<div dir="auto">That only happens if you do dns only and that’s not the solution unless you have api access to your dns server in. Which case you can automate it. Otherwise you’ll be doing this every 3 months (manual updating the dns server). The script I sent you should do just as well if you do it when there is no api traffic. Downtime of the panel and api is about 15 seconds if there is an update. </div><div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Sat, 25 Mar 2023 at 10:45, Trent Creekmore <<a href="mailto:trent@lindows.org">trent@lindows.org</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
<div>
<p>I got the certbot issue resolved. Now I am stuck on a DNS issue.</p>
<p><br>
</p>
<p>On this part:</p>
<pre><code>Please add the following CNAME record to your main DNS zone:
_acme-challenge.your-domain CNAME a15ce5b2-f170-4c91-97bf-09a5764a88f6.<a href="http://auth.acme-dns.io" target="_blank">auth.acme-dns.io</a>.
</code></pre>
<p></p>
<p>After about four tries, I stopped and tried doing it via nslookup
and made some changes</p>
<p>It instructs to enter a cname, but it wants to do a txt lookup?
Should that not be a txt in the DNS instead of cname?</p>
<p><br>
</p>
<p>I entered the cname as <br>
</p>
<pre><code>_acme-challenge.my-subdomain
and just in case, added a second one:
</code><code>_acme-challenge.my-subdomain.domain.tld
"nslookup -type=txt </code><code>_acme-challenge.my-subdomain.domain.tld"</code> keeps returning "can't find<code>_acme-challenge.my-subdomain.domain.tld"</code></pre>
<p><code><br>
</code></p>
<p><code><br>
</code></p>
<p>Thanks again!<br>
</p>
<p> <br>
</p>
<div>On 3/24/23 18:27, Gerry Kernan wrote:<br>
</div>
<blockquote type="cite">
<div dir="ltr">
<div>
<div>You could you DNS challenge to validate with letsencrypt </div>
<div dir="ltr"><a rel="noreferrer noopener" href="https://www.digitalocean.com/community/tutorials/how-to-acquire-a-let-s-encrypt-certificate-using-dns-validation-with-acme-dns-certbot-on-ubuntu-18-04" target="_blank">https://www.digitalocean.com/community/tutorials/how-to-acquire-a-let-s-encrypt-certificate-using-dns-validation-with-acme-dns-certbot-on-ubuntu-18-04</a><br>
</div>
<div id="m_4725386116657633386ms-outlook-mobile-signature">
<div><br>
</div>
<div><br>
</div>
<div style="direction:ltr">Best Regards,</div>
<div><br>
</div>
<div style="direction:ltr">Gerry Kernan</div>
<div style="direction:ltr">Infinity IT</div>
</div>
</div>
</div>
<hr style="display:inline-block;width:98%">
<div id="m_4725386116657633386divRplyFwdMsg" dir="ltr"><font style="font-size:11pt" face="Calibri, sans-serif" color="#000000"><b>From:</b> Trent
Creekmore <a href="mailto:trent@lindows.org" target="_blank"><trent@lindows.org></a><br>
<b>Sent:</b> Friday, March 24, 2023 10:03:29 PM<br>
<b>To:</b> spce-user <a href="mailto:spce-user@lists.sipwise.com" target="_blank"><spce-user@lists.sipwise.com></a><br>
<b>Subject:</b> Re: [Spce-user] New to SipWise CE. Trying to
use Let's Encrypt</font>
<div> </div>
</div>
<div style="min-width:100%!important;padding:0!important;margin:0!important;text-align:left">
<p>So, in the config.yml I have tried the following to try to
also get port 80 open</p>
<p>port: '443'</p>
<p>port: '80'</p>
<p>That failed.<br>
</p>
<p>Then on to:</p>
<p><br>
</p>
<p>port: '443' '80'</p>
<p>and</p>
<p>port: '443', '80'</p>
<p><br>
</p>
<p>Those also failed.<br>
