Your one-stop-cake-shop for everything Freshly Baked has to offer

fix(pm/acme): resolve DNS using cloudflare #120

closed opened by

a.starrysky.fyi 2 months ago targeting main from private/minion/push-oqywmpqruopz

We run Tailscale, which sometimes has internal routes to things. These override all DNS address entries for specified domains, which breaks verifying ACME TXT records, which prevents us fetching certificates.

Resolving ACME using Cloudflare avoids the issue...

STACK 16

#124 fix(pm/josh): fix josh ssh forwarding

1 comment

round #3

#123 refactor(pm/stalwart): remove redundant DNS record

1 comment

round #3

#122 feat(pm/headscale): add hyperneutrino

1 comment

round #3

#121 refactor(pm/copyparty): remove useless header-hide

1 comment

round #3

#120 fix(pm/acme): resolve DNS using cloudflare

1 comment

round #3

#119 fix(pm/josh): update to master to fix redirect bug

1 comment

round #3

#126 feat(pm/teal)!: switch silverbullet to mediawiki

1 comment

round #3

#125 fix(pm/tailscale): use client routing

1 comment

round #3

#118 feat(minion): use labels for drives

1 comment

round #4

#117 feat(minion): enable flatpak

1 comment

round #4

#116 feat(redhead): add nextcloud-docker-dev

1 comment

round #4

#115 chore: trust SSH signing key

1 comment

round #4

#114 feat(thunderbird): make default mail application

1 comment

round #4

#113 feat(pm/minion): set up for leptos

1 comment

round #4

#112 feat: upgrade to 25.11

Labels

None yet.

requested-reviewers

None yet.

approved

None yet.

tested-working

None yet.

rejected

None yet.

assignee

None yet.

Participants 1

AT URI

at://did:plc:uuyqs6y3pwtbteet4swt5i5y/sh.tangled.repo.pull/3mavdhtp6v422

2 changed files

Diff round #3

expand all

unified split

packetmix

systems

teal

acme.nix

umber

acme.nix

packetmix/systems/teal/acme.nix

··· 9 9 email = "acme@freshlybakedca.ke"; 10 10 dnsProvider = "cloudflare"; 11 11 environmentFile = "/secrets/acme/environmentFile"; 12 + extraLegoFlags = [ 13 + "--dns.resolvers" 14 + "1.1.1.1" 15 + ]; 12 16 }; 13 17 }; 14 18

packetmix/systems/umber/acme.nix

··· 9 9 email = "acme@starrysky.fyi"; 10 10 dnsProvider = "cloudflare"; 11 11 environmentFile = "/secrets/acme/environmentFile"; 12 + extraLegoFlags = [ 13 + "--dns.resolvers" 14 + "1.1.1.1" 15 + ]; 12 16 }; 13 17 }; 14 18

History

4 rounds 1 comment

a.starrysky.fyi submitted #3 2mo

interdiff

1 commit

expand

d048a496

fix(pm/acme): resolve DNS using cloudflare

expand 1 comment

a.starrysky.fyi 2mo

manually merged due to tangled error

closed without merging

a.starrysky.fyi submitted #2 2mo

diff interdiff

1 commit

expand

d048a496

fix(pm/acme): resolve DNS using cloudflare

expand 0 comments

a.starrysky.fyi submitted #1 2mo

diff interdiff

1 commit

expand

d048a496

fix(pm/acme): resolve DNS using cloudflare

expand 0 comments

a.starrysky.fyi submitted #0 2mo

diff

1 commit

expand

366f6e27

fix(pm/acme): resolve DNS using cloudflare

expand 0 comments