Unable to update DynDNS: TSIG error with server

a42 · February 26, 2022, 3:28pm

Hi all!

My YunoHost server

Hardware: Raspberry Pi 4 8GB on home internet (no ports blocked by ISP, to my knowledge)
YunoHost version:

yunohost:
  repo: stable
  version: 4.3.6.2
yunohost-admin:
  repo: testing
  version: 4.3.4.1
moulinette:
  repo: stable
  version: 4.3.3.1
ssowat:
  repo: stable
  version: 4.3.3.1

I have access to my server : SSH (via LAN IP) + web interface via LAN
Are you in a special context or did you perform some particular tweaking on your YunoHost instance ? : Don’t think so.
If yes, please explain: I could not update via interface (due to repo name change) so I updated from SSH via sudo apt update && sudo apt upgrade

Description of my issue

I’ve just setup a fresh instance of Yunohost on RPi 4 8GB and updated via SSH (since web interface was failing due to need to explicitly agree to switch repo name to oldstable).

I registered a domain via the noho.st option, but it is not updating the DynDNS service. Here’s what I have in terms of logs (with hostname/subdomain and external IP redacted):

admin@<hostname>:~ $ sudo yunohost dyndns update --debug
274  DEBUG initializing base actions map parser for cli
277  DEBUG loading actions map namespace 'yunohost'
282  DEBUG building parser...
289  DEBUG building parser took 0.006s
290  DEBUG acquiring lock...
316  DEBUG lock has been acquired
386  DEBUG loading python module yunohost.dyndns took 0.070s
387  DEBUG processing action [19855.1]: yunohost.dyndns.update with args={'domain': None, 'force': False, 'dry_run': False}
401  DEBUG Fetching IP from https://ip.yunohost.org
672  DEBUG Starting new HTTPS connection (1): ip.yunohost.org:443
896  DEBUG https://ip.yunohost.org:443 "GET / HTTP/1.1" 200 13
900  DEBUG IP fetched: <my-external-IP>
914  DEBUG No default route for IPv6, so assuming there's no IP address for that version
915  DEBUG IP fetched: None
916  DEBUG Building zone update file ...
1157 DEBUG Old IPv4/v6 are (None, None)
1157 DEBUG Requested IPv4/v6 are (<my-external-IP>, None)
1174 INFO Updated needed, going on...
1176 DEBUG Reusing IPv4 from cache: <my-external-IP>
1177 DEBUG Reusing IPv6 from cache: None
2043 DEBUG initializing ldap interface
2047 DEBUG Hydrating config with current values
2047 DEBUG Formating result in 'export' mode
2051 DEBUG Now pushing new conf to DynDNS host...
Outgoing update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id:      0
;; flags:; ZONE: 0, PREREQ: 0, UPDATE: 0, ADDITIONAL: 0
;; ZONE SECTION:
;noho.st.                       IN      SOA

;; UPDATE SECTION:
<hostname>.noho.st.         0       ANY     ANY
_xmpp-client._tcp.<hostname>.noho.st. 0 ANY ANY
_xmpp-server._tcp.<hostname>.noho.st. 0 ANY ANY
muc.<hostname>.noho.st.     0       ANY     ANY
pubsub.<hostname>.noho.st.  0       ANY     ANY
vjud.<hostname>.noho.st.    0       ANY     ANY
xmpp-upload.<hostname>.noho.st. 0   ANY     ANY
<hostname>.noho.st.         0       ANY     ANY
<hostname>.noho.st.         0       ANY     ANY
mail._domainkey.<hostname>.noho.st. 0 ANY   ANY
_dmarc.<hostname>.noho.st.  0       ANY     ANY
*.<hostname>.noho.st.       0       ANY     ANY
<hostname>.noho.st.         0       ANY     ANY
<hostname>.noho.st.         3600    IN      A       <my-external-IP>
_xmpp-client._tcp.<hostname>.noho.st. 3600 IN SRV   0 5 5222 <hostname>.noho.st.
_xmpp-server._tcp.<hostname>.noho.st. 3600 IN SRV   0 5 5269 <hostname>.noho.st.
muc.<hostname>.noho.st.     3600    IN      CNAME   <hostname>.noho.st.
pubsub.<hostname>.noho.st.  3600    IN      CNAME   <hostname>.noho.st.
vjud.<hostname>.noho.st.    3600    IN      CNAME   <hostname>.noho.st.
xmpp-upload.<hostname>.noho.st. 3600 IN     CNAME   <hostname>.noho.st.
<hostname>.noho.st.         3600    IN      MX      10 <hostname>.noho.st.
<hostname>.noho.st.         3600    IN      TXT     "v=spf1 a mx -all"
mail._domainkey.<hostname>.noho.st. 3600 IN TXT     "v=DKIM1; h=sha256; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCvU3xfDitTUkqQu7WQR53ohxAvmTtXs0MLr0ahdf0Hty/IWy9s14NVBIEWWgUX9sXbiritna+EpimecaX+sZidbhhlzDtyq/p8QeO2X243t3/5HUxgqAqV2fXtk5JzkBqawjS+ebbGiv/pYytUzFPXG6naeS6ABEEQw9fbix5p/wIDAQAB"
_dmarc.<hostname>.noho.st.  3600    IN      TXT     "v=DMARC1; p=none"
*.<hostname>.noho.st.       3600    IN      A       <my-external-IP>
<hostname>.noho.st.         3600    IN      CAA     128 issue "letsencrypt.org"

; TSIG error with server: expected a TSIG or SIG(0)
update failed: REFUSED
2154 INFO The operation 'Update the IP associated with your YunoHost subdomain '<hostname>.noho.st'' could not be completed. Please share the full log of this operation using the command 'yunohost log share 20220226-151315-dyndns_update-<hostname>.noho.st' to get help
2174 DEBUG action [19855.1] executed in 1.787s
2175 DEBUG lock has been released
2175 ERROR Could not update IP address to DynDNS

I’m not sure what the error TSIG error with server: expected a TSIG or SIG(0) quite means. The diagnostic interface says that my IP is listed on spamblocking services. Is it possible your services are reputation checking me and refusing connection to prevent spam?

I can ping dyndns.yunohost.org from the RPi.

If anyone has any suggestion on what I might try next, I’d very much appreciate them. Thank you you very much for your time.

system · March 28, 2022, 3:29pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.