Having a problem on Let's encrypt phase

My YunoHost server

Virtual Server on Vmware.
YunoHost version: 11.2.20.2 stable
I have access to my server : Through SSH
Are you in a special context or did you perform some particular tweaking on your YunoHost instance ? : no /

Hello everyone,
I am getting error when I try to install Let’s Encrypt certificate.
I also have problems with the ports. I have written a policy on Firewall for the ports (22,25,80,443,587,993,5222,5269 all TCP) Only port that I didn’t include is 53. And my policy only valid in my country. Is this option can be a problem? I am happy to hear your opinions and advices.

Error Text:

2024-07-04 04:07:09,499: DEBUG - Making sure tmp folders exists...
2024-07-04 04:07:09,501: DEBUG - Fetching IP from https://ip.yunohost.org 
2024-07-04 04:07:09,888: DEBUG - IP fetched: 78.xxx.xxx.xxx
2024-07-04 04:07:09,891: DEBUG - No default route for IPv6, so assuming there's no IP address for that version
2024-07-04 04:07:09,891: DEBUG - IP fetched: None
2024-07-04 04:07:09,891: DEBUG - Prepare key and certificate signing request (CSR) for mydomain.com...
2024-07-04 04:07:10,023: DEBUG - Saving to /var/www/.well-known/acme-challenge-private/mydomain.com.csr.
2024-07-04 04:07:10,023: DEBUG - Now using ACME Tiny to sign the certificate...
2024-07-04 04:07:10,023: INFO - Parsing account key...
2024-07-04 04:07:10,027: INFO - Parsing CSR...
2024-07-04 04:07:10,030: INFO - Found domains: mydomain.com
2024-07-04 04:07:10,030: INFO - Getting directory...
2024-07-04 04:07:15,663: INFO - Directory found!
2024-07-04 04:07:15,663: INFO - Registering account...
2024-07-04 04:07:16,862: INFO - Already registered!
2024-07-04 04:07:16,863: INFO - Creating new order...
2024-07-04 04:07:18,116: INFO - Order created!
2024-07-04 04:07:19,249: INFO - Verifying mydomain.com...
2024-07-04 04:07:30,828: ERROR - Challenge did not pass for mydomain.com: {'identifier': {'type': 'dns', 'value': 'mydomain.com'}, 'status': 'invalid', 'expires': '2024-07-11T08:07:18Z', 'challenges': [{'type': 'http-01', 'url': 'https://acme-v02.api.letsencrypt.org/acme/chall-v3/372500203297/I5iAwg', 'status': 'invalid', 'validated': '2024-07-04T08:07:20Z', 'error': {'type': 'urn:ietf:params:acme:error:connection', 'detail': '78.xxx.xxx.xxx: Fetching http://mydomain.com/.well-known/acme-challenge/yFJii_mrJuw3jrQabv8mR1kh7tylC1l1VUhHCOHaSLc: Timeout during connect (likely firewall problem)', 'status': 400}, 'token': 'yFJii_mrJuw3jrQabv8mR1kh7tylC1l1VUhHCOHaSLc', 'validationRecord': [{'url': 'http://mydomain.com/.well-known/acme-challenge/yFJii_mrJuw3jrQabv8mR1kh7tylC1l1VUhHCOHaSLc', 'hostname': 'mydomain.com', 'port': '80', 'addressesResolved': ['78.xxx.xxx.xxx'], 'addressUsed': '78.xxx.xxx.xxx'}]}]}
2024-07-04 04:07:30,828: ERROR - Certificate installation for mydomain.com failed !
Exception: Could not sign the new certificate

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.