Initial setup is hcloud-cloud-controller-manager , external Hetzner Load Balancer with enabled Proxy Protocol, cert-manager, nginx-ingress with params:
annotations:
load-balancer.hetzner.cloud/protocol: tcp
load-balancer.hetzner.cloud/use-private-ip: "true"
load-balancer.hetzner.cloud/uses-proxyprotocol: "true"
On a step 7 of the official Cert-manager docs manual I’v got an error:
kubectl get certificate
READY - False
By digging into kubectl describe challenge I found that process stuck at
Waiting for http-01 challenge propagation: failed to perform self check GET request … EOF curl: (52) Empty reply from server
https://github.com/cert-manager/cert-manager/issues/3238#issuecomment-952832787