Add TXT error - Total record size limit exceeded. Code: 83011

One of my domains is not playing ball. I keep getting Cloudflare API: Total record size limit exceeded. but I’m using certbot with cloudflare plugin to automatically create the TXT content so it shouldn’t be an issue.

When I try to add TXT record manually get the same error:
Name: _acme-challenge.example.co.uk
Content: PzbhiEKiP0juIIf6kqzJQnuIzfSLCOjFw67UV1dssy0

certbot certonly --dns-cloudflare --dns-cloudflare-credentials /root/.secrets/certbot/cloudflare.ini -d example .co.uk -d www.example .co.uk
Saving debug log to /var/log/letsencrypt/letsencrypt.log
Plugins selected: Authenticator dns-cloudflare, Installer None
Requesting a certificate for example .co.uk and www.example .co.uk
Performing the following challenges:
dns-01 challenge for example .co.uk
dns-01 challenge for www.example .co.uk
Encountered CloudFlareAPIError adding TXT record: 83011 Total record size limit exceeded.
Cleaning up challenges
Error communicating with the Cloudflare API: Total record size limit exceeded.

Strangely when I using another TLD is works.

2022-01-10 19:39:21,720:INFO:certbot._internal.auth_handler:Performing the following challenges:
2022-01-10 19:39:21,721:INFO:certbot._internal.auth_handler:dns-01 challenge for example .co.uk
2022-01-10 19:39:21,721:INFO:certbot._internal.auth_handler:dns-01 challenge for www.example .co.uk
2022-01-10 19:39:21,727:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): api.cloudflare.com:443
2022-01-10 19:39:22,994:DEBUG:urllib3.connectionpool:https://api.cloudflare.com:443 “GET /client/v4/zones?name=example .co.uk&per_page=1 HTTP/1.1” 200 None
2022-01-10 19:39:22,996:DEBUG:certbot_dns_cloudflare._internal.dns_cloudflare:Found zone_id of 123 for example .co.uk using name example .co.uk
2022-01-10 19:39:22,996:DEBUG:certbot_dns_cloudflare._internal.dns_cloudflare:Attempting to add record to zone 123: {‘type’: ‘TXT’, ‘name’: ‘_acme-challenge.example.co.uk’, ‘content’: ‘PzbhiEKiP0juIIf6kqzJQnuIzfSLCOjFw67UV1dssy0’, ‘ttl’: 120}
2022-01-10 19:39:24,124:DEBUG:urllib3.connectionpool:https://api.cloudflare.com:443 “POST /client/v4/zones/123/dns_records HTTP/1.1” 400 None
2022-01-10 19:39:24,125:ERROR:certbot_dns_cloudflare._internal.dns_cloudflare:Encountered CloudFlareAPIError adding TXT record: 83011 Total record size limit exceeded.
2022-01-10 19:39:24,127:DEBUG:certbot._internal.error_handler:Encountered exception:
Traceback (most recent call last):
File “/usr/lib/python3/dist-packages/certbot_dns_cloudflare/_internal/dns_cloudflare.py”, line 116, in add_txt_record
self.cf.zones.dns_records.post(zone_id, data=data) # zones | pylint: disable=no-member
File “/usr/lib/python3/dist-packages/CloudFlare/cloudflare.py”, line 686, in post
return self._base.call_with_auth(‘POST’, self._parts,
File “/usr/lib/python3/dist-packages/CloudFlare/cloudflare.py”, line 126, in call_with_auth
return self._call(method, headers, parts,
File “/usr/lib/python3/dist-packages/CloudFlare/cloudflare.py”, line 502, in _call
raise CloudFlareAPIError(code, message)
CloudFlare.exceptions.CloudFlareAPIError: Total record size limit exceeded.

NOTE: added space before .co.uk to allow me to post this being a newbie

Still having this issue it would be great if somebody could shed any light on why it’s happening for this domain

Please trying find out why I get this error for only one of my domains 2355012 @MoreHelp

what is the size of the record you are adding?

It’s only 43.

Never mind, it’s in your original post…checking…

I can’t replicate that. You wouldn’t happen to have another _acme-challenge already there, would you?

Can you try that same record in a different zone (if you have another domain here)?

I think everything is in the same zone I’ve not changed this.

No duplicates either this is the current DNS export:

;;
;; Domain:     example.com.
;; Exported:   2022-01-20 08:32:42
;;
;; This file is intended for use for informational and archival
;; purposes ONLY and MUST be edited before use on a production
;; DNS server.  In particular, you must:
;;   -- update the SOA record with the correct authoritative name server
;;   -- update the SOA record with the contact e-mail address information
;;   -- update the NS record(s) with the authoritative name servers for this domain.
;;
;; For further information, please consult the BIND documentation
;; located on the following website:
;;
;; http://www.isc.org/
;;
;; And RFC 1035:
;;
;; http://www.ietf.org/rfc/rfc1035.txt
;;
;; Please note that we do NOT offer technical support for any use
;; of this zone data, the BIND name server, or any other third-party
;; DNS software.
;;
;; Use at your own risk.
;; SOA Record
example.com	3600	IN	SOA	example.com root.example.com 2039433416 7200 3600 86400 3600

;; A Records
example.com.	1	IN	A	1.22.33.445

;; CNAME Records
autodiscover.example.com.	1800	IN	CNAME	autodiscover.outlook.com.
ben.example.com.	1	IN	CNAME	example.com.
enterpriseenrollment.example.com.	1800	IN	CNAME	enterpriseenrollment.manage.microsoft.com.
enterpriseregistration.example.com.	1800	IN	CNAME	enterpriseregistration.windows.net.
pm-bounces.example.com.	1	IN	CNAME	pm.mtasv.net.
selector1._domainkey.example.com.	3600	IN	CNAME	selector1-example-com._domainkey.example.onmicrosoft.com.
selector2._domainkey.example.com.	3600	IN	CNAME	selector2-example-com._domainkey.example.onmicrosoft.com.
www.example.com.	1	IN	CNAME	example.com.

;; MX Records
example.com.	1	IN	MX	0 example-com.mail.protection.outlook.com.

;; TXT Records
20190416133212pm._domainkey.example.com.	1	IN	TXT	"k=rsa;p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDJvupa01CPpFWTjaNw3IrF2jYQ0GI8PIHHX0lBxtUf7X1hTl9pNOBDXIk/ebbsB2wu2w5hu1yYC4jMpnPObCjaBIXZhrGS8zXnCgYFqr3RaHIOrgBhxjzLSM8WMAKMw9n7zEFakE5xpXZ5Jvh9aKwi61whwtY7FIfl86TsgT3HWwIDAQAB"
_dmarc.example.com.	1	IN	TXT	"v=DMARC1; p=none; rua=mailto:[email protected]"
example.com.	1	IN	TXT	"v=spf1 include:spf.protection.outlook.com -all"

Is there any merit in deleting the domain from cloudflare and re-setup?

I see you opened a ticket. I’ll escalate it so Support can try to see what’s causing the problem.

1 Like

To add, how many records do you have? Free plan sites generally have a record limit… Perhaps the error message is referring to # of records and not the record size itself.

3 Likes

Thanks but no I’m no way near that limit. It’s a strange one but current chatting via the support ticket to see what they find out.

2 Likes

Sorry for the issues @user18220. What you suggested is a tempting action, but generally no, removing and starting over is not a great approach.