| 19 Oct 2024 |
 K900 | And then you can use normal ACME stuff with a DNS challenge, even without a wildcard | 15:55:12 |
 Rayan Nakib (ريان نقيب) | I want my nextcloud instance to be under, nextcloud.homelab.nakibrayan.com, is this setup possible? | 15:55:57 |
| Rayan Nakib (ريان نقيب) | only in my lan | 15:56:06 |
| K900 | Yes | 15:56:10 |
| Rayan Nakib (ريان نقيب) | how? | 15:56:25 |
| K900 | You can set up your LAN's DNS server to resolve that | 15:56:27 |
| Rayan Nakib (ريان نقيب) | I use mullvad DNS in my PCs and Phones | 15:57:20 |
| Rayan Nakib (ريان نقيب) | I can't set a local dns record | 15:57:32 |
| K900 | Then you can set it to resolve to whatever internal address you want it to be on Cloudflare | 15:57:57 |
| K900 | It will be resolvable publiclyw | 15:58:03 |
| K900 | * It will be resolvable publicly | 15:58:04 |
| K900 | But it will resolve to 192.168.1.6 or whatever | 15:58:15 |
| Rayan Nakib (ريان نقيب) | I made that before, I added an A record in cloudflare dns that points to 192.168.1.6, but in all my browsers and devices said that the cert is not trusted, why is that? | 16:00:01 |
| Rayan Nakib (ريان نقيب) | * I made that before, I added an A record in cloudflare dns that points to 192.168.1.6, but all my browsers and devices said that the cert is not trusted, why is that? | 16:00:31 |
| K900 | Presumably because the cert was for the wrong domain name | 16:00:40 |
| K900 | Or self-signed | 16:00:42 |
| K900 | Or both | 16:00:44 |
| Rayan Nakib (ريان نقيب) | I will retry, and see | 16:00:57 |
| Rayan Nakib (ريان نقيب) | thanks :) | 16:01:00 |
| Rayan Nakib (ريان نقيب) | 
Download 20241019_171424.png | 16:15:14 |
| Rayan Nakib (ريان نقيب) | why I am getting this error? | 16:15:20 |
| K900 | It will tell you if you scroll down | 16:16:12 |
| Rayan Nakib (ريان نقيب) | 
Download image.png | 16:16:42 |
| K900 | That means it's a self-signed certificate | 16:17:18 |
| Rayan Nakib (ريان نقيب) | it's self singed? | 16:17:19 |
| Rayan Nakib (ريان نقيب) | why it's not using lt's encrypt? | 16:17:30 |
| Rayan Nakib (ريان نقيب) | * why it's not using lt's encrypt?! | 16:17:33 |
| K900 | The ACME module generates temporary self-signed certificates by default, to use while it's trying to obtain proper ones from Let's Encrypt | 16:17:43 |
| K900 | Presumably, the certificate request failed | 16:17:52 |
| K900 | You should check the logs on the machine to see why | 16:18:00 |
