[GH-ISSUE #54] Possible missing DNS settings for the server (Auth Failures) #17

New issue

Closed

opened 2026-03-13 15:22:52 +03:00 by kerem · 2 comments

kerem commented

2026-03-13 15:22:52 +03:00

Owner

Originally created by @lukepolo on GitHub (Mar 15, 2018).
Original GitHub issue: https://github.com/acme-dns/acme-dns/issues/54

I am still having some failed authorizations and feel like I am missing something , here are some details

Config

[general]
# dns interface
listen = ":53"
# protocol, "udp", "udp4", "udp6" or "tcp", "tcp4", "tcp6"
protocol = "udp"
# domain name to serve the requests off of 
domain = "dns.codepier.io"
# zone name server 
nsname = "ns1.codepier.io"
# admin email address, where @ is substituted with .
nsadmin = "codepier.io"
# predefined records served in addition to the TXT
records = [
    # default A
    "dns.codepier.io. A 45.77.100.41",
    # A 
    "ns1.dns.codepier.io. A 45.77.100.41",
    # NS
    "dns.codepier.io. NS ns1.dns.codepier.io.",
]

DNS Records

A :dns.codepier.io
NS : ns1.dns.codepier.io

Is there anything else that i need to setup?

More Info

I've setup a script to automatically get the token and update it via the API , and that seems to be working

Output from 8-set-token.sh:
{"txt": "1HQjYS6NlSne1RCeCxfTisFAwr8-9fEbGEQ4jWtzBnQ"}

But the actual authorization fails

Failed authorization procedure. evanpolicinski.com (dns-01): urn:ietf:params:acme:error:connection :: The server could not connect to the client to verify the domain :: DNS problem: NXDOMAIN looking up TXT for _acme-challenge.evanpolicinski.com

Originally created by @lukepolo on GitHub (Mar 15, 2018). Original GitHub issue: https://github.com/acme-dns/acme-dns/issues/54 I am still having some failed authorizations and feel like I am missing something , here are some details ### Config ``` [general] # dns interface listen = ":53" # protocol, "udp", "udp4", "udp6" or "tcp", "tcp4", "tcp6" protocol = "udp" # domain name to serve the requests off of domain = "dns.codepier.io" # zone name server nsname = "ns1.codepier.io" # admin email address, where @ is substituted with . nsadmin = "codepier.io" # predefined records served in addition to the TXT records = [ # default A "dns.codepier.io. A 45.77.100.41", # A "ns1.dns.codepier.io. A 45.77.100.41", # NS "dns.codepier.io. NS ns1.dns.codepier.io.", ] ``` ### DNS Records A :`dns.codepier.io` NS : `ns1.dns.codepier.io` _Is there anything else that i need to setup?_ ## More Info I've setup a script to automatically get the token and update it via the API , and that seems to be working ``` Output from 8-set-token.sh: {"txt": "1HQjYS6NlSne1RCeCxfTisFAwr8-9fEbGEQ4jWtzBnQ"} ``` But the actual authorization fails `Failed authorization procedure. evanpolicinski.com (dns-01): urn:ietf:params:acme:error:connection :: The server could not connect to the client to verify the domain :: DNS problem: NXDOMAIN looking up TXT for _acme-challenge.evanpolicinski.com`

kerem closed this issue

2026-03-13 15:22:57 +03:00

kerem commented

2026-03-13 15:23:03 +03:00

Author

Owner

@lukepolo commented on GitHub (Mar 15, 2018):

Just noticed that port 53 refuses to open when using docker

--- Update
Running it without docker still does not open port 53 (running as root)

@lukepolo commented on GitHub (Mar 15, 2018): Just noticed that port 53 refuses to open when using docker --- Update Running it without docker still does not open port 53 (running as root)

kerem commented

2026-03-13 15:23:08 +03:00

Author

Owner

@lukepolo commented on GitHub (Mar 15, 2018):

I just modified my dns records, and it seemed to work! Guess its silently open?

@lukepolo commented on GitHub (Mar 15, 2018): I just modified my dns records, and it seemed to work! Guess its silently open?

kerem referenced this issue

2026-03-13 16:13:19 +03:00

[PR #17] [MERGED] Add vendored dependencies for reproducible builds #245