I am using Traefik with Let’s Encrypy DNS Challenge using Cloudflare as a Provider. I have had this work countless times, however for some strange reason, I can’t get this domain to work.
While the challenge is happening, I can see the TXT Record added in my Cloudflare account, furthermore if I verify the TXT Record on various resolvers, they report it correctly:
However it doesn’t look like the ACME server is seeing this key, since I get this error message:
time="2020-04-08T23:13:05Z" level=error msg="Unable to obtain ACME certificate for domains \"duplicati.cyclops.99bits.net\": unable to generate a certificate for the domains [duplicati.cyclops.99bits.net]: acme: Error -> One or more domains had a problem:\n[duplicati.cyclops.99bits.net] time limit exceeded: last error: NS hank.ns.cloudflare.com. did not return the expected TXT record [fqdn: cyclops.99bits.net., value: Tsh73GU7FVvBSqHcjiJcCB9EXBPXzRLL9xzbtXTB-u8]: v=spf1 include:spf.mailjet.com ?all\n" providerName=le.acme routerName=duplicati@docker rule="Host('duplicati.cyclops.99bits.net')"
After I get the error, the record disappears from Cloudflare DNS server, but I assume this is the expected behaviour of the certificate bot