i’d like to send mail from multiple subdomains of the same parent domain. ultimately i’m unable to get TLS certs for everything i’ve tried so far.
i deployed 2 VPS instances and installed MiaB on each, they’re named:
boxv1.mailpotato.io
boxv2.mailpotato.io
the status checks are all good but TLS is failing with a bunch of these errors:
The Certificate Authority reported these problems: Domain: autodiscover.boxv1.mailpotato.io Type: dns Detail: DNS problem: SERVFAIL looking up CAA for mailpotato.io - the domain’s nameservers may be malfunctioning
i also tried these with the same results:
box.s1.appundix.com
box.s2.appundix.com
i’m able to send mail from both of these (but failed DKIM and SPF)
i tried adding CAA
records to DNS (like this) for each of those servers but that didn’t help. is it possible to add this record to a parent domain somehow? i tried deploying a separate vpm to try to run miab as the parent domain (appundix.com) (to add dns records for the parent) but it didn’t like that (sudo: unable to resolve host appundix.com: Temporary failure in name resolution
)
~ $ dig box.s1.appundix.com CAA +short
0 issue "letsencrypt.org"
~ $ dig s1.appundix.com CAA +short
0 issue "letsencrypt.org"
~ $ dig appundix.com CAA +short
~ $
~ $ dig boxv1.mailpotato.io CAA +short
0 issue "letsencrypt.org"
~ $ dig boxv2.mailpotato.io CAA +short
0 issue "letsencrypt.org"
~ $ dig mailpotato.io CAA +short
~ $