Messages

1

20.7 Legacy Series / Re: No log files on Let’s Encrypt

« on: February 09, 2021, 08:41:11 pm »

https://github.com/opnsense/plugins/issues/2227

2

20.7 Legacy Series / Re: No log files on Let’s Encrypt

« on: February 06, 2021, 11:10:57 am »

Hi,
I made the test: "System: Log Files: General" shows

Code: [Select]

AcmeClient: running acme.sh command: /usr/local/sbin/acme.sh --issue --debug --webroot /var/etc/acme-client/challenges etc.....and no logs into "Services: Let's Encrypt: Log File":

Code: [Select]

File /var/log/acme.sh.log yielded no results.=>there is a problem.

... and now? How get it fixed?
Do you have the right place to report this?

3

20.7 Legacy Series / Re: No log files on Let’s Encrypt

« on: February 03, 2021, 09:44:37 pm »

I get the logs by renewing the cert

so now there is records in Services: Let's Encrypt: Log File?

yes file exists now and contains the log messages

the logs are not added any more to /var/log/acme.sh.log

fresh records appear only if the acme.sh is launched. that is, if actions are performed with a certificate or account using this script. if the certificate is checked and does not require action, then there will be no fresh entries in this log

yes, I understand this (I hope!). But forcing the renewing of the cert uses acme.sh, doesn't it?
Looking at the date and time of "issue/renewal date" and "Last acme run" I see that the cert is really renewed.

Under the staging environment this produces logs into /var/log/acme.sh.log, under the production environment logs aren't produced any more => is this normal?

4

20.7 Legacy Series / Re: No log files on Let’s Encrypt

« on: February 02, 2021, 09:08:41 pm »

Hi Fright,
and many thanks for the quick answer.
The link helped me:
- after remaking the setup step by step and selecting "staging environment" I get the logs by renewing the cert
- after selecting "production environment" and renewing the cert, there is no new log (with "normal" and "extended" log level) while the the cert has been renewed
- System: Log Files: General and search for "AcmeClient" shows the missing logs

=> the logs are not added any more to /var/log/acme.sh.log by switching from "staging environment" to "production environment".
I use http-01 as challenge-typ

As a newbie with OPNSense, I would quietly say that this seems to be a (small) bug....

Bye
Arnaud

5

20.7 Legacy Series / Re: No log files on Let’s Encrypt

« on: February 01, 2021, 06:45:37 pm »

Hi,
first post here after using OPNSense for 6 months. Many thanks to you for having created OPNSense!!

I have the same issue as described previously: the web GUI gives

Code: [Select]

File /var/log/acme.sh.log doesn't exist.This machine is a real machine create by using backup/restore from a virtual machine.

 /var/log/acme.sh.log was present into the virtual machine.

Creating/renewing certs works (if all things are correct!) but doesn't generate the log file => in case of issues it is difficult to solve.....

=> what can I do? Create an empty file? Which permissions? Uninstall the plugin and reinstall it? Is it possible to delete completely the conf of the plugin?

Thanks.
Arnaud