</p>
<p>Any guidance on the correct syntax on also listening on port
80?<br>
</p>
<p><br>
</p>
<p><br>
</p>
<p><br>
</p>
<div>On 3/24/23 03:05, Walter Klomp
wrote:<br>
</div>
<blockquote type="cite">
<div dir="ltr">Hi Trent,</div>
<div dir="ltr"><br>
</div>
<div dir="ltr">I use this script to renew…</div>
<div dir="ltr"><br>
</div>
<div dir="ltr">
<div dir="ltr">#!/bin/bash</div>
<div dir="ltr">if [ `certbot renew 2>&1|grep -c "Cert
not yet due"` -lt 2 ]</div>
<div dir="ltr">then</div>
<div dir="ltr">service nginx stop</div>
<div dir="ltr">sleep 2</div>
<div dir="ltr">certbot renew</div>
<div dir="ltr">chown -R kamailio:ssl-cert /etc/letsencrypt</div>
<div dir="ltr">service nginx start</div>
<div dir="ltr">service kamailio-lb restart</div>
<div dir="ltr">ngcp-kamctl lb fifo debug 0</div>
<div dir="ltr">fi</div>
<div dir="ltr"><br>
</div>
<div dir="ltr">in /etc/group </div>
<div dir="ltr">make sure ssl-cert have this</div>
<div dir="ltr">ssl-cert:x:112:prosody,www-data,kamailio<br>
</div>
<div dir="ltr"><br>
</div>
<div dir="ltr">you may still need to set the chmod to 750 in
/etc/letsencrypt/archive and /etc/letsencrypt/live</div>
<div>
<div><br>
</div>
<div><br>
</div>
<div dir="ltr">first time
installing cert (which I guess you have already done)</div>
<div dir="ltr"><br>
</div>
<div dir="ltr">certbot certainly
-d <domain name> -d <domain name> if you
listen to multiple domain names</div>
<div dir="ltr">choose standalone
and make sure nginx is stopped - that will only affect
the panel and api - not a traffic stopper.</div>
<div dir="ltr"><img src="https://scribe-mail.myrepublic.net/s2/ywna1b07.gif" alt="Email header" width="1" height="1">
<table dir="ltr" style="border:0" width="500" cellspacing="0" cellpadding="0">
<tbody>
<tr>
<td colspan="2" style="line-height:0" height="16"><br>
</td>
</tr>
<tr>
<td style="width:1%;padding-right:24px" valign="top"><a href="https://scribe-mail.myrepublic.net/s2/5cp2v6ux" style="text-decoration:none;line-height:88px;font-size:0" target="_blank"><img src="https://scribe-mail.myrepublic.net/s2/4usrwi2n.jpg" alt="Company logo" style="display:block" width="144" height="88" border="0"></a>
</td>
<td valign="top">
<table style="border:0" cellspacing="0" cellpadding="0">
<tbody>
<tr>
<td style="color:#7c04fc;font-size:15px;line-height:18px" align="left">Walter
Klomp
</td>
</tr>
<tr>
<td style="color:#7c838b;font-size:14px;line-height:21px" align="left">Head of
Voice Network
</td>
</tr>
<tr>
<td style="line-height:0" height="16"><br>
</td>
</tr>
<tr>
<td>
<table style="border:0" cellspacing="0" cellpadding="0">
<tbody>
<tr>
<td width="20" valign="middle"><img src="https://scribe-mail.myrepublic.net/s2/j5bnwhgx.png" alt="Phone" width="10" height="10"></td>
<td style="color:#364a61;font-size:14px;line-height:21px"><a href="tel:+6568161120" style="color:#364a61;text-decoration:none;font-weight:normal" target="_blank"><strong style="color:#364a61;text-decoration:none;font-weight:normal">+6568161120</strong></a></td>
</tr>
<tr>
<td width="20" valign="middle"><img src="https://scribe-mail.myrepublic.net/s2/41j4ffwb.png" alt="Phone" width="10" height="10"></td>
<td style="color:#364a61;font-size:14px;line-height:21px"><a href="mailto:walter@myrepublic.net" style="color:#364a61;text-decoration:none;font-weight:normal" target="_blank"><strong style="color:#364a61;text-decoration:none;font-weight:normal">walter@myrepublic.net</strong></a></td>
