Ok, so I’m setting up a second Hestia box (yay for me), but running into problems whenever trying to add a LE SSL certificate. I’ve read all the other forum posts about this error message, but not finding anything that fits the problem.
So far I’ve gotten the host SSL working using v-add-letsencrypt-host from SSH. I’ve added a few websites, each with their own DNS records but initially without SSH until the nameservers have updated. When editing the website record and attempting to add SSL via Let’s Encrypt, I’m getting ‘DNS record for doesn’t exist’ for every domain, including those with mail enabled where I’m trying to add SSL for mail too.
Given I didn’t hit these problems with the first Hestia box I set up last week (exactly same hardware / software spec), I’m wondering whether the DNS is somehow corrupt? Each domain definitely has a full set of DNS records on the same server.
The host DNS record is setup as child-ns and all the others are default. All sites are under the admin account. Could that be the issue?
It’s a local dns issue, probaly suggest to take other, external dns servers like cloudflare or similar. Probaly a nslookup domain.tld 1.1.1.1 would give a valid reply.
Think you’re probably right. After adding Cloudflare I can add the Lets Encrypt certificate using v-add-letsencrypt-domain - however, can’t seem to add a cert to the mail domain (either through the Hestia GUI or v-add-letsencrypt-domain mail.domain.tld).
Same as before - ‘DNS record for [domain] doesn’t exist’ in GUI. On he command line I get ‘Error: web domain mail.domain.tld doesn’t exist’, but that’s unsurprising as ‘mail.’ isn’t a web domain (is there an equivalent to v-add-letsencrypt-domain to secure mail?).
Hi ScIT, but I do – and that’s what’s confusing. I set this second Hestia install up just like the first with default DNS entries when creating the zones (which includes mail. and webmail.) - works on my first server, not on the second. Exact same hardware & software config. Do you think it’s worth deleting the zone(s) and recreating them, or would that cause more problems than it’s intended to fix?
Have you created a dns cluster? DNS zones works only, if you have a dns cluster and used them as nameserver for your domain. it sounds more that you use a external provider for your dns, you need to add them probaly there.
Hi ScIT, not using a DNS cluster since the sites on server 1 are completely separate from server 2. I’m now using Cloudflare for everything but the host domain, and when you first set that up it copies the existing records - so it also has mail. & webmail., etc.
Felix - yup, definitely pointing at the correct IP And Merry Christmas!