Propogation time limit exceeded

MRDGH2821 · September 4, 2024, 3:18pm

I ran this command: N/A

It produced this output:

2024/09/04 14:59:03 [ERROR] LETSENCRYPT_OBTAIN : error: one or more domains had a problem:
[*.mihirr-home.duckdns.org] propagation: time limit exceeded: last error: DNS call error: read udp 192.168.1.11:37736->15.222.19.97:53: i/o timeout [ns=ns9.duckdns.org.:53, question='_acme-challenge.mihirr-home.duckdns.org. IN TXT']
[mihirr-home.duckdns.org] propagation: time limit exceeded: last error: DNS call error: read udp 192.168.1.11:36113->35.183.157.249:53: i/o timeout [ns=ns3.duckdns.org.:53, question='_acme-challenge.mihirr-home.duckdns.org. IN TXT']
2024/09/04 14:59:03 [ERROR] Getting TLS certificate. Fallback to SELFSIGNED certificates

My web server is (include version):
It is a self-hosted cloud platform made by https://cosmos-cloud.io/
I made docker compose file which is using latest image. And it happens to be 0.15.7

The operating system my web server runs on is (include version):
OS: KDE neon jammy 22.04 x86_64
Kernel: Linux 6.8.0-40-generic

My hosting provider, if applicable, is:
I'm self hosting in my linux tablet - StarLite MK V

I can login to a root shell on my machine (yes or no, or I don't know):
Yes

I'm using a control panel to manage my site (no, or provide the name and version of the control panel):
No

The version of my client is (e.g. output of `certbot --version` or `certbot-auto --version` if you're using Certbot):
Cosmos cloud uses Lego

One month back I was using the same config & values which worked perfectly.
But now it simply fails

MRDGH2821 · September 4, 2024, 3:21pm

I triggered certification registration from cosmos cloud setting and here is the log:

2024/09/04 15:15:45 [INFO] acme: Registering account for mihirrabade@gmail.com
2024/09/04 15:15:45 [INFO] [mihirr-home.duckdns.org, .mihirr-home.duckdns.org] acme: Obtaining bundled SAN certificate
2024/09/04 15:15:47 [INFO] [.mihirr-home.duckdns.org] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz-v3/399284241696
2024/09/04 15:15:47 [INFO] [mihirr-home.duckdns.org] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz-v3/399284241706
2024/09/04 15:15:47 [INFO] [.mihirr-home.duckdns.org] acme: use dns-01 solver
2024/09/04 15:15:47 [INFO] [mihirr-home.duckdns.org] acme: Could not find solver for: tls-alpn-01
2024/09/04 15:15:47 [INFO] [mihirr-home.duckdns.org] acme: Could not find solver for: http-01
2024/09/04 15:15:47 [INFO] [mihirr-home.duckdns.org] acme: use dns-01 solver
2024/09/04 15:15:47 [INFO] [.mihirr-home.duckdns.org] acme: Preparing to solve DNS-01
2024/09/04 15:15:57 [INFO] [.mihirr-home.duckdns.org] acme: Trying to solve DNS-01
2024/09/04 15:16:02 [INFO] Metrics - Monitoring the server at /mnt/host
2024/09/04 15:16:04 [INFO] [.mihirr-home.duckdns.org] acme: Checking DNS record propagation. [nameservers=1.1.1.1:53,8.8.8.8:53]
2024/09/04 15:16:06 [INFO] Wait for propagation [timeout: 1m0s, interval: 2s]
2024/09/04 15:16:20 [INFO] [.mihirr-home.duckdns.org] acme: Waiting for DNS record propagation.
2024/09/04 15:16:32 [INFO] Metrics - Monitoring the server at /mnt/host
2024/09/04 15:16:36 [INFO] [.mihirr-home.duckdns.org] acme: Waiting for DNS record propagation.
2024/09/04 15:16:53 [INFO] [.mihirr-home.duckdns.org] acme: Waiting for DNS record propagation.
2024/09/04 15:17:02 [INFO] Metrics - Monitoring the server at /mnt/host
2024/09/04 15:17:07 [INFO] [.mihirr-home.duckdns.org] acme: Waiting for DNS record propagation.
2024/09/04 15:17:09 [INFO] [.mihirr-home.duckdns.org] acme: Cleaning DNS-01 challenge
2024/09/04 15:17:16 [INFO] [mihirr-home.duckdns.org] acme: Preparing to solve DNS-01
2024/09/04 15:17:26 [INFO] [mihirr-home.duckdns.org] acme: Trying to solve DNS-01
2024/09/04 15:17:31 [INFO] [mihirr-home.duckdns.org] acme: Checking DNS record propagation. [nameservers=1.1.1.1:53,8.8.8.8:53]
2024/09/04 15:17:32 [INFO] Metrics - Monitoring the server at /mnt/host
2024/09/04 15:17:33 [INFO] Wait for propagation [timeout: 1m0s, interval: 2s]
2024/09/04 15:17:44 [INFO] [mihirr-home.duckdns.org] acme: Waiting for DNS record propagation.
2024/09/04 15:18:02 [INFO] Metrics - Monitoring the server at /mnt/host
2024/09/04 15:18:04 [INFO] [mihirr-home.duckdns.org] acme: Waiting for DNS record propagation.
2024/09/04 15:18:15 [INFO] [mihirr-home.duckdns.org] acme: Waiting for DNS record propagation.
2024/09/04 15:18:31 [INFO] [mihirr-home.duckdns.org] acme: Waiting for DNS record propagation.
2024/09/04 15:18:32 [INFO] Metrics - Monitoring the server at /mnt/host
2024/09/04 15:18:44 [INFO] [mihirr-home.duckdns.org] acme: Waiting for DNS record propagation.
2024/09/04 15:18:46 [INFO] [mihirr-home.duckdns.org] acme: Cleaning DNS-01 challenge
2024/09/04 15:19:02 [INFO] Metrics - Monitoring the server at /mnt/host
2024/09/04 15:19:02 [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz-v3/399284241696
2024/09/04 15:19:02 [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz-v3/399284241706
2024/09/04 15:19:03 [ERROR] LETSENCRYPT_OBTAIN : error: one or more domains had a problem:
[.mihirr-home.duckdns.org] propagation: time limit exceeded: last error: DNS call error: dial udp: lookup ns9.duckdns.org.: i/o timeout [ns=ns9.duckdns.org.:53, question='_acme-challenge.mihirr-home.duckdns.org. IN TXT']
[mihirr-home.duckdns.org] propagation: time limit exceeded: last error: [zone=duckdns.org.] could not determine authoritative nameservers

