Problem renewing SSL with LetsEncrypt

[prxy_inc]

I've been having trouble renewing SSL certs for several domains on my server. I followed the troubleshooting steps in this document : https://docs.directadmin.com/webservices/ssl/troubleshooting-letsencrypt.html but was unable to resolve the issue.

I believe that I have identified the problem, which is that the curl command it is running as part of the letsencrypt.sh script is not working properly. When I run the curl command from a different network, it is able to find the file, however when I run it from the server itself, it times out. I figure this must be a networking issue, since I am running the server from AWS, and it's possible that it is not able to access itself from the public IP.

Has anyone else run into this issue before who has a solution?

 

[m3nz0]

I also have a problem with LetsEncrypt renewal, (maybe the same cause?)

My scenario is quite simple:
- There are two sites under 1 DA account: aaa.com & bbb.com
- The DA admin url is under aaa.com:2222

With bbb.com ssl renewal everything is okay, but when I run a LetsEncrypt renewal on aaa.com the response is success, but the certificate is still the old one.
In the /usr/local/directadmin/data/users/admin/domains folder the aaa.com.cert* files doesn't update, but in the /usr/local/directadmin/conf/cacert* files are updating.

As a temporary solution I copied and renamed the cert files from the conf folder to the domains folder, now my site is loading with the new certs but it is only a temporary solution.

Any idea what could be the permanent fix for this issue?