Forums

Resolved
0 votes
Hi,

I am trying to renew my let's encrypt certificate, but have been unable to do it, can someone please guide me through this.

Thanks

Manolo
Monday, June 06 2022, 06:13 PM
Share this post:

Accepted Answer

Monday, June 06 2022, 06:28 PM - #Permalink
Resolved
0 votes
It should renew itself automatically when there are 30 days left to go on the certificate, especially of your server is your gateway. It will then retry every night until it succeeds. If it is on your LAN, you have to port forward TCP port 80 to the server, or put the server in a DMZ.
The reply is currently minimized Show
Responses (5)
  • Accepted Answer

    Friday, June 10 2022, 12:54 PM - #Permalink
    Resolved
    0 votes
    Thanks Nick as always your help is amazing. The certificate is now updated. I do have the community version of gateway management, and now it is showing torproject and expressvpn as being blocked in the logs I actually tried reloading them heaps of times and now they show in the blocked domains log screen. i am not too familiar with the gateway but I just saw that a csv file can be downloaded with all blocked domains, I'll have a look and try to unblock the ones I need forwarding them to a DNS IP. I read you were leaving, is this correct ?? It definitely will be a great loss if you do, your help is simply invaluable, you know so much about this system. OK now they work.

    Once again thanks Nick.

    Saludos,

    Manolo
    The reply is currently minimized Show
  • Accepted Answer

    Friday, June 10 2022, 08:21 AM - #Permalink
    Resolved
    0 votes
    I assume you are running the Community version of Gateway Management? Please confirm. From dashboard.contententfilter.net go to MyTools and then watch the logs. Is anything being blocked? if you have the OpenDNS FamilyShield enabled, you won't see when that is blocking. Try disabling it. If that works, for those who need it disabled, you'll either need another policy for those devices or you could try setting up a new List in My Rules of the Forwarding List type (not a DNS Forwarder) and point the relevant FQDNs to somewhere like GoogleDNS (8.8.8.8) or Cloudflare (1.1.1.1), but it may be hard to find all the FQDN's you need to set up this way.
    The reply is currently minimized Show
  • Accepted Answer

    Friday, June 10 2022, 05:33 AM - #Permalink
    Resolved
    0 votes
    Hi Nick, thanks I just opened the ports and hopefully it'll update on its own. I am also trying to get a static IP on the router or get a static IP from the ISP. It'll probably cost me a bit more monthly, but it would be good to have it. I have another question, I am trying to update my Tor Browser, but the site is blocked

    https://www.torproject.org/download/

    also I use am using expressvpn to access Stan in Australia so I can watch rugby, but the site is also blocked, although the vpn app works fine

    https://www.expressvpn.com/

    I have been rummaging around Clearos for a while, but have not been able to find where these sites could be being blocked. I have contentfilter.net, but when that blocks a site it says it blocked it, which is not the case for these two sites. I have a pihole in the lan, but these sites are clearly whitelisted, and I tried turning it off, but they remain blocked.

    Any suggestions as to where I could find the block ??

    Thanks

    Manolo
    The reply is currently minimized Show
  • Accepted Answer

    Tuesday, June 07 2022, 11:57 AM - #Permalink
    Resolved
    0 votes
    If ClearOS is on your LAN, you should really give it a static IP in the router's subnet but outside its DHCP scope or you should give it a static/reserved/permanent lease in the router's DHCP server.
    The reply is currently minimized Show
  • Accepted Answer

    Monday, June 06 2022, 10:51 PM - #Permalink
    Resolved
    0 votes
    Hi Nick, thanks once again for your help. I'll have to check the LAN router as I had set a couple of port forwards to the server, but after moving this might have gotten screwed up.

    Thanks

    Manolo
    The reply is currently minimized Show
Your Reply