My Let's Encrypt cert expired and I went to try and renew it using 'sudo /opt/bitnami/bncert-tool'. It rolls through domains, contact email and confirmation. When it runs an error comes up (paste below). Any suggestions welcome!
Nmap results for 13.42.98.221:
Nmap scan report for ec2-13-42-98-221.eu-west-2.compute.amazonaws.com (13.42.98.221)
Host is up (0.16s latency).
PORT STATE SERVICE
22/tcp open ssh
80/tcp open http
443/tcp open https
Nmap done: 1 IP address (1 host up) scanned in 0.37 seconds
That would be: gymist.co.uk
On the other hand:
Nmap results for 18.168.99.48:
That would be: www.gymist.co.uk
Starting Nmap 7.80 ( https://nmap.org ) at 2024-06-15 16:45 PDT
Note: Host seems down. If it is really up, but blocking our ping probes, try -Pn
Nmap done: 1 IP address (0 hosts up) scanned in 3.04 seconds
So you have 2 (two) IP's... one for your apex domain (gymist.co.uk)
And one for a subdomain.. (www.gymist.co.uk )
Is there any reason why you would split the IP addresses this way? There has to be a motivation of some kind that eludes me.
And your DNS shows:
Please enter a domain: gymist.co.uk
A records for gymist.co.uk : Domain does not exist
AAAA records for gymist.co.uk : Domain does not exist
MX records for gymist.co.uk : Domain does not exist
NS records for gymist.co.uk : Domain does not exist
CNAME records for gymist.co.uk : Domain does not exist
TXT records for gymist.co.uk : Domain does not exist
SOA records for gymist.co.uk : Domain does not exist
Please enter a domain: www.gymist.co.uk
A records for www.gymist.co.uk: ['18.168.99.48']
AAAA records for www.gymist.co.uk: No record found
MX records for www.gymist.co.uk: No record found
NS records for www.gymist.co.uk: No record found
CNAME records for www.gymist.co.uk: No record found
TXT records for www.gymist.co.uk: No record found
SOA records for www.gymist.co.uk: No record found
So what gives here? Please provide us more information so we can help you resolve the issue.
Might help also to have a look at your vhost configuration files...
No reason for differing IPs. In my rapid panic for the site being insecure, I used Certbot to try and renew the cert. It created a cert but then asked to install an SSL plugin on the wordpress install but couldn't get the plugin to work. So, I used an earlier snapshot (pre-certbot) to create a new instance. I've removed the A record that pointed to the old IP.
Unsure why the apex domain isn't showing records though, it has CNAMES, TXT, A, NS, SOA and MX
@Gymist I see with @MikeMcQ 's help you have fixed up your DNS and obtained a cert! Good on you!
I have noticed a possible issue with your redirect...
curl -w "%{url_effective}\n" -L www.gymist.co.uk -o /dev/null
Enter the domain name or IP address: www.gymist.co.uk
% Total % Received % Xferd Average Speed Time Time Time Current
Dload Upload Total Spent Left Speed
100 228 100 228 0 0 642 0 --:--:-- --:--:-- --:--:-- 642
100 124k 0 124k 0 0 96388 0 --:--:-- 0:00:01 --:--:-- 96388
http://gymist.co.uk/
Notice the final destination is http://gymist.co.uk/ ?
Unless this is intentional, you might want to change the redirect to https://
;@)