intro
Hi,This problem has me stumped. I'm new to this stuff but but wanted to give hosting my own site a go.
problem
anything.gisborne.xyz
Abdhhrwj.gisborne.xyz
Gisborne.xyz
All work in browser
But tutor.gisborne.xyz dose not.
$ ping anything.gisborne.xyz
Resolves and sucseeds Unless anything = tutor
$ ping tutor.gisborne.xyz
Unknown host
$ dig anything.gisborne.xyz
.. ANSWER SECTION:
anything.gisborne.xyz. 499 IN CNAME gisborne.xyz.
gisborne.xyz. 499 IN A 51.89.166.160
$ dig tutor.gisborne.xyz
.. ANSWER SECTION:
tutor.gisborne.xyz. 499 IN A 51.89.166.160
Pinging tutor.gisborne from the VPS itself dose work.
background
I have a Debian 10 instce at ovh. I am useing ufw.
I own a domain name: gisborne.xyz Registrar: Gandhi I have subdomains for different things.
- gisborne.xyz for a splash page
- maxwell.gisborne.xyz for a professional page
- vibe.gisborne.xyz as a fun homepage
- tutor.gisborne.xyz for my tutoring
I use nginx as a webserver/reverse proxy, I followed the official tutorials.
Following various tutorials I had entered different DNS A records for each subdomain and it's wwww.subdomain.
I used certbot to create SSL certificates for each subdomain.
At this point everything was working.
Then a friend told me about wildcard CNAME enteryes
I replaced some of my A records with a CNAME record *.gisborne.xyz.
I also tried to use Certbot to creat a wiled card SSL certificate.
I was then in a position where http and HTTPS would go to different places, http would go to the default server where as HTTPS would go to the gisborne.xyz homepage.
I decided to remove the wildcard cert with
$ sudo certbod delete
I then decide to sleep on it and let DNS propergate but in the morning (now) everything works but tutor.gisbore.xyz
I have no idea what's going on.
current DNS records
@ 86400 IN SOA ns1.gandi.net. hostmaster.gandi.net. 1604141215 10800 3600 604800 10800
* 500 IN CNAME gisborne.xyz.
@ 500 IN A 51.89.166.160
@ 10800 IN MX 10 spool.mail.gandi.net.
@ 10800 IN MX 50 fb.mail.gandi.net.
@ 10800 IN TXT "v=spf1 include:_mailcust.gandi.net ?all"
_acme-challenge 500 IN TXT "ETK8mf9ebHGBRT9hRQMHIluYspGHT5BoBlD3-ZAUH-k"
_imap._tcp 10800 IN SRV 0 0 0 .
_imaps._tcp 10800 IN SRV 0 1 993 mail.gandi.net.
_pop3._tcp 10800 IN SRV 0 0 0 .
_pop3s._tcp 10800 IN SRV 10 1 995 mail.gandi.net.
_submission._tcp 10800 IN SRV 0 1 465 mail.gandi.net.
ipfs 300 IN TXT "dnslink=/ipns/QmdeUCxowW85n3t4FQDckq3CEX4WFLEFn1czzPNDQxhx9C"
mail 10800 IN CNAME webredir.gandi.net.
tutor 500 IN A 51.89.166.160
vibe 1800 IN A 51.89.166.160
webmail 10800 IN CNAME webmail.gandi.net.
www.vibe 500 IN A 51.89.166.160
ufw status
Status: active
To Action From
-- ------ ----
OpenSSH ALLOW Anywhere
Nginx Full ALLOW Anywhere
DNS ALLOW Anywhere
MSN SSL ALLOW Anywhere
OpenSSH (v6) ALLOW Anywhere (v6)
Nginx Full (v6) ALLOW Anywhere (v6)
DNS (v6) ALLOW Anywhere (v6)
MSN SSL (v6) ALLOW Anywhere (v6)
Certbot certificates
Saving debug log to /var/log/letsencrypt/letsencrypt.log
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Found the following certs:
Certificate Name: gisborne.xyz
Domains: gisborne.xyz www.gisborne.xyz
Expiry Date: 2021-01-28 20:11:16+00:00 (VALID: 89 days)
Certificate Path: /etc/letsencrypt/live/gisborne.xyz/fullchain.pem
Private Key Path: /etc/letsencrypt/live/gisborne.xyz/privkey.pem
Certificate Name: tutor.gisborne.xyz
Domains: tutor.gisborne.xyz maxwell.gisborne.xyz vibe.gisborne.xyz www.maxwell.gisborne.xyz www.tutor.gisborne.xyz www.vibe.gisborne.xyz
Expiry Date: 2021-01-28 20:50:52+00:00 (VALID: 89 days)
Certificate Path: /etc/letsencrypt/live/tutor.gisborne.xyz/fullchain.pem
Private Key Path: /etc/letsencrypt/live/tutor.gisborne.xyz/privkey.pem
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
NOTE: I had alot of trouble posting this, getting stack over flow to accept the formatting.
Aucun commentaire:
Enregistrer un commentaire