CAA errors in AWS DNS

Help
1

Hi, I'm having the same issue since 2 months. My renewal command results with the following:
acme: error: 400: DNS problem: SERVFAIL looking up CAA - the domain's nameservers may be malfunctioning.

I didn't do any changes to the DNS Zone setup in the AWS Router 53 console.

Would you be so kind to describe more precisely which NS values have you changed?

UPDATE:
Should I replace these servers:

ns-1780.awsdns-30.co.uk
ns-1455.awsdns-53.org
ns-831.awsdns-39.net
ns-49.awsdns-06.com

with the following ones:

ns-179.awsdns-22.com
ns-1290.awsdns-33.org
ns-572.awsdns-07.net
ns-1996.awsdns-57.co.uk

?

Thanks in advance.

1 Like
2

I doubt AWS is going to be using the exact same set of DNS servers for your domain(s) [very low probability]

Thus, I've moved this post to it's own topic.
That said, I don't see how this community can help clarify which name servers you should be using.
That is something only AWS can tell us.
Have you asked them?
Did you open a ticket with them?

2 Likes
3

It was to make my core NS servers this:

ns-27.awsdns-03.com
ns-657.awsdns-18.net
ns-1228.awsdns-25.org
ns-1867.awsdns-41.co.uk

They don't seem to be very good at telling people when they change NS servers

2 Likes
4

Thanks. I will try to change and then see the results.

NOTICE:
Name servers for each hosted zone may vary, to check the addresses, go to the Hosted zone details in the AWS Route 53 console and there the list will be available on the right.

UPDATE:
It worked, changing the NS servers resolved the problem. Thanks mate for your help.

3 Likes
5

You are right, set of DNS may vary for each hosted zone. It also depends on region. The problem has been resolved. I marked the solution, thanks for all of you for help.

2 Likes
6

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.