Hi Community, 

how are you?

I own a QNAP TS-251D with 16GB of RAM.

Today I downloaded the Xeams_8.4.qpkg application package for the QNAP.

I did the initial configuration on the Xeams for QNAP, opened up my routers ports 25, 80, 443, 110, 143 to go to my Qnap local IP address.

Then I tested my open ports by using this website called portchecktool

This confirmed that the ports are open and that there are running services behind it.

I then created an A record on godaddy and called it mail.domain.com and pointed it to the public WAN IP address of my internet router.

The pop, imap, smtp services are operational status of RUNNING.

When I went to create the Let's Encrypt SSL certificate using:

hostname = mail.domain.com

Test certificate = ON

Challenge type = HTTP using XEAMS

I received the following error:

Although Xeams is configured to listen on port 80, the server is not listening. Make sure to restart Xeams after changing to port. Additionally, ensure no other process is listening on this port.

Come back this page once Xeams is successfully listening on port 80.

Xeams was restarted but still the same error and no other process is listening on port 80

I also received this other error:

Integrating Xeams with Let's Encrypt
Error
Although a web server is listening, it returns a 404 when trying to fetch a test file. This happens when the request from the Internet on port 80 goes to a different web server inside your network.

The only port 80 that is open is the one the QNAP web server, therefore I turned off the Qnap webserver, but the problem remains.

I spent 12 hours on this searching everywhere online, but I can't work this out.

I would appreciate if someone could help me. 

Thank you.

Best regards

ab6540183

Hi,

The easiest way to see what comes up on port 80 is to connect from a computer on the Internet to your public IP address to see what comes up. It should bring up Xeams web interface.

Hi Support,

Thank you for your prompt reply.

This is my port forwarding  setup:

Ports 25,80,110,143,443 going to local IP address 192.168.xx.50 of QNAP TS-251D unit

As far Xeams app running on QNAP server configuration:

Server Type: Stand-Alone Server

Web Server Port: 5272

2nd Web Server Port: 80 as shown by video

Qnap web server is off.

I connected my laptop through a mobile hotspot connection to simulate that I am on the internet

When I enter http 110.148.xxx.149/ in my browser I get:

This site can’t be reached 110.148.xxx.149 took too long to respond

Then after a minute I can see it is redirecting to http 110.148.xxx.149:8080 (I can't inset the hyperlink due to the forum policies)

Looks like that the QNAP NAS is doing this.

How do I fix this?

Thanks

Does the Xeams QNAP app package have a built-in web server for installing the Let's Encrypt SSL certificate?

From reading the documentation, it appears that it does when you read HTTP using Xeams  challenge and also:

Option 1 - HTTP Recommended
This option requires you have a web server running on port 80. This can either be Xeams or any other server, such as IIS or Apache.

The above says it can be either Xeams or any other server.

Am I right?

Thank you

ab6540183

Does the Xeams QNAP app package have a built-in web server for installing the Let's Encrypt SSL certificate?

From reading the documentation, it appears that it does when you read HTTP using Xeams  challenge and also:

Option 1 - HTTP Recommended
This option requires you have a web server running on port 80. This can either be Xeams or any other server, such as IIS or Apache.

The above says it can be either Xeams or any other server.

Am I right?

Thank you

ab6540183

Hi Synametrics Support,

How are you? I solved my own problem.

The reason why I couldn't create a Let's Encrypt certificate was that the QNAP unit was seizing port 80 by default.

I stopped the Xeams server, then ran the Port Query windows utility which reported the following on the QNAP local IP address:

-------------------------------------------------------------

Starting portqry.exe -n 192.168.xxx.xxx -e 80 -p TCP ...

Querying target system called:

192.168.xxx.xxx

Attempting to resolve IP address to a name...

IP address resolved to NAS1

querying...

TCP port 80 (http service): LISTENING
portqry.exe -n 192.168.xxx.xxx -e 80 -p TCP exits with return code 0x00000000.

-------------------------------------------------------------

This is when I realised that the QNAP was grabbing the port.

I then enabled the web server app and changed the port to something like 80xx, not default port 80.

This stopped QNAP from grabbing port 80 and the webserver was on a different port which didn't interfere with Xeams.

When I then tried to create the Let's encrypt SSL certificate I got the following message:

Let's Encrypt certificate has been configured and you should be able to access the web interface using https: //mail.domain.com. Your current certificate is valid until Apr 21, 2023

Success!

To access the QNAP I had to create a shortcut to access it as http: //xxx.xxx.xxx.xxx:8080

Best regards

I am glad to know it worked. Your explanation is excellent and will be helpful if someone else runs into a similar issue. Thank you.