How to reduce log pollution when redirecting www to non-www?

elibroftw · June 17, 2025, 2:25am

1. The problem I’m having:

The original problem is that automatic https is not working for a domain, but the subproblem is that when I use journalctl -u caddy --reverse, I’m seeing tons of error messages pertaining to my www domain which I am redirecting to the non-www and know for sure that a certificate cannot be given. This pollution is really bad for trying to debug the actual subdomain I’m interested in. I found out the error is “too many certificates (5) already issued for this exact set of domains in the last” only because I used no-tail with limiting the lines plus outputting to a file and then using cat on said file so that I can copy paste it here LOL.

2. Error messages and/or full log output:

Jun 17 02:17:42 almalinux-personal-tor1 caddy[42340]: {"level":"error","ts":1750126662.5719278,"logger":"tls.obtain","msg":"will retry","error":"[www.elijahlopez.ca] Obtain: [www.elijahlopez.ca] solving challenge: www.elijahlopez.ca: [www.elijahlopez.ca] authorization failed: HTTP 400 urn:ietf:params:acme:error:connection - 2604:a880:cad:d0::a8b1:8001: Fetching https://elijahlopez.ca/.well-known/acme-challenge/JnRDfRoOGfWa9jJlaUs0EbTuoA8NenbK9Q2j0f4ea-8: Timeout during connect (likely firewall problem) (ca=https://acme-staging-v02.api.letsencrypt.org/directory)","attempt":4,"retrying_in":300,"elapsed":378.991112256,"max_duration":2592000}
Jun 17 02:17:42 almalinux-personal-tor1 caddy[42340]: {"level":"error","ts":1750126662.5718906,"logger":"tls.obtain","msg":"could not get certificate from issuer","identifier":"www.elijahlopez.ca","issuer":"acme-v02.api.letsencrypt.org-directory","error":"HTTP 400 urn:ietf:params:acme:error:connection - 2604:a880:cad:d0::a8b1:8001: Fetching https://elijahlopez.ca/.well-known/acme-challenge/JnRDfRoOGfWa9jJlaUs0EbTuoA8NenbK9Q2j0f4ea-8: Timeout during connect (likely firewall problem)"}
Jun 17 02:17:42 almalinux-personal-tor1 caddy[42340]: {"level":"error","ts":1750126662.5718298,"msg":"validating authorization","identifier":"www.elijahlopez.ca","problem":{"type":"urn:ietf:params:acme:error:connection","title":"","detail":"2604:a880:cad:d0::a8b1:8001: Fetching https://elijahlopez.ca/.well-known/acme-challenge/JnRDfRoOGfWa9jJlaUs0EbTuoA8NenbK9Q2j0f4ea-8: Timeout during connect (likely firewall problem)","instance":"","subproblems":null},"order":"https://acme-staging-v02.api.letsencrypt.org/acme/order/189270584/25412889164","attempt":2,"max_attempts":3,"stacktrace":"github.com/mholt/acmez/v3.(*Client).ObtainCertificate\n\t/builddir/go/pkg/mod/github.com/mholt/acmez/v3@v3.0.0/client.go:152\ngithub.com/caddyserver/certmagic.(*ACMEIssuer).doIssue\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/acmeissuer.go:477\ngithub.com/caddyserver/certmagic.(*ACMEIssuer).Issue\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/acmeissuer.go:371\ngithub.com/caddyserver/caddy/v2/modules/caddytls.(*ACMEIssuer).Issue\n\t/builddir/go/pkg/mod/github.com/caddyserver/caddy/v2@v2.9.1/modules/caddytls/acmeissuer.go:249\ngithub.com/caddyserver/certmagic.(*Config).obtainCert.func2\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:626\ngithub.com/caddyserver/certmagic.doWithRetry\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/async.go:104\ngithub.com/caddyserver/certmagic.(*Config).obtainCert\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:700\ngithub.com/caddyserver/certmagic.(*Config).ObtainCertAsync\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:505\ngithub.com/caddyserver/certmagic.(*Config).manageOne.func1\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:415\ngithub.com/caddyserver/certmagic.(*jobManager).worker\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/async.go:73"}
