At the domain registrar for the domain anos.cloud
, Porkbun, you have DNSSEC enabled, and as such DNS resolvers across the world expect that your domain’s DNS data also holds cryptographic DNSSEC signatures, and that they will validate according to the DS record set that has been set from the domain registrar.
However, within Cloudflare, you do not currently have DNSSEC enabled, and as such, Cloudflare is obviously not adding any cryptographic signatures to your domain’s DNS data, and therefore, there are validation errors while trying to access your domain.
You have the following options to solve your problem:
→ If you want to have your domain’s DNS data to be protected with DNSSEC, do this:
-
Enable DNSSEC within Cloudflare:
→ https://dash.cloudflare.com/?to=/:account/:zone/dns/settings
-
Log in to Porkbun, and then go to:
→ Porkbun - Domain Name System Security (DNSSEC) for ANOS.CLOUD
→ Delete all the records you see under “Current DNSSEC Configuration” on this page.
→ Add a new one (typically using “dsData”) here, which MUST be a 100% match to the details you see in your Cloudflare account.
NOTE: Alone enabling DNSSEC within Cloudflare (e.g. #1) will NOT be sufficient, if the data that Porkbun holds is NOT a 100% match to what the Cloudflare page says. The details Cloudflare ask you to add will be shown when you expand the view by clicking on the "DS Record → " on the Cloudflare link above.
→ If you do not want your domain’s DNS data to be protected with DNSSEC, you can do this:
- Log in to Porkbun, and then go to:
→ Porkbun - Domain Name System Security (DNSSEC) for ANOS.CLOUD
→ Delete all the records you see under “Current DNSSEC Configuration” on this page.
After making any of the changes to through Porkbun, please be advised that it may take between 48-96 hours to fully propagate worldwide, which neither Cloudflare, Porkbun, nor anyone else can expedite.