2024/09/04 15:19:03 [ERROR] Getting TLS certificate. Fallback to SELFSIGNED certificates :
2024/09/04 15:19:03 [INFO] Generating new TLS certificate for domains: mihirr-home.duckdns.org, *.mihirr-home.duckdns.org
2024/09/04 15:19:03 [INFO] Generating RSA Web Certificates for mihirr-home.duckdns.org
2024/09/04 15:19:03 [INFO] Initialising HTTP(S) Router and all routes
2024/09/04 15:19:03 [INFO] Starting in /app
2024/09/04 15:19:03 [INFO] Added route: [SERVAPP] pdf.mihirr-home.duckdns.org to http://Stirling-PDF:8080
2024/09/04 15:19:03 [INFO] TLS certificates do not exists or are disabled, starting HTTP server only
2024/09/04 15:19:03 [INFO] Network: Initializing internal TCP proxy
2024/09/04 15:19:03 [INFO] Listening to HTTP on : 0.0.0.0:80

Osiris · September 4, 2024, 3:24pm

It seems like the DuckDNS nameserverrs are down. I'm getting errors as well. Or at least a few of them. Seems like DNSViz did get some results after a LONG time of trying: _acme-challenge.mihirr-home.duckdns.org | DNSViz

Please try again once the DuckDNS nameservers are fully up 'n running again.

MRDGH2821 · September 4, 2024, 3:48pm

I see, thanks for info!

Well, I time to wait for name severs to be back on.

Btw, I had just finished doing same steps using lego cli, so maybe this can help:

Command:

./lego --domains mihirr-home.duckdns.org -a --email $DUCKDNS_EMAIL --dns duckdns --dns.resolvers "1.1.1.1:53, 8.8.8.8:53" run

Output:

2024/09/04 21:10:32 [INFO] [mihirr-home.duckdns.org] acme: Obtaining bundled SAN certificate
2024/09/04 21:10:33 [INFO] [mihirr-home.duckdns.org] AuthURL: https://acme-v02.api.letsencrypt.org/acme/authz-v3/399289135356
2024/09/04 21:10:33 [INFO] [mihirr-home.duckdns.org] acme: Could not find solver for: tls-alpn-01
2024/09/04 21:10:33 [INFO] [mihirr-home.duckdns.org] acme: Could not find solver for: http-01
2024/09/04 21:10:33 [INFO] [mihirr-home.duckdns.org] acme: use dns-01 solver
2024/09/04 21:10:33 [INFO] [mihirr-home.duckdns.org] acme: Preparing to solve DNS-01
2024/09/04 21:10:42 [INFO] [mihirr-home.duckdns.org] acme: Trying to solve DNS-01
2024/09/04 21:10:51 [INFO] [mihirr-home.duckdns.org] acme: Checking DNS record propagation. [nameservers=1.1.1.1:53,8.8.8.8:53]
2024/09/04 21:10:53 [INFO] Wait for propagation [timeout: 1m0s, interval: 2s]
2024/09/04 21:11:16 [INFO] [mihirr-home.duckdns.org] acme: Waiting for DNS record propagation.
2024/09/04 21:11:35 [INFO] [mihirr-home.duckdns.org] acme: Waiting for DNS record propagation.
2024/09/04 21:11:54 [INFO] [mihirr-home.duckdns.org] acme: Waiting for DNS record propagation.
2024/09/04 21:11:56 [INFO] [mihirr-home.duckdns.org] acme: Cleaning DNS-01 challenge
2024/09/04 21:12:09 [INFO] Deactivating auth: https://acme-v02.api.letsencrypt.org/acme/authz-v3/399289135356
2024/09/04 21:12:09 Could not obtain certificates:
	error: one or more domains had a problem:
[mihirr-home.duckdns.org] propagation: time limit exceeded: last error: DNS call error: read udp 192.168.1.11:33722->15.223.21.81:53: i/o timeout [ns=ns7.duckdns.org.:53, question='_acme-challenge.mihirr-home.duckdns.org. IN  TXT']

Osiris · September 4, 2024, 3:49pm

Same error (only ns7 this time), thus same conclusion and same "solution".

system · October 4, 2024, 3:49pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Standalone Timeout, Ports Open Help	6	585	January 21, 2023
Strange timeout problem when renewing Help	6	752	March 10, 2022
Some problems with duckdns Help	3	905	September 11, 2023
.Well-known timeout on renewal Help	5	293	March 21, 2024
HTTPSConnectionPool(host='acme-v02.api.letsencrypt.org', port=443) Help	4	822	August 2, 2023

Propogation time limit exceeded

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot): Cosmos cloud uses Lego

Related topics

The version of my client is (e.g. output of `certbot --version` or `certbot-auto --version` if you're using Certbot):
Cosmos cloud uses Lego