Hi,
I’m trying to setup a wildcard certificate with a custom domain name however I’m hitting an error which I don’t understand.
I’ve taken a look at the following URLs :
https://go-acme.github.io/lego/dns/pdns/
In my case, here is my config file for the wildcard certificate :
{...}:
{
security.acme = {
acceptTerms = true;
email = "example@domain.com";
certs."example.domain.com" = {
dnsProvider = "pdns";
dnsResolver = "localhost:53"; # This should be pdns.
dnsPropagationCheck = true;
credentialsFile = "/var/lib/secrets/pdns-api-tokens";
domain = "*.example.domain.com";
};
};
}
I’m hitting the current error when running sudo nixos-rebuild test
:
[*.example.domain.com] [*.example.domain.com] acme: error presenting token: pdns: could not find the start of authority for _acme-challenge.example.domain.com.: read udp [::1]:54563->[::1]:53: read: connection refused
Also port 53 is opened in the Firewall for UDP and TCP.
And checking inside the powerDNS zone, no record has been added via the pdns API which seems weird to me.