Sender | Message | Time |
---|---|---|
27 Jan 2024 | ||
@lehmanator:gnulinux.club removed their display name Sam Lehman. | 16:59:42 | |
@lehmanator:gnulinux.club left the room. | 17:03:22 | |
29 Jan 2024 | ||
Sam Lehman joined the room. | 11:03:10 | |
Sam Lehman set a profile picture. | 11:06:04 | |
31 Jan 2024 | ||
Train | Whenever I try to get a certificate, it always tries to use my local DNS:
| 19:13:23 |
Train | Is it normal to use a loopback address such as this one: 127.0.0.53:53 | 19:13:48 |
Train | * Is it normal to use a loopback address such as this one: 127.0.0.53:53? | 19:17:30 |
ajs124 | if you're using systemd resolved, yes | 22:02:01 |
1 Feb 2024 | ||
m1cr0man | In reply to @atra1n:matrix.orgYes and you can also set it through the ACME options :) | 00:36:31 |
7 Feb 2024 | ||
netpleb joined the room. | 21:27:59 | |
netpleb | i am getting : 2024/02/07 21:34:52 Could not create client: get directory at 'https://acme-v02.api.letsencrypt.org/directory': Get "https://acme-v02.api.letsencrypt.org/directory": dial tcp: lookup acme-v02.api.letsencrypt.org: Temporary failure in name resolution with self-hosted bind (followed the manual) dns-01 validation | 21:38:12 |
K900 | Sounds like DNS | 21:39:09 |
netpleb | In reply to @k900:0upti.meright, so I just thought of one thing which might fix it (i feel like i have tried everything already)...but this server actually gets its public ip via a wireguard interface, and I used wg-quick in that interface and did set the dns = [ <some server> ] option. I am going to remove that and cross my fingers! :-) | 21:40:35 |
netpleb | hmm, sadly that did not seem to solve it | 21:44:40 |
netpleb | what logs should i post which would help diagnose? | 21:44:54 |
netpleb | Redacted or Malformed Event | 21:46:52 |
K900 | Do you actually have working DNS? | 21:49:31 |
K900 | Like, can you ping that domain name? | 21:49:39 |
netpleb | yes, I can ping that domain name no problem | 21:50:12 |
netpleb |
| 21:51:06 |
K900 | Not that | 21:51:36 |
K900 | acme-v02.api.letsencrypt.org | 21:51:46 |
K900 | Can you ping that? | 21:51:49 |
netpleb | hmm, nope! wtf, I can ping google.com just fine though. What is going on? | 21:53:15 |
K900 | You have a DNS problem | 21:55:01 |
K900 | Have fun | 21:55:03 |
netpleb | I am obviously not an expert in these things (though getting to know/learn Nix, both the language and the OS has been overall a rewarding experience). How is it possible that I can ping google but not letsencrypt? | 21:58:24 |
netpleb | * ... | 21:59:26 |
K900 | Something about your DNS config is broken | 22:01:14 |
K900 | That's not really a NixOS problem | 22:01:23 |