关于Let's Encrypt证书签发无效的问题报curl: (6) Could not resolve host: acme-v02.api.letsencrypt.org解决办法

网站建设 网络投稿 2022-03-01 05:26 2642 0

curl: (6) Could not resolve host: acme-v02.api.letsencrypt.org; Unknown errocurl: (6) Could not resolve host: acme-v02.api.letsencrypt.org解决办法


在BT使用中,给网站增加SSL证出现一个很囧的问题,证书到期了,现在申请重新签发,但是....


如果按F12可以看到这一条请求一直处于 padding 状态,
....api?api_action=Cert.Request...


一般是由于你的服务器与 Let's Encrypt 服务器之间的网络连通性造成的,可使用以下命令测试下看看:

curl -v https://acme-v02.api.letsencrypt.org/directory



正常输出示例:

Quote# curl -v https://acme-v02.api.letsencrypt.org/directory
* About to connect() to acme-v02.api.letsencrypt.org port 443 (#0)
* Trying 125.252.217.88...
* Connected to acme-v02.api.letsencrypt.org (125.252.217.88) port 443 (#0)
* Initializing NSS with certpath: sql:/etc/pki/nssdb
* CAfile: /etc/pki/tls/certs/ca-bundle.crt
CApath: none
* SSL connection using TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
* Server certificate:
* subject: CN=acme-v02.api.letsencrypt.org
* start date: May 25 00:25:19 2018 GMT
* expire date: Aug 23 00:25:19 2018 GMT
* common name: acme-v02.api.letsencrypt.org
* issuer: CN=Let's Encrypt Authority X3,O=Let's Encrypt,C=US
> GET /directory HTTP/1.1
> User-Agent: curl/7.29.0
> Host: acme-v02.api.letsencrypt.org
> Accept: */*
>
< HTTP/1.1 200 OK
< Server: nginx
< Content-Type: application/json
< Content-Length: 658
< X-Frame-Options: DENY
< Strict-Transport-Security: max-age=604800
< Expires: Wed, 06 Jun 2018 06:13:37 GMT
< Cache-Control: max-age=0, no-cache, no-store
< Pragma: no-cache
< Date: Wed, 06 Jun 2018 06:13:37 GMT
< Connection: keep-alive
<
{
"in1Qb0LhppM": "https://community.letsencrypt.org/t/adding-random-entries-to-the-directory/33417",
"keyChange": "https://acme-v02.api.letsencrypt.org/acme/key-change",
"meta": {
"caaIdentities": [
"letsencrypt.org"
],
"termsOfService": "https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf",
"website": "https://letsencrypt.org"
},
"newAccount": "https://acme-v02.api.letsencrypt.org/acme/new-acct",
"newNonce": "https://acme-v02.api.letsencrypt.org/acme/new-nonce",
"newOrder": "https://acme-v02.api.letsencrypt.org/acme/new-order",
"revokeCert": "https://acme-v02.api.letsencrypt.org/acme/revoke-cert"
* Connection #0 to host acme-v02.api.letsencrypt.org left intact

解决办法:


才开始安装就提示 curl: (6) Couldn’t resolve host ... ,还是DNS解析的问题更大,直接PING 国内域名,果然不通,可以判定服务器连外网不通,需要。

centos 6修改DNS非常简单,直接

vi /etc/resolv.conf

在里面按下面格式添加后保存生效即可

nameserver 119.29.29.29

nameserver 8.8.8.8



文章分类

热门文章

最近发表

文章归档

标签列表