0. ssl 인증서 발급 커맨드
# ssl 인증서 발급 커맨드 예시
./certbot-auto certonly --standalone -d test.@@@@@@@@@@@@@@@@@@.co.kr
( 관련 추가 정보 필요시 우측 링크 참조 : https://growingsaja.tistory.com/426 )
1. ssl 인증서 발급 실패 로그 확인
...
Waiting for verification...
Challenge failed for domain test.@@@@@@@@@@@@@@@@@.co.kr
http-01 challenge for test.@@@@@@@@@@@@@@@@@.co.kr
Cleaning up challenges
Some challenges have failed.
IMPORTANT NOTES:
- The following errors were reported by the server:
Domain: test.@@@@@@@@@@@@@@@@@.co.kr
Type: connection
Detail: Fetching
http://test.@@@@@@@@@@@@@@@@@.co.kr/.well-known/acme-challenge/0qiQf-ACMnRm4Ff1cHs7_paH99hxKpfpnV78wWiVDfs:
Timeout during connect (likely firewall problem)
To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address. Additionally, please check that
your computer has a publicly routable IP address and that no
firewalls are preventing the server from communicating with the
client. If you're using the webroot plugin, you should also verify
that you are serving files from the webroot path you provided.
- Your account credentials have been saved in your Certbot
configuration directory at /etc/letsencrypt. You should make a
secure backup of this folder now. This configuration directory will
also contain certificates and private keys obtained by Certbot so
making regular backups of this folder is ideal.
읽어보면, 방화벽 문제일 것으로 보인다는 내용을 확인할 수 있습니다.
2. 방화벽에 80 포트 open
추측으로는, http://test.@@@@@@@.co.kr 쪽으로 로 요청한 부분이 연결시도 중 timeout 되었다는 것으로 보아 80 포트를 열어주면 해결이 될 것이라고 추측하여 작업했습니다.
3. ssl 인증서 정상 발급
# ssl 인증서 발급 커맨드 예시
./certbot-auto certonly --standalone -d test.@@@@@@@@@@@@@@@@@@.co.kr
80 port를 open해준 후에는 정상적으로 ssl 인증서가 발급되었습니다.