Tried multiple methods but keep getting SERVFAIL

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g., so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:

I ran this command:
sudo certbot --apache
&& also tried
certbot -d --manual --preferred-challenges dns certonly

It produced this output:
Type: connection
Detail: DNS problem: SERVFAIL looking up TXT for

My web server is (include version):
ubuntu 17.04 hosted on linode 2gb

The operating system my web server runs on is (include version):
ubuntu 17.04

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don’t know):

I’m using a control panel to manage my site (no, or provide the name and version of the control panel):

In the Linode DNS manager, the zones are called “” and “”. Therefore other subdomains fail to resolve.

You need to go to, click on your domains, click on “Settings” near the top, and change the names to “” and “”.

It shouldn’t require any other changes to your settings.

1 Like

Thanks! I have made this change and re-done this straight away but i got the same error, I am guessing i will have to wait for changes to take place?

Yeah. :slightly_frowning_face:

It should either start working right now, or about 15 minutes from now.

1 Like

Thanks that worked but something is not quite right on one of the domains i get the following error: uses an invalid security certificate. The certificate is only valid for Error code: SSL_ERROR_BAD_CERT_DOMAIN

The certificate needs to include both and

With “certbot --apache”, both can be selected at its prompts. If only one is listed, make sure the Apache configuration includes ServerName or ServerAlias settings for the other one.

With “certbot certonly --manual”, you can run, for example, “certbot -d -d --manual --preferred-challenges dns certonly”.


This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.