SSL error - used DNS CNAME www to point to $myproj.dorik.io

first prod site on dorik ( used to be on Heroku ) .

I changed the DNS that was pointing at heroku .

OLD DNS for www : damp-wildwood-6168.herokuapp.com

NEW DNS : Myproj.dorik.io

Expected behavior - http(s)://www.yayatv.tv redirects to //myproj.dorik.io

Actual --> SSL ERR

stdout from curl :

src$ curl -v -L http://www.yayatv.tv

GET / HTTP/1.1
Host: www.yayatv.tv
User-Agent: curl/7.47.0
Accept: /

< HTTP/1.1 308 Permanent Redirect
< Connection: close
< Location: https://www.yayatv.tv/
< Server: Caddy
< Date: Wed, 30 Sep 2020 20:29:29 GMT
< Content-Length: 0
<

  • Closing connection 0
  • Issue another request to this URL: ‘https://www.yayatv.tv/
  • Trying 174.138.116.26…
  • Connected to www.yayatv.tv (174.138.116.26) port 443 (#1)
  • found 127 certificates in /etc/ssl/certs/ca-certificates.crt
  • found 513 certificates in /etc/ssl/certs
  • ALPN, offering http/1.1
  • SSL connection using TLS1.2 / ECDHE_ECDSA_AES_256_GCM_SHA384
  • server certificate verification OK
  • server certificate status verification SKIPPED
  • common name: www.yayatv.tv (matched)
  • server certificate expiration date OK
  • server certificate activation date OK
  • certificate public key: EC
  • certificate version: #3
  • subject: CN=www.yayatv.tv
  • start date: Wed, 30 Sep 2020 19:25:48 GMT
  • expire date: Tue, 29 Dec 2020 19:25:48 GMT
  • issuer: C=US,O=Let’s Encrypt,CN=Let’s Encrypt Authority X3
  • compression: NULL
  • ALPN, server accepted to use http/1.1

GET / HTTP/1.1
Host: www.yayatv.tv
User-Agent: curl/7.47.0
Accept: /

< HTTP/1.1 302 Found
< Location: https://yayatv.tv/
< Referrer-Policy: no-referrer-when-downgrade
< Server: Caddy
< Strict-Transport-Security: max-age=31536000;
< X-Content-Type-Options: nosniff
< X-Frame-Options: DENY
< Date: Wed, 30 Sep 2020 20:29:30 GMT
< Content-Length: 0
<

  • Connection #1 to host www.yayatv.tv left intact
  • Issue another request to this URL: ‘https://yayatv.tv/
  • Trying 216.250.121.52…
  • Connected to yayatv.tv (216.250.121.52) port 443 (#2)
  • found 127 certificates in /etc/ssl/certs/ca-certificates.crt
  • found 513 certificates in /etc/ssl/certs
  • ALPN, offering http/1.1
  • gnutls_handshake() failed: Internal error
  • Closing connection 2
    curl: (35) gnutls_handshake() failed: Internal error

So, its not just a matter of updating the old CNAME to point to sub.dorik.io

We do not use CNAME to Subdomain. We use our A record to point to our server. :slight_smile:

Here is the guide https://help.dorik.io/site-settings-integrations/custom-domain-configuration

So here is what you need to do.

  1. Add your domain yayatv.tv on Dorik. Here is how you can do it from site config https://help.dorik.io/site-settings-integrations/custom-domain-configuration

  2. Go to your DNS settings.
    Add an A record with value @ and point it to our IP 174.138.116.26
    Then add a CNAME record with value www and point it to yayatv.tv

It will work. Let me know if you are still facing the issue. :slight_smile:

1 Like