MultipleIPAddressDiscrepancy

kmc · May 20, 2020, 5:23pm

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:
joomla-development.eu

I ran this command:
https://letsdebug.net/joomla-development.eu/145439

It produced this output:
MultipleIPAddressDiscrepancy

My web server is (include version):
Apache/2.4.38 (Debian)

The operating system my web server runs on is (include version):
Debian GNU/Linux 9 (stretch)

My hosting provider, if applicable, is:
OVH

I can login to a root shell on my machine (yes or no, or I don’t know):

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):
NO

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you’re using Certbot):
certbot 0.31.0

JuergenAuer · May 20, 2020, 5:32pm

Hi @kmc

there

is your job. Fix it.

And not only differences between your ip addresses, again Grade Q - https://check-your-website.server-daten.de/?q=joomla-development.eu - http over port 443.

Looks

Host	Type	IP-Address	is auth.	∑ Queries	∑ Timeout
joomla-development.eu	A	94.23.227.123 Roubaix/Hauts-de-France/France (FR) - OVH ISP Hostname: ks307144.kimsufi.com	yes	1	0
	AAAA	2001:41d0:301::29 Gravelines/Hauts-de-France/France (FR) - OVH SAS	yes

like these ip addresses have different machines.

Yep, one has a Grade W, the other Grade N:

• https://94.23.227.123/
94.23.227.123
	-4
	
	0.093
	W
SendFailure - The underlying connection was closed: An unexpected error occurred on a send.

• https://[2001:41d0:0301:0000:0000:0000:0000:0029]/
2001:41d0:301::29
Inline-JavaScript (∑/total): 1/34 Inline-CSS (∑/total): 1/3020	404
	
Html is minified: 260,66 %	3.400
	N-
Not Found

kmc · May 20, 2020, 5:55pm

My bind config mentions only one IP address:

joomla-development.eu. 3600 A        94.23.227.123
mail 3600 A        94.23.227.123
www 3600 A        94.23.227.123
joomla-development.eu. 3600      CAA       0 issue "letsencrypt.org"
joomla-development.eu. 3600      MX    10   mail.joomla-development.eu.
joomla-development.eu. 3600      NS        ks307144.kimsufi.com.
joomla-development.eu. 3600      NS        ns.kimsufi.com.
joomla-development.eu. 3600      TXT        "v=spf1 mx a ~all"

Could that be an ipv6 configuration problem on the whole server ?

stevenzhu · May 20, 2020, 6:02pm

This is indeed an IPv6 configuration issue.
The error message indicates that your IPv4 and IPv6 records served different content, so it’s most likely a misconfigured webserver or wrong IPv6 address.

JuergenAuer · May 20, 2020, 6:07pm

That doesn't look relevant. dns20.ovh.net is your name server, there are AAAA records.

If you don't have a working webserver or if the AAAA goes to another machine, remove that AAAA record.

Checking your domain Letsencrypt prefers ipv6, so that blocks creating certificates.

See

http://joomla-development.eu/ 94.23.227.123, Status 302
	
	http://joomla-development.eu/ 2001:41d0:301::29, Status 200
	configuration problem - different ip addresses with different status

and the check of /.well-known/acme-challenge/random-filename:

• http://joomla-development.eu/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
94.23.227.123
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	404
	
Html is minified: 100,00 %	0.047
	A
Not Found
Visible Content: Not Found The requested URL was not found on this server. Additionally, a 404 Not Found error was encountered while trying to use an ErrorDocument to handle the request. Apache/2.4.38 (Debian) Server at joomla-development.eu Port 80

• http://joomla-development.eu/.well-known/acme-challenge/check-your-website-dot-server-daten-dot-de
2001:41d0:301::29
Inline-JavaScript (∑/total): 0/0 Inline-CSS (∑/total): 0/0	404
	
Html is minified: 100,00 %	0.053
	A
Not Found
Visible Content: Not Found The requested URL was not found on this server.

There is the http status the same (both 404). But different answers. Looks like answers from different machines.

kmc · May 20, 2020, 6:20pm

I understand now. I forgot that I had delegated DNS server to OVH’s default servers dns20 and was lookinng on the bad DNS server.

I deleted the AAAA field and it works now

Thanks a lot

system · June 19, 2020, 6:20pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Certbot produced a MultipleIPAddressDiscrepancy error Help	5	515	September 7, 2021
Certificate is not for the chosen domain Help	6	491	June 26, 2024
Multiple domains that share an IP address - How to Help	12	893	July 31, 2019
Your connection is not private Help	5	444	October 27, 2023
Bogus multiple IPs associated with a domain Help	30	1088	May 22, 2024

MultipleIPAddressDiscrepancy

Related topics