URL Forwarding / DNS config not working

Trying to get boltbrain.ca to forward to bolt-brain.fly.dev.

boltbrain.ca is registered at porkbun.com.

I set up URL forwarding boltbrain.ca → bolt-brain.fly.dev
I put in A and AAAA records with the ip addresses fly says should work.

curl -v boltbrain.ca
*   Trying 2a09:8280:1::50:8f36:0:80...
* Connected to boltbrain.ca (2a09:8280:1::50:8f36:0) port 80 (#0)
> GET / HTTP/1.1
> Host: boltbrain.ca
> User-Agent: curl/7.81.0
> Accept: */*
> 
* Mark bundle as not supporting multiuse
< HTTP/1.1 301 Moved Permanently
< location: https://boltbrain.ca/
< server: Fly/bc77ddfa7 (2024-11-15)
< via: 1.1 fly.io
< fly-request-id: 01JCZTK4SZ5DRBD6H1F1ZXF9R3-sea
< content-length: 0
< date: Mon, 18 Nov 2024 14:24:57 GMT
< 
* Connection #0 to host boltbrain.ca left intact

The problem seems to be on fly’s side.

That curl output is Fly redirecting from HTTP to HTTPS. You want to check the HTTPS request.

❯ curl -v https://boltbrain.ca
* Host boltbrain.ca:443 was resolved.
* IPv6: 2a09:8280:1::50:8f36:0
* IPv4: 137.66.5.92
*   Trying 137.66.5.92:443...
* Connected to boltbrain.ca (137.66.5.92) port 443
* ALPN: curl offers h2,http/1.1
* (304) (OUT), TLS handshake, Client hello (1):
*  CAfile: /etc/ssl/cert.pem
*  CApath: none
* LibreSSL SSL_connect: SSL_ERROR_SYSCALL in connection to boltbrain.ca:443
* Closing connection
curl: (35) LibreSSL SSL_connect: SSL_ERROR_SYSCALL in connection to boltbrain.ca:443

Something is wrong with the SSL cert. In the Fly dashboard, has the domain verification been completed?

That was it! I just had to add a cert in the UI. Easy peasy. Thank you!

That is a bit weird that curl actually got through one of the times I tried it without the cert being there.