Acme-dns not starting

ensystechnology · February 22, 2022, 4:38pm

Hi, I tried to install acme-dns but the service doesn’t start.

systemctl status acme-dns
● acme-dns.service - Limited DNS server with RESTful HTTP API to handle ACME DNS challenges easily and securely
Loaded: loaded (/etc/systemd/system/acme-dns.service; enabled; vendor preset: disabled)
Active: failed (Result: start-limit) since Tue 2022-02-22 17:29:29 CET; 6s ago
Process: 14811 ExecStart=/usr/local/bin/acme-dns (code=exited, status=1/FAILURE)
Main PID: 14811 (code=exited, status=1/FAILURE)

Help!

danb35 · February 22, 2022, 5:12pm

Anything in the logs? What’s the output of grep acme-dns /var/log/messages?

ensystechnology · February 23, 2022, 11:02am

Feb 22 15:50:15 service systemd: acme-dns.service holdoff time over, scheduling restart.
Feb 22 15:50:15 service acme-dns: time=“2022-02-22T15:50:15+01:00” level=info msg=“Using config file” file=/etc/acme-dns/config.cfg
Feb 22 15:50:15 service acme-dns: time=“2022-02-22T15:50:15+01:00” level=fatal msg=“listen udp publicIP:1053: bind: cannot assign requested address”
Feb 22 15:50:15 service systemd: acme-dns.service: main process exited, code=exited, status=1/FAILURE
Feb 22 15:50:15 service systemd: Unit acme-dns.service entered failed state.

danb35 · February 23, 2022, 3:53pm

Well, that’s your problem, but I wonder why. Is something else listening on port 1053? What’s the output of netstat -tulpn | grep ":1053"?

ensystechnology · February 24, 2022, 8:26am

Nothing.

ensystechnology · February 24, 2022, 11:26am

I managed to start acme-dns. Now I can’t start acme-dns-api. I have this error:

[root@acme config.cfg]# systemctl status acme-dns-api
Unit acme-dns-api.service could not be found.

danb35 · February 24, 2022, 11:39am

That’s normal; acme-dns-api is only a firewall entry.

ensystechnology · February 24, 2022, 1:28pm

but if I run the command:

[root@acme config.cfg]# openssl s_client -connect localhost:8675
socket: Bad file descriptor
connect:errno=9

danb35 · February 24, 2022, 2:03pm

What’s the output of config show acme-dns-api?

ensystechnology · February 24, 2022, 2:14pm

[root@acme ~]# config show acme-dns-api
acme-dns-api=service
FullchainPath=
KeyPath=
TCPPort=8675
TLSType=letsencrypt
UseTLS=enabled
access=green,red
status=enabled

danb35 · February 24, 2022, 2:32pm

Are you sure acme-dns is running? systemctl status acme-dns

ensystechnology · February 28, 2022, 9:39am

[root@acme ~]# systemctl status acme-dns
● acme-dns.service - Limited DNS server with RESTful HTTP API to handle ACME DNS challenges easily and securely
Loaded: loaded (/etc/systemd/system/acme-dns.service; enabled; vendor preset: disabled)
Active: active (running) since Mon 2022-02-28 10:37:58 CET; 284ms ago
Main PID: 30829 (acme-dns)
CGroup: /system.slice/acme-dns.service
└─30829 /usr/local/bin/acme-dns

Feb 28 10:37:58 DOMAIN systemd[1]: Started Limited DNS server with RESTful HTTP API to handle ACME DNS challenges easily and securely.
Feb 28 10:37:58 DOMAIN acme-dns[30829]: time=“2022-02-28T10:37:58+01:00” level=info msg=“Using config file” file=/etc/acme-dns/config.cfg
Feb 28 10:37:58 DOMAIN acme-dns[30829]: time=“2022-02-28T10:37:58+01:00” level=info msg=“2022/02/28 10:37:58 [INFO][cache:0xc000080640] Started certificate m…e routine”
Hint: Some lines were ellipsized, use -l to show in full.