What is wrong with my DNS setup + certificate setup?

crowell.jon · September 17, 2021, 8:55pm

I’m trying to get Jononomo.com to point to Jononomo.fly.dev where my basic Elixir/Phoenix app is successfully deployed.

I am managing my DNS in Cloudflare. I have set the A and the AAAA records in Cloudflare to the IPs shown when I run fly ips list.

The command fly certs check jononomo.com shows that everything looks okay.

I have proxy status turned off for the four DNS records that I have set in Cloudflare. These four DNS records are:

A
AAAA
CNAME _acme-challenge
CNAME www pointing to jononomo.fly.dev

But Jononomo.com is not working for me – the browser just returns a blank.

If I type the IPv4 address in the URL bar directly then I see my site as execpected, with a “not secure” message.

Why can’t I point my domain name to my fly app website? What do I not understand?

Thanks!

kurt · September 17, 2021, 8:58pm

This looks like it’s working to me!

The first thing to check is DNS propagation for both A and AAAA records:

https://www.whatsmydns.net/#A/jononomo.com
https://www.whatsmydns.net/#AAAA/jononomo.com

I’m seeing timeouts in several cities, so it’s possible CloudFlare just isn’t returning the IP addresses everywhere yet.

Did jononomo.com previously have a different IP address? It’s possible your browser has an old entry cache as well.

crowell.jon · September 17, 2021, 9:09pm

Yes, so I had previously had a TXT DNS record set and also an A record set – these where set a couple years ago when I think I was trying to get the domain to point to Gitlab pages. I deleted those two DNS records when I set these latest ones up, however.

I noticed that Cloudflare didn’t seem to complain if I had two different A records set pointing to two different IPv4 addresses – and the domain was configured like that for a few minutes. I would think that only one A record would be permitted because it doesn’t make sense to me for there to be two different A records pointing to two different places.

As of this moment the website seems to be working for me in Safari, but not in Firefox. It started working for me just a moment after you posted that it was working for you.

Hopefully by tomorrow it will start working for me in Firefox as well. I guess maybe I just have to wait for the 24 hours to pass for these updates to really take effect?

kurt · September 17, 2021, 9:20pm

It’s actually totally valid to have multiple A records with different IPs!

It sounds like Firefox has an old IP cached. You might be able to check in about:networking#dns, or just restart your browser entirely.

Topic		Replies	Views
Cloudflare custom domain configuration Questions / Help	4	945	November 11, 2023
SSL authentication issues	8	495	November 6, 2020
Certificate stuck at Awaiting certificates Questions / Help	37	2399	August 8, 2023
Need help with NameSilo DNS setup,	2	183	March 26, 2023
Certificates labeled as verified but can't access my api (This site can't be reached), tried with 4 domains Questions / Help	3	171	March 9, 2023

What is wrong with my DNS setup + certificate setup?

Related Topics