How to use Wildcard Domain CNAME and a Custom SSL Certificate? Follow
You can set up a wildcard domain and custom certificate on the Section platform.
1. Add a wildcard domain to the domains i.e. *.wildcard-section.com.
Notice the W for WILDCARD in the CNAME sectiondns.top.w.c.section.io
*.sectiondns.top. 3600 IN CNAME sectiondns.top.w.c.section.io
2. Once the wildcard domain is engaged, upload a wildcard SSL custom certificate generated off-platform.
We currently do not support wildcard Let's Encrypt certificates.
An example DNS dig should look like this.
❯ dig *.sectiondns.top
; <<>> DiG 9.10.6 <<>> *.sectiondns.top
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 34093
;; flags: qr rd ra; QUERY: 1, ANSWER: 6, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 512
;; QUESTION SECTION:
;*.sectiondns.top. IN A
;; ANSWER SECTION:
*.sectiondns.top. 3600 IN CNAME sectiondns.top.w.c.section.io.
sectiondns.top.w.c.section.io. 300 IN CNAME xqbiblt5b3i4ticudyqlmqhoo3sd5quo.e.ns1.sectionedge.com.
xqbiblt5b3i4ticudyqlmqhoo3sd5quo.e.ns1.sectionedge.com. 300 IN CNAME do-nyc-k2.ep.section.io.
do-nyc-k2.ep.section.io. 120 IN A 45.55.40.190
do-nyc-k2.ep.section.io. 120 IN A 159.65.166.239
do-nyc-k2.ep.section.io. 120 IN A 167.172.237.247
;; Query time: 356 msec
;; SERVER: 75.75.75.75#53(75.75.75.75)
;; WHEN: Wed Sep 22 11:33:15 PDT 2021
;; MSG SIZE rcvd: 231
The bare domain can be used on the anycast network on a separate app, but the domain otherwise cannot be used anywhere on the platform.
Comments
0 comments
Article is closed for comments.