New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
LetsEncrypt problem
Hello, I'm on Debian hosting a Java App. In front is nginx and I configured with letsecrypt for https. It's been working for 8 months or so already.
Just this hour, my browser reports the cert expired March 22. But when I check the vps, it was renewed already.
/etc/letsencrypt/live/mydomain.com/fullchain.pem expires on 2019-05-21 (skipped)
Please help
Comments
Sorry, I restarted nginx and all are good now. Anyway this can be resolved without restart?
Nvm. Glad it's resolved. Have you tried turning it off and on again :P
Maybe add a cronjob to reload nginx every month or so? AFAIK new certs are only loaded when nginx reloads or restarts.
nginx -s reload
I just restarted "service nginx restart" and all worked!
thats what I did just now. I was wondering if there is nginx config that I miss so I dont need to cron
Have a look at this
https://www.guyrutenberg.com/2017/01/01/lets-encrypt-reload-nginx-after-renewing-certificates/
This seem to be the only way for now
thanks so much guys
Confirm. A simple reload of Nginx is the way to solve it. As mentioned: you can put it in cron.
Just use traefik and don't worry about letsencrypt anymore
Apache2 has graceful restart that just reload the configuration and no downtime.
This is what an nginx reload does. It spawns new processes under the new config to handle new connections and closes off the old processes once they're done with the connections they're working with.
Two really great commands for things like this where you also don't want downtime!