My domain is pending state,I cannt apply ssl certificate through acme

Your screenshot shows exactly what I was referring to. Please re-read my original response

now I delete namesilo Nameserver as ns3.dnsowl.com,I wait cloudflare nameserver automatically flush refresh? next step I will how to do?


Now it is correctly set and should eventually validate on Cloudflare.

I still have a question. The domain name that I applied on namesilo was analyzed and placed on cloudflare. Then, is the certificate generated on cloudflare or on namesilo?
I used amce tool to access cloudflare through DNS API, but it always fails. Why is that?
----------------------------------cloudflare DNS API example----------------------

Using the new cloudflare api token

export CF_Token="sdfsdfsdfljlbjkljlkjsdfoiwje"
export CF_Account_ID="xxxxxxxxxxxxx"

In order to use the new token, the token currently needs access read access to Zone.Zone, and write access to Zone.DNS, across all Zones. See Issue #2398 for more info.

Ok, let’s issue a cert now:

acme.sh --issue --dns dns_cf -d example.com -d www.example.com

The CF_Key and CF_Email or CF_Token and CF_Account_ID will be saved in ~/.acme.sh/account.conf and will be reused when needed.

I use the method above.acme return error.

Not sure about your question. If you are referring to an SSL certificate, you will need this on your server. Not Cloudflare nor Namesilo (unless Namesilo is also your host).

another question: now cloudflare DNS resolved my domain fails.please watch my picture.

Please check out support.cloudflare.com and #Tutorials. All of that is covered there already.

I think whether the DNS address of the VPS server should be changed to 1.1.1.1, you see my picture, it is now 8.8.8.8

That is not related to your resolver. Again, please check out the tutorials.

1 Like

Hi @zhang007z1, in addition to the #Tutorials @sandro suggests, perhaps brush up on the #setup (Getting Started) docs listed in this post, Expert Tip - Getting Started From the Help Center. Domain shows as active now and the extra nameserver has been removed.

After reviewing the #setup guides and #Tutorials, make sure you have an A record named vofvendetta.xyz (use @ and it will revert to the name) that points to your origin IP address, that record should be :orange:.

Hint - Check item 4 in this #CommunityTip, Community Tip - Fixing the DNS PROBE FINISHED NXDOMAIN error

I don’t add @ value,this problem results in nslookup tool resolved these subdomain fail?because these subdomain have defferent the value of IP address.if I add @ to this table,which value of IP address is set to @ txt record? May I set any one IP address to @ record?

I have already add @ to two domains of 007z.xyz and vofvendetta.xyz,because An hour has passed and two domains resolved still has no effect.please you make re-check operation for me. thanks in advance.

I don’t think I’m tracking at all with what you just asked, sorry :frowning:. The 007 domain is active and vofvendetta.xyz is pending. The pending zone may be affected by an ICANN transfer prohibited visible with a whois:

$ whois vofvendetta.xyz
Domain Status: serverTransferProhibited https://icann.org/epp#serverTransferProhibited
Domain Status: serverTransferProhibited https://icann.org/epp#serverTransferProhibited Domain Status: clientTransferProhibited https://icann.org/epp#clientTransferProhibited

https://www.whatsmydns.net/#NS/vofvendetta.xyz

From https://thenewstack.io/risks-dns-hijacking-serious-take-countermeasures/:orange:

clientDeleteProhibited, clientUpdateProhibited and clientTransferProhibited at the registrar level and serverDeleteProhibited, serverUpdateProhibited and serverTransferProhibited at the registry level.

As their names imply, these flags will prevent domain names from being deleted, transferred or updated — including having their nameservers changed

two domains of 007z.xyz and vofvendetta.xyz have already been active state ,but I use nslookup to resolve subdomain,they all is error.please watch below picture.
007z.xyz fail




why???

You don’t need to re-post the same detail, the why is covered in the docs linked above.

Source: whois.arin.net
IP Address: 104.24.122.144
Name: CLOUDFLARENET

That’s a cloudflare IP and exactly what you want returned.

Both sites show as active, the vofvendetta.xyz nameservers have not propagated and that is most likely due to:

Your next outreach should be to your domain registrar to ask about having the ICANN holds lifted from your domain, only your registrar can assist with that.

Once again, please go through the tutorials you were already given. There is little point in going through everything which is already covered by the tutorials anyhow.

Both sites are now properly configured and the 007 one already returns content. The other one throws a 522 timeout, however that is something you need to fix on your server and you should use the search or that error as well.

My cycloneservers server is in Los Angeles, and I ssh into my VPS remotely. Then nslookup resolves that the IP address of the local vps is also the address of the cloudflare server.This issue is not related with ICANN service providers.please watch below picture.

No offence, but for the Nth time please use the search.

All these issues have been covered more than once and can be easily found via the search. That particular issue is under

Why does a DNS lookup on my domain not return the IP address I configured?

1 Like

A post was split to a new topic: Pending nameserver update 2

This topic was automatically closed after 31 days. New replies are no longer allowed.