Questions tagged with Amazon Route 53
Content language: English
Sort by most recent
Hi, I registered two domains recently with Route 53. On both of them, I enabled privacy settings. Only one of them worked, as shown by the last updated time of the record via whois.com.
The other is not working, not matter what I tried. So I want to transfer this out of route53 to WordPress. However, it won't even give me a transfer code.
"Sorry, but an unexpected error has occurred while getting your auth code. Please retry again. See system status for more information on current system status."
I built my docker Django app with Django-cookiecutter ( It makes a bootstrap application that is ready for production). The application works fine on my local machine with no errors. I pushed the production images to AWS ECR and used docker context ecs to deploy the application.
Domain converdfile.com is registered at namecheap.
Created a hosted zone converdfile.com on AWS.
On https://dnschecker.org, the A and CNAME, NS and SOA records show as propagated (with the expected four NS values).
I imported my SSL certificate to AWS ACM and attached it to the Network load balancer that was created for me when I deployed the docker-compose file.
It is attached to port 443.
I used https://decoder.link/sslchecker to check my SSL certificate and it works fine.
The hosted zone A and CNAME record both point to the NLB that was created.
When I go to convertdfile.com it gives me a 404 error page
I used https://letsdebug.net/ to test what is wrong and it said
```
www.convertdfile.com has an A (IPv4) record (35.153.250.60) but a request to this address over port 80 did not succeed. Your web server must have at least one working IPv4 or IPv6 address.
A timeout was experienced while communicating with www.convertdfile.com/35.153.250.60: Get "http://www.convertdfile.com/.well-known/acme-challenge/letsdebug-test": context deadline exceeded
```
I checked my logs and found out that there is something wrong with my traefik container it displayed
this at first
```
"Unable to obtain ACME certificate for domains \"convertdfile.com\": unable to generate a certificate for the domains [convertdfile.com]: error: one or more domains had a problem:\n[convertdfile.com] acme: error: 400 :: urn:ietf:params:acme:error:connection :: 54.210.108.238: Fetching http://convertdfile.com/.well-known/acme-challenge/TMGKwtblVaaHETrz1QkZvNl9s3rLNBJ5Wyza_9DDU5o: Timeout during connect (likely firewall problem), url: \n" routerName=flower-secure-router@file rule="Host(`convertdfile.com`)" providerName=letsencrypt.acme
```
then later changed to this
```
Cannot retrieve the ACME challenge for token letsdebug-test: cannot find challenge for token letsdebug-test" providerName=letsencrypt.acme
```
I have troubleshooter all I can think of and don't know what else to do
I checked the security group attached to it and it allows in coming traffic on the loadbalncer.
Here is docker-compose file
```
version: '3'
volumes:
production_postgres_data: {}
production_postgres_data_backups: {}
production_traefik: {}
services:
django: &django
image: public.ecr.aws/t6g1j7b6/image_converter:django
env_file:
- ./.envs/.production/.django
- ./.envs/.production/.postgres
command: /start
networks:
- proxy
- default
postgres:
image: public.ecr.aws/t6g1j7b6/image_converter:postgres
volumes:
- production_postgres_data:/var/lib/postgresql/data:Z
- production_postgres_data_backups:/backups:z
env_file:
- ./.envs/.production/.postgres
traefik:
image: public.ecr.aws/t6g1j7b6/image_converter:traefik
depends_on:
- django
volumes:
- production_traefik:/etc/traefik/acme
ports:
- "0.0.0.0:80:80"
- "0.0.0.0:443:443"
- "0.0.0.0:5555:5555"
networks:
proxy:
```
and here is my traefik.yml file
```
log:
level: INFO
entryPoints:
web:
# http
address: ":80"
http:
# https://docs.traefik.io/routing/entrypoints/#entrypoint
redirections:
entryPoint:
to: web-secure
web-secure:
# https
address: ":443"
flower:
address: ":5555"
certificatesResolvers:
letsencrypt:
# https://docs.traefik.io/master/https/acme/#lets-encrypt
acme:
email: "pawo@fessburn.com"
storage: /etc/traefik/acme/acme.json
# https://docs.traefik.io/master/https/acme/#httpchallenge
httpChallenge:
entryPoint: web
http:
routers:
web-secure-router:
rule: "Host(`convertdfile.com`)"
entryPoints:
- web-secure
middlewares:
- csrf
service: django
tls:
# https://docs.traefik.io/master/routing/routers/#certresolver
certResolver: letsencrypt
flower-secure-router:
rule: "Host(`convertdfile.com`)"
entryPoints:
- flower
service: flower
tls:
# https://docs.traefik.io/master/routing/routers/#certresolver
certResolver: letsencrypt
middlewares:
csrf:
# https://docs.traefik.io/master/middlewares/headers/#hostsproxyheaders
# https://docs.djangoproject.com/en/dev/ref/csrf/#ajax
headers:
hostsProxyHeaders: ["X-CSRFToken"]
services:
django:
loadBalancer:
servers:
- url: http://django:5000
flower:
loadBalancer:
servers:
- url: http://flower:5555
tls:
options:
default:
cipherSuites:
- TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
- TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
- TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
- TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
- TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305
- TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305
minVersion: VersionTLS12
providers:
# https://docs.traefik.io/master/providers/file/
file:
filename: /etc/traefik/traefik.yml
watch: true
```
If there is something I am doing wrong or missing please help out. I have been on this for almost a week now. I am a beginner and don't have anywhere else to turn to.
