My domain is: www.clevelanddesign.com
I ran this command: unknown
It produced this output: unknown
My web server is (include version): unknown
The operating system my web server runs on is (include version): unknown
My hosting provider, if applicable, is: Pantheon
I can login to a root shell on my machine (yes or no, or I don't know): No
I'm using a control panel to manage my site (no, or provide the name and version of the control panel): Yes - Pantheon proprietary
The version of my client is (e.g. output of
certbot --version or
certbot-auto --version if you're using Certbot): unknown
NetSol is authoritative for DNS.
LetsDebug reports this:
DNSLookupFailed FATAL A fatal issue occurred during the DNS lookup process for www.clevelanddesign.com/CAA. DNS response for www.clevelanddesign.com had fatal DNSSEC issues: validation failure <www.clevelanddesign.com. CAA IN>: nodata proof failed from 184.108.40.206 and 220.127.116.11
However, it seems that both of those IPs are CloudFlare, which the site does not use.
DNSViz only shows warnings www.clevelanddesign.com | DNSViz
The error in our logs when trying to verify www.clevelanddesign.com:
acme: authorization error for www.clevelanddesign.com: 400 urn:ietf:params:acme:error:dns: DNS problem: SERVFAIL looking up CAA for www.clevelanddesign.com - the domain's nameservers may be malfunctioning
dig caa clevelanddesign.com:
dig caa clevelanddesign.com ; <<>> DiG 9.10.6 <<>> caa clevelanddesign.com ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 16171 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 2, ADDITIONAL: 3 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4096 ;; QUESTION SECTION: ;clevelanddesign.com. IN CAA ;; ANSWER SECTION: clevelanddesign.com. 2886 IN CAA 0 issue "letsencrypt.org" ;; AUTHORITY SECTION: clevelanddesign.com. 9341 IN NS ns34.worldnic.com. clevelanddesign.com. 9341 IN NS ns33.worldnic.com. ;; ADDITIONAL SECTION: ns33.worldnic.com. 9341 IN A 18.104.22.168 ns34.worldnic.com. 9341 IN A 22.214.171.124 ;; Query time: 8 msec ;; SERVER: 192.168.245.18#53(192.168.245.18) ;; WHEN: Thu Nov 11 10:21:47 PST 2021 ;; MSG SIZE rcvd: 161
dig caa www.clevelanddesign.com
; <<>> DiG 9.10.6 <<>> caa www.clevelanddesign.com ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 4917 ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 4096 ;; QUESTION SECTION: ;www.clevelanddesign.com. IN CAA ;; AUTHORITY SECTION: clevelanddesign.com. 3600 IN SOA NS33.WORLDNIC.com. namehost.WORLDNIC.com. 121110815 10800 3600 604800 3600 ;; Query time: 82 msec ;; SERVER: 192.168.245.18#53(192.168.245.18) ;; WHEN: Thu Nov 11 10:23:08 PST 2021 ;; MSG SIZE rcvd: 111
I would be so grateful for guidance as far as what to try next, or where to look. Thank you!