Negative TTL issue. Move Cert-Manager to DNS01

shalb / cluster.dev

Cloud-native infrastructure templating. Creating cloud installers for SaaS. Replication of complex cloud-native infrastructures.

https://docs.cluster.dev/

GNU Affero General Public License v3.0

401 stars 36 forks source link

Negative TTL issue. Move Cert-Manager to DNS01 #47

Closed voatsap closed 4 years ago

voatsap commented 4 years ago

Issue with the negative ssl. Cert Manager during http challenge tries to get certificate trough domain that is not currently created. This lead to the issue with negative ssl and DNS names are banned to the domain SOA timeout. To resolve it DNS 01 challenge should be implemented