nginx-proxy-manager icon indicating copy to clipboard operation
nginx-proxy-manager copied to clipboard
Published 1 month ago verified publisher icon NginxProxyManager

Unable to create SSL certificate no matter what I try.

Open Gamereric21 opened this issue 3 years ago • 2 comments

I've been trying to setup a reverse proxy so I can safely run nextcloud over the internet, but I keep getting hit by some kind of an error code that prevents me from setting up an SSL certificate.

The domain is a blank .xyz address, with 3 A records on cloudflare, all pointing to my PC's public IPV4 address

However, whenever I try creating a wildcard certificate with a cloudflare DNS challenge, an SSL certificate for just a subdomain, or uploading a custom cloudflare origin certificate, all will lead to an error code (The cloudflare doesn't lead to an error in Nginx, but it isn't secured, and won't connect if I set it to be proxied.)

I have forwarded inbound ports 80 and 443, alongside outbound ports 80 and 443 via TCP, however I have played around with the other options and none work better than another.

This time around, I am stuck finding a good installation guide for nextcloud the way I want to do it, though I will update this as I make progress on that. I had the same issues I am having now previously, and I wanted to open this issue to share my experiences, and hopefully get my cloud storage working safely and securely.

https://www.reddit.com/r/nginxproxymanager/comments/vvc6rt/issues_setting_up_ssl_certification_on_nginx/ https://www.reddit.com/r/nginxproxymanager/comments/vw1wwp/nginx_has_a_different_time_than_my_raspberry_pi_i/ https://www.reddit.com/r/nginxproxymanager/comments/vwnc9o/still_unable_to_create_ssl_certificates_even/

Here's all of the posts that have the information regarding my issues, along with stuff I have tried (all of the replies to my best ability) to no avail. I also checked the open/closed issues but no one seems to be having the exact same issue as me as far as I can tell. I've tried manually installing older versions, reinstalling rasbian, and others, all not fixing the issue.

  • This time around, I am unable to set the time zone correctly, which I have heard could also cause some issues setting up the SSL certificate. Last time around it didn't fix it, though i'd like to get to the bottom of why its set to a different time zone too. The time zone on my pi is America/New_York, and its also set that way in the environment values in portainer for nginx (TZ=America/New_York)

Hopefully someone can help me out here. I'd be more than happy to make a longer post with all of the error codes experienced not in the form of linked reddit posts if that would also be helpful.

Gamereric21 avatar Aug 18 '22 21:08 Gamereric21

Not sure I can define a real problem point to look at here. I would say:

  1. Turn off cloudflare proxying wait a day, try and setup NPM DNS verified cert on you end points.
  2. Define what you are trying to do. Have NPM handle letsencrypt and all connections or cloudflare to handle this because at the moment you seem to be trying to get both to do it at the same time.
  3. If you want cloudflare to handle the DNS, proxying and SSL certs, then understand what actually NPM will be handling and if NPM is the solution you are looking for.

the1ts avatar Aug 20 '22 22:08 the1ts

Honestly, I just need a way to secure my nextcloud server / protect it. I only tried setting up an SSL on Cloudflare because NPM kept giving me errors when I tried making an SSL certificate.

Proxying has been off for a while on cloudflare.

Don't really need cloudflare to do much, though having it proxy would be really nice.

ghost avatar Aug 21 '22 02:08 ghost

Issue is now considered stale. If you want to keep it open, please comment :+1:

github-actions[bot] avatar Feb 11 '24 01:02 github-actions[bot]