Jun 17 02:17:42 almalinux-personal-tor1 caddy[42340]: {"level":"error","ts":1750126662.5717113,"msg":"challenge failed","identifier":"www.elijahlopez.ca","challenge_type":"http-01","problem":{"type":"urn:ietf:params:acme:error:connection","title":"","detail":"2604:a880:cad:d0::a8b1:8001: Fetching https://elijahlopez.ca/.well-known/acme-challenge/JnRDfRoOGfWa9jJlaUs0EbTuoA8NenbK9Q2j0f4ea-8: Timeout during connect (likely firewall problem)","instance":"","subproblems":null},"stacktrace":"github.com/mholt/acmez/v3.(*Client).pollAuthorization\n\t/builddir/go/pkg/mod/github.com/mholt/acmez/v3@v3.0.0/client.go:557\ngithub.com/mholt/acmez/v3.(*Client).solveChallenges\n\t/builddir/go/pkg/mod/github.com/mholt/acmez/v3@v3.0.0/client.go:378\ngithub.com/mholt/acmez/v3.(*Client).ObtainCertificate\n\t/builddir/go/pkg/mod/github.com/mholt/acmez/v3@v3.0.0/client.go:136\ngithub.com/caddyserver/certmagic.(*ACMEIssuer).doIssue\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/acmeissuer.go:477\ngithub.com/caddyserver/certmagic.(*ACMEIssuer).Issue\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/acmeissuer.go:371\ngithub.com/caddyserver/caddy/v2/modules/caddytls.(*ACMEIssuer).Issue\n\t/builddir/go/pkg/mod/github.com/caddyserver/caddy/v2@v2.9.1/modules/caddytls/acmeissuer.go:249\ngithub.com/caddyserver/certmagic.(*Config).obtainCert.func2\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:626\ngithub.com/caddyserver/certmagic.doWithRetry\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/async.go:104\ngithub.com/caddyserver/certmagic.(*Config).obtainCert\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:700\ngithub.com/caddyserver/certmagic.(*Config).ObtainCertAsync\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:505\ngithub.com/caddyserver/certmagic.(*Config).manageOne.func1\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:415\ngithub.com/caddyserver/certmagic.(*jobManager).worker\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/async.go:73"}
Jun 17 02:17:32 almalinux-personal-tor1 caddy[42340]: {"level":"info","ts":1750126652.007592,"msg":"trying to solve challenge","identifier":"www.elijahlopez.ca","challenge_type":"http-01","ca":"https://acme-staging-v02.api.letsencrypt.org/directory"}
Jun 17 02:17:30 almalinux-personal-tor1 caddy[42340]: {"level":"error","ts":1750126650.843053,"msg":"validating authorization","identifier":"www.elijahlopez.ca","problem":{"type":"urn:ietf:params:acme:error:connection","title":"","detail":"162.255.119.215: Timeout during connect (likely firewall problem)","instance":"","subproblems":null},"order":"https://acme-staging-v02.api.letsencrypt.org/acme/order/189270584/25412884664","attempt":1,"max_attempts":3,"stacktrace":"github.com/mholt/acmez/v3.(*Client).ObtainCertificate\n\t/builddir/go/pkg/mod/github.com/mholt/acmez/v3@v3.0.0/client.go:152\ngithub.com/caddyserver/certmagic.(*ACMEIssuer).doIssue\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/acmeissuer.go:477\ngithub.com/caddyserver/certmagic.(*ACMEIssuer).Issue\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/acmeissuer.go:371\ngithub.com/caddyserver/caddy/v2/modules/caddytls.(*ACMEIssuer).Issue\n\t/builddir/go/pkg/mod/github.com/caddyserver/caddy/v2@v2.9.1/modules/caddytls/acmeissuer.go:249\ngithub.com/caddyserver/certmagic.(*Config).obtainCert.func2\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:626\ngithub.com/caddyserver/certmagic.doWithRetry\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/async.go:104\ngithub.com/caddyserver/certmagic.(*Config).obtainCert\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:700\ngithub.com/caddyserver/certmagic.(*Config).ObtainCertAsync\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:505\ngithub.com/caddyserver/certmagic.(*Config).manageOne.func1\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:415\ngithub.com/caddyserver/certmagic.(*jobManager).worker\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/async.go:73"}
