Custom domains always errors with Inactive (Error)
I have custom domains setup and have 10x verified the DNS is correct. But no matter what the domain keeps coming up with Inactive (Error).
Is there any debugging here? We're trying to launch and unsure what's wrong. I have verified the deployment is working fine.
36 Replies
🤷
it starts as verifying whenever I add anytihng and then it fails
I'm seeing the same symptoms (Adding custom domain is blocked). If you check your audit log, do you also see "Pending to blocked" for those? https://dash.cloudflare.com/?to=/:account/audit-log
ohhhh
I have that feature turned on to alert when new SSL is generated
is that the problem
do I need to cycle SSL?
weird, now its resolving to the old render.com deploy
even though all DNS is pointing at the pages deploy
Sadly I don't have any more insight but it seems like we might be suffering the same problem - though I haven't seen it resolving to the previous location, only Cloudflare's 522 error page
Your domain is
mintdrop.com? That's not pointed at Cloudflare, it's pointed to Google DNS:
mintdrop.com. 21600 IN NS ns-cloud-b4.googledomains.com.
mintdrop.com. 21600 IN NS ns-cloud-b3.googledomains.com.
mintdrop.com. 21600 IN NS ns-cloud-b1.googledomains.com.
mintdrop.com. 21600 IN NS ns-cloud-b2.googledomains.com.Just switched back. We were on CF but we're doing a marketing campaign and need to try and get this site online
it seems to be bricked from some sort of cert generation error
cant get render.com back at this point so we're all in on CF now
Render itself uses CF for SaaS for Custom Domains, as does Pages, and only one Cf for SaaS config can be active for one hostname at a time. Adding Pages on CF DNS would most likely have invalidated your old render custom domain
yeah - seems to be related to that
i had no idea render.com would cause so much ruckus
ive removed the domains on render and added the domain again on CF, plus Ive moved DNS over
and the CF Pages custom domain is still broken?
There's an old tool we used to use to liberate people's domains, I would try removing it from Pages, using it (https://liberate-the-hostname.pages.dev/), and then giving it another go. Switching NS in the middle of this probably doesn't help things, if it's only partly propagated
Liberate the Hostname
Liberate the Hostname
Is your domain displaying old content from a previous provider? Use Liberate the Hostname to free your domain today! 3 easy, fast and automated steps.
If it was super urgent, you could also just use a worker to proxy requests to your pages.dev, but you'd be paying for each request as a worker invocation, save for last resort I suppose
I dont think that'll solve the DNS issue will it?
The worker proxy that is
Which DNS Issue? On
mintdrop.com I get a 522, it's Cf for SaaS/Pages rejecting it because it's not setup. With a worker bound to a route like mintdrop.com/* you could just proxy your pages.dev directly, ex.
You'd be paying $0.50 per million requests (over the 10 million included) for bundled requests on paid plan, compared to the normal free static requests with Pages thoughany ideas on how to flush CF and get the domain working with pages?
that'd be ideal
Did you try what I suggested above with liberate the hostname?
That would be how you do it. These days, when you remove the CNAME/go to modify it in your Cloudflare DNS, it should prompt you it's managed externally, and removing it should delete the custom hostname config, but if you switched between nameservers and have different records in each, I wouldn't be surpised if that confused/broke it
doesnt appear to have worked
The message it would be showing you if not for Pages hiding it behind its abstraction, is
The hostname is part of a banned domain. This web property cannot be added to Cloudflare at this time. If you are an Enterprise customer, please contact your Customer Success Manager. Otherwise, please email abusereply@cloudflare.com with the name of the web property and a detailed explanation of your association with this web property.I would recommend following those instructions
I am getting a bunch of HTML
I've been chatting with them. They cant figure out why the SSL certificates keep erroring out
its because render.com hijacked the certs originally
and now the system is totally bricked
chatting with who?
customer support manager like you said above
Success Manager?
certs are totally bricked
Are you an Enterprise customer?
no
Then you wont have a Success Manager
ok whoever is on the cloudflare chat for my account
That would be a Support Engineer, same role as me
ah ok
we cant seem to flush the ssl certs
literally have never had issues with CF like this before
always just sets domain up and youre done
what should I do?
we are running a big marketing campaifgn and we weve been down for an hour
tried to move to CF thinking I would be adding a bunch of stability and uptime and ended uip taking the whole site down\
cant go back to render since they cant seem to generate certificates either
do I need to move DNS off cloudflare?
literally not sure what the fastest solution is here
Did you try adding the domain again after the resolution in related ticket 294544?
I have added and removed the domain probably 20 times now
have you in the last 10 minutes?
just doesnt seem to be resetting anything
maybe once in the last 10?
if you say it wont hurt anything Ill keep adding and removing
i have no idea how your SSL cert generation works or if that'll end up hurting my chances
I was just peeking internally and saw that there was a blocking problem in a ticket which seemed it was resolved.
At the end of the day, this should be handled in the support system since it involves account information, I'm out of hours at the moment so I can't help there. If you had a ticket or chat open already, I would recommend responding there to request more help.
ok - thanks, this started innocently but turned into full fledged ticket
i'll go thru support for the remainder
thanks for your help