No valid A records found - acme error 400

Help
1

I am trying to setup letsencrypt with traefik

My domain is: dataweeder.com

I ran this command:
docker-compose up for << acme: error: 400 :: urn:ietf:params:acme:error:dns :: no valid A records found for; no valid AAAA records found for dataweeder.com · GitHub this docker compose file

It produced this output:

acme: error: 400 :: urn:ietf:params:acme:error:dns :: no valid A records found for; no valid AAAA records found for

My web server is (include version): traefik 2.4.9

The operating system my web server runs on is (include version): docker/linux

My hosting provider, if applicable, is: cloudflare/namecheap but no hosting provider for the docker container (yet)

I can login to a root shell on my machine (yes or no, or I don't know):
yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel): no

2

Hello @geoHeil, welcome to the Let's Encrypt community. :slightly_smiling_face:

Using Let's Debug I see these results https://letsdebug.net/dataweeder.com/1394760

dataweeder.com has an A (IPv4) record (192.64.119.221) but a request to this address over port 80 did not succeed. Your web server must have at least one working IPv4 or IPv6 address.
Get "http://www.dataweeder.com/.well-known/acme-challenge/letsdebug-test": No AAAA or A records were found for www.dataweeder.com
1 Like
3 
$ nmap -Pn dataweeder.com
Starting Nmap 7.80 ( https://nmap.org ) at 2023-03-03 16:06 UTC
Nmap scan report for dataweeder.com (192.64.119.221)
Host is up (0.048s latency).
Not shown: 999 filtered ports
PORT   STATE SERVICE
80/tcp open  http

Nmap done: 1 IP address (1 host up) scanned in 6.70 seconds

Using Let's Debug show results of https://letsdebug.net/dataweeder.com/1394787

dataweeder.com has an A (IPv4) record (192.64.119.221) but a request to this address over port 80 did not succeed. Your web server must have at least one working IPv4 or IPv6 address.

There is no IP Address for www.dataweeder.com

$ nmap -Pn www.dataweeder.com
Starting Nmap 7.80 ( https://nmap.org ) at 2023-03-03 16:06 UTC
Failed to resolve "www.dataweeder.com".
WARNING: No targets were specified, so 0 hosts scanned.
Nmap done: 0 IP addresses (0 hosts up) scanned in 0.34 seconds

Using Let's Debug show results of https://letsdebug.net/www.dataweeder.com/1394786

No valid A or AAAA records could be ultimately resolved for www.dataweeder.com. This means that Let's Encrypt would not be able to connect to your domain to perform HTTP validation, since it would not know where to connect to.
No A or AAAA records found.
1 Like
4

And one more detail you are redirecting dataweeder.com to www.dataweeder.com

$ curl -Ii http://dataweeder.com/.well-known/acme-challenge/sometestfile
HTTP/1.1 302 Found
Date: Fri, 03 Mar 2023 22:17:50 GMT
Connection: keep-alive
Location: http://www.dataweeder.com/.well-known/acme-challenge/sometestfile
X-Served-By: Namecheap URL Forward
Server: namecheap-nginx
2 Likes
5

You should stop using the name cheap URL forwarding service. It won't work right for HTTPS anyway. Change the settings so your DNS points directly to the public IP of your server

5 Likes
6

Thanks

2 Likes
7

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.