Hi,
i noticed in DA 1.664 when restoring from a DA 1.655 backup, that while the restore is running, the acme is trying to use dns-01 solver which starts deleting and adding acme-challenge records and reloading named, which gets propagated to the secondary DNS server. When then the restore is finished, the restored zonefile has an earlier serial number so the secondary dns ofcourse reports
pdns_server: Domain 'example.com' more recent than master, our serial 2024062638 > their serial 2024062600
The serial 2024062638 is from the acme actions, while the serial 2024062600 is from the restored zonefile from backup.
So either the zonefile restore should precede the start of acme, or the acme should wait until restore is finished.
Thank you & best regards,
Floris
i noticed in DA 1.664 when restoring from a DA 1.655 backup, that while the restore is running, the acme is trying to use dns-01 solver which starts deleting and adding acme-challenge records and reloading named, which gets propagated to the secondary DNS server. When then the restore is finished, the restored zonefile has an earlier serial number so the secondary dns ofcourse reports
pdns_server: Domain 'example.com' more recent than master, our serial 2024062638 > their serial 2024062600
The serial 2024062638 is from the acme actions, while the serial 2024062600 is from the restored zonefile from backup.
So either the zonefile restore should precede the start of acme, or the acme should wait until restore is finished.
Thank you & best regards,
Floris