acme-v2 | ACME v2 client written in Node.js for retrieving free SSL | TLS library

SOLVED!!

Many issues were involved at the same time (despite my lack of experience with either redbird and letsencrypt.

1. The magic 404/Not found page: I guess it came from a lighttpd server that seems to had been preinstalled in my VPS.

Port 80 was redirected via iptables but I suppose in one or other configuration tweak I could have redirected incoming requests to localhost's port 80 (which is not redirected).

1. My redbird missunderstanding: Looking at examples in its README file, I thought redbird were kinda "multi- reverse_proxy" in the sense that you could redirect http and https requests with single redbird instance.

But I finally realized that the (maybe not so well named) port option which is, in fact, an http port, serves only to configure a built-in unconditional http->https redirector (of which I already had read about, but I thought it were optional).

1. The actual underlying issue: If your DNS have DNSSEC activated, you should define a CAA register in it pointing to letsencrypt.org.

At the moment I disabled DNSSEC instead because my provider's control panel doesn't allow me to create such register.

I discovered it while trying to get the certificates through certbot (sudo apt-get install certbot which I must say that, If I had known about it before, I wouldn't had care about trying redbird's letsencrypt integration.

It is much more verbose (while redbird is more like a black box when errors arise) and pointed out that I needed the CAA register.

Here the notes I took about it (in case anyone could be interested):