Secure connection error - setting up using Google Cloud VM

Mat5 years ago

Hmm - perhaps someone can delete that link then.

The traccar.xml file was working fine on http before I installed Apache2

I see what you mean about the (SSLCertificateFile /etc/ssl/certs/ssl-cert-snakeoil.pem ). however if I load my site it shows a valid certificate for LetsEncrypt.

Kleent5 years ago

Mat, please change the passwords displayed in your privatebin link. That file will stay up for the amount of time you specified.

As for traccar, if you want it to operate, you will have to follow the how-to guides from Anton.

Mat5 years ago

Thanks Kleent,

It's getting late now I'll try it all again and then maybe look again in the morning.

Mat5 years ago

So I tried again this morning and used slightly different instructions on CertBot as I realised I'm using Ubuntu 19.10.

The install appeared to go fine however when I load https://my.website.co.uk - still going to the Apache index.html page, the certificate is working fine. I'm thinking the Cert etc is working fine but Apache is not redirecting to my server.

Looking at the Apache2 error log I see this:

/var/log/apache2$ tail -f error.log

[Tue Feb 18 08:51:26.571199 2020] [mpm_event:notice] [pid 10010:tid 140024420342848] AH00489: Apache/2.4.41 (Ubuntu) OpenSSL/1.1.1c configured -- resuming normal operations
[Tue Feb 18 08:51:26.571317 2020] [core:notice] [pid 10010:tid 140024420342848] AH00094: Command line: '/usr/sbin/apache2'
[Tue Feb 18 08:54:49.658975 2020] [mpm_event:notice] [pid 10010:tid 140024420342848] AH00491: caught SIGTERM, shutting down
[Tue Feb 18 08:54:49.759315 2020] [ssl:warn] [pid 10128:tid 139792727600192] AH01909: my.website.co.uk:443:0 server certificate does NOT include an ID which matches the server name
[Tue Feb 18 08:54:49.780137 2020] [ssl:warn] [pid 10130:tid 139792727600192] AH01909: my.website.co.uk:443:0 server certificate does NOT include an ID which matches the server name
[Tue Feb 18 08:54:49.781140 2020] [mpm_event:notice] [pid 10130:tid 139792727600192] AH00489: Apache/2.4.41 (Ubuntu) OpenSSL/1.1.1c configured -- resuming normal operations
[Tue Feb 18 08:54:49.781164 2020] [core:notice] [pid 10130:tid 139792727600192] AH00094: Command line: '/usr/sbin/apache2'
[Tue Feb 18 09:01:58.676774 2020] [mpm_event:notice] [pid 10130:tid 139792727600192] AH00493: SIGUSR1 received.  Doing graceful restart
[Tue Feb 18 09:01:58.698280 2020] [mpm_event:notice] [pid 10130:tid 139792727600192] AH00489: Apache/2.4.41 (Ubuntu) OpenSSL/1.1.1c configured -- resuming normal operations
[Tue Feb 18 09:01:58.698293 2020] [core:notice] [pid 10130:tid 139792727600192] AH00094: Command line: '/usr/sbin/apache2'

I'm afraid this is all very new to me so please bear with me :-)

Kleent5 years ago

The traccar config file (from yesterday's posted logs/config) had a repeated line for the proxy, plus some other errors. Hopefully you have started from a clean slate all together, otherwise please do so, as theses files are sensitive about what their are being fed. An extra dot or coma and everything crumbles down.

The install appeared to go fine
AH01909: my.website.co.uk:443:0 server certificate does NOT include an ID which matches the server name

If things went well, you should not see that kind of error.
You do not need to change/replace that .html file, please leave it alone; its not the issue.

Please follow these steps :

1 Get the How-to guides for the traccar.xml and traccar.conf files and adjust their contents to your needs
2 First test with self-signed certs to make sure that everything works smoothly as Let's Encrypt has limited number of cert generation requests (5 per week)
3 If everything is a ok from step 2, you can then target Let's Encrypt

Mat5 years ago

Thanks Kleent,

I went back to the beginning and took my time. Working now :-)