I am playing with a new NS install trying to implement the built in LE platform. Every request is failing though I know port 80 is open and reachable. I’ve noticed that every time I navigate to my NS host IP address it is automatically redirecting my browser to Https and what I suspect is causing my hang-up. Is there a way to disable this?
I can confirm I am getting the auto-redirect for my domain when I enter it in the URL - IE- http://ns.domain.com is getting redirected to https://ns.domain.com on the public internet. Same public IP on a different production NS server does allow for successful LE certs & renewal (this is my temporary work around for a cert renewal/export to new NS box). Both NS installs are up to date while my production NS box does not auto-forward to https while the new install does and hence why I mentioned it above.
You CAN set the behaviour eg for vhosts, but AFAIK not for the default host.
However, I can confirm that as of two weeks ago, this was working on new NS even with redirect active…
I believe I have isolated the issue to the SOGo mail client with the Make SOGo reachable only from this domain (FQDN) when trying to request the certificate (see below). When this field is populated NS start to redirect everything from http to https and the certificate challenge fails.