I'm trying to move away from my paid certificate to a Let's Encrypt one. I was afraid it might be a little fiddly to do on my home router, but we do this now on all the webservers at work, so i thought I'd give it a go.
I was pleasantly surprised to see luci-app-acme was available! I installed it, saw that the config wasn't too complicated, and so I thought this should be up and running in pretty short order.
But, er, no. I keep getting
witheld server name:Verify error:Fetching http://witheld server name/.well-known/acme-challenge/fDP0KMTV_LNXb1Jha-iFPDN60zXowcXQjFIiBIck_r8: Connection reset by peer
I've tried opening ports in the firewall, but it really looks to me like the scripts opens and closes ports as needed. If I open port 80, i get 'connection refused' instead of 'connection reset by peer'. I've tried with ipv6 in DNS, but all that gives me is 'connection refused'.
In the process I've also discovered that luci-ssl always redirects to https, regardless of the state of 'redirect_https' in the config file. So I tried turning off the https listening, and that finally stopped the https redirecting, but I still get the same error.