Cannot obtain certificates for subdomains

[robflate]

I've mentioned this in another thread but wanted to dump my full Traefik log in the hope that someone might be able to help me fix these errors. Is there a step I'm missing? Another user suggested adding CNAME records for the subdomains. Is that required? Apologies for my limited knowledge, I'm new to all this.

Other relevant info;

• My acme.json file has populated with what looks like certificates/private keys etc
• I'm currently using a noip domain (but also own my own domain name if it's easier to do it that way)
• The rate limit error was not there the first time I ran the yml
• In the Traefik logs Resolved to: and Used: are always blank
• Do I need to add all my subdomains in the ddclient.conf? sonarr.example.ddns.net, radar.example.ddns.net, etc, etc?
• I can reach Organizr at example.ddns.net but none of the subdomains work e.g sonarr.example.ddns.net

Here's my ddclient.conf;

protocol=dyndns2
use=web, web=checkip.dyndns.com/, web-skip='IP Address'
server=dynupdate.no-ip.com
login=myusername
password=mypassword
example.ddns.net

Here's my Traefik log;

time="2018-03-20T14:46:53Z" level=error msg="map[monitor.example.ddns.net:acme: Error 429 - urn:acme:error:rateLimited - Error creating new authz :: too many failed authorizations recently: see https://letsencrypt.org/docs/rate-limits/]" 
time="2018-03-20T14:46:53Z" level=error msg="Error getting ACME certificates [monitor.example.ddns.net] : cannot obtain certificates map[monitor.example.ddns.net:acme: Error 429 - urn:acme:error:rateLimited - Error creating new authz :: too many failed authorizations recently: see https://letsencrypt.org/docs/rate-limits/]" 
time="2018-03-20T14:46:55Z" level=error msg="map[ombi.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for ombi.example.ddns.net
Error Detail:
Validation for ombi.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T14:46:55.909918792Z 
]" 
time="2018-03-20T14:46:55Z" level=error msg="Error getting ACME certificates [ombi.example.ddns.net] : cannot obtain certificates map[ombi.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for ombi.example.ddns.net
Error Detail:
Validation for ombi.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T14:46:55.909966359Z 
]" 
time="2018-03-20T14:46:58Z" level=error msg="map[radarr.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for radarr.example.ddns.net
Error Detail:
Validation for radarr.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T14:46:58.047304314Z 
]" 
time="2018-03-20T14:46:58Z" level=error msg="Error getting ACME certificates [radarr.example.ddns.net] : cannot obtain certificates map[radarr.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for radarr.example.ddns.net
Error Detail:
Validation for radarr.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T14:46:58.047688832Z 
]" 
time="2018-03-20T14:47:00Z" level=error msg="map[headphones.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for headphones.example.ddns.net
Error Detail:
Validation for headphones.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T14:47:00.219006761Z 
]" 
time="2018-03-20T14:47:00Z" level=error msg="Error getting ACME certificates [headphones.example.ddns.net] : cannot obtain certificates map[headphones.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for headphones.example.ddns.net
Error Detail:
Validation for headphones.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T14:47:00.219121854Z 
]" 
time="2018-03-20T14:47:02Z" level=error msg="map[lazylibrarian.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for lazylibrarian.example.ddns.net
Error Detail:
Validation for lazylibrarian.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T14:47:02.832252629Z 
]" 
time="2018-03-20T14:47:02Z" level=error msg="Error getting ACME certificates [lazylibrarian.example.ddns.net] : cannot obtain certificates map[lazylibrarian.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for lazylibrarian.example.ddns.net
Error Detail:
Validation for lazylibrarian.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T14:47:02.832346119Z 
]" 
time="2018-03-20T14:47:05Z" level=error msg="map[nzbhydra.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for nzbhydra.example.ddns.net
Error Detail:
Validation for nzbhydra.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T14:47:05.161673046Z 
]" 
time="2018-03-20T14:47:05Z" level=error msg="Error getting ACME certificates [nzbhydra.example.ddns.net] : cannot obtain certificates map[nzbhydra.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for nzbhydra.example.ddns.net
Error Detail:
Validation for nzbhydra.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T14:47:05.161737866Z 
]" 
time="2018-03-20T14:47:07Z" level=error msg="map[plex.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for plex.example.ddns.net
Error Detail:
Validation for plex.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T14:47:07.845866189Z 
]" 
time="2018-03-20T14:47:07Z" level=error msg="Error getting ACME certificates [plex.example.ddns.net] : cannot obtain certificates map[plex.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for plex.example.ddns.net
Error Detail:
Validation for plex.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T14:47:07.845965749Z 
]" 
time="2018-03-20T14:47:10Z" level=error msg="map[nzbget.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for nzbget.example.ddns.net
Error Detail:
Validation for nzbget.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T14:47:10.203565728Z 
