DNS Problem: NXDOMAIN Looking up A for www.pixellriveritsm.ca

My domain is: pixellriveritsm.ca

I ran this command: sudo certbot --nginx -d pixellriveritsm.ca -d www.pixellriveritsm.ca -v

It produced this output: Certbot failed to authenticate some domains (authenticator: nginx). The Certificate Authority reported these problems:
Domain: www.pixellriveritsm.ca
Type: dns
Detail: DNS problem: NXDOMAIN looking up A for www.pixellriveritsm.ca - check that a DNS record exists for this domain; DNS problem: NXDOMAIN looking up AAAA for www.pixellriveritsm.ca - check that a DNS record exists for this domain

My web server is (include version): Digital Ocean

The operating system my web server runs on is (include version): Ubuntu 22.0.4

My hosting provider, if applicable, is: Rebel.ca

I can login to a root shell on my machine (yes or no, or I don't know): Yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
I believe so, digital ocean.

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):certbot 1.30.0

I have A records in my digitalocean for both www.pixellriveritsm.ca and pixellriveritsm.ca however the A record for the www.pixellriveritsm.ca doesn't seem to be appearing

Welcome to the community @KyleYallits

I see your A record now and so does the Let's Debug test site

If you are still having a problem getting a cert please post the latest error message.

OOPS: Correction. Only your apex domain has an A record. Your www subdomain does not. Sorry I did not read closely enough. Re-check your DNS settings or ask your hosting service for help on that. Use the Let's Debug test site once you think it is resolved.

3 Likes

I see this for the DNS

$ nslookup
> pixellriveritsm.ca
Server:         127.0.0.1
Address:        127.0.0.1#53

Non-authoritative answer:
Name:   pixellriveritsm.ca
Address: 142.93.151.139
> www.pixellriveritsm.ca
Server:         127.0.0.1
Address:        127.0.0.1#53

** server can't find www.pixellriveritsm.ca: NXDOMAIN
> set q=soa
> pixellriveritsm.ca
Server:         127.0.0.1
Address:        127.0.0.1#53

Non-authoritative answer:
pixellriveritsm.ca
        origin = dns.rebel.com
        mail addr = noc.rebel.com
        serial = 2022092201
        refresh = 10800
        retry = 3600
        expire = 604800
        minimum = 3600

Authoritative answers can be found from:
> server dns.rebel.com
Default server: dns.rebel.com
Address: 54.236.79.66#53
Default server: dns.rebel.com
Address: 54.236.227.139#53
> set q=a
> pixellriveritsm.ca
Server:         dns.rebel.com
Address:        54.236.79.66#53

Name:   pixellriveritsm.ca
Address: 142.93.151.139
> www.pixellriveritsm.ca
Server:         dns.rebel.com
Address:        54.236.79.66#53

** server can't find www.pixellriveritsm.ca: NXDOMAIN
> set q=aaaa
> pixellriveritsm.ca
Server:         dns.rebel.com
Address:        54.236.79.66#53

*** Can't find pixellriveritsm.ca: No answer
> www.pixellriveritsm.ca
Server:         dns.rebel.com
Address:        54.236.79.66#53

** server can't find www.pixellriveritsm.ca: NXDOMAIN
>
1 Like

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.