DNS problem: SERVFAIL looking up A for dndsofia5.bg.global-imi.com


#1

Hello,

I trying to issue a certificate for dndsofia5.bg.global-imi.com, but get a DNS error.
DNS is set up and answers external requests.

My domain is:
dndsofia5.bg.global-imi.com

I ran this command:
certbot --apache -d dndsofia5.bg.global-imi.com

It produced this output:
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator apache, Installer apache
Obtaining a new certificate
Performing the following challenges:
http-01 challenge for dndsofia5.bg.global-imi.com
Waiting for verification…
Cleaning up challenges
Failed authorization procedure. dndsofia5.bg.global-imi.com (http-01): urn:ietf:params:acme:error:dns :: DNS problem: SERVFAIL looking up A for dndsofia5.bg.global-imi.com

IMPORTANT NOTES:

My web server is (include version):
Apache/2.4.29 (Ubuntu)

The operating system my web server runs on is (include version):
Ubuntu 18.04 LTS

I can login to a root shell on my machine:
yes

I’m using a control panel to manage my site:
no

Thanks in advance for your help !


#2

Your nameservers send these additional referrals for your domain, on top of the 4 ones you actually have registered at the domain registry level:

global-imi.com.         3600    IN      NS      dns1.sg.global-imi.com.
global-imi.com.         3600    IN      NS      dns1.imiphil.com.
global-imi.com.         3600    IN      NS      dns4.cn.global-imi.com.
global-imi.com.         3600    IN      NS      sg.global-imi.com.

None of these, that I tested, actually answer queries for global-imi.com.

It might help to clean up your zonefile of these errant nameservers, since Let’s Encrypt may be picking them up and running with them, which would lead to a SERVFAIL.


#3

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.