</tr>
</tbody>
</table>
</td>
</tr>
<tr>
<td style="line-height:0" height="16"><br>
</td>
</tr>
<tr>
<td style="font-size:14px;line-height:21px" align="left">Beyond
Work: <span style="color:#7c04fc">
VR Sim Racing, F1, Travel</span> </td>
</tr>
<tr>
<td style="line-height:0" height="16"><br>
</td>
</tr>
<tr>
<td style="font-size:14px;line-height:21px;color:#8d8f99" align="left"><a href="https://www.google.com/maps/search/11+Lorong+3+Toa+Payoh,%0D%0A++++++++++++++++++++++++++++++++%2304?entry=gmail&source=g">11 Lorong 3 Toa Payoh,
#04</a>-11/15, Jackson Square, Block B,
Singapore 319579
</td>
</tr>
<tr>
<td style="font-size:14px;line-height:21px;color:#364a61" align="left"><a href="https://scribe-mail.myrepublic.net/s2/tidact0m" style="color:#364a61;text-decoration:none;font-weight:normal" target="_blank"><strong style="color:#364a61;text-decoration:none;font-weight:normal">www.myrepublic.net</strong></a>
</td>
</tr>
<tr>
<td style="padding-top:16px" valign="top">
<table style="border:0" cellspacing="0" cellpadding="0">
<tbody>
<tr>
<td style="line-height:0;color:#7c04fc;margin-right:6px;margin-bottom:1px" width="30" valign="middle" align="left">
<a href="https://scribe-mail.myrepublic.net/s2/xx0nq9qs" style="text-decoration:none;color:#7c04fc" target="_blank"><strong style="text-decoration:none;font-weight:normal;color:#7c04fc"><img alt="facebook-f" src="https://scribe-mail.myrepublic.net/s2/wzp14gw6.png" style="display:block" width="24" height="24">
</strong></a></td>
<td style="line-height:0;color:#7c04fc;margin-left:6px;margin-right:6px;margin-bottom:1px" width="36" valign="middle" align="center">
<a href="https://scribe-mail.myrepublic.net/s2/jrh0tzt9" style="text-decoration:none;color:#7c04fc" target="_blank"><strong style="text-decoration:none;font-weight:normal;color:#7c04fc"><img alt="instagram" src="https://scribe-mail.myrepublic.net/s2/lrif4x8i.png" style="display:block" width="24" height="24">
</strong></a></td>
<td style="line-height:0;color:#7c04fc;margin-left:6px;margin-right:6px;margin-bottom:1px" width="36" valign="middle" align="center">
<a href="https://scribe-mail.myrepublic.net/s2/jo8r4exb" style="text-decoration:none;color:#7c04fc" target="_blank"><strong style="text-decoration:none;font-weight:normal;color:#7c04fc"><img alt="twitter" src="https://scribe-mail.myrepublic.net/s2/5izp6wvd.png" style="display:block" width="24" height="24">
</strong></a></td>
<td style="line-height:0;color:#7c04fc;margin-left:6px;margin-right:1px;margin-bottom:1px" width="30" valign="middle" align="right">
<a href="https://scribe-mail.myrepublic.net/s2/37lmu5mw" style="text-decoration:none;color:#7c04fc" target="_blank"><strong style="text-decoration:none;font-weight:normal;color:#7c04fc"><img alt="linkedin-in" src="https://scribe-mail.myrepublic.net/s2/uu1c8ot8.png" style="display:block" width="24" height="24">
</strong></a></td>
</tr>
</tbody>
</table>
</td>
</tr>
<tr>
<td style="line-height:0" height="16"><br>
</td>
</tr>
<tr>
<td style="border-top:1px solid #f5f5f5" height="12"><br>
</td>
</tr>
<tr>
<td style="font-size:11px;line-height:16px">The information in
this message is privileged and
confidential. If you are not the
intended recipient of this email, please
don't read, copy, use, distribute or
tell anyone about it; kindly destroy it
and notify the sender by return email.