]" 
time="2018-03-20T14:47:10Z" level=error msg="Error getting ACME certificates [nzbget.example.ddns.net] : cannot obtain certificates map[nzbget.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for nzbget.example.ddns.net
Error Detail:
Validation for nzbget.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T14:47:10.203604754Z 
]" 
time="2018-03-20T14:47:12Z" level=error msg="map[sonarr.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for sonarr.example.ddns.net
Error Detail:
Validation for sonarr.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T14:47:12.502510956Z 
]" 
time="2018-03-20T14:47:12Z" level=error msg="Error getting ACME certificates [sonarr.example.ddns.net] : cannot obtain certificates map[sonarr.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for sonarr.example.ddns.net
Error Detail:
Validation for sonarr.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T14:47:12.502614683Z 
]" 
time="2018-03-20T14:47:13Z" level=error msg="map[flexget.example.ddns.net:acme: Error 429 - urn:acme:error:rateLimited - Error creating new authz :: too many failed authorizations recently: see https://letsencrypt.org/docs/rate-limits/]" 
time="2018-03-20T14:47:13Z" level=error msg="Error getting ACME certificates [flexget.example.ddns.net] : cannot obtain certificates map[flexget.example.ddns.net:acme: Error 429 - urn:acme:error:rateLimited - Error creating new authz :: too many failed authorizations recently: see https://letsencrypt.org/docs/rate-limits/]" 
time="2018-03-20T14:47:15Z" level=error msg="map[plexpy.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for plexpy.example.ddns.net
Error Detail:
Validation for plexpy.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T14:47:15.464742447Z 
]" 
time="2018-03-20T14:47:15Z" level=error msg="Error getting ACME certificates [plexpy.example.ddns.net] : cannot obtain certificates map[plexpy.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for plexpy.example.ddns.net
Error Detail:
Validation for plexpy.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T14:47:15.464812854Z 
]" 
time="2018-03-20T14:47:17Z" level=error msg="map[mylar.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for mylar.example.ddns.net
Error Detail:
Validation for mylar.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T14:47:17.769336260Z 
]" 
time="2018-03-20T14:47:17Z" level=error msg="Error getting ACME certificates [mylar.example.ddns.net] : cannot obtain certificates map[mylar.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for mylar.example.ddns.net
Error Detail:
Validation for mylar.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T14:47:17.769376337Z 
]" 
time="2018-03-20T23:54:19Z" level=error msg="map[headphones.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for headphones.example.ddns.net
Error Detail:
Validation for headphones.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T23:54:19.754499716Z 
]" 
time="2018-03-20T23:54:19Z" level=error msg="Error getting ACME certificates [headphones.example.ddns.net] : cannot obtain certificates map[headphones.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for headphones.example.ddns.net
Error Detail:
Validation for headphones.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T23:54:19.754739616Z 
]" 
time="2018-03-20T23:54:22Z" level=error msg="map[lazylibrarian.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for lazylibrarian.example.ddns.net
Error Detail:
Validation for lazylibrarian.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T23:54:22.104190817Z 
]" 
time="2018-03-20T23:54:22Z" level=error msg="Error getting ACME certificates [lazylibrarian.example.ddns.net] : cannot obtain certificates map[lazylibrarian.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for lazylibrarian.example.ddns.net
Error Detail:
Validation for lazylibrarian.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T23:54:22.104322217Z 
]" 
time="2018-03-20T23:54:24Z" level=error msg="map[nzbget.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for nzbget.example.ddns.net
Error Detail:
Validation for nzbget.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T23:54:24.637309218Z 
]" 
time="2018-03-20T23:54:24Z" level=error msg="Error getting ACME certificates [nzbget.example.ddns.net] : cannot obtain certificates map[nzbget.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for nzbget.example.ddns.net
Error Detail:
Validation for nzbget.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T23:54:24.637450518Z 
]" 
time="2018-03-20T23:54:27Z" level=error msg="map[flexget.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for flexget.example.ddns.net
Error Detail:
Validation for flexget.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T23:54:27.052617618Z 
]" 
time="2018-03-20T23:54:27Z" level=error msg="Error getting ACME certificates [flexget.example.ddns.net] : cannot obtain certificates map[flexget.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for flexget.example.ddns.net
Error Detail:
Validation for flexget.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T23:54:27.052744418Z 
]" 
time="2018-03-20T23:54:29Z" level=error msg="map[monitor.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for monitor.example.ddns.net
Error Detail:
Validation for monitor.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T23:54:29.615772919Z 
]" 
