I deleted my aws account and started Google Cloud from scratch. But when I enter my previous IP from aws in address bar it automatically goes to my new website on google. Why is that? I already removed my hosted zones and changed the DNS settings before deletion.
Because of that I'm getting an error on my SSL certificate. SSL checkers still show my self-signed certificate while I created a new one with Comodo. Does anyone knows why is that?
Thank you!
Hiva
Related
Can someone answer a simple SSL Cert question for me to derisk my decision?
My Stack: Bitami WordPress instance on GCP VM.
Situation
I have a website with an SSL cert linked to my domain name.
I started an instance with a new static IP address.
I remapped the domain name to the new servers and added the correct credentials [confirmed everything is configured correctly with the GCP team].
Ran -dig command and confirmed new instance is mapped to the domain name.
Problem
The domain name will not load in the browser. Get the "NET:: ERR_CERT_INVALID" message.
My Diagnosis
I haven't transferred my SSL to my new IP address.
Confusion
Everywhere I read says the SSL is mapped to the domain name, not the IP address itself. So theoretically there should not be an issue.
Question(s) to you
Do I solve this simply by generating new SSL cert on the new instance? Will that just overwrite the old SSL cert and map my domain name to the new SSL cert?
If not - what's the solution?
I don't understand the technical relationship between IP address, domain names, and certs. I have read as much as I can and everyone seems to talk around it but not explain it in detail.
Thanks in advance!
Bitnami Engineer here,
If you created a new instance from scratch, you will need to migrate the SSL certificates from the first instance to the second one. You can either copy the SSL certificates from the machine or download them again from the CA website and substitute the files you have in the /opt/bitnami/apache2/conf folder.
In case you were using a Let's Encrypt certificate, you can generate new certificates by using the Bitnami HTTPS configuration tool (/opt/bitnami/bncert-tool) or by running the CLI tool to generate new certificates. If you use the Bitnami HTTPS configuration tool, you won't need to modify the Apache's configuration, the tool will do that for you. You can learn more about it here
https://docs.bitnami.com/google/how-to/understand-bncert/
Please remember to confirm that the domain name is configured properly by checking your domain using this online tool before trying to generate the certificates
https://www.whatsmydns.net/
New problem.
I used the bncert tool as per Jotas recommendation and it worked well.
I checked my domain name via 'whatsmydns' as well as my SSL via an SSL checking tool. All worked out as expected - my IP address is matching against my Domain name and SSL is matching against my domain name.
I type my domain name into the browser and it loads my site with the padlock, across all browsers.
So from the outside - it looks like everything is fine.
But I have two issues still.
Problem #1:
In my WordPress 'general>settings', I tried to update my 'WordPress address' and 'site address' but they are greyed out. So I updated my wp-config file with the new https addresses as per these instructions which have worked for me before without issues (https://www.wpbeginner.com/wp-tutorials/how-to-change-your-wordpress-site-urls-step-by-step/). It didn't break the site, but I could no longer log in. As soon as I deleted the new wp-config code, I could log in again. So if that won't work, I now have no course of action to update my 'WordPress' and 'site' addresses.
So my questions are - do you know why this won't work? Is it a bitnami quirk? And does it matter? If the domain is working, does it matter if I keep the wp-config file as an http address and not an https address?
Problem #2:
My domain name takes me to my site at the correct IP address. It loads with a secure padlock icon. I can log in. Everything works as it should.
If I use the IP address, however, instead of the domain name, it also loads the same site but as an insecure site with no padlock.
Question - Any idea how that is possible? I thought a domain name was just a human-friendly version of an IP address. And if the webserver is a single server, how can using a domain name versus an IP address generate different front end results?
Thanks again team, as a person who is new to this community, it really does give you faith in humanity.
I have a webiste hosted in a web hosting which is down.
My domain was pointing to this website hosting so I changed DNS records to a new hosting because we didn't recieve any emails.
In this new hosting, I changed MX records to GSuite and email is working OK.
I need to get a backup from my webiste so when the web hosting which is down comes up, I want to point my DNS for http to that webhosting so I can access the site. After backup is done, I will revert my DNS changes back so all is resolved in my new hosting.
Is there any way I can do this at DNS level without affecting the current MX records which are working OK?
Regards
I solved by changing "A" DNS record to point to the older server DNS IP.
I am trying to point a domain from a website (radicalxchange.org) currently hosted by Firebase to a new version hosted in a Digital Ocean droplet. The name servers are managed by AWS Route53. When I change the A record in Route53 to my D.O. droplet IP address (167.99.59.52), the site immediately stops loading. I've tried to wait a few hours but it never connects.
I should note that Route53 contains a lot of other stuff related to our site (CNAME, MX & TXT records) however I've been under the impression that the only thing necessary to route website traffic to the new IP is the A record. What am I doing wrong?
Well, your Digital Ocean droplet is kind of misconfigured:
1) from current hosting, you have permanent redirect to https (and if your browser have that already cached, it will immediately go to https://radicalxchange.org), and you don't have https configured in your new hosting
2) Even if you use clean browser, your new http://radicalxchange.org will redirect you to http://167.99.59.52/, which is quite strange.
I suggest you hardcode 167.99.59.52 radicalxchange.org entry in your hosts file, and test thoroughly, and only then make DNS changes.
Just trying to set up SSL https for my site, using the Bitnami Tool bncert-tool. It shall automate the SSL setup by naming the domain. Unfortunately, I get the message
Warning: The domain 'mypage' does not resolve, please fix its DNS entries or remove it.
Press [Enter] to continue:
Thing is, I can get to the page via domain name and the IP. So no Problem on that side.
I have no clue! I have set up an elastic IP in EC2 and connected the domain in Route53 by adding the dataset. Has some faced the problem before and cases.
From the warning message, 'mypage' is not a domain. Actually have to enter in the full domain path such as
www.google.com
or
google.com
Good luck.
I have hosted my WP app in AWS EC2 and is using GoDaddy DNS to point it to my domain. I received and email from GoDaddy stating that my site is blacklisted by McAfee as Malicious. Please see the image:
Now, when I try to access my website Google shows an error page with the following content : DNS_PROBE_FINISHED_NXDOMAIN. Is this because my site is blocked due to the McAfee blacklisting. Any help on this is highly appreciated, Thanks in advance.
DNS_PROBE_FINISHED_NXDOMAIN means that your domain is no longer pointing to your server.
to troubleshoot you may use these steps:
check your domain resolve status via this tool https://dnschecker.org
if NOT resolved at all register a Cloudflare account then change name servers in your registrar panel to NS provided by cloudflare.
make sure that all DNS entries are like original zone.
wait for propagation and recheck https://dnschecker.org
restart your home router and run this command on windows CMD ipconfig /flusdns
if you are on Debian/Ubuntu run sudo /etc/init.d/networking restart
You can try below solution to fix DNS_PROBE_FINISHED_NXDOMAIN issues.
Release and Renew IP Address
Restart DNS Client Service
Change DNS Servers
Reset Your Browser
Disable VPN and Antivirus Temporarily
try this post for complete info:- DNS_PROBE_FINISHED_NXDOMAIN