I am unable to get Let’s Encrypt to work as the listing of all my doamins on the SSL page show various errors.
My mailinaboc system is on my local network at 10.0.0.41/24, my home BIND based DNS aims my “mail.nickellson.com” at 10.0.0.41.
Yet I get this error…
mail.nickellson.com Domain control validation cannot be performed for this domain because DNS points the domain to another machine (A 10.0.0.41). (SplitDNS, internal gives local 10 net answer, external IP’s get the NAT’ed IP on my firewall)
My own self signed cert expired, and it appears from the forums that I can no longer use self signed certs?
How can I make the DNS checks happy so I can use the built in Let’s Encrypt capability?
I found a python DNS test too in the mailinabox log folder: It asks that I rerun mailinabox, which I have done a few times (with reboots). This is when the /etc/resolv.conf points at 184.108.40.206 at each reboot, not using my internal DNS server. Wouldn’t the mailinthebox install script have complete control over building this out? (I have made no custom entries)
root@mail:~/mailinabox/tests# ./test_dns.py 10.0.0.41 mail.nickellson.com
Incorrect DNS Response from Mail-in-a-Box
QUERY RESPONSE CORRECT VALUE
mail.nickellson.com/A 220.127.116.11 10.0.0.41
ns1.mail.nickellson.com/A 18.104.22.168 10.0.0.41
ns2.mail.nickellson.com/A 22.214.171.124 10.0.0.41
www.mail.nickellson.com/A [no value] 10.0.0.41
mail._domainkey.mail.nickellson.com/TXT “v=DKIM1; k=rsa; s=email; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1/HxRWNJZv5XfsVjXqiW6TSCu3jSx8K69dmzO+20OFYPhIeojVHbShEqvRYexI+Gmu9jyCPcH+SUg0gjHLCQ0ik2UQik7vhxlAILKwygEcrfydqE6EvwhEmDq3xxmHYTnt2ZTuPgz3kHdRNsKcnX8WKpaqZgQ3GR0cs8YCLIEJllXB2vJ/9blm8/” “0sLhHfM7L4FfmsdvndkoACrPrjMCn3szgcxsWMHvRKb15ZbxkN7IFpstz4YC0bhoRugMU8wFiOS8Xc2Sl/h9hSIsixVuCstVlMUWd9h8t7Hgj4vXijk3rxyswAHmj72zkr19PMdEPaBqUItC6c3db7hwQOaX1wIDAQAB” "v=DKIM1; k=rsa; s=email; " “p=KEY”
Please run the Mail-in-a-Box setup script on mail.nickellson.com again.