You need to add one A record to point @ (your base domain) at the external IP address of your server.
All your subdomains will fall in line because they are CNAMEs.
You also need to make sure you have your modem/router port-forwarded correctly to route connections from the outside internet, to your server inside your LAN.
And where is GoDaddy support during all this? - LOL
Paid to do nothing...
I know I should know more of this stuff but where do I find the external ip address of my server?
would that be the ip that duckdns gets? so it would be an A record to point at my domain and the value be unraidserverck.duckdns.org
If your serversâ IP changes often then you really shouldnât use an A record for it.
The CNAME record is best as it can defer that IP resolution to the dynamic name that updates âautomaticallyâ to your current IP.
as for your current external IP, try:
wget ifconfig.me
curl ifconfig.me
or
http://ifconfig.me/ip
you lost me. you said that I need to add one A record to point @ (your base domain) at the external IP address of your server. Godaddy wonât let me make the record for cdkauffmann.com to point to my ip. Im guessing this is because I have a record that points cdkauffmann.com to duckdns which gets my ip address. If I enter the http://ifconfig in my web browser it comes back with the same ip that duck dns is finding. Do I need to add some code somewhere so that it uses wget or curl to get my ip and then add a record on godaddy that points to that code?
GoDaddy doesn't support CNAME flattening at the root so @cdkauffmann wouldn't be able to do that in this case.
But you could potentially do three CNAME records:
(I'm slightly lost because the screenshot shows CNAMEs setup similar to this, but in reality the CNAMEs are pointing to cdkauffmann.com. 
)
and the port-forwarding problem still remains ...
still not finding ip addresses for those. you commented that port forwarding problem still remains. if i work on getting the port forwarding working would that solve the problems?
No, you need to solve both problems.
Iâm not sure what you mean by âstill not finding ip addresses for thoseâ.
At the moment in GoDaddy, you have something like:
sonarr.cdkauffmann.com. 0 IN CNAME cdkauffmann.com.
You need to change the part on the right from cdkauffmann.com to unraidserverck.duckdns.org., for each of your three subdomains.
I found info on port forwarding and gives me some more options to try. one is split dns and the other is NAT reflection. is one better than the other?
Your DNS seems to be correct now (yay), so all that remains is the port forwarding bit.
I believe all you need to do is this: https://portforward.com/bec-technologies/bec-7402t/ . Hopefully your device is very similar.
Identify the LAN IP address of your server, and setup a port forward according to the above, for both TCP ports 80 and 443.
just set port 80 to like 180 and 443 to 1443 then make sure I tell letsencrypt to use the new ports?
Say your server is on LAN address 192.168.1.100
So you would do:
and you want NAT reflection/hairpinning, if thatâs an option, so you can access your site by its public IP address, both externally to your network as well as internally.
You can also deal with the internal/external IP access issue with split DNS.
Internal systems use internal DNS system(s) [or local hosts file entries] which return only internal IPs for your zone.
External systems use Global DNS systems which return only Internet IPs for your zone.
I have 4 options for NAT Reflection, system default, enable (NAT & Proxy), enable (Pure NAT) and disable
It sounds like it may be âsystem defaultâ (if your going with split DNS); but Iâm not completely familiar with that device/choices.
My guess is:
You basically just need 1:1 NAT with split DNS.
Or
âNAT Reflectionâ with global DNS.
does this help at all? which option is better or do a combination of both. https://www.netgate.com/docs/pfsense/nat/accessing-port-forwards-from-local-networks.html?highlight=port%20forwarding
Sorry to point out the obvious:
This is supposed to be a forum about LETSENCRYPT.
Not about pfSense nor general computer problemsâŚ
Anyone that comes (after you) should not be looking here for any other type of âhelpâ.
It does a disservice to them and their forum/community to hide such answers here.
Itâs a far stretch to say:
LE can be used by Certbot &
Certbot can run on Linux &
My refrigerator runs on Linux too!
SoâŚ
Can any of you volunteers help me with my refrigeratorsâ problems?
Thread count #38 (and counting - how many are unrelated to this forum?)
Donât get me wrong:
I use LE &
I use Certbot &
I use Linux &
I use pfSense &
I use refrigerators &
I also use forums.
I guess I just know more about the when/where/how/why to get the most out of, and put the most into, each of those.
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.