before continuing	{"identifier": "hallo-caroline.cloud", "challenge_type": "tls-alpn-01"}
2025/07/11 09:53:08.203	DEBUG	done waiting for solver	{"identifier": "hallo-caroline.cloud", "challenge_type": "tls-alpn-01"}
2025/07/11 09:53:08.567	DEBUG	http request	{"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/chall/2522082141/550995653551/z4QJnA", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["199"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:08 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\"","<https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551>;rel=\"up\""],"Location":["https://acme-v02.api.letsencrypt.org/acme/chall/2522082141/550995653551/z4QJnA"],"Replay-Nonce":["oG9lZsuDcE49gM4pftn6wkhV3PpW9eiN7-7mP37ahqhqiRt6hn0"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:08.567	DEBUG	challenge accepted	{"identifier": "hallo-caroline.cloud", "challenge_type": "tls-alpn-01"}
2025/07/11 09:53:09.139	DEBUG	http request	{"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:08 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["oG9lZsuDIzJrobbP4WwVEhlSsijVvjSwjXDNudlU9PJHk2IoiKk"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:09.712	DEBUG	http request	{"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:09 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["a-xDzxYJof1wNMperWFVJCbJWnSCaEsAwQjPBAZ7O78FhmXUZHY"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:10.290	DEBUG	http request	{"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:10 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["a-xDzxYJPKMBr6ORbSwbycpb8NCi4nUQTKq1aMrRmbFO84N297w"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:10.869	DEBUG	http request	{"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:10 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["oG9lZsuDiozfZY65v1PRsZzmNBlGPksKjjFHWft2i9j2vkOzcZ0"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:11.447	DEBUG	http request	{"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:11 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["a-xDzxYJV17RO2rK1RwReL5wT7u1iM63QEDDGIFeZLblLK1R7Mo"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:12.021	DEBUG	http request	{"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:11 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["a-xDzxYJpWD3DD9CrzWxYNc_5P2UiWqvmEvcoqGSAC3a0uJv5XA"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:12.600	DEBUG	http request	{"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:12 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["a-xDzxYJHRbPpHXTVHSKcuIYRGQR7JiFi_GqJLfIzQ3ZHSjiRrw"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:13.174	DEBUG	http request	{"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:12 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["a-xDzxYJ5IqsW11o7uHFhc3DRFUry5Gb7vdL8BEYD_S3SAwh5qY"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:13.752	DEBUG	http request	{"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:13 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["a-xDzxYJ9ByccAuT_AZpZwS9O4ot5Djd0GhDKuWlpeFkPnuINYg"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:14.324	DEBUG	http request	{"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:14 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["oG9lZsuDvrxwA-yjmzGh8PwDhDrL4dgXvtGVoVL8bW8sb5WwUAs"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:14.899	DEBUG	http request	{"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:14 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["a-xDzxYJ56VsIiKxms4ABdDQf3NPgW1Tdytistvf1_gNgO-Y4tY"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:15.474	DEBUG	http request	{"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:15 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["a-xDzxYJLMiMQhcQIU0Pco7EhIyr5ipbI2VFCoZ92-Hn98b55HE"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:16.047	DEBUG	http request	{"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:15 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["oG9lZsuDJd3QEGSXwTn76__kPalOuRrbULGMqA-ifzq2e0E9KxM"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:16.626	DEBUG	http request	{"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:16 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["oG9lZsuDKRWe2dXHSvCoxDAMxSO5QSpO11Z2EssKFXrF9np5SZg"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:17.200	DEBUG	http request	{"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:16 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["a-xDzxYJMB-XDQ5cl6mjl8asZfEEgR-vf6MT04N6sRsE2_lpKSU"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:17.774	DEBUG	http request	{"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:17 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["oG9lZsuDKU9sedXc1LMpYkyLZuzmSc0jlAFGIl53urav_lNJXms"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:18.361	DEBUG	http request	{"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:18 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["a-xDzxYJkSF5OuwsGHcii71I40A1tKYD08quUvtvt2PnQjE_CSU"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:18.947	DEBUG	http request	