ERPNext.com Frappe Cloud Support Partners Foundation Frappe School

TRAEFIK certificate expired, and couldn't access the site

hi every one,
I tried to use fileZilla to access the /var/lib/docker directory, i couldn’t do that as for permission denied, the directory is root.

I changed the permission to access the directory , also the /var/lib/containerd
since then the site shows the privacy error

Your connection is not private

Attackers might be trying to steal your information

and the site is not accessible at all, I check the TRAFIK certificate it shows it is expired.

Common Name (CN) TRAEFIK DEFAULT CERT
Organization (O)
Organizational Unit (OU)
Issued On Wednesday, July 28, 2021 at 10:05:51 AM
Expires On Thursday, July 28, 2022 at 10:05:51 AM

I return the permission as it was, but the problem is still, and the site shows

Internal Server Error

any help is appreciated,

and when I try to access the site the >Containers >frappe_docker_traefik_1> return this logs

time=“2021-07-28T08:55:52Z” level=info msg=“Skipping same configuration” providerName=docker

time=“2021-07-28T08:56:03Z” level=debug msg=“Serving default certificate for request: “demo.madianwater.com””

time=“2021-07-28T08:56:03Z” level=debug msg=“Serving default certificate for request: “demo.madianwater.com””

time=“2021-07-28T08:56:03Z” level=debug msg=“http: TLS handshake error from 77.31.36.95:42418: remote error: tls: unknown certificate”

time=“2021-07-28T08:56:03Z” level=debug msg=“http: TLS handshake error from 77.31.36.95:42420: remote error: tls: unknown certificate”

time=“2021-07-28T08:56:12Z” level=warning msg=“A new release has been found: 2.4.12. Please consider updating.”

Before anyone tags me to answer this.

I’ve no idea about this. I’ve never faced this. I can’t help. If I can’t help, then probably you’re on your own.

thanks for your reply,

I made a database backup reinstall and restore back. could be a solution but this work for me.

1 Like

If any time the certificates are messed up and domains are removed, delete the acme.json that the traefik container uses to store certificates and restart the service. It’ll recreate acme.json with fresh valid certificates

Be aware of the rate limit from letsencrypt