Opalstack - Let's Encrypt rate limit for opalstacked.com subdomains – Incident details

All systems operational

Let's Encrypt rate limit for opalstacked.com subdomains

Resolved
Operational
Started over 5 years agoLasted 13 days

Affected

Americas Hosting

Updates
  • Resolved
    Resolved

    We've made some changes to the way Let's Encrypt works with the shared opalstacked.com domain and as a result the domain is no longer rate-limited. We'll be posting updated documentation with the details later this week.

  • Monitoring
    Monitoring

    Looks like we've hit our new limit, we'll get this corrected ASAP.

  • Resolved
    Resolved

    We've confirmed that our increased rate limits are in effect, Calling this fixed, thanks for your patience :-)

  • Monitoring
    Monitoring

    The LE service has increased our limit and at this time we are not seeing any rate-limiting for new LE certificates and renewals on any domains. We'll continue to monitor.

  • Investigating
    Investigating

    At this time the Let's Encrypt service is rate-limiting certificate issue and renewal requests for the entire *.opalstacked.com domain. This is the domain that we use to provide free subdomains to our hosting customers.

    We're working with the LE team to get a higher limit. In the meantime if you are attempting to issue a LE cert for a site that uses your opalstacked.com subdomain then it may fail. If this happens you'll receive a failure notice via email.

    Until the rate limit is raised then the alternative is to use one of your own registered domains on your site instead of your opalstacked.com subdomain. If you're not ready to point your domain at Opalstack, then you can create a testing subdomain and A record via your NS provider to point that subdomain at your Opalstack server.

    We'll update this issue as soon as the rate limit has been raised.