CD
Cloudflare Developers17mo ago
John Kirkpatrick

DNS only A record doesn't work with browser.

If I go to the IP addr, the page loads, but using the domain name, it doesn't. When I check it with chrome chrome://net-internals/?#dns I get the msg: Resolved IP addresses of "netverse.dev": ["74.208.128.73"]. No data on which protocols are supported.
7 Replies
1.1.1.1
1.1.1.117mo ago
DNS over Discord: A records
netverse.dev A @1.1.1.3 +noall +answer 
NAME         | TTL | DATA         
-------------+-----+--------------
netverse.dev | 60s | 74.208.128.73
NAME         | TTL | DATA         
-------------+-----+--------------
netverse.dev | 60s | 74.208.128.73
diggy diggy hole
Soham
Soham17mo ago
did you give it enough time for the settings to take place?
John Kirkpatrick
John KirkpatrickOP17mo ago
SOLVED (but not really understood): I used Chrome's Developer Tools, Monitored Network and found status code 307 - "Internet Redirect" Now I have another DNS pointing to the same IP and it works, so something was being changed by Cloudflare. It turns out that if you don't have SSL/TLS cert in place yet, you have to turn off HTTP Strict Transport Security (HSTS). BUT it was never enabled. I found on the same page: Automatic HTTPS Rewrites and it was enabled. The page is located under <domain name><SSL/TLS><Edge Certificates> Automatic HTTPS Rewrites I just don’t understand how DNS Only can be affected by HSTS or “Automatic HTTPS Rewrites”. AND, the IP address resolves to the nginx webserver not Cloudflare to do a proxy. Thanks everyone for your efforts and response.
John Kirkpatrick
John KirkpatrickOP17mo ago
My domain appears to be preloaded in HSTS. https://hstspreload.org/?domain=netverse.dev So, when HSTS or “Automatic HTTPS Rewrites” is changed Cloudflare sends something to one of these entities that talks to the browser to turn it on and off? https://www.eff.org/https-everywhere/faq#how-do-i-add-my-own-site-to-https-everywhere
Electronic Frontier Foundation
HTTPS Everywhere FAQ
This page answers frequently-asked questions about EFF's HTTPS Everywhere project. If your question isn't answered below, you can try the resources listed here.What is DuckDuckGo Smarter Encryption? Do I have to do anything as a user?What if HTTPS Everywhere breaks some site that I use?Why is HTTPS...
Chaika
Chaika17mo ago
I just don’t understand how DNS Only can be affected by HSTS or “Automatic HTTPS Rewrites”. AND, the IP address resolves to the nginx webserver not Cloudflare to do a proxy.
They don't effect it
My domain appears to be preloaded in HSTS. https://hstspreload.org/?domain=netverse.dev
.dev, the entire TLD, is preloaded
So, when HSTS or “Automatic HTTPS Rewrites” is changed Cloudflare sends something to one of these entities that talks to the browser to turn it on and off?
For non-preloaded TLDs, if you enable HSTS with enough duration, you can then use that website to get your website preloaded. The idea of HSTS is to ensure all connections are made over HTTPS. If you get HSTS Preloaded, it's a list of domains embedded within browsers that the browser will only try HTTPS for, and never fall back to http I think the thing that is confusing you is just the fact that .dev is a https only tld, browsers will pretty much force https
1.1.1.1
1.1.1.117mo ago
DNS over Discord: A records
pornhub.com A @1.1.1.3 +noall +answer 
NAME        | TTL | DATA   
------------+-----+--------
pornhub.com | 60s | 0.0.0.0
NAME        | TTL | DATA   
------------+-----+--------
pornhub.com | 60s | 0.0.0.0
diggy diggy hole
Yatsuki
Yatsuki17mo ago
oh it does work
Want results from more Discord servers?
Add your server