2 months ago
Hi, my custom domain www.peopleperson.me has been stuck in "Waiting for DNS update" for over 40 minutes despite all DNS being correctly configured.
Project: web service (peopleperson)
Custom domain: www.peopleperson.me
Expected CNAME target: 2kca5qj7.up.railway.app
Verified externally:
- www.peopleperson.me → 2kca5qj7.up.railway.app → 151.101.2.15 ✅ (confirmed via dig at 1.1.1.1, 8.8.8.8, and Cloudflare authoritative NS)
- DNSSEC fully valid (KeyTag 2371 / Algorithm 13)
- TCP/443 reaches railway-edge fine
- Requests to /.well-known/acme-challenge/* are handled differently from other paths (no x-railway-fallback header), suggesting cert issuance attempts are happening
- All other paths return x-railway-fallback: true
Earlier today I migrated the domain from Google Domains to Cloudflare nameservers, then re-added the custom domain twice (apex CNAME flattening issue → switched to www-canonical). I suspect stale verification jobs are blocking the queue.
The lightning bolt re-verify button now shows disabled in the UI. Could you please manually trigger verification or clear stale jobs?
Thanks!
4 Replies
2 months ago
What about the TXT record?
Thanks for the quick response.
To clarify - when I added the custom domain, Railway's "Show DNS records" only showed a CNAME requirement (target: 2kca5qj7.up.railway.app). I don't see any TXT record instructions in the dashboard.
Currently I have these records on www.peopleperson.me at Cloudflare:
- CNAME www → 2kca5qj7.up.railway.app (just switched to Proxied/orange cloud + Full SSL mode in Cloudflare as a temporary workaround since cert issuance was stuck for 12+ hours)
- No TXT records on www specifically
On the apex (peopleperson.me) I have:
- A @ → 192.0.2.1 (placeholder, Proxied for redirect rule to www)
- TXT @ → SPF, DKIM, etc. (Workspace email)
- CAA records allowing letsencrypt.org and pki.goog
Could you let me know:
- Which specific TXT record should I add (name + value)?
- Should I revert Cloudflare Proxy back to DNS-only on www for verification to work?
Happy to add whatever's needed - just point me at it. Thanks! @Brody
2 months ago
The TXT record would have been listen directly under the CNAME.
2 months ago
Did you add the domain yourself, or did you have your AI do it for you?