Comments (2)
Hello @manjeshpv
I encountered a persistent issue over the past weekend which seems to be related to SSL certificate renewal within CapRover. Despite consulting various troubleshooting resources like CapRover Troubleshooting Guide, the problem persisted, and attempts to force SSL certificate renewal using the command docker exec -it $(docker ps --filter name=captain-certbot -q) certbot renew were unsuccessful.
In an attempt to resolve the issue, I also restarted the Docker service and bypassed domain verification within CapRover by executing the following command:
echo "{\"skipVerifyingDomains\":\"true\"}" > /captain/data/config-override.json
docker service update captain-captain --force
Despite these efforts, the problem persisted, prompting me to check the CapRover server health using:
docker exec -it $(docker ps --filter name=captain-captain -q) curl https://captain.01.funkhaus.io/checkhealth
Unfortunately, the issue remained unresolved, and given the critical nature of the affected servers (production servers), I opted to initiate a fresh server setup. Notably, this issue affected two servers simultaneously, causing considerable disruption.
Subsequently, after several hours, there was an unexpected spontaneous recovery of the CapRover machine, although the exact recovery process or trigger remains unclear.
I would appreciate further investigation into this matter to prevent similar occurrences in the future and ensure the stability of the CapRover service.
Thank you for your attention to this matter.
Sincerely,
Ashutosh
from caprover.
@manjeshpv - the logs that you posted are completely normal. It's normal to try a few times to get the container ID of certbot. It doesn't indicate any problems. That why we have built in retry mechanism for it. Just restart your server and you will see the exact same logs every time.
@AshutoshM10 - your problem seems different. The fact that manually running certbot renew
command failed shows that it's not a CapRover issue. It's a system's issue.
One thing to keep in mind is that CapRover is just a wrapper around many underlying services (docker, certbot, nginx etc)... Any of these services can fail due to any reason:
- Disk issues
- Local network issues
- Data center network issues
- etc...
The fact that you had an automatic recovery is CapRover tells me it's very like a network related issue (possibly on the datacenter layer)
Next time this happens, please capture the entire output of the system when you run certbot renew
or curl captain....
that will give us more information on how to debug the underlying issue.
from caprover.
Related Issues (20)
- [Deployment Issue] Once click apps giving permission denied error HOT 1
- [Deployment Issue] Restart caprover after update failure HOT 12
- How to bind/publish port to IPv6 address? HOT 1
- One-Click Template for docker-compose mangling environmental values HOT 2
- [Deployment Issue] Unable to access all ports of a container HOT 1
- Extend one-click-app templates to support service update overrides
- Easy, visual way to see if web apps have SSL enabled
- Local caprover with external application with SSL HOT 2
- 502 error because of A record - custom domain set up HOT 1
- [Deployment Issue] Nextcloud cron One Click HOT 1
- [Deployment Issue] - Self Signed Certificate and Appending Captain to Server Domain. HOT 5
- Global environment variables HOT 3
- API/CLI for changing "captain-definition Relative Path" of an app HOT 1
- Having the same image prefix name in Caprover cluster HOT 1
- Authorisation Provider integration (AWS Cognito, Google Firebase, ...) HOT 2
- Add some kind of last modified date to the one click apps
- How to deativate basic auth once enabled HOT 1
- portmapping to localhost/ip and UFW HOT 1
- [Deployment Issue] Poste.io 502 NGINX HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from caprover.