go figure, and update screwed up the tutorial. I also forgot a step in part 2(My Bad)
Step 2 is now )
cd /etc/named
dnssec-keygen -a HMAC-SHA512 -b 512 -n HOST acme
cat K*.private
(Copy the line after KEY:)
nano /etc/named.conf
add at the top under the comments
key "acme" {
algorithm hmac-md5;
secret "(KEY GOES HERE)";
};
/var/named/acme.schaffner.org.db
Code: [Select]
$ORIGIN .
$TTL 86400 ; 1 day
acme.schaffner.org IN SOA ns1.schaffner.org. rcschaff82.gmail.com. (
2020021035 ; serial
86400 ; refresh (1 day)
7200 ; retry (2 hours)
3600000 ; expire (5 weeks 6 days 16 hours)
86400 ; minimum (1 day)
)
$TTL 14400 ; 4 hours
NS ns1.schaffner.org. ; THIS IS IMPORTANT. DO NOT USE BOTH NAMESERVERS FOR LE
$ORIGIN acme.schaffner.org.
$TTL 60 ; 1 minute
Done, but it's displayed corrupted in DNS Functions > List DNS Zones >Edit Records
I don't care what CWP says. What's the ouput of
named-checkzone acme.schaffner.org /var/named/acme.schaffner.org.db
Code: [Select]
NSUPDATE_SERVER=localhost NSUPDATE_KEY=/etc/named/acme.key ./.acme.sh/acme.sh --issue --test -d *.domain.com --challenge-alias acme.schaffner.org --dns dns_nsupdate --debug 2
Return: -bash: ./.acme.sh/acme.sh: No such file or directory
run /scripts/install_acme