Jun 17 02:17:30 almalinux-personal-tor1 caddy[42340]: {"level":"error","ts":1750126650.8429155,"msg":"challenge failed","identifier":"www.elijahlopez.ca","challenge_type":"tls-alpn-01","problem":{"type":"urn:ietf:params:acme:error:connection","title":"","detail":"162.255.119.215: Timeout during connect (likely firewall problem)","instance":"","subproblems":null},"stacktrace":"github.com/mholt/acmez/v3.(*Client).pollAuthorization\n\t/builddir/go/pkg/mod/github.com/mholt/acmez/v3@v3.0.0/client.go:557\ngithub.com/mholt/acmez/v3.(*Client).solveChallenges\n\t/builddir/go/pkg/mod/github.com/mholt/acmez/v3@v3.0.0/client.go:378\ngithub.com/mholt/acmez/v3.(*Client).ObtainCertificate\n\t/builddir/go/pkg/mod/github.com/mholt/acmez/v3@v3.0.0/client.go:136\ngithub.com/caddyserver/certmagic.(*ACMEIssuer).doIssue\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/acmeissuer.go:477\ngithub.com/caddyserver/certmagic.(*ACMEIssuer).Issue\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/acmeissuer.go:371\ngithub.com/caddyserver/caddy/v2/modules/caddytls.(*ACMEIssuer).Issue\n\t/builddir/go/pkg/mod/github.com/caddyserver/caddy/v2@v2.9.1/modules/caddytls/acmeissuer.go:249\ngithub.com/caddyserver/certmagic.(*Config).obtainCert.func2\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:626\ngithub.com/caddyserver/certmagic.doWithRetry\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/async.go:104\ngithub.com/caddyserver/certmagic.(*Config).obtainCert\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:700\ngithub.com/caddyserver/certmagic.(*Config).ObtainCertAsync\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:505\ngithub.com/caddyserver/certmagic.(*Config).manageOne.func1\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:415\ngithub.com/caddyserver/certmagic.(*jobManager).worker\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/async.go:73"}
Jun 17 02:17:20 almalinux-personal-tor1 caddy[42340]: {"level":"info","ts":1750126640.338535,"msg":"trying to solve challenge","identifier":"www.elijahlopez.ca","challenge_type":"tls-alpn-01","ca":"https://acme-staging-v02.api.letsencrypt.org/directory"}
Jun 17 02:17:20 almalinux-personal-tor1 caddy[42340]: {"level":"info","ts":1750126640.1189818,"logger":"http","msg":"using ACME account","account_id":"https://acme-staging-v02.api.letsencrypt.org/acme/acct/189270584","account_contact":[]}
Jun 17 02:17:20 almalinux-personal-tor1 caddy[42340]: {"level":"info","ts":1750126640.1182463,"logger":"tls.obtain","msg":"obtaining certificate","identifier":"www.elijahlopez.ca"}
Jun 17 02:16:35 almalinux-personal-tor1 caddy[42340]: {"level":"error","ts":1750126595.0367064,"logger":"tls.obtain","msg":"will retry","error":"[ryb.elijahlopez.ca] Obtain: [ryb.elijahlopez.ca] creating new order: attempt 1: https://acme-v02.api.letsencrypt.org/acme/new-order: HTTP 429 urn:ietf:params:acme:error:rateLimited - too many certificates (5) already issued for this exact set of domains in the last 168h0m0s, retry after 2025-06-17 05:32:19 UTC: see https://letsencrypt.org/docs/rate-limits/#new-certificates-per-exact-set-of-hostnames (ca=https://acme-v02.api.letsencrypt.org/directory)","attempt":4,"retrying_in":300,"elapsed":311.460400399,"max_duration":2592000}
Jun 17 02:16:35 almalinux-personal-tor1 caddy[42340]: {"level":"error","ts":1750126595.0366263,"logger":"tls.obtain","msg":"could not get certificate from issuer","identifier":"ryb.elijahlopez.ca","issuer":"acme-v02.api.letsencrypt.org-directory","error":"HTTP 429 urn:ietf:params:acme:error:rateLimited - too many certificates (5) already issued for this exact set of domains in the last 168h0m0s, retry after 2025-06-17 05:32:19 UTC: see https://letsencrypt.org/docs/rate-limits/#new-certificates-per-exact-set-of-hostnames"}