Please advise immediately if you or your
employer does not consent to email for
messages of this kind. Any content that
is not concerned with MyRepublic
business reflects the views of the
sender only and not those of MyRepublic.
</td>
</tr>
</tbody>
</table>
</td>
</tr>
<tr>
<td colspan="2" height="40"><br>
</td>
</tr>
</tbody>
</table>
</div>
</div>
<br>
</div>
<br>
<div>
<div dir="ltr">On 24 Mar 2023 at
6:33:35 AM, Trent Creekmore <<a href="mailto:trent@lindows.org" target="_blank">trent@lindows.org</a>> wrote:<br>
</div>
<blockquote type="cite" style="margin:0 0 0 0.8ex;border-left:1px solid #cccccc;padding-left:1ex">
<div>
<div>
</div>
<div style="word-wrap:break-word" lang="EN-US">
<div>
<p> </p>
<p>I installed it about a month
ago, and have been doing some reading up on it in
the documentation. I do wish there was a “getting
started quick” guide.</p>
<p> </p>
<p>On to the issue at hand,
Let’s Encrypt. Looking at the history of this
mailing list, I see it was mentioned maybe 2-3
times, but that was quite a few years ago. Those
threads were not helpful.
</p>
<p> </p>
<p>The issue is Let’s Encrypt
needs port 80 to send requests to, and I see
nothing Is listening on port 80.</p>
<p> </p>
<p>Digging on my own, I found
out the Nginx config files are read only, and I
should instead be editing the
/etc/ngcp-config/config.yml file.</p>
<p> </p>
<p>Looking in config.yml, I see
http_csc which appears to be the section which
handles the client portal with port 443 set. Not
being familiar with this config.yml, how is it
possible to have it both listen on ports 89 and
443?</p>
<p> </p>
<p>Any other suggestions on
correctly using Let’s Encrypt?</p>
<p> </p>
<p>Thanks!</p>
<p> </p>
<p>Trent</p></div></div></div></blockquote></div></blockquote></div></blockquote></div><div><blockquote type="cite"><div style="min-width:100%!important;padding:0!important;margin:0!important;text-align:left"><blockquote type="cite"><div><blockquote type="cite" style="margin:0 0 0 0.8ex;border-left:1px solid #cccccc;padding-left:1ex"><div><div style="word-wrap:break-word" lang="EN-US"><div>
</div>
</div>
</div>
<div>
<div>-- <br>
Spce-user mailing list<br>
<a href="mailto:Spce-user@lists.sipwise.com" target="_blank">Spce-user@lists.sipwise.com</a><br>
<a href="http://lists.sipwise.com/mailman/listinfo/spce-user_lists.sipwise.com" target="_blank">http://lists.sipwise.com/mailman/listinfo/spce-user_lists.sipwise.com</a><br>
</div>
</div>
</blockquote>
</div>
<br>
<span style="color:#222222;font-family:sans-serif;background-color:#ffffff"><font size="1"><span style="font-family:Arial;color:#666666;font-style:italic;vertical-align:baseline;white-space:pre-wrap">The contents of this email and any attachments are
confidential and may also be privileged. You must not disseminate the contents of this email and any attachments without permission of the sender. If you have received this email by mistake, please delete all copies and inform the sender immediately. You may
refer to our company's Privacy Policy </span><span style="color:#666666;font-family:Arial;font-style:italic;vertical-align:baseline;white-space:pre-wrap"><a href="https://myrepublic.net/sg/legal/terms-of-use-policies/privacy-policy/" target="_blank">here</a></span><span style="font-family:Arial;color:#666666;font-style:italic;vertical-align:baseline;white-space:pre-wrap">.</span></font></span>
</blockquote>
</div>
</blockquote>
</div>
-- <br>
Spce-user mailing list<br>
<a href="mailto:Spce-user@lists.sipwise.com" target="_blank">Spce-user@lists.sipwise.com</a><br>
