Solved Domain is using wrong SSL Cert

P

PeterVeldhuis

Verified User
Joined
Jan 18, 2024
Messages
37
Location
Apeldoorn
Hello all,
I've moved 2 days ago to a new hosting party. On the old one I had for a test website as well the main site it's own reseller. I changed the structure now to publish a test-website as a subdomain. It mains it is sharing also the ssl-certificate.

I'm using Let's Encrypt. I've created the shared certificate, including the main domain, however when I visit the site, I get a cert error (and it pointing to the server-domain instead. Can you guide me with what is wrong?

1747599811858.png

1747599976563.png

1747600007528.png

When I visit the uat of test websites, it is working fine.
1747600145366.png
 
Oke so certificates are all good (you requested a lot lately I see) and the www site is working correctly but the non-www is giving the error.

To me this seems an ipv6 issue.
When I checked with SSLLabs the ipv4 was fine but the ipv6 gave the same error: "Certificate not valid for domain name".

So when looking further I see that www has only ipv4 and the non-www has both ipv4 and ipv6.
The hostname master.ilonashairstyling.nl only has an ipv4 the rDNS/PTR also points to the same ipv6 as the non-www domain.

test record and smtp also only have ipv4.

It could well be that the ipv6 is not connected to the ipv4.


So in order to fix this issue you should fix the ipv6 records, or if you don't use them, remove the rDNS/PTR for master and remove the ipv6 from the domain name (non-www).
 
Thank you Richard for your help on this one. You directed me correctly :)
On the DNS I had an AAAA (IPv6) record. After removing it, the site is working correctly.
 
And don't forget to remove the ipv6 rDNS/PTR for the hostname if you don't ipv6 for that one too, it can give odd results. ;)
 
You must log in or register to reply here.
Back
Top