Jun 17 02:16:34 almalinux-personal-tor1 caddy[42340]: {"level":"info","ts":1750126594.9531715,"logger":"http","msg":"using ACME account","account_id":"https://acme-v02.api.letsencrypt.org/acme/acct/2278423566","account_contact":[]}
Jun 17 02:16:34 almalinux-personal-tor1 caddy[42340]: {"level":"info","ts":1750126594.9531596,"logger":"http","msg":"done waiting on internal rate limiter","identifiers":["ryb.elijahlopez.ca"],"ca":"https://acme-v02.api.letsencrypt.org/directory","account":""}
Jun 17 02:16:34 almalinux-personal-tor1 caddy[42340]: {"level":"info","ts":1750126594.9531438,"logger":"http","msg":"waiting on internal rate limiter","identifiers":["ryb.elijahlopez.ca"],"ca":"https://acme-v02.api.letsencrypt.org/directory","account":""}
Jun 17 02:16:34 almalinux-personal-tor1 caddy[42340]: {"level":"info","ts":1750126594.9528186,"msg":"successfully downloaded available certificate chains","count":2,"first_url":"https://acme-staging-v02.api.letsencrypt.org/acme/cert/2c6de873cd8257c43263faf48a459f4c0fd4"}
Jun 17 02:16:34 almalinux-personal-tor1 caddy[42340]: {"level":"info","ts":1750126594.952729,"msg":"got renewal info","names":["ryb.elijahlopez.ca"],"window_start":1755230525,"window_end":1755385974,"selected_time":1755328265,"recheck_after":1750148194.9527218,"explanation_url":""}
Jun 17 02:16:34 almalinux-personal-tor1 caddy[42340]: {"level":"info","ts":1750126594.8214297,"msg":"got renewal info","names":["ryb.elijahlopez.ca"],"window_start":1755230525,"window_end":1755385974,"selected_time":1755256216,"recheck_after":1750148194.8214076,"explanation_url":""}
Jun 17 02:16:31 almalinux-personal-tor1 caddy[42340]: {"level":"info","ts":1750126591.543974,"msg":"validations succeeded; finalizing order","order":"https://acme-staging-v02.api.letsencrypt.org/acme/order/189270584/25412864184"}
Jun 17 02:16:31 almalinux-personal-tor1 caddy[42340]: {"level":"info","ts":1750126591.5439317,"msg":"authorization finalized","identifier":"ryb.elijahlopez.ca","authz_status":"valid"}
Jun 17 02:16:31 almalinux-personal-tor1 caddy[42340]: {"level":"info","ts":1750126591.3313062,"logger":"http","msg":"using ACME account","account_id":"https://acme-staging-v02.api.letsencrypt.org/acme/acct/189270584","account_contact":[]}
Jun 17 02:16:31 almalinux-personal-tor1 caddy[42340]: {"level":"info","ts":1750126591.3304372,"logger":"tls.obtain","msg":"obtaining certificate","identifier":"ryb.elijahlopez.ca"}
Jun 17 02:15:20 almalinux-personal-tor1 caddy[42340]: {"level":"error","ts":1750126520.117982,"logger":"tls.obtain","msg":"will retry","error":"[www.elijahlopez.ca] Obtain: [www.elijahlopez.ca] solving challenge: www.elijahlopez.ca: [www.elijahlopez.ca] authorization failed: HTTP 400 urn:ietf:params:acme:error:connection - 2604:a880:cad:d0::a8b1:8001: Fetching https://elijahlopez.ca/.well-known/acme-challenge/Huev5Qd9J1oK6tpJCGRPXm867eAn9CWHcb_1d_zzuOY: Timeout during connect (likely firewall problem) (ca=https://acme-staging-v02.api.letsencrypt.org/directory)","attempt":3,"retrying_in":120,"elapsed":236.537166251,"max_duration":2592000}
Jun 17 02:15:20 almalinux-personal-tor1 caddy[42340]: {"level":"error","ts":1750126520.1179488,"logger":"tls.obtain","msg":"could not get certificate from issuer","identifier":"www.elijahlopez.ca","issuer":"acme-v02.api.letsencrypt.org-directory","error":"HTTP 400 urn:ietf:params:acme:error:connection - 2604:a880:cad:d0::a8b1:8001: Fetching https://elijahlopez.ca/.well-known/acme-challenge/Huev5Qd9J1oK6tpJCGRPXm867eAn9CWHcb_1d_zzuOY: Timeout during connect (likely firewall problem)"}
