OS Linux
Platform Ubuntu 22.04.4
System Type x86_64
CPU Model Intel(R) Core™ i7-6700 CPU @ 3.40GHz
CPU Layout 1S/2C/4T
Installed RAM 8000
Virtualization ProxmoxLXC
Application Name AMP
Problem Description:
Note: I am using pfSense:
2.7.2-RELEASE (amd64)
built on Mon Mar 4 13:53:00 CST 2024
FreeBSD 14.0-CURRENT
I have went to pfSense and setup a NAT to open the ports 80 & 443 forwarding to 192.168.168.6. I did have it create the rule for the firewall. (Note: this did create problems for other services that need them ports on the network. Though for now I shut down them services.) However, when trying to install AMP fresh with HTTPS. I get the following error:
Installing AMP...
amp already exists. Skipping...
Updating System...
Installing prerequisites...
Installing nginx and certbot...
Adding component(s) 'universe' to all repositories.
Get:1 https://packages.adoptium.net/artifactory/deb noble InRelease [7511 B]
Hit:2 http://archive.ubuntu.com/ubuntu noble InRelease
Hit:3 http://archive.ubuntu.com/ubuntu noble-updates InRelease
Hit:4 http://archive.ubuntu.com/ubuntu noble-security InRelease
Hit:5 https://repo.cubecoders.com debian/ InRelease
Fetched 7511 B in 1s (11.4 kB/s)
Reading package lists... Done
Hit:1 http://archive.ubuntu.com/ubuntu noble InRelease
Hit:2 http://archive.ubuntu.com/ubuntu noble-updates InRelease
Hit:3 http://archive.ubuntu.com/ubuntu noble-security InRelease
Get:4 https://packages.adoptium.net/artifactory/deb noble InRelease [7511 B]
Hit:5 https://repo.cubecoders.com debian/ InRelease
Fetched 7511 B in 1s (11.9 kB/s)
Reading package lists... Done
AMP instance manager already installed. Skipping...
Adding firewall rules...
Adding firewall rule for port 443 (AMP Reverse Proxy) via ufw...
Skipping adding existing rule
Skipping adding existing rule (v6)
Adding firewall rule for port 80 (AMP Reverse Proxy) via ufw...
Skipping adding existing rule
Skipping adding existing rule (v6)
[Info/1] AMP Instance Manager v2.5.1.6 built 16/08/2024 03:11
[Info/1] Stream: Mainline / Release - built by CUBECODERS/buildbot on CCL-DEV
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Requesting a certificate for s1da.ajl1.com
Certbot failed to authenticate some domains (authenticator: nginx). The Certificate Authority reported these problems:
Domain: s1da.ajl1.com
Type: connection
Detail: 24.32.65.84: Fetching http://s1da.ajl1.com/.well-known/acme-challenge/YjE63dILlUyMZsPnnrGiygBjr60PwYKV5T_1GnVvi68: Timeout during connect (likely firewall problem)
Hint: The Certificate Authority failed to verify the temporary nginx configuration changes made by Certbot. Ensure the listed domains point to this nginx server and that it is accessible from the internet.
Some challenges have failed.
Ask for help or search for solutions at https://community.letsencrypt.org. See the logfile /var/log/letsencrypt/letsencrypt.log or re-run Certbot with -v for more details.
[Error/1] Certbot failed with code 1
Failed to configure nginx. Please check /root/getamp-20240821-213944.log . Aborting...
Steps to reproduce:
* Step 1: Fresh install using: `bash <(wget -qO- getamp.sh)
* Step 2: Docker - N
* Step 3: JAVA - N
* Step 4: SteamCMD - N
* Step 5: Enable HTTPS - Y
* Step 6: Sub.Domain.com
* Step 7: Email
* Step 8: Please forward ports 80 and 443 TCP to 192.168.173.7 if you have not already done so.
Press any key to continue once you have done this.
* Step 8: Installation Summary:
> AMP System user: Already exists (Because I already tried before.)
Instance Manager: Already installed (Because I already tried before.)
HTTPS setup: Yes, via nginx with domain s1da.ajl1.com
Install Docker: No
Install 32-bit libraries: No
Install Java: No
Ready to install AMP. Press ENTER to continue or CTRL+C to cancel.
* Step 9: ENTER
Actions taken to resolve so far: Doubled and tripled checked everything and what I can tell is that everything should work.
I am really lost at this point and not sure what to do to resolve this problem. Can some one please help.