Some resolutions fail for CloudFront distributions with custom domain names

In some cases (0.1%), my Unity application reports that a custom domain name can't be resolved. It happens for two CloudFront distributions with a custom domain, namely cdn.mogaland.io (front for S3) and api.mogaland.io (front for API Gateway).

In Route53, I have two alias records (A and AAAA) for each distribution. Each distribution is set with its custom domain and uses the same SSL certificate. I never received a report for a domain resolution failure for auth.mogaland.io (alias for Cognito).

What could be the root cause? What would be an effective resolution mechanism for the fatal issue?

Topics

Networking & Content Delivery

Tags

Amazon CloudFront Amazon Route 53 Domain Name System (DNS)

Language

English

Dom_D

asked a month ago134 views

1 Answer

Newest
Most votes
Most comments

Are these answers helpful? Upvote the correct answer to help the community benefit from your knowledge.

Accepted Answer

Hello,

Please make sure to double-check the configuration of your DNS zone in Route53.

To investigate the resolution failures of your Route53 zone, you would need to provide more specific details about the error, as we don't have access to your environment/configuration.

Do you have any delegations in your zone? One common cause for intermittent NXDOMAIN errors are wrongly configured delegations. Delegations must always be created in the immediate parent zone, not in a grandparent zone.

I recommend to contact AWS Support, they are able to review your specific setup and provide more tailored guidance to resolve the issue. This is not an official support channel.

Roland

answered a month ago

Dom_D
a month ago
Thanks Roland.

The error message I get from the network stack is just something like: Unexpected failure -- Could not resolve host 'cdn.mogaland.io'...

Route53 is my actual registrar for the mogaland.io domain. There's no delegations for the corresponding zone, all subdomain records are defined in the top zone.

Thanks for your feedback. I'm going to contact AWS Support now.

Relevant content

Restrict Cloudfront Distribution domain name
bgbs
asked a year ago
API Gateway + Custom Domain Name = Missing CloudFront headers
leonid
asked a year ago
Using custom domain name for CloudFront Distribution with an HTTP API
goosefraba
asked 6 months ago
How to invalidate cloudfront cache for appsync custom domain name?
rePost-User-3684502
asked 2 years ago
How can I set up a custom domain name for my API Gateway API?
AWS OFFICIALUpdated 2 years ago
How can I configure a custom domain endpoint for multiple API Gateway APIs behind a CloudFront web distribution?
AWS OFFICIALUpdated 2 years ago
Why isn't CloudFront serving my domain name over HTTPS?
AWS OFFICIALUpdated 13 days ago
How can I resolve DNS resolution or SSL certificate mismatch errors for my API Gateway custom domain name?
AWS OFFICIALUpdated 2 years ago
Amazon GameLift releases a major update to the GameLift plugin for Unity on GitHub
EXPERT
Sachin
published 9 months ago
Integrating an Amazon Connect Customer Profiles Domain with Amazon Connect by API
EXPERT
taylauna
published 5 months ago