bncert says my domain resolves to a different IP address, but it is not

Question

I have this probably easy problem:

I'm trying to use bncert-tool on my aws wordpress website machine. I transferred my domain from elsewhere to aws, made an hosted zone, also the static ip address.

nslookup works, writing the right ip.

Reading this answer i went to www.whatsmydns.net and every query gets an almost all green lights.

Trying to simply reach the website with a browser works: i can see my website normally (except that tls warning).

Can you help me with this? Thank you all.

**Update** i also changed ip, the dns, and now it's propagated. i thought maybe the dns was messed up... i wasn't probably — J.J.Enrik, May 16 '21 at 22:07
After changing the IP and updating the DNS records, did you manage to generate the SSL certificate using the Bitnami HTTPS configuration tool? Is everything working as expected? — Jota Martos, May 17 '21 at 08:25
@JotaMartos Unfortunately no, i didn't. i'm just using it like this while i wait for any reply — J.J.Enrik, May 20 '21 at 18:04
If you still get the error regarding the domain resolution when using the Bitnami HTTPS configuration tool, please ensure all the domains you set when running the tool (both www and non-www domains) are configured using an A record in your DNS provider (whatsmydns.net should resolve the domain only when A record is selected). If the tool continues failing and you are sure everything is configured properly, you can try to run the tool without the validations by running this command: `sudo /opt/bitnami/bncert-tool --perform_public_ip_validation 0 --perform_dns_validation 0` — Jota Martos, May 21 '21 at 06:45

score 6 · Answer 1 · answered Jun 14 '21 at 08:22

6

I resolved this by confirming by myself that everyting was ok, than executing the command setting it to not perfom dns and ip validation.

answered Jun 14 '21 at 08:22

J.J.Enrik

180
1
9

3

I can confirm it works. Tried out like this as in the comment from Jota Martos. `sudo /opt/bitnami/bncert-tool --perform_public_ip_validation 0 --perform_dns_validation 0` – ibsenv Feb 21 '22 at 06:26
Tks a lot @ibsenv works for me – felipearon Dec 27 '22 at 23:35

score 4 · Answer 2 · answered Jan 19 '23 at 05:33

This can happen because your hostname resolves to an IPv6 address which is not supported by Bitnami. If getent hosts <domain> shows an IPv6 address, this is most likely the problem.

Temporarily remove the IPV6 records from your DNS records and you should be able to run the tool.

bncert says my domain resolves to a different IP address, but it is not

2 Answers2