Letsencrypt uses ipv6 record

rvandam

Verified User
Joined
Aug 28, 2009
Messages
39
For one domain Letsencrypt automatic update fails. For this domain I use the dns service of my registrar, and point this to my server.

In the error message I found that Letsencrypt uses the ipv6 record:

Error: http://mail.mydomain.info/.well-known/acme-challenge/letsencrypt_1586383806 is not reachable. Aborting the script.
dig output for mail.mydomain.info:
mydomain.info.
2a01:4f8:150:2308::2
Please make sure /.well-known alias is setup in WWW server.

Is there a way to force the Letsencrypt auto update to use ipv4?
 
IPv6 is always priority (and not only for Let's Encrypt). I'd suggest removing IPv6 from domain DNS if it's not in use, because customers using IPv6 are unable to reach your website too.
 
@smtalk thank you for the reply.

I now realize that I added a ipv6 record to enable ipv6 on my server some time ago. I decided to postpone ipv6 to my next server migration (to get some time to implement and test)

I removed the ipv6 record for this domain now.
 
Back
Top