We should be able to disable OCSP check

My server is in China so it cannot connect to the OCSP-Server, which would mean the request to the server will fail:

WARN tls stapling OCSP {"error": "no OCSP stapling for [xxx.com]: making OCSP request: Post \"http://ocsp.int-x3.letsencrypt.org\": dial tcp i/o timeout"}

The timout would delay the start and the reload…

You’ll want to track this issue:


Implemented now. Feel free to test it out!

This topic was automatically closed 90 days after the last reply. New replies are no longer allowed.