This has been asked before here viewtopic.php?t=151005 and I tried following the recommended solutions with no luck, so I would greatly appreciate if you could point to where I might be at fault in my configuration.
I am cross-posting this from the Unraid - Letsecrypt subforum in an attempt to cross-reference any solutions provided. Apologies if this is not allowed.
So... I keep getting "Challenge failed for domain.." in the initial setup validation of Letsecrypt and I suspect I'm messing up with the port-forwarding somewhere along my network.
-Following SpaceInvaderOnes' guide on Letsencrypt I have http pointing to 180 and https to 1443.
-I have an "obligatory" modem provided by my ISP (Technicolor TG789vac v2) which does not allow/provide an option to switch to bridge mode due to some kind of conflict with VoIP. My port settings are visible in image 1.
-I have a Mikrotik hEX PoE Routerboard with port settings visible in image 2, or as follows:
Where 192.168.88.1 points to the Mikrotik router and 192.168.88.88 points to Unraid.
Code: Select all
/ip firewall nat add action=dst-nat chain=dstnat comment=Letsencrypt dst-port=80 dst-address=!192.168.88.1 protocol=tcp dst-address-type=local to-addresses=192.168.88.88 to-ports=180 add action=dst-nat chain=dstnat comment=Letsencrypt dst-port=443 dst-address=!192.168.88.1 protocol=tcp dst-address-type=local to-addresses=192.168.88.88 to-ports=1443 /ip firewall nat add action=masquerade chain=srcnat comment=Letsencrypt dst-port=180,1443 dst-address=192.168.88.88 protocol=tcp
Any ideas on where I might be messing up?
Please ask if additional info might be required. Appreciate your time and effort.