Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

challenge is failed: urn:ietf:params:acme:error:dns: DNS problem: NXDOMAIN #48

Open
davidt-gh opened this issue Sep 16, 2024 · 3 comments
Open

challenge is failed: urn:ietf:params:acme:error:dns: DNS problem: NXDOMAIN #48

davidt-gh opened this issue Sep 16, 2024 · 3 comments

Comments

@davidt-gh
Copy link

davidt-gh commented Sep 16, 2024
edited
Loading

I was adding my first ingress which was x.domain.com, and the webhook went well.
few minutes later I've added x1.domain.com, and got error in the challenge says:

Accepting challenge authorization failed: acme: authorization error for x1.domain.com: 400 urn:ietf:params:acme:error:dns: DNS problem: NXDOMAIN looking up TXT for _acme-challenge.x1.domain.com - check that a DNS record exists for this domain

The TXT record seem to be created by godaddy webhook, and deleted after 750ms, once it deleted the error (found in the challenge events) the error showed up.
Can we extend the deletion time? anyone familiar with this issue?

Edit: Anyone in here now how to extend the delay? I want to try this by the answer I got: https://community.letsencrypt.org/t/challenge-failed-and-got-error-dns-problem-nxdomain-looking-up-txt/225975/4?u=david-gh

@cmoulliard maybe you can help?
@cmoulliard
Copy link
Member

Edit: Anyone in here now how to extend the delay? I want to try this by the answer I got: https://community.letsencrypt.org/t/challenge-failed-and-got-error-dns-problem-nxdomain-looking-up-txt/225975/4?u=david-gh

If I understand well the issue, this plugin should include an additional parameter in order to add an "extra sleep after adding the TXT record.". I will check the code to see if this doable. You could maybe also propose a PR ;-)

@davidt-gh
Copy link
Author

davidt-gh commented Sep 25, 2024
edited
Loading

Edit: Anyone in here now how to extend the delay? I want to try this by the answer I got: https://community.letsencrypt.org/t/challenge-failed-and-got-error-dns-problem-nxdomain-looking-up-txt/225975/4?u=david-gh

If I understand well the issue, this plugin should include an additional parameter in order to add an "extra sleep after adding the TXT record.". I will check the code to see if this doable. You could maybe also propose a PR ;-)

If you can point me to the relevant place in code, I'll do it. But for now I saw:

godaddy-webhook/main_test.go

Line 20 in ebac646

timeOut, _ := time.ParseDuration("3m")

But this is for tests. Hope you can point me and I'll work on it.

@cmoulliard
Copy link
Member

This is where within the code we call GoDaddy to check if the TXT record exists: https://github.com/snowdrop/godaddy-webhook/blob/main/main.go#L226

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@cmoulliard @davidt-gh