1. The problem I’m having:
I’m trying to point two different domains to the same server/service:
Caddyfile part:
#Calibre comics server
comics.byrd.id.au {
reverse_proxy 192.168.20.2:8084
}
comics.byrd.au {
reverse_proxy 192.168.20.2:8084
}
I recently shifted DNS to Cloudflare for the byrd.au domains. All my existing subdomains for byrd.au are working fine.
The original domain (comics.byrd.id.au) still works fine (and has been working fine for some time. This domain is not behind Cloudflare (yet).
2. Error messages and/or full log output:
Trying to access comics.byrd.au I get a “SSL Handshake failed - Error code 525” (via Cloudflare).
Caddy error:
Mar 28 16:46:06 aerie-server caddy[2231]: {"level":"error","ts":1711608366.212431,"logger":"http.acme_client","msg":"challenge failed","identifier":"comics.byrd.au","challenge_type":"tls-alpn-01","problem":{"ty>
Mar 28 16:46:06 aerie-server caddy[2231]: {"level":"error","ts":1711608366.2125094,"logger":"http.acme_client","msg":"validating authorization","identifier":"comics.byrd.au","problem":{"type":"urn:ietf:params:a>
Mar 28 16:46:07 aerie-server caddy[2231]: {"level":"info","ts":1711608367.7519946,"logger":"http.acme_client","msg":"trying to solve challenge","identifier":"comics.byrd.au","challenge_type":"http-01","ca":"htt>
Mar 28 16:46:39 aerie-server caddy[2231]: {"level":"error","ts":1711608399.3129358,"logger":"http.acme_client","msg":"challenge failed","identifier":"comics.byrd.au","challenge_type":"http-01","problem":{"type">
Mar 28 16:46:39 aerie-server caddy[2231]: {"level":"error","ts":1711608399.3130224,"logger":"http.acme_client","msg":"validating authorization","identifier":"comics.byrd.au","problem":{"type":"urn:ietf:params:a>
Mar 28 16:46:39 aerie-server caddy[2231]: {"level":"error","ts":1711608399.3130732,"logger":"tls.obtain","msg":"could not get certificate from issuer","identifier":"comics.byrd.au","issuer":"acme-v02.api.letsen>
Mar 28 16:46:39 aerie-server caddy[2231]: {"level":"info","ts":1711608399.3141387,"logger":"http","msg":"waiting on internal rate limiter","identifiers":["comics.byrd.au"],"ca":"https://acme.zerossl.com/v2/DV90>
Mar 28 16:46:39 aerie-server caddy[2231]: {"level":"info","ts":1711608399.31418,"logger":"http","msg":"done waiting on internal rate limiter","identifiers":["comics.byrd.au"],"ca":"https://acme.zerossl.com/v2/D>
Mar 28 16:46:41 aerie-server caddy[2231]: {"level":"info","ts":1711608401.682929,"logger":"http.acme_client","msg":"trying to solve challenge","identifier":"comics.byrd.au","challenge_type":"http-01","ca":"http>
Mar 28 16:50:10 aerie-server systemd[1]: /etc/systemd/system/caddy.service:1: Assignment outside of section. Ignoring.
3. Caddy version:
v2.7.6
4. How I installed and ran Caddy:
a. System environment:
Ubuntu MATE 22.04.04 LTS
x64
systemd
b. Command:
systemctl start caddy
(runs automatically)
c. Service/unit/compose file:
caddy.service
#
# For using Caddy with a config file.
#
# Make sure the ExecStart and ExecReload commands are correct
# for your installation.
[Unit]
Description=Caddy
Documentation=https://caddyserver.com/docs/
After=network.target network-online.target
Requires=network-online.target
[Service]
Type=notify
User=caddy
Group=caddy
ExecStart=/usr/bin/caddy run --environ --config /etc/caddy/Caddyfile
ExecReload=/usr/bin/caddy reload --config /etc/caddy/Caddyfile --force
TimeoutStopSec=5s
LimitNOFILE=1048576
LimitNPROC=512
PrivateTmp=true
ProtectSystem=full
AmbientCapabilities=CAP_NET_ADMIN CAP_NET_BIND_SERVICE
[Install]
WantedBy=multi-user.target
d. My complete Caddy config:
PASTE OVER THIS, BETWEEN THE ``` LINES.
# Set this path to your site's directory.
#root * /usr/share/caddy
# Enable the static file server.
#file_server
#Reverse proxys:
#Calibre book server
books.byrd.id.au {
reverse_proxy 192.168.20.2:8083
}
#Calibre comics server
comics.byrd.id.au {
reverse_proxy 192.168.20.2:8084
}
comics.byrd.au {
reverse_proxy 192.168.20.2:8084
}
#Photoprism
photoprism.byrd.id.au {
reverse_proxy 192.168.20.2:2342
}
#Ghost blog
migratory.byrd.au {
reverse_proxy 192.168.20.2:2368
}
#Whoogle
whoogle.byrd.au {
reverse_proxy 192.168.20.2:5001
}
#Stirling PDF
pdf.byrd.au {
reverse_proxy 192.168.20.2:8070
}
#Memos notes
memos.byrd.au {
reverse_proxy 192.168.20.2:5230
}