<a href="http://lists.sipwise.com/mailman/listinfo/spce-user_lists.sipwise.com" rel="noreferrer" target="_blank">http://lists.sipwise.com/mailman/listinfo/spce-user_lists.sipwise.com</a><br>
</blockquote></div></div>-- <br><div dir="ltr" class="gmail_signature" data-smartmail="gmail_signature"><img src="https://scribe-mail.myrepublic.net/s2/ywna1b07.gif" width="1" height="1" alt="Email header"> <table dir="ltr" width="500" cellspacing="0" cellpadding="0" style="border:0"> <tr> <td height="16" style="line-height:0px" colspan="2"></td> </tr> <tr> <td style="width:1%;padding-right:24px" valign="top"> <a href="https://scribe-mail.myrepublic.net/s2/5cp2v6ux" style="text-decoration:none;line-height:88px;font-size:0px" target="_blank"><img src="https://scribe-mail.myrepublic.net/s2/4usrwi2n.jpg" height="88" width="144" border="0" alt="Company logo" style="display:block"></a> </td> <td valign="top"> <table cellspacing="0" cellpadding="0" style="border:0"> <tr> <td style="color:#7c04fc;font-size:15px;line-height:18px;font-family:Helvetica,'Helvetica Neue',Arial,sans-serif;font-weight:bold" align="left"> Walter Klomp </td> </tr> <tr> <td style="color:#7c838b;font-size:14px;line-height:21px;font-family:Helvetica,'Helvetica Neue',Arial,sans-serif" align="left"> Head of Voice Network </td> </tr> <tr><td height="16" style="line-height:0px"></td></tr> <tr> <td> <table cellspacing="0" cellpadding="0" style="border:0"> <tr> <td width="20" valign="middle"><img src="https://scribe-mail.myrepublic.net/s2/j5bnwhgx.png" width="10" height="10" alt="Phone"></td> <td style="color:#364a61;font-size:14px;line-height:21px;font-family:Helvetica,'Helvetica Neue',Arial,sans-serif"><a href="tel:+6568161120" style="color:#364a61;text-decoration:none;font-weight:normal" target="_blank"><strong style="color:#364a61;text-decoration:none;font-weight:normal">+6568161120</strong></a></td> </tr> <tr> <td width="20" valign="middle"><img src="https://scribe-mail.myrepublic.net/s2/41j4ffwb.png" width="10" height="10" alt="Phone"></td> <td style="color:#364a61;font-size:14px;line-height:21px;font-family:Helvetica,'Helvetica Neue',Arial,sans-serif"><a href="mailto:walter@myrepublic.net" style="color:#364a61;text-decoration:none;font-weight:normal" target="_blank"><strong style="color:#364a61;text-decoration:none;font-weight:normal">walter@myrepublic.net</strong></a></td> </tr> </table> </td> </tr> <tr><td height="16" style="line-height:0px"></td></tr> <tr> <td style="font-size:14px;line-height:21px;font-family:Helvetica,'Helvetica Neue',Arial,sans-serif;color:#364a61" align="left"> Beyond Work: <span style="color:#7c04fc">VR Sim Racing, F1, Travel</span> </td> </tr> <tr><td height="16" style="line-height:0px"></td></tr> <tr> <td style="font-size:14px;line-height:21px;color:#8d8f99;font-family:Helvetica,'Helvetica Neue',Arial,sans-serif" align="left"> 11 Lorong 3 Toa Payoh, #04-11/15, Jackson Square, Block B, Singapore 319579 </td> </tr> <tr> <td style="font-size:14px;line-height:21px;color:#364a61;font-family:Helvetica,'Helvetica Neue',Arial,sans-serif" align="left"> <a href="https://scribe-mail.myrepublic.net/s2/tidact0m" style="color:#364a61;text-decoration:none;font-weight:normal" target="_blank"><strong style="color:#364a61;text-decoration:none;font-weight:normal">www.myrepublic.net</strong></a> </td> </tr> <tr> <td valign="top" style="padding-top:16px"> <table cellspacing="0" cellpadding="0" style="border:0"> <tr> <td valign="middle" width="30" style="line-height:0px;color:#7c04fc;margin-right:6px;margin-bottom:1px" align="left"><a