My domain is dreambold.net, and the SSL was working fine before. But now, as I try to renew the SSL cert, it shows the error message:
SniCertificate::CertificateNonvalidError: Unable to verify challenge for dreambold.net: DNS problem: NXDOMAIN looking up TXT for _acme-challenge.dreambold.net - check that a DNS record exists for this domain
Am not sure how I find the TXT record for my domain on Netlify. Did anyone have this kind of issue?
That some locations are using awsdns-62.com name servers.
I’m also seeing aawsdns-62.comname server respond:
dig dreambold.net NS +trace | tail -n 6
dreambold.net. 172800 IN NS dns1.p01.nsone.net.
dreambold.net. 172800 IN NS dns2.p01.nsone.net.
dreambold.net. 172800 IN NS dns3.p01.nsone.net.
dreambold.net. 172800 IN NS dns4.p01.nsone.net.
;; Received 128 bytes from 22.214.171.124#53(ns-501.awsdns-62.com) in 40 ms
We have a Support Guide that explains inactive DNS Zones and how to detect and fix:
Please read through the guide and let us know if you have any questions.
When configuring DNS, you’ll want to use either External DNS, or Netlify DNS, not both at the same time. Having both setup could cause issues with provisioning the SSL Certificate as mentioned in the Support Guide.
If you don’t want to use Netlify DNS, you’ll want to configure the External DNS.
For dreambold.net you would point an A Record to 126.96.36.199.
For www.dreambold.net you want an A Record that points to dreambold.netlify.app.
Note these changes will need to be made at your registrar for the domain.
Additionally, you’ll want to delete the DNS Zone here by scrolling down to the bottom of the page and clicking on the read Delete DNS Zone button.