Would it be possible for us to only use A records for Apex domains?
We are trying to create the simplest process for our customers and adding one record would be better than adding two.
I usually to create my apps this way (I only need ipv6 and proxy ipv4 via cloudflare):
flyctl create --org foo --name bar- create youor config or save a default (
flyctl config save) flyctl volumes -c myconfig.toml ..flyctl regions -c myconfig.toml ..flyctl ips allocate-v{4,6} -c myconfig.tomlflyctl deploy -c myconfig.toml
You should be able to use an A record pointing directly at your app IP address, visible in fly ips list. The AAAA record is required for issuing certificates.
Yes sorry, I meant for issuing the certificate as well.
Is there no way to have a certificate on an apex domain, with only the A record?
These solutions involving cname dark-arts may help:
We use Ipv6 to ward off potential attacks due to recycled IPv4 addresses. More information here: How CDNs Generate Certificates · Fly.
1 Like