Started with not being able to renew Certbot, which hinted at that I generally can’t resolve outgoing DNS from my server.
nslookup acme-v02.api.letsencrypt.org
or
nslookup amazon.com
i.e. simply fail.
Any idea how and where to fix that?
This textbox defaults to using Markdown to format your answer.
You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.
Sign up for Infrastructure as a Newsletter.
Working on improving health and education, reducing inequality, and spurring economic growth? We'd like to help.
Get paid to write technical tutorials and select a tech-focused charity to receive a matching donation.
Hi @svenwalrus,
Make sure your firewall is not the issue. It’s possible you’ve denied outgoing connections on Iptables or UFW (depending on what you use). That’s the first thing I would look.
Solution: Uncommenting
#DNS=
and#FallbackDNS=
and adding Cloudflare IP (1.1.1.1) and Cloudflare fallback (1.0.0.1) in/etc/systemd/resolved.conf
resolved the issue for me.before:
after:
So, uncommenting and entering Cloudfare DNS into /etc/systemd/resolved.conf did it.
Problem resolved