certbot giving error DNS problem
Hi, each time I am trying to setup certbot to setup the TLS certificate I keep getting the error below.
Challenge failed for domain www.rickkit.com
http-01 challenge for www.rickkit.com
Cleaning up challenges
Some challenges have failed.
IMPORTANT NOTES:
- The following errors were reported by the server:
Domain: www.rickkit.com
Type: dns
Detail: DNS problem: SERVFAIL looking up CAA for rickkit.com - the
domain's nameservers may be malfunctioning
i am not sure what is causing the error, but I need any help I can get.
3 Replies
I’ve checked over your domain using my online dig tool and there does indeed seem to be an issue with your root domain.
Even trying to find the IP address for “rickkit.com” results in a SERVFAIL.
Looks like your nameservers for that domain are Digital Ocean. When you added the domain to DO, did you add it as “rickkit.com” or “www.rickkit.com”?
DNS servers that recognise a record should return NXDOMAIN, I don’t know why DO’s are returning SERVFAIL.
I got frustrated and moved it to Digital Ocean and it works perfectly there.
Thanks for your help.
I got frustrated and moved it to Digital Ocean and it works perfectly there.
Your domain's nameservers were pointing at Digital Ocean when I checked 4 days ago. If your domain wasn't added to Digital Ocean's DNS system (or had recently been deleted) that might explain why it was returning a SERVFAIL.
If your DNS was on Linode's DNS system, you should have pointed the nameservers to Linode's nameservers at your domain registrar.