Closed no-usernames-left closed 3 months ago
I have to refer you upstream for this. The dynamic DNS configuration that my template generates should be valid for most providers.
The issue is probably in the compiled module using the API in unexpected ways.
If the (potential) issue is fixed there we can downstream it into a new caddy binary.
Maybe implementing this could potentially fix it, but unsure since it could be still an upstream issue too.:
Maybe implementing this could potentially fix it
At the very minimum there is a bug where the 0.0.0.0
record had its TTL updated and a new record was also created with the correct IP, which is broken no matter how you look at it. So I am not confident on this; it looks like the update-vs-create logic in the Gandi module is buggy.
Important notices
Describe the bug With a wildcard domain and two subdomains as configured here, I wish to have Dynamic DNS update only one of the subdomains,
fw.DOMAIN.TLD
, which is anA
record. (The other subdomain is aCNAME
pointing tofw
, and therefore Dynamic DNS is only enabled forfw
.)Caddy is able to fetch a certificate using a DNS-01 challenge, so I know the Gandi token is good. However, the
A
record is not being updated.Expected behavior No error message and a single
A
record reflecting the tracked interface's IP.Actual behavior There was already an
A
record forfw
in theDOMAIN.TLD
zone with TTL 300 (the shortest TTL supported by Gandi). When the IP of the tracked interface matched what was already in DNS, the log output below was generated and no changes were made in Gandi DNS.Most recent output at the top, with the first line being the error in question:
However, while troubleshooting this issue I manually set the IP of the
A
record to0.0.0.0
, restarted Caddy, and:0.0.0.0
record was changed from 300 to 3600 (matching the 1-hour TTL configured in the web GUI), but the IP was not changed; andA
record (yes, duplicate label offw
) was created with TTL 3600 and the correct IP, resulting in both records being returned in queries. This is broken.Here's the log output in that case, throwing the same
domain not found in DNS
error as above, but with two extra records above it which I was glad to see:Environment OPNsense Business 24.4_8 (amd64) caddy-custom 2.7.6.5.0.3.5.516 (wow)_ os-caddy 1.5.4_1