Re: [Pdns-users] Zone transfert rejected in Powerdns Letsencrypt challenge

Hi, Op 22/06/2021 om 13:46 schreef Brian Candler via Pdns-users: On 22/06/2021 12:33, Jan-Piet Mens via Pdns-users wrote: For Letsencrypt protocol to generate certificate I have to enable zone transfer in my powerdns. I think you mean "DNS Updates" for Let's Encrypt dns-01, but I don't believ

Re: [Pdns-users] Zone transfert rejected in Powerdns Letsencrypt challenge

On 23/06/2021 08:54, Cheikh Dieng wrote: Very Thanks, It's clear for me. For dnsdist i  need HA pour my Powerdns. And how are you achieving HA of your dnsdist? The normal, recommended approach for authoritative DNS resilience is to have multiple nameservers, listed as separate NS records. dn

Re: [Pdns-users] Zone transfert rejected in Powerdns Letsencrypt challenge

Very Thanks, It's clear for me. For dnsdist i need HA pour my Powerdns. >>The delegation is done at the parent level, yes. However the delegated domain still needs to contain NS records and a SOA record for its own zone: Yes, this is some details [pduser@hyp03 ~]$ podman exec pdns pdnsutil li

Re: [Pdns-users] Zone transfert rejected in Powerdns Letsencrypt challenge

On 22/06/2021 23:30, Cheikh Dieng wrote: Hi, excuse for delay.. For context: My powerdns listen in port 2053 My dnsdist listen in port 1053 We are an translating port through 53 (from external request) to 1053 . That's why from external we use port 53 and in internal we can use port 1053 or 20

Re: [Pdns-users] Zone transfert rejected in Powerdns Letsencrypt challenge

On Tue, Jun 22, 2021 at 7:46 AM Brian Candler via Pdns-users wrote: > It doesn't actually matter what nameserver you use for acme-ns.example.net, > because the data stored within it is completely transitory. Even something > with a RAM backend would be fine. I happen to use bind9 because it w

Re: [Pdns-users] Zone transfert rejected in Powerdns Letsencrypt challenge

On 22/06/2021 12:33, Jan-Piet Mens via Pdns-users wrote: For Letsencrypt protocol to generate certificate I have to enable zone transfer in my powerdns. I think you mean "DNS Updates" for Let's Encrypt dns-01, but I don't believe these are possible in PowerDNS with the LDAP backend. Possibly

Re: [Pdns-users] Zone transfert rejected in Powerdns Letsencrypt challenge

For Letsencrypt protocol to generate certificate I have to enable zone transfer in my powerdns. I think you mean "DNS Updates" for Let's Encrypt dns-01, but I don't believe these are possible in PowerDNS with the LDAP backend. -JP ___ Pdns-use

Re: [Pdns-users] Zone transfert rejected in Powerdns Letsencrypt challenge

On 21/06/2021 08:53, Cheikh Dieng via Pdns-users wrote: Hi, My powerdns reject request for zone transfert . My powerdns domain is "cloud.lfpw.dsna.fr " it is a sub domain of "lfpw.dsna.fr " (this parent domain  is not a powerdns solution). For

[Pdns-users] Zone transfert rejected in Powerdns Letsencrypt challenge

Hi, My powerdns reject request for zone transfert . My powerdns domain is "cloud.lfpw.dsna.fr" it is a sub domain of " lfpw.dsna.fr" (this parent domain is not a powerdns solution). For Letsencrypt protocol to generate certificate I have to enable zone transfer in my powerdns. Is my pdns.conf f