24 days ago
Hi, my custom domain www.peopleperson.me has been stuck in "Waiting for DNS update" for over 40 minutes despite all DNS being correctly configured.
Project: web service (peopleperson)
Custom domain: www.peopleperson.me
Expected CNAME target: 2kca5qj7.up.railway.app
Verified externally:
- www.peopleperson.me → 2kca5qj7.up.railway.app → 151.101.2.15 ✅ (confirmed via dig at 1.1.1.1, 8.8.8.8, and Cloudflare authoritative NS)
- DNSSEC fully valid (KeyTag 2371 / Algorithm 13)
- TCP/443 reaches railway-edge fine
- Requests to /.well-known/acme-challenge/* are handled differently from other paths (no x-railway-fallback header), suggesting cert issuance attempts are happening
- All other paths return x-railway-fallback: true
Earlier today I migrated the domain from Google Domains to Cloudflare nameservers, then re-added the custom domain twice (apex CNAME flattening issue → switched to www-canonical). I suspect stale verification jobs are blocking the queue.
The lightning bolt re-verify button now shows disabled in the UI. Could you please manually trigger verification or clear stale jobs?
Thanks!
4 Replies
24 days ago
What about the TXT record?
Thanks for the quick response.
To clarify - when I added the custom domain, Railway's "Show DNS records" only showed a CNAME requirement (target: 2kca5qj7.up.railway.app). I don't see any TXT record instructions in the dashboard.
Currently I have these records on www.peopleperson.me at Cloudflare:
- CNAME www → 2kca5qj7.up.railway.app (just switched to Proxied/orange cloud + Full SSL mode in Cloudflare as a temporary workaround since cert issuance was stuck for 12+ hours)
- No TXT records on www specifically
On the apex (peopleperson.me) I have:
- A @ → 192.0.2.1 (placeholder, Proxied for redirect rule to www)
- TXT @ → SPF, DKIM, etc. (Workspace email)
- CAA records allowing letsencrypt.org and pki.goog
Could you let me know:
- Which specific TXT record should I add (name + value)?
- Should I revert Cloudflare Proxy back to DNS-only on www for verification to work?
Happy to add whatever's needed - just point me at it. Thanks! @Brody
24 days ago
The TXT record would have been listen directly under the CNAME.
24 days ago
Did you add the domain yourself, or did you have your AI do it for you?