TOPIC:

Background information Our club First Burlington Toastmasters have used a domain provider for close to 20 years back when we hard coded our club website. We migrated to FTH since version 1 but kept our domain name of Firstburlingtontoastmasters.org Renewal of the domain is yearly in August.

The following message has been posted from FTH to our club website:
[2020-07-18 08:00:52 GMT, FreeToastHost System Warning] *** IMPORTANT! ***

NOTE: We were unable to create / renew a HTTPS certificate for your custom domain: www.firstburlingtontoastmasters.org
This means that you will not be able to access your website using https:// with your custom domain
name after any existing certificates expire.

Possible causes may include:
a. Your DNS records are set up incorrectly.
b. You are using domain forwarding--it is *not* supported.
c. Your custom domain has expired.
d. The custom domain listed in the admin console is no longer being used.

*** Note that the system may remove your custom domain from the database to prevent further invalid
attempts at cert renewals.

You may also access your website via 3074.toastmastersclubs.org

You can check your custom domain's expiration date using:
who.is/whois/www.firstburlingtontoastmasters.org

You can view your current DNS records using:
www.digwebinterface.com/?hostnames=www.f...ns=auth&nameservers=

You can try to troubleshoot your DNS records using:
www.dnsstuff.com/tools#dnsReport|type=do...gtontoastmasters.org

Please contact the FreeToastHost support team at support.toastmastersclubs.org for more details and assistance.

I sent this message to our domain provider and received the following reply:
Thank you for contacting us.

It is likely because your domain is under cloudflare protection, and is currently pointing to cloudflare's DNS. We can point your domain to your host's name-based DNS if you can provide it to us. This should solve the SSL issue.

I believe I had to make this change several months ago so my interpretation is that as FTH improves the website security it is not compatible with our domain.
I realize this is not directly a FTH issue but I am hoping for some feedback that I can take back to the club as it looks like we should not renew our domain in August and use the domain provided by FTH which I know will be different.

I hope I have provided sufficient details but will be happy to provide additional if needed.

Thanks

Guy

Your domain is not pointing at the correct IP.
You need to change your DNS to point to 50.19.253.65

delete
firstburlingtontoastmasters.org. 300 IN A 104.27.160.22
firstburlingtontoastmasters.org. 300 IN A 172.67.219.13
firstburlingtontoastmasters.org. 300 IN A 104.27.161.22

Delete
mail.firstburlingtontoastmasters.org. 300 IN A 172.67.219.13
mail.firstburlingtontoastmasters.org. 300 IN A 104.27.161.22
mail.firstburlingtontoastmasters.org. 300 IN A 104.27.160.22

Add
firstburlingtontoastmasters.org. 300 IN A 50.19.253.65

add
mail.firstburlingtontoastmasters.org. 300 IN A 50.19.253.65

add MX
firstburlingtontoastmasters.org. 1963 IN MX 0 mail.firstburlingtontoastmasters.org

Brian

I asked our Domain provider to set the DNS per instructions provided by FTH
This was confirmed this morning but when I went to log in to the website I received this message
Your connection is not private
Attackers might be trying to steal your information from firstburlingtontoastmasters.org (for example, passwords, messages, or credit cards). Learn more
NET::ERR_CERT_DATE_INVALID

I asked to have the DNS reset to previous which was done this morning
Thank you for contacting us.

The IP has been changed from the new one 50.19.253.65 to the old previous 172.67.219.13.
but when I went to log in I received this message
Error 1000 Ray ID: 5b552fa96e75c554 • 2020-07-19 14:38:26 UTC
DNS points to prohibited IP
What happened?
You've requested a page on a website (www.firstburlingtontoastmasters.org) that is on the Cloudflare network. Unfortunately, it is resolving to an IP address that is creating a conflict within Cloudflare's system.

What can I do?
If you are the owner of this website:
you should login to Cloudflare and change the DNS A records for www.firstburlingtontoastmasters.org to resolve to a different IP address.
Does an adjustment need to be made on FTH If so thank you

Guy

not sure what they did but the IP is still wrong

delete
firstburlingtontoastmasters.org. 3600 IN A 172.67.219.13
mail.firstburlingtontoastmasters.org. 3600 IN A 172.67.219.13

Add
firstburlingtontoastmasters.org. 300 IN A 50.19.253.65
mail.firstburlingtontoastmasters.org. 300 IN A 50.19.253.65

We are not able to log in to club website via firstburlingtontoastmasters.org but can log in via 3074.toastmasters
Still have the same message from when domain host made changes
Your connection is not private
Attackers might be trying to steal your information from www.firstburlingtontoastmasters.org (for example, passwords, messages, or credit cards). Learn more
NET::ERR_CERT_DATE_INVALID

Previous instructions from Free Toast Host
delete
firstburlingtontoastmasters.org. 3600 IN A 172.67.219.13
mail.firstburlingtontoastmasters.org. 3600 IN A 172.67.219.13
Add
firstburlingtontoastmasters.org. 300 IN A 50.19.253.65
mail.firstburlingtontoastmasters.org. 300 IN A 50.19.253.65
Where would this be entered?
Also sent inquiry to domain holder (not sure where changes need to be made) on Sunday they said they had made changes but would take several hours .
We are pretty sure we will not be renewing our domain name with this company
Can provide and example of the url name convention from FTH using First Burlington Toastmasters

Thanks for your assitance
Guy

I just triggered a cert regen... Everything looks good now.