Hi,
Im back again after not getting much help before. Im having the same issue as before with re-newing the cert keeps moaning about A/AAAA Record bla bla bla and i cant seem to solve this issue, in bind i have A record point to my WANs IP address then using DNS Overides in pfSense. I am using Certbot in Ubuntu Server. Here is the information on the output. Also this is what i have in my Zones in BIND9.
jack@mail:~$ sudo certbot renew --dry-run
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Processing /etc/letsencrypt/renewal/mail.violetdragonsnetwork.co.uk.conf
Cert is due for renewal, auto-renewingâŚ
Plugins selected: Authenticator webroot, Installer None
Starting new HTTPS connection (1): acme-staging-v02.api.letsencrypt.org
Renewing an existing certificate
Performing the following challenges:
http-01 challenge for mail.violetdragonsnetwork.co.uk
Waiting for verificationâŚ
Cleaning up challenges
Attempting to renew cert (mail.violetdragonsnetwork.co.uk) from /etc/letsencrypt/renewal/mail.violetdragonsnetwork.co.uk.conf produced an unexpected error: Failed authorization procedure. mail.violetdragonsnetwork.co.uk (http-01): urn:ietf:params:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://mail.violetdragonsnetwork.co.uk/.well-known/acme-challenge/v0Ltl4tbCQwbSeTJb57MeXa2_u4SAxGpsEkb0gNIcRI [81.150.180.216]: â\r\n404 Not Found\r\n<body bgcolor=âwhiteâ>\r\n
404 Not Found
\r\nâ. Skipping.
All renewal attempts failed. The following certs could not be renewed:
/etc/letsencrypt/live/mail.violetdragonsnetwork.co.uk/fullchain.pem (failure)
** DRY RUN: simulating âcertbot renewâ close to cert expiry
** (The test certificates below have not been saved.)
All renewal attempts failed. The following certs could not be renewed:
/etc/letsencrypt/live/mail.violetdragonsnetwork.co.uk/fullchain.pem (failure)
** DRY RUN: simulating âcertbot renewâ close to cert expiry
** (The test certificates above have not been saved.)
1 renew failure(s), 0 parse failure(s)
IMPORTANT NOTES:
-
The following errors were reported by the server:
Domain: mail.violetdragonsnetwork.co.uk
Type: unauthorized
Detail: Invalid response from
http://mail.violetdragonsnetwork.co.uk/.well-known/acme-challenge/v0Ltl4tbCQwbSeTJb57MeXa2_u4SAxGpsEkb0gNIcRI
[81.150.: â\r\n404 Not
Found\r\n<body bgcolor=âwhiteâ>\r\n404
\r\n
Not Found
âTo fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address.
; db.violetdragonsnetwork.co.uk
;
;
$TTL 86400
$ORIGIN violetdragonsnetwork.co.uk. ; appended to unqualified records
violetdragonsnetwork.co.uk. 3600 SOA ns1.violetdragonsnetwork.co.uk. admin.violetdragonsnetwork.co.uk. (
2019050306 ; serial YYYYMMDDnn
1600 ; refresh ( 25 min)
750 ; retry ( 12 mins)
1296000 ; expire (15 days)
86400 ) ; minium ( 1 days)
; name servers - NS records
IN NS ns1.violetdragonsnetwork.co.uk.
IN NS ns2.violetdragonsnetwork.co.uk.
; A records for name servers
ns1 IN A 68.183
ns2 IN A 68.183
; MX record for mail server
@ IN MX 10 mail.violetdragonsnetwork.co.uk.
; A records for mail server
mail IN A 81.150.
smtp IN A 81.150.
imap IN A 81.150.
; A records for web services
www IN A 81.150.
websrv IN A 81.150
ftp IN A 81.150.