Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Custom dynamic dns update with https?

    Scheduled Pinned Locked Moved
    2.1 Snapshot Feedback and Problems - RETIRED
    2
    5
    2.4k
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • C
      casper4242
      last edited by

      Hello,

      I wanted to try out the new "custom" dynamic dns update, using a https URL to a server which supports this.
      However, it doesn't seem to update the record, only when I change the URL to http. Is https update supposed
      to work?

      The system log shows:
      php: /services_dyndns_edit.php: Curl error occurred: error setting certificate verify locations: CAfile: /usr/local/share/certs/ca-root-nss.crt CApath: none

      Cheers,
      Markus

      1 Reply Last reply Reply Quote 0
      • jimpJ
        jimp Rebel Alliance Developer Netgate
        last edited by

        I didn't see anything obvious in the code that would make it fail. It's setting the curl options to disable peer verification which usually will prevent that sort of error.

        Remember: Upvote with the ๐Ÿ‘ button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • C
          casper4242
          last edited by

          Well, whatever the reason, it didn't work. After doing

          pkg_add -r ca_root_nss

          it works just fine. I suggest including this package by default for 2.1

          Cheers,
          Markus

          1 Reply Last reply Reply Quote 0
          • jimpJ
            jimp Rebel Alliance Developer Netgate
            last edited by

            Yeah that should be safe to include, I went ahead and added it

            https://github.com/bsdperimeter/pfsense-tools/commit/17ee4442b8323420fec46343c080f1a3d0cc2fa4

            I imagine it was only a matter of time before we encountered a cert from a CA that we need that for.

            Remember: Upvote with the ๐Ÿ‘ button for any user/post you find to be helpful, informative, or deserving of recognition!

            Need help fast? Netgate Global Support!

            Do not Chat/PM for help!

            1 Reply Last reply Reply Quote 0
            • C
              casper4242
              last edited by

              Thanks!

              1 Reply Last reply Reply Quote 0
              • First post
                Last post
              Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.