Jun 17 02:15:20 almalinux-personal-tor1 caddy[42340]: {"level":"error","ts":1750126520.1178787,"msg":"validating authorization","identifier":"www.elijahlopez.ca","problem":{"type":"urn:ietf:params:acme:error:connection","title":"","detail":"2604:a880:cad:d0::a8b1:8001: Fetching https://elijahlopez.ca/.well-known/acme-challenge/Huev5Qd9J1oK6tpJCGRPXm867eAn9CWHcb_1d_zzuOY: Timeout during connect (likely firewall problem)","instance":"","subproblems":null},"order":"https://acme-staging-v02.api.letsencrypt.org/acme/order/189270584/25412822794","attempt":2,"max_attempts":3,"stacktrace":"github.com/mholt/acmez/v3.(*Client).ObtainCertificate\n\t/builddir/go/pkg/mod/github.com/mholt/acmez/v3@v3.0.0/client.go:152\ngithub.com/caddyserver/certmagic.(*ACMEIssuer).doIssue\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/acmeissuer.go:477\ngithub.com/caddyserver/certmagic.(*ACMEIssuer).Issue\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/acmeissuer.go:371\ngithub.com/caddyserver/caddy/v2/modules/caddytls.(*ACMEIssuer).Issue\n\t/builddir/go/pkg/mod/github.com/caddyserver/caddy/v2@v2.9.1/modules/caddytls/acmeissuer.go:249\ngithub.com/caddyserver/certmagic.(*Config).obtainCert.func2\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:626\ngithub.com/caddyserver/certmagic.doWithRetry\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/async.go:104\ngithub.com/caddyserver/certmagic.(*Config).obtainCert\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:700\ngithub.com/caddyserver/certmagic.(*Config).ObtainCertAsync\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:505\ngithub.com/caddyserver/certmagic.(*Config).manageOne.func1\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:415\ngithub.com/caddyserver/certmagic.(*jobManager).worker\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/async.go:73"}
Jun 17 02:15:20 almalinux-personal-tor1 caddy[42340]: {"level":"error","ts":1750126520.1177306,"msg":"challenge failed","identifier":"www.elijahlopez.ca","challenge_type":"http-01","problem":{"type":"urn:ietf:params:acme:error:connection","title":"","detail":"2604:a880:cad:d0::a8b1:8001: Fetching https://elijahlopez.ca/.well-known/acme-challenge/Huev5Qd9J1oK6tpJCGRPXm867eAn9CWHcb_1d_zzuOY: Timeout during connect (likely firewall problem)","instance":"","subproblems":null},"stacktrace":"github.com/mholt/acmez/v3.(*Client).pollAuthorization\n\t/builddir/go/pkg/mod/github.com/mholt/acmez/v3@v3.0.0/client.go:557\ngithub.com/mholt/acmez/v3.(*Client).solveChallenges\n\t/builddir/go/pkg/mod/github.com/mholt/acmez/v3@v3.0.0/client.go:378\ngithub.com/mholt/acmez/v3.(*Client).ObtainCertificate\n\t/builddir/go/pkg/mod/github.com/mholt/acmez/v3@v3.0.0/client.go:136\ngithub.com/caddyserver/certmagic.(*ACMEIssuer).doIssue\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/acmeissuer.go:477\ngithub.com/caddyserver/certmagic.(*ACMEIssuer).Issue\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/acmeissuer.go:371\ngithub.com/caddyserver/caddy/v2/modules/caddytls.(*ACMEIssuer).Issue\n\t/builddir/go/pkg/mod/github.com/caddyserver/caddy/v2@v2.9.1/modules/caddytls/acmeissuer.go:249\ngithub.com/caddyserver/certmagic.(*Config).obtainCert.func2\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:626\ngithub.com/caddyserver/certmagic.doWithRetry\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/async.go:104\ngithub.com/caddyserver/certmagic.(*Config).obtainCert\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:700\ngithub.com/caddyserver/certmagic.(*Config).ObtainCertAsync\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:505\ngithub.com/caddyserver/certmagic.(*Config).manageOne.func1\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:415\ngithub.com/caddyserver/certmagic.(*jobManager).worker\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/async.go:73"}
Jun 17 02:15:09 almalinux-personal-tor1 caddy[42340]: {"level":"info","ts":1750126509.6270385,"msg":"trying to solve challenge","identifier":"www.elijahlopez.ca","challenge_type":"http-01","ca":"https://acme-staging-v02.api.letsencrypt.org/directory"}
