how to fix this?
trying to get a certificate
kazantsev97.ru: Invalid status. Verification error details: no valid A records found for kazantsev97.ru; no valid AAAA records found for kazantsev97.ru
Please add '--debug' or '--log' to see more information.
See: How to debug acme.sh · acmesh-official/acme.sh Wiki · GitHub
Add an A (and if your server supports IPv6 an AAAA) resource record for kazantsev97.ru to your DNS zone in the DNS service you're using. Depending on the DNS service/DNS zone editor used this might be kazantsev97.ru. (notice the dot at the end) or just a @, signaling the root of the domain (i.e. kazantsev97.ru).
Note that this is simple DNS management and only indirectly related to getting a certificate and thus slightly outside of the scope of this Community. If you're having trouble setting up the correct DNS settings, you might need to ask for help with your DNS service provider.
3 Likes
here's what was added
Pending. The CA is processing your order, please wait. (1/30)
[Wed Sep 11 03:49:34 PM MSK 2024] kazantsev97.ru: Invalid status. Verification error details: 109.234.38.8: Fetching http://kazantsev97.ru/.well-known/acme-challenge/gdYaJogWB1GYsPkquGb0FDfUwyntSGCLoYAQ1-Op42k: Connection refused
[Wed Sep 11 03:49:34 PM MSK 2024] Please add '--debug' or '--log' to see more information.
[Wed Sep 11 03:49:34 PM MSK 2024] See: How to debug acme.sh · acmesh-official/acme.sh Wiki · GitHub
here's what was added
Pending. The CA is processing your order, please wait. (1/30)
[Wed Sep 11 03:49:34 PM MSK 2024] kazantsev97.ru: Invalid status. Verification error details: 109.234.38.8: Fetching http://kazantsev97.ru/.well-known/acme-challenge/gdYaJogWB1GYsPkquGb0FDfUwyntSGCLoYAQ1-Op42k: Connection refused
[Wed Sep 11 03:49:34 PM MSK 2024] Please add '--debug' or '--log' to see more information.
[Wed Sep 11 03:49:34 PM MSK 2024] See: How to debug acme.sh · acmesh-official/acme.sh Wiki · GitHub
You now have an A record but actually two of them. You can have multiple but this changes how cert requests need to work.
Maybe your DNS system is just slow to update but here are the two IP I see at https://unboundtest.com
kazantsev97.ru. 0 IN A 89.110.77.8
kazantsev97.ru. 0 IN A 109.234.38.8
I fail to connect to either one using HTTP so you have some sort of firewall or local comms config problem yet.
curl -i http://109.234.38.8
curl: (7) Failed to connect to 109.234.38.8 port 80 after 78 ms:
Connection refused
curl -i http://89.110.77.8
curl: (7) Failed to connect to 89.110.77.8 port 80 after 75 ms:
Connection refused
curl -i http://kazantsev97.ru
curl: (7) Failed to connect to kazantsev97.ru port 80 after 161 ms:
Connection refused
The https://letsdebug.net test site is very helpful to debug new setups. Try running that while you make changes to your system
3 Likes
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.