Certificates and split-DNS

Discuss your pilot or production implementation with other Zimbra admins or our engineers.
Post Reply
Rocketrrt
Posts: 10
Joined: Wed Feb 21, 2018 5:44 pm

Certificates and split-DNS

Post by Rocketrrt »

Hi,

I am using the 8.8.7 version of Zimbra. I am using dnsmasq as I am Nat'd. I have everything up and running, but would like a valid certificate. So after reading I am using certbot_zimbra to create the certificate and install it. My domain for the world is spears-research.com. Server Name is mail and it has a domain of mail.spears-research.com (host $(hostname) returns this: mail.spears-research.com has address xxx.xxx.xxx.xxx). After creating the certificate and installing it using the spears-research.com domain name I still get a error with certificate name not being right. I can add the security exception and everything works. But because of the error I think I need to add mail,spears-research.com to the certificate. When trying to create the certificate with both names (./certbot_zimbra.sh -d spears-research.com,mail.spears-research.com -n) I get the following error:

Failed authorization procedure. mail.spears-research.com (http-01): urn:acme:error:unauthorized :: The client lacks sufficient authorization :: Invalid response from http://mail.spears-research.com/.well-k ... jjnTbh-Yvg: "<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p"

IMPORTANT NOTES:
- The following errors were reported by the server:

Domain: mail.spears-research.com
Type: unauthorized
Detail: Invalid response from
http://mail.spears-research.com/.well-k ... jjnTbh-Yvg:
"<!DOCTYPE HTML PUBLIC "-//IETF//DTD HTML 2.0//EN">
<html><head>
<title>404 Not Found</title>
</head><body>
<h1>Not Found</h1>
<p"

To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address.

I am not sure how to fix this and not mess up dnsmasq that I have setup following the instructions from the wiki on split dns :
https://wiki.zimbra.com/wiki/Split_DNS

Any help or suggestions on what to read or look at would be greatly appreciated.

Thanks,
Ron
Post Reply