time="2018-03-20T23:54:29Z" level=error msg="Error getting ACME certificates [monitor.example.ddns.net] : cannot obtain certificates map[monitor.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for monitor.example.ddns.net
Error Detail:
Validation for monitor.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T23:54:29.616038919Z 
]" 
time="2018-03-20T23:54:31Z" level=error msg="map[nzbhydra.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for nzbhydra.example.ddns.net
Error Detail:
Validation for nzbhydra.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T23:54:31.973640620Z 
]" 
time="2018-03-20T23:54:31Z" level=error msg="Error getting ACME certificates [nzbhydra.example.ddns.net] : cannot obtain certificates map[nzbhydra.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for nzbhydra.example.ddns.net
Error Detail:
Validation for nzbhydra.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T23:54:31.974789620Z 
]" 
time="2018-03-20T23:54:34Z" level=error msg="map[plex.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for plex.example.ddns.net
Error Detail:
Validation for plex.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T23:54:34.536744521Z 
]" 
time="2018-03-20T23:54:34Z" level=error msg="Error getting ACME certificates [plex.example.ddns.net] : cannot obtain certificates map[plex.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for plex.example.ddns.net
Error Detail:
Validation for plex.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T23:54:34.536902621Z 
]" 
time="2018-03-20T23:54:38Z" level=error msg="map[radarr.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for radarr.example.ddns.net
Error Detail:
Validation for radarr.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T23:54:38.022277722Z 
]" 
time="2018-03-20T23:54:38Z" level=error msg="Error getting ACME certificates [radarr.example.ddns.net] : cannot obtain certificates map[radarr.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for radarr.example.ddns.net
Error Detail:
Validation for radarr.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T23:54:38.022565322Z 
]" 
time="2018-03-20T23:54:40Z" level=error msg="map[mylar.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for mylar.example.ddns.net
Error Detail:
Validation for mylar.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T23:54:40.331128522Z 
]" 
time="2018-03-20T23:54:40Z" level=error msg="Error getting ACME certificates [mylar.example.ddns.net] : cannot obtain certificates map[mylar.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for mylar.example.ddns.net
Error Detail:
Validation for mylar.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T23:54:40.331256022Z 
]" 
time="2018-03-20T23:54:43Z" level=error msg="map[sonarr.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for sonarr.example.ddns.net
Error Detail:
Validation for sonarr.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T23:54:43.027171752Z 
]" 
time="2018-03-20T23:54:43Z" level=error msg="Error getting ACME certificates [sonarr.example.ddns.net] : cannot obtain certificates map[sonarr.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for sonarr.example.ddns.net
Error Detail:
Validation for sonarr.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T23:54:43.027302513Z 
]" 
time="2018-03-20T23:54:45Z" level=error msg="map[plexpy.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for plexpy.example.ddns.net
Error Detail:
Validation for plexpy.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T23:54:45.610276101Z 
]" 
time="2018-03-20T23:54:45Z" level=error msg="Error getting ACME certificates [plexpy.example.ddns.net] : cannot obtain certificates map[plexpy.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for plexpy.example.ddns.net
Error Detail:
Validation for plexpy.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T23:54:45.610426976Z 
]" 
time="2018-03-20T23:54:48Z" level=error msg="map[ombi.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for ombi.example.ddns.net
Error Detail:
Validation for ombi.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T23:54:48.358642498Z 
]" 
time="2018-03-20T23:54:48Z" level=error msg="Error getting ACME certificates [ombi.example.ddns.net] : cannot obtain certificates map[ombi.example.ddns.net:acme: Error 400 - urn:acme:error:connection - DNS problem: NXDOMAIN looking up A for ombi.example.ddns.net
Error Detail:
Validation for ombi.example.ddns.net:80
Resolved to:
Used: 
2018-03-20T23:54:48.358794174Z 
]" 

Thanks

[stevewm]

DNS problem: NXDOMAIN looking up A for ombi.robflate.ddns.net indicates a missing A record for that domain I believe. I would hazard a guess and say that the service you're using doesn't support what you're trying to accomplish.

The steps in the README recommend your own domain for the reason that getting it to work with a dynamic DNS provider is not always straightforward (if possible at all), as you've found out. I would strongly recommend purchasing a domain of your own (some TLDs are available for under $1) instead.

As another has observed adding CNAMEs to your DNS record makes it fairly straightforward when using your own domain if you don't have a static IP.

You could change the compose file to use path-based routing instead (eg robflate.ddns.net/ombi etc), but that's not something I intend to implement in the project myself.

Ultimately buying a cheap domain is the path of least resistance.

[robflate]

I ended up doing it with my own domain using the information provided by @wmelani in this post. Certificates are now working correctly. Thanks for your help and for sharing this code.