My domain doesn't allow connection

Posted April 13, 2017 5k views
NginxUbuntu 16.04


(Sorry for my bad english)

I have a weird problem. I set up my droplet and domain yesterday. I bought the domain on Hover and redirect it to Digital Ocean name servers. I also set up SSL using Let’s Encrypt. Everything worked fine but after some hours, I had this error when trying to access my website: doesn't allow connection... ERR_CONNECTION_REFUSED. I don’t always get that error but only sometimes. Another weird thing is sometimes, the Hover default web page is displayed as if the DNS is not propagated yet. I don’t see any error when analyzing my SSL with There is no error when I run sudo nginx -t. But I have this error in /var/log/nginx/error.log:

2017/04/13 11:57:20 [crit] 29675#29675: *389 SSL_do_handshake() failed (SSL: error:14094085:SSL routines:ssl3_read_bytes:ccs received early) while SSL handshaking, client:, server:

These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.

Submit an Answer
1 answer


What does your server block look like?

    • @ismaeltoe looks like one of the IP’s from SSL Labs and the error appears as one of the tests resulted in an error.

      This could be due to the rather strict cipher suite (which is noted on Using such a strict suite does limit backwards compatibility. SSL Labs tests for that, which is why you’ll see a few errors using such.

      You may need to swap your current cipher listing with what is recommended, i.e:


      Or use the listing provided by Mozilla.


      The rest of the configuration looks to be in order though.