Jun 17 02:15:08 almalinux-personal-tor1 caddy[42340]: {"level":"error","ts":1750126508.4709876,"msg":"validating authorization","identifier":"www.elijahlopez.ca","problem":{"type":"urn:ietf:params:acme:error:connection","title":"","detail":"162.255.119.215: Timeout during connect (likely firewall problem)","instance":"","subproblems":null},"order":"https://acme-staging-v02.api.letsencrypt.org/acme/order/189270584/25412816494","attempt":1,"max_attempts":3,"stacktrace":"github.com/mholt/acmez/v3.(*Client).ObtainCertificate\n\t/builddir/go/pkg/mod/github.com/mholt/acmez/v3@v3.0.0/client.go:152\ngithub.com/caddyserver/certmagic.(*ACMEIssuer).doIssue\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/acmeissuer.go:477\ngithub.com/caddyserver/certmagic.(*ACMEIssuer).Issue\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/acmeissuer.go:371\ngithub.com/caddyserver/caddy/v2/modules/caddytls.(*ACMEIssuer).Issue\n\t/builddir/go/pkg/mod/github.com/caddyserver/caddy/v2@v2.9.1/modules/caddytls/acmeissuer.go:249\ngithub.com/caddyserver/certmagic.(*Config).obtainCert.func2\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:626\ngithub.com/caddyserver/certmagic.doWithRetry\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/async.go:104\ngithub.com/caddyserver/certmagic.(*Config).obtainCert\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:700\ngithub.com/caddyserver/certmagic.(*Config).ObtainCertAsync\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:505\ngithub.com/caddyserver/certmagic.(*Config).manageOne.func1\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:415\ngithub.com/caddyserver/certmagic.(*jobManager).worker\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/async.go:73"}
Jun 17 02:15:08 almalinux-personal-tor1 caddy[42340]: {"level":"error","ts":1750126508.4708421,"msg":"challenge failed","identifier":"www.elijahlopez.ca","challenge_type":"tls-alpn-01","problem":{"type":"urn:ietf:params:acme:error:connection","title":"","detail":"162.255.119.215: Timeout during connect (likely firewall problem)","instance":"","subproblems":null},"stacktrace":"github.com/mholt/acmez/v3.(*Client).pollAuthorization\n\t/builddir/go/pkg/mod/github.com/mholt/acmez/v3@v3.0.0/client.go:557\ngithub.com/mholt/acmez/v3.(*Client).solveChallenges\n\t/builddir/go/pkg/mod/github.com/mholt/acmez/v3@v3.0.0/client.go:378\ngithub.com/mholt/acmez/v3.(*Client).ObtainCertificate\n\t/builddir/go/pkg/mod/github.com/mholt/acmez/v3@v3.0.0/client.go:136\ngithub.com/caddyserver/certmagic.(*ACMEIssuer).doIssue\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/acmeissuer.go:477\ngithub.com/caddyserver/certmagic.(*ACMEIssuer).Issue\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/acmeissuer.go:371\ngithub.com/caddyserver/caddy/v2/modules/caddytls.(*ACMEIssuer).Issue\n\t/builddir/go/pkg/mod/github.com/caddyserver/caddy/v2@v2.9.1/modules/caddytls/acmeissuer.go:249\ngithub.com/caddyserver/certmagic.(*Config).obtainCert.func2\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:626\ngithub.com/caddyserver/certmagic.doWithRetry\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/async.go:104\ngithub.com/caddyserver/certmagic.(*Config).obtainCert\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:700\ngithub.com/caddyserver/certmagic.(*Config).ObtainCertAsync\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:505\ngithub.com/caddyserver/certmagic.(*Config).manageOne.func1\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/config.go:415\ngithub.com/caddyserver/certmagic.(*jobManager).worker\n\t/builddir/go/pkg/mod/github.com/caddyserver/certmagic@v0.21.6/async.go:73"}
Jun 17 02:14:58 almalinux-personal-tor1 caddy[42340]: {"level":"info","ts":1750126498.0029047,"msg":"trying to solve challenge","identifier":"www.elijahlopez.ca","challenge_type":"tls-alpn-01","ca":"https://acme-staging-v02.api.letsencrypt.org/directory"}

