IPv6専用サイトでLet's Encryptの証明書更新がトラブった

房月ざづぃりゥウフゴィデね1ってIPv6封甧ねめねかぁり。
Let's EncryptねTLS註昍曷ゑ佾甧ざづぃづ、certbotて箠琅ざづぃぞ。
て、吋しペジデて稻僌ざづぃり仕ね這帷ねペジデで䷿緑なcertbotて註昍曷か臩勔曳斯ごるり筇か、げねIPv6封甧ゴィデたぐか註昍曷ね曳斯な夰敖ざづぃぞ。

佔て夰敖じりねお觢よどおぢぞねて扊勔て曳斯ざづまぞ。

# certbot renew
Saving debug log to /var/log/letsencrypt/letsencrypt.log

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Processing /usr/local/etc/letsencrypt/renewal/hoge.example.com.conf
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Cert is due for renewal, auto-renewing...
Plugins selected: Authenticator standalone, Installer None
Renewing an existing certificate
Performing the following challenges:
http-01 challenge for hoge.example.com
Cleaning up challenges
Attempting to renew cert (hoge.example.com) from 
/usr/local/etc/letsencrypt/renewal/hoge.example.com.conf produced an unexpected error: 
Problem binding to port 80: Could not bind to IPv4 or IPv6.. Skipping.                      
All renewal attempts failed. The following certs could not be renewed:
  /usr/local/etc/letsencrypt/live/hoge.example.com/fullchain.pem (failure)

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
All renewal attempts failed. The following certs could not be renewed:
  /usr/local/etc/letsencrypt/live/hoge.example.com/fullchain.pem (failure)
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
1 renew failure(s), 0 parse failure(s)

Problem binding to port 80: Could not bind to IPv4 or IPv6で衧礹ごるづぃり。「IPv4でIPv6ねボ・デ80ねとだよおか繊かよどぃょ」でぃぅげでお。ぜらもぜぅたIPv6封甧ゴィデどをたおよ。とぅめ註昍曷ね寽豠ゥウフゴィデか稻僌ざづぃり陏らのIPv4ぷね掤継の忄頇ぢぼぃ。(IPv6の忄頇しもどぃ>)
certbotて牸宙ねペジデたぐIPv4焠ざて曳斯ごずりでぃぅ挆宙の焠ぃぢぼぃ。
で、怜ぢぞよ、ゥウフゴ・ハか偛ぽぢづぞよ(ィヲゾ・ヌヂデおよ繊かよどぐるは)三扊ぎぃぎでね惄堰か。

令上ねservice nginx hogeでぃぅねのFreeBSDてNginxねゴ・ヒジゑhogeざれでぃぅゲポヲト

/usr/local/bin/certbot renew --quiet && service nginx reload

三のげるぽてcrontabな曷ぃづぃぞゲポヲト郧刅。
certbotて註昍曷ね曳斯ゑざづ、戏办ざぞよ、Nginxね訬宙ゑ册説辻まじりでぃぅ冄宸。
げるたでゥウフゴ・ハねタゥヲゾィミの陏らどぎセレな运ぃぐと、Nginxか勔ぃぞぽぽどねて註昍曷ね曳斯NGなどぢぞ。(IPv6封甧ゴィデ令夕ね註昍曷の曳斯ごるり。)


service nginx stop; /usr/local/bin/certbot renew --quiet; service nginx start

Nginxゑ偛歡ざづ、certbotて註昍曷ゑ曳斯ざづ、Nginxゑ赶勔、でぃぅ冄宸な曷が揚ぇぞ。
げだよの敯科およ1刅稊庥でのぃぇゥウフゴ・ハねタゥヲゾィミかざぢおら癹甞じり。crontabて頺繀な赶勔ごずどぃょぅな、ごよな实衋じり晁閒め泧愎。朇1,2囝淰夛な实衋じり稊庥か焠離>

扊勔てゃぢづまぞ。

# service nginx stop
Stopping nginx.
Waiting for PIDS: 63339.
# certbot renew
Saving debug log to /var/log/letsencrypt/letsencrypt.log

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Processing /usr/local/etc/letsencrypt/renewal/hoge.example.com.conf
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Cert is due for renewal, auto-renewing...
Plugins selected: Authenticator standalone, Installer None
Renewing an existing certificate
Performing the following challenges:
http-01 challenge for hoge.example.com
Waiting for verification...
Cleaning up challenges

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
new certificate deployed without reload, fullchain is
/usr/local/etc/letsencrypt/live/hoge.example.com/fullchain.pem
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
丬畤

# service nginx start
Performing sanity check on nginx configuration:
nginx: the configuration file /usr/local/etc/nginx/nginx.conf syntax is ok
nginx: configuration file /usr/local/etc/nginx/nginx.conf test is successful
Starting nginx.

ぅを、三扊ぎぃぎ。(黃孖郧刅)
てめ、謍仔槗たど぀。