{"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["828"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:18 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["oG9lZsuDYOHoRil7iKUxy3t6L6U8qBByYFgoQw7-gRY5ErczLEE"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:19.539	DEBUG	http request	{"method": "POST", "url": "https://acme-v02.api.letsencrypt.org/acme/authz/2522082141/550995653551", "headers": {"Content-Type":["application/jose+json"],"User-Agent":["Caddy/2.10.0 CertMagic acmez (linux; amd64)"]}, "response_headers": {"Boulder-Requester":["2522082141"],"Cache-Control":["public, max-age=0, no-cache"],"Content-Length":["975"],"Content-Type":["application/json"],"Date":["Fri, 11 Jul 2025 09:53:19 GMT"],"Link":["<https://acme-v02.api.letsencrypt.org/directory>;rel=\"index\""],"Replay-Nonce":["oG9lZsuDyk0fr4YaaYJJhDboumQ0sFXjhuQNKmNiemo8VwPmf88"],"Server":["nginx"],"Strict-Transport-Security":["max-age=604800"],"X-Frame-Options":["DENY"]}, "status_code": 200}
2025/07/11 09:53:19.539	ERROR	challenge failed	{"identifier": "hallo-caroline.cloud", "challenge_type": "tls-alpn-01", "problem": {"type": "urn:ietf:params:acme:error:connection", "title": "", "detail": "178.25.236.12: Timeout during connect (likely firewall problem)", "instance": "", "subproblems": null}}
github.com/mholt/acmez/v3.(*Client).pollAuthorization
	github.com/mholt/acmez/v3@v3.1.2/client.go:557
github.com/mholt/acmez/v3.(*Client).solveChallenges
	github.com/mholt/acmez/v3@v3.1.2/client.go:378
github.com/mholt/acmez/v3.(*Client).ObtainCertificate
	github.com/mholt/acmez/v3@v3.1.2/client.go:136
github.com/caddyserver/certmagic.(*ACMEIssuer).doIssue
	github.com/caddyserver/certmagic@v0.23.0/acmeissuer.go:489
github.com/caddyserver/certmagic.(*ACMEIssuer).Issue
	github.com/caddyserver/certmagic@v0.23.0/acmeissuer.go:382
github.com/caddyserver/caddy/v2/modules/caddytls.(*ACMEIssuer).Issue
	github.com/caddyserver/caddy/v2@v2.10.0/modules/caddytls/acmeissuer.go:288
github.com/caddyserver/certmagic.(*Config).obtainCert.func2
	github.com/caddyserver/certmagic@v0.23.0/config.go:626
github.com/caddyserver/certmagic.doWithRetry
	github.com/caddyserver/certmagic@v0.23.0/async.go:104
github.com/caddyserver/certmagic.(*Config).obtainCert
	github.com/caddyserver/certmagic@v0.23.0/config.go:700
github.com/caddyserver/certmagic.(*Config).ObtainCertAsync
	github.com/caddyserver/certmagic@v0.23.0/config.go:505
github.com/caddyserver/certmagic.(*Config).manageOne.func1
	github.com/caddyserver/certmagic@v0.23.0/config.go:415
github.com/caddyserver/certmagic.(*jobManager).worker
	github.com/caddyserver/certmagic@v0.23.0/async.go:73
2025/07/11 09:53:19.540	ERROR	validating authorization	{"identifier": "hallo-caroline.cloud", "problem": {"type": "urn:ietf:params:acme:error:connection", "title": "", "detail": "178.25.236.12: Timeout during connect (likely firewall problem)", "instance": "", "subproblems": null}, "order": "https://acme-v02.api.letsencrypt.org/acme/order/2522082141/405299348471", "attempt": 1, "max_attempts": 3}
github.com/mholt/acmez/v3.(*Client).ObtainCertificate
	github.com/mholt/acmez/v3@v3.1.2/client.go:152
github.com/caddyserver/certmagic.(*ACMEIssuer).doIssue
	github.com/caddyserver/certmagic@v0.23.0/acmeissuer.go:489
github.com/caddyserver/certmagic.(*ACMEIssuer).Issue
	github.com/caddyserver/certmagic@v0.23.0/acmeissuer.go:382
github.com/caddyserver/caddy/v2/modules/caddytls.(*ACMEIssuer).Issue
	github.com/caddyserver/caddy/v2@v2.10.0/modules/caddytls/acmeissuer.go:288
github.com/caddyserver/certmagic.(*Config).obtainCert.func2
	github.com/caddyserver/certmagic@v0.23.0/config.go:626
github.com/caddyserver/certmagic.doWithRetry
	github.com/caddyserver/certmagic@v0.23.0/async.go:104
github.com/caddyserver/certmagic.(*Config).obtainCert
	github.com/caddyserver/certmagic@v0.23.0/config.go:700
github.com/caddyserver/certmagic.(*Config).ObtainCertAsync
	github.com/caddyserver/certmagic@v0.23.0/config.go:505
github.com/caddyserver/certmagic.(*Config).manageOne.func1
	github.com/caddyserver/certmagic@v0.23.0/config.go:415
github.com/caddyserver/certmagic.(*jobManager).worker
	github.com/caddyserver/certmagic@v0.23.0/async.go:73


3. Caddy version:

v2.10.0

4. How I installed and ran Caddy:

a. System environment:

Ubuntu Server,

b. Command:

sudo caddy run 

d. My complete Caddy config:

{
        debug
        admin :2019
}

hallo-caroline.cloud {
        encode zstd gzip
        root * /var/www/html
        file_server
}


nextcloud.hallo-caroline.cloud {
      reverse_proxy localhost:11000
}

Check that Caddy is reachable from the external network.

1 Like

The error you’re encountering (Timeout during connect) indicates that Let’s Encrypt can’t reach your server at 178.25.236.12 to verify your domain, likely due to a firewall or port forwarding issue; check that ports 80 and 443 are correctly forwarded on your router to your local machine and that your firewall (on the router or the server) allows inbound connections on those ports—also verify that your DDNS (dynu .com) is resolving properly and pointing to your correct public I

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.