3. Caddy version:

v2.9.1 h1:OEYiZ7DbCzAWVb6TNEkjRcSCRGHVoZsJinoDR/n9oaY=

4. How I installed and ran Caddy:

Ansible via copr

community.general.copr:
      name: '@caddy/caddy'
      chroot: fedora-rawhide-{{ ansible_facts.architecture }}
      includepkgs:
      - caddy

a. System environment:

AlmaLinux 9

b. Command:

N/A since I use systemctl

PASTE OVER THIS, BETWEEN THE ``` LINES.
Please use the preview pane to ensure it looks nice.

c. Service/unit/compose file:

[Unit]
Description=Caddy
Documentation=https://caddyserver.com/docs/
After=network.target network-online.target
Requires=network-online.target

[Service]
Type=notify
User=caddy
Group=caddy
ExecStart=/usr/bin/caddy run --environ --config /etc/caddy/Caddyfile
ExecReload=/usr/bin/caddy reload --config /etc/caddy/Caddyfile --force
TimeoutStopSec=5s
LimitNOFILE=1048576
PrivateTmp=true
ProtectSystem=full
AmbientCapabilities=CAP_NET_ADMIN CAP_NET_BIND_SERVICE

[Install]
WantedBy=multi-user.target

d. My complete Caddy config:

:80 {
        reverse_proxy localhost:8000
}

elijahlopez.ca {
        reverse_proxy localhost:8000
        # TODO https://caddyserver.com/docs/caddyfile/patterns#single-page-apps-spas
}

www.elijahlopez.ca {
        redir https://elijahlopez.ca{uri}
}

ryb.elijahlopez.ca {
        reverse_proxy localhost:3002
}

# TODO: NextCloud + NextCloud Memories
nc.elijahlopez.ca {
        header Strict-Transport-Security max-age=31536000;
        reverse_proxy localhost:11000
}

nc.elijahlopez.ca:8443 {
        reverse_proxy localhost:8080 {
                transport http {
                        tls_insecure_skip_verify
                }
        }
}

5. Links to relevant resources:

Searching “caddy redirect www to non www” on Google, yields:

https://www.reddit.com/r/selfhosted/comments/q2j27q/comment/hfme660/

timelordx · June 17, 2025, 4:33am

You’ll want to fix the DNS for www.elijahlopez.ca. Specifically, remove 162.255.119.215.

Right now, www.elijahlopez.ca resolves to two IP addresses: one from DigitalOcean and one from NameCheap. That’s why Caddy can’t properly obtain a certificate for it and you see a bunch of errors caused by that.