Hello I add this record to DNS of my domain: Active Type Name Data Priority TTL Yes A api.glinboy.com myServerIP 0 3600 Yes A apps.glinboy.com myServerIP 0 3600 and this for glinboy.ir: Active Type Name Data Priority TTL Yes A api.glinboy.ir myServerIP 0 3600 Yes A apps.glinboy.ir myServerIP 0 3600 but after run command sudo ./certbot-auto certonly -w /var/www/glinboy.com/ssl -d glinboy.com -d glinboy.ir -d apps.glinboy.com -d apps.glinboy.ir -d api.glinboy.com -d api.glinboy.ir I got error that DNS, this record not show on sites that check DNS eg. viewdns.info/dnsrecord/?domain=glinboy.com ----------------------------------------------------------------------------------------------------- This is Error: Failed authorization procedure. apps.glinboy.ir (tls-sni-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: DNS problem: NXDOMAIN looking up A for apps.glinboy.ir, api.glinboy.ir (tls-sni-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: DNS problem: NXDOMAIN looking up A for api.glinboy.ir, apps.glinboy.com (tls-sni-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: DNS problem: NXDOMAIN looking up A for apps.glinboy.com, api.glinboy.com (tls-sni-01): urn:acme:error:connection :: The server could not connect to the client to verify the domain :: DNS problem: NXDOMAIN looking up A for api.glinboy.com IMPORTANT NOTES: - The following errors were reported by the server: Domain: apps.glinboy.ir Type: connection Detail: DNS problem: NXDOMAIN looking up A for apps.glinboy.ir Domain: api.glinboy.ir Type: connection Detail: DNS problem: NXDOMAIN looking up A for api.glinboy.ir Domain: apps.glinboy.com Type: connection Detail: DNS problem: NXDOMAIN looking up A for apps.glinboy.com Domain: api.glinboy.com Type: connection Detail: DNS problem: NXDOMAIN looking up A for api.glinboy.com To fix these errors, please make sure that your domain name was entered correctly and the DNS A/AAAA record(s) for that domain contain(s) the right IP address. Additionally, please check that your computer has a publicly routable IP address and that no firewalls are preventing the server from communicating with the client. If you're using the webroot plugin, you should also verify that you are serving files from the webroot path you provided. ----------------------------------------------------------------------------------------------------- Note: At past i have another problem with DNS record that not found any answer; I try to add a CNAME DNS record for Openshift application to handle my subdomain to app but this never work!!! (this tutorial: blog.openshift.com/domain-names-and-ssl-in-the-openshift-web-console/) I think my DNS server has error but i can found this # Info: I Install Ispconfig 3.1.5 on Ubuntu 16.04 dig glinboy.com on server: ; <<>> DiG 9.10.3-P4-Ubuntu <<>> glinboy.com ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 6192 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 512 ;; QUESTION SECTION: ;glinboy.com. IN A ;; ANSWER SECTION: glinboy.com. 3599 IN A 138.201.72.139 ;; Query time: 44 msec ;; SERVER: 8.8.8.8#53(8.8.8.8) ;; WHEN: Wed Jul 12 06:51:31 CEST 2017 ;; MSG SIZE rcvd: 56 dig glinboy.com on my pc: ; <<>> DiG 9.10.3-P4-Ubuntu <<>> glinboy.com ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 44345 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1 ;; OPT PSEUDOSECTION: ; EDNS: version: 0, flags:; udp: 65494 ;; QUESTION SECTION: ;glinboy.com. IN A ;; ANSWER SECTION: glinboy.com. 1703 IN A 138.201.72.139 ;; Query time: 0 msec ;; SERVER: 127.0.0.53#53(127.0.0.53) ;; WHEN: Wed Jul 12 09:22:25 +0430 2017 ;; MSG SIZE rcvd: 56
I get this: Code: host -a glinboy.com Trying "glinboy.com" ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 46169 ;; flags: qr rd ra; QUERY: 1, ANSWER: 6, AUTHORITY: 0, ADDITIONAL: 3 ;; QUESTION SECTION: ;glinboy.com. IN ANY ;; ANSWER SECTION: glinboy.com. 3595 IN MX 10 mail.glinboy.com. glinboy.com. 3600 IN NS ns1.glinboy.com. glinboy.com. 3600 IN NS ns2.glinboy.com. glinboy.com. 3600 IN TXT "v=spf1 mx a ~all" glinboy.com. 3595 IN A 138.201.72.139 glinboy.com. 3600 IN SOA ns1.glinboy.com. info.glinboy.com. 2017071106 7200 540 604800 3600 ;; ADDITIONAL SECTION: mail.glinboy.com. 3595 IN A 138.201.72.139 ns1.glinboy.com. 86318 IN A 138.201.72.139 ns2.glinboy.com. 86324 IN A 138.201.72.139
There is no one of this record: api.glinboy.com apps.glinboy.com api.glinboy.ir apps.glinboy.ir While I added them to the DNS.
now what? I can't add custom DNS to my site?! Help me to find wrong and fix this; Where is saved DNS that I define theme? Where is Log of DNS manager? What is DNS Manager used in ISPConfig?
finally i found a trick!!!! add each sub domains as a DSN Zone and then generate SSL Certificate! but still have a question: How I can forward a subdomain to openshift app? (Doing this tutorial: https://blog.openshift.com/domain-names-and-ssl-in-the-openshift-web-console/)
There is no need to add subdomains as separate zones.all you have to do is to add an A-Record for the subdomain for the zone of the domain. The dns manager is ISPConfig and the DNS server software that gets managed by ISPConfig is named BIND.
This is very strange, of course, I think can't find error. i try various way and at last this way, work. and now i have SSL! let me do a test and add this DNS record to my domain: Type, Name, Data, Priority, TTL ---------------------------------------------- A, testa, 138.201.72.139, 3600 MX, testmx, mail.glinboy.com., 3600 CNAME, testcname, glinboy.com, 3600 TXT, glinboy.com., testtxt, 3600 ---------------------------------------------- When i check here http://viewdns.info/dnsrecord/?domain=glinboy.com , only "testtxt" present! Now what i must to do? i know you are busy but if you can check my domain and see this added to my DNS or not. if you need more info or any detail, be my gust! I'll be glade to help fix this problem and find a clear solution; I must check BIND and see what happens in Log.