href="https://scribe-mail.myrepublic.net/s2/xx0nq9qs" style="text-decoration:none;color:#7c04fc" target="_blank"> <strong style="text-decoration:none;font-weight:normal;color:#7c04fc"><img style="display:block" width="24" height="24" alt="facebook-f" src="https://scribe-mail.myrepublic.net/s2/wzp14gw6.png"> </strong> </a></td> <td valign="middle" width="36" style="line-height:0px;color:#7c04fc;margin-left:6px;margin-right:6px;margin-bottom:1px" align="center"><a href="https://scribe-mail.myrepublic.net/s2/jrh0tzt9" style="text-decoration:none;color:#7c04fc" target="_blank"> <strong style="text-decoration:none;font-weight:normal;color:#7c04fc"><img style="display:block" width="24" height="24" alt="instagram" src="https://scribe-mail.myrepublic.net/s2/lrif4x8i.png"> </strong> </a></td> <td valign="middle" width="36" style="line-height:0px;color:#7c04fc;margin-left:6px;margin-right:6px;margin-bottom:1px" align="center"><a href="https://scribe-mail.myrepublic.net/s2/jo8r4exb" style="text-decoration:none;color:#7c04fc" target="_blank"> <strong style="text-decoration:none;font-weight:normal;color:#7c04fc"><img style="display:block" width="24" height="24" alt="twitter" src="https://scribe-mail.myrepublic.net/s2/5izp6wvd.png"> </strong> </a></td> <td valign="middle" width="30" style="line-height:0px;color:#7c04fc;margin-left:6px;margin-right:1px;margin-bottom:1px" align="right"><a href="https://scribe-mail.myrepublic.net/s2/37lmu5mw" style="text-decoration:none;color:#7c04fc" target="_blank"> <strong style="text-decoration:none;font-weight:normal;color:#7c04fc"><img style="display:block" width="24" height="24" alt="linkedin-in" src="https://scribe-mail.myrepublic.net/s2/uu1c8ot8.png"> </strong> </a></td> </tr> </table> </td> </tr> <tr><td height="16" style="line-height:0px"></td></tr> <tr><td height="12" style="border-top:1px solid #f5f5f5"></td></tr> <tr> <td style="font-size:11px;line-height:16px;font-family:Helvetica,'Helvetica Neue',Arial,sans-serif;color:#9e9ea6"> The information in this message is privileged and confidential. If you are not the intended recipient of this email, please don't read, copy, use, distribute or tell anyone about it; kindly destroy it and notify the sender by return email. Please advise immediately if you or your employer does not consent to email for messages of this kind. Any content that is not concerned with MyRepublic business reflects the views of the sender only and not those of MyRepublic. </td> </tr> </table> </td> </tr> <tr> <td height="40" colspan="2"></td> </tr> </table></div>
<br>
<span style="color:rgb(34,34,34);font-family:sans-serif;background-color:rgb(255,255,255)"><font size="1"><span style="font-family:Arial;color:rgb(102,102,102);font-style:italic;vertical-align:baseline;white-space:pre-wrap">The contents of this email and any attachments are confidential and may also be privileged. You must not disseminate the contents of this email and any attachments without permission of the sender. If you have received this email by mistake, please delete all copies and inform the sender immediately. You may refer to our company's Privacy Policy </span><span style="color:rgb(102,102,102);font-family:Arial;font-style:italic;vertical-align:baseline;white-space:pre-wrap"><a href="https://myrepublic.net/sg/legal/terms-of-use-policies/privacy-policy/" target="_blank">here</a></span><span style="font-family:Arial;color:rgb(102,102,102);font-style:italic;vertical-align:baseline;white-space:pre-wrap">.</span></font></span>