Let’s Encryptの動作確認は--dry-runをつけろという話

2021/5/14 2021/5/14 書き溜め

Let’s Encryptの動作確認はdry-runをつけろということ。
友達にファイアーウォールやIP制限などで上手く更新ができずに調査していたら制限されたと連絡があった。

Attempting to renew cert mydomain.example.com from /etc/letsencrypt/renewal/mydomain.example.com.conf produced an unexpected error: urn:ietf:params:acme:error:rateLimited :: There were too many requests of a given type :: Error creating new order :: too many certificates already issued for exact set of domains: mydomain.example.com,www.mydomain.example.com: see https://letsencrypt.org/docs/rate-limits/. Skipping.
All renewal attempts failed. The following certs could not be renewed:
  /etc/letsencrypt/live/mydomain.example.com/fullchain.pem (failure)

Attempting to renew cert mydomain.example.com from /etc/letsencrypt/renewal/mydomain.example.com.conf produced an unexpected error: urn:ietf:params:acme:error:rateLimited :: There were too many requests of a given type :: Error creating new order :: too many certificates already issued for exact set of domains: mydomain.example.com,www.mydomain.example.com: see https://letsencrypt.org/docs/rate-limits/. Skipping.

All renewal attempts failed. The following certs could not be renewed:

/etc/letsencrypt/live/mydomain.example.com/fullchain.pem (failure)

「There were too many requests of a given type :: Error creating new order」このエラーがでたら終わり。
１週間は該当ドメインの検証はできません。

認証切れの１ヶ月前に作業していたみたいだから良かったけど
直前だったら終わってた。

当たり前だけど、
--dry-runはつけろと。

certbot renew --dry-run

もう一回。

certbot renew --dry-run

RateLimitについては公式読んでね。

じゃあね〜〜。