Unable to connect to my DVR outside my network

jasonh · October 4, 2020, 8:46pm

I am having an issue connect to my DVR outside my network.

I can connect to https://my.channelsdvr.net but I'm told the certificate is invalid. As you can see below it expired on August 20th.
Screen Shot 2020-10-04 at 4.40.47 PM|448x175

I'm running on freenas in an iocage jail behind a USG Pro 4 router. I turned on UPNP and removed 10.0.0.1 (my router) as a DNS server. Any other suggestions?

My log messages are below.

 2020/10/04 15:25:12.197975 http: TLS handshake error from xxx.yyy.xxx.yyy:58334: EOF
    2020/10/04 15:32:13.367284 [TLS] Certificate generation failed. Trying again while waiting for 5 consecutive responses: acme: Error -> One or more domains had a problem:
    [*.XXXXXXXX.channelsdvr.net] time limit exceeded: last error: Record _acme-challenge.XXXXXXXX.channelsdvr.net. not ready
    [b8f8abfe300d.channelsdvr.net] time limit exceeded: last error: Record _acme-challenge.XXXXXXXX.channelsdvr.net. not ready
    2020/10/04 15:42:24.220481 [ERR] Generating SSL cert failed: acme: Error -> One or more domains had a problem:
    [*.XXXXXXXX.channelsdvr.net] time limit exceeded: last error: Record _acme-challenge.XXXXXXXX.channelsdvr.net. not ready
    [b8f8abfe300d.channelsdvr.net] time limit exceeded: last error: Record _acme-challenge.XXXXXXXX.channelsdvr.net. not ready
    2020/10/04 16:22:00.158357 [NAT] Successfully mapped port 8089 using natpmp
    2020/10/04 16:30:10.444165 http: TLS handshake error from 10.0.0.1:65037: remote error: tls: unknown certificate

tmm1 · October 4, 2020, 9:04pm

Please try turning remote access off and back on now. I have reassigned you a new domain.

jasonh · October 4, 2020, 9:51pm

Continuing the discussion from Unable to connect to my DVR outside my network:

Thanks for the quick response.

I turned remote access off and back on. I can see a new domain but am still getting the same message. I have also sent a diagnostics file.

2020/10/04 17:42:59.431689 [TLS] Requesting certificate for XXXXX.u.channelsdvr.net
2020/10/04 17:43:02.526275 [TLS] Certificate generation failed. Trying again while waiting for 5 consecutive responses: acme: Error -> One or more domains had a problem:
[*.XXXXX.u.channelsdvr.net] [*.XXXXX.u.channelsdvr.net] acme: error presenting token: invalid response code: 500
[XXXXX.u.channelsdvr.net] [XXXXX.u.channelsdvr.net] acme: error presenting token: invalid response code: 500
2020/10/04 17:43:05.392594 [ERR] Generating SSL cert failed: acme: Error -> One or more domains had a problem:
[*.XXXXX.u.channelsdvr.net] [*.XXXXX.u.channelsdvr.net] acme: error presenting token: invalid response code: 500
[XXXXX.u.channelsdvr.net] [XXXXX.u.channelsdvr.net] acme: error presenting token: invalid response code: 500
2020/10/04 17:43:05.758021 http: TLS handshake error from 10.0.0.1:52774: EOF
2020/10/04 17:43:05.883645 http: TLS handshake error from 10.0.0.1:61645: remote error: tls: unknown certificate

tmm1 · October 4, 2020, 10:02pm

Try it again now

jasonh · October 4, 2020, 10:27pm

Thanks so much. That did it.

Do I need to leave UPnP enabled on my firewall?