DNS problem: NXDOMAIN looking up A for mail.centc.ca


#1

see the following:

ccr@centc:~$ sudo certbot --nginx --agree-tos --redirect --hsts --email ccr@centc.ca -d mail.centc.ca
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator nginx, Installer nginx
Starting new HTTPS connection (1): acme-v02.api.letsencrypt.org
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for mail.centc.ca
Waiting for verification…
Cleaning up challenges
Failed authorization procedure. mail.centc.ca (http-01): urn:ietf:params:acme:error:dns :: DNS problem: NXDOMAIN looking up A for mail.centc.ca

IMPORTANT NOTES:

  • The following errors were reported by the server:

    Domain: mail.centc.ca
    Type: None
    Detail: DNS problem: NXDOMAIN looking up A for mail.centc.ca


#2

Hi @Halk

there is no ip address defined (checked with https://check-your-website.server-daten.de/?q=mail.centc.ca ):

Host T IP-Address is auth. ∑ Queries ∑ Timeout
mail.centc.ca Name Error yes 1 0
www.mail.centc.ca Name Error yes 1 0

If you want to have a certificate, you need a public visible domain. But if you want to use http-01 - validation, then you need a public visible ip address and a running webserver.

If this isn’t possible, you can use dns-01 - validation to create a new certificate.


#3

You need to add an A (AAAA or both) record to your Internet DNS zone.
[which seems to be handled by GoDaddy]

And based on the name (mail), you may want to also include an MX record.
[presuming you will be handling the inbound/outbound email for this domain]


closed #4

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.