JaroS
-
Posts
2 -
Joined
-
Last visited
Posts posted by JaroS
-
-
On 4/26/2021 at 2:09 PM, jarugut said:
Tenia el mismo problema con la version 6.1.7 y realizando los cambios siguientes se soluciona el problema del registro en Let's Encrypt
Synology DSM 6.1 (xpenology) Lets Encrypt ACMEv1 to ACMEv2
If you get messages like:synoscgi_SYNO.Core.Certificate.LetsEncrypt_1_create[5038]: certificate.cpp:957 syno-letsencrypt failed. 200 [new-req, unexpect httpcode]
synoscgi_SYNO.Core.Certificate.LetsEncrypt_1_create[5038]: certificate.cpp:1359 Failed to create Let'sEncrypt certificate. [200][new-req, unexpect httpcode]
Then you need to upgrade your DSM up to version 6.2 or replace execution (syno-letsencrypt) file and some changes in configuarion file:1. Download file syno-letsencrypt (this file from DSM v6.2) link https://drive.google.com/drive/folders/1-LgjOAU3dBtNk2WKZ1KJY88Lklf12RPp?usp=sharing
2. If not enabled SSH, please enable in settings
3. Copy downloaded file syno-letsencrypt in any folder on you NAS
4. Connect to NAS with SSH (Putty) using admin account
5. Make backup of original syno-letsencrypt (sudo cp /usr/syno/sbin/syno-letsencrypt usr/syno/sbin/syno-letsencrypt.bck)
6. Copy downloaded syno-letsencrypt file to directory /usr/syno/sbin/ (ex.: sudo cp /volume1/sharedFolder/syno-letsencrypt /usr/syno/sbin/)
7. Change attributes (sudo chmod 755 /usr/syno/sbin/syno-letsencrypt) to execute new file
8. Now change default address for syno-letsencrypt, using ssh (sudo vi /usr/syno/etc.defaults/letsencrypt/letsencrypt.default)
9. Fine string "server": "https://acme-v01.api.letsencrypt.org/directory", press i and change 01 to 02
10. Press escape, enter :wq and reboot your NAS.
Buenas tardes,
Hace unos meses apliqué el mismo cambio y me dejó de dar ese problema, pero desde hace un par de semanas tengo otro error que dice que no recibe respuesta del servidor. Al ejecutarlo desde línea de comandos el log que veo es el siguiente:
QuoteDEBUG: Issuer name of certificate. [Let's Encrypt]->[/usr/syno/etc/certificate/_archive/XXXXXX/cert.pem]
DEBUG: cert is not expired. [/usr/syno/etc/certificate/_archive/XXXXXX]
DEBUG: Issuer name of certificate. [Let's Encrypt]->[/usr/syno/etc/certificate/_archive/XXXXXX/cert.pem]
DEBUG: Issuer name of certificate. [Synology Inc.]->[/usr/syno/etc/certificate/_archive/XXXXXX/cert.pem]
DEBUG: certificate is not issued by Let's encrypt. [/usr/syno/etc/certificate/_archive/XXXXXX/cert.pem]
DEBUG: Issuer name of certificate. [Let's Encrypt]->[/usr/syno/etc/certificate/_archive/XXXXXX/cert.pem]
DEBUG: Issuer name of certificate. [Let's Encrypt]->[/usr/syno/etc/certificate/_archive/XXXXXX/cert.pem]
DEBUG: start to renew [/usr/syno/etc/certificate/_archive/XXXXXX].
DEBUG: setup acme url https://acme-v02.api.letsencrypt.org/directory
DEBUG: szUserAgent: [synology_bromolow_3615xs DSM6.1-15284 Update 3 (DDNS)]
DEBUG: GET Request: https://acme-v02.api.letsencrypt.org/directory
{"error":100,"file":"client_network.cpp","msg":"Server is not reachable."}DEBUG: start to renew [/usr/syno/etc/certificate/_archive/lhVigS].
DEBUG: setup acme url https://acme-v02.api.letsencrypt.org/directory
DEBUG: szUserAgent: [synology_bromolow_3615xs DSM6.1-15284 Update 3 (DDNS)]
DEBUG: GET Request: https://acme-v02.api.letsencrypt.org/directory
{"error":100,"file":"client_network.cpp","msg":"Server is not reachable."}DEBUG: start to renew [/usr/syno/etc/certificate/_archive/xM77nW].
DEBUG: setup acme url https://acme-v02.api.letsencrypt.org/directory
DEBUG: szUserAgent: [synology_bromolow_3615xs DSM6.1-15284 Update 3 (DDNS)]
DEBUG: GET Request: https://acme-v02.api.letsencrypt.org/directory
{"error":100,"file":"client_network.cpp","msg":"Server is not reachable."}¿Alguien sabría decirme cómo puedo solventarlo?
Muchas gracias de antemano.
Problemas Let's Encrypt DSM 6.1.7
in SPANISH
Posted
Me olía que efectivamente era algo del certificado, de hecho al hacer un curl me daba error de certificado. Voy a ejecutar lo que dices y os cuento el resultado por si ayuda a alguien.
Muchas gracias.