Can I set up an internal endpoint in one VPC to forward queries from a DNS resolver in a second VPC, where there's a peering connection between the two VPCs? Or are internal endpoints just used to forward queries from private networks that are connected via Direct Connect or Site-to-Site VPN?
Hi,
I urgently need assistance on how to download or create my AWS Domain SSL certificate.
* We created a new domain in AWS yesterday.
* It has been purchased and is correctly provisioned
* We now need that domain's SSL certificate to use in another platform from another service provider.
* The service provider is asking for
- SSL Wildcard Certificate,
- SSL key for this Certificate and
- ca-bundle File (it could be in zip format) for the specified domain.
- The wildcard certificate should cover all sub-domains
We need to obtain this SSL certificate and email it to the service provider.
We have searched all AWS documentation, but cannot find anything to do with obtaining the SSL certificate.
We need to send this SSL certificate to the service provider, but we cannot find anyway to obtain it in AWS.
Please could anyone assist?
Hi, how can I "mask" an MSK endpoint with a custom domain? I'm trying to find a solution that won't cause SSL issues.
Thanks!
I am a non technical person with severe medical condition.
I purchased multiple domain names and Route 53 hosting service from AWS.
I hired a freelance web developer to develop my website on AWS and make it live.
I created a user account for him but he is facing many issues.
My web developer is asking me to give him the login details (password) because we have been waiting for few days now for help from AWS technical support.
My questions are:
1. Shall I give my Root/Account owner's password to my web developer who I have hired on contract basis?
2. My web developer is getting following error messages while trying to create and launch an instance on Ubuntu to deploy Wordpress on AWS:
API ERROR (for instances, instances running, placement groups, volumes, dedicated hosts, key pairs, security groups, Elastic IPs, Load Balancers, Snapshots)
AMI ID not valid (for Ubuntu),
"An error occured loading the data (for Instance type).
3. How can I give access to one of my domain names to my web developer?
Please note that I am suffering from a severe medical condition. It is very difficult to speak with AWS because they return my call at 2 am and 4 am in the night. This disturbs my sleep.
One the other hand I am paying to a web developer to build my website.
Thanks.
I have a Vue js app running on a subdomain - app.domain.com.
The homepage is simple html/css and I want to host it at www.domain.com
I want to keep these two projects separate as I am managing the Vue code, and someone else is handling the non-app pages using different technologies with different deployment schedules.
Both are in their own git repo and I have set up two separate Amplify apps. I have already successfully set up the Vue application to point to the 'app' subdomain.
Trying to set the domain for the homepage Amplify application to www.domain.com tells me (correctly) that domain.com is in use with another Amplify app.
Any suggestions as to how I get around this?
For example, can I put the two projects in the same repo, pointing one to app.domain.com and the other to www.domain.com?
Thanks
I have an existing domain name registered at Register.com
I would like to experiment with hosting a website on AWS using this domain name.
Typically when changing hosts I would change the DNS settings at Register.com to use new host DNS.
I'm not sure how to accomplish that here. I have skimmed tutorial for creating a static website but that has domain registered in Route 53....
I see I can create a Hosted Zone in Route 53, but I'm not clear if I use the dns entries that are generated there and populate them on Register.com or....
Any input or links on how to have AWS hosted website use my existing domain name on Register.com would be appreciated.
Hi,
I have a domain on AWS Lightsail with more than 311 entries. I can continue to create more entries, but it looks like the "aws lightsail get-domain --domain-name example.com" returns a maximum of 311 domainEntries and does not provide pagination (like the get-domains or other command).
Lightsail console also will list that maximum of 311 entries with no pagination. We can figure that we have more than that number by deleting some entries. Entries not displayed before will then be listed (in the lightsail console or in the result of a CLI ok SDK query) after the deletion, up to the maximum of 311.
Is it a bug or I am doing something wrong ? If it is a bug, is it the right place to report it here ?
Thank you
Hi!
I am trying to link my amplify app to my google domain but i get the following error. Does anyone have any idea?
Thanks!
One or more domains requested are already associated with another Amplify app: xxxxxmydomain.com
Hey team! I keep getting the following message...."We’re currently unable to verify your domain. You might need to wait longer for your domain host to update your information. If that doesn’t happen soon, try verifying again."
I am NOT an IT professional by any means. With that said I cannot for the life of me get my domain verified. I have the right TXT type file, I did all of it but I have no clue why this is not working. Yes I have waited the 72 hours and nothing is working. I currently have 4 Types within the domain of MX, NS, SOA, and TXT. I have no idea if I need to delete them and just have TXT? No clue, but I need help please!!
Hi I don't work in IT and did a course in cloud computing where I had to purchase my own domain using route 53. What i gather it automatically created a hosted zone for me by doing so.
I don't need the domain at the moment but may decide to use it later. Can i recreate the same hosting zone after if I delete it now? I don't want to be billed if not used.
many thanks