Status

Table of Contents

Phase 3: DNS Configuration

Duration: 15-30 minutes
Purpose: Configure DNS records for public access
Dependencies: Phase 2 complete, static IPs available

Overview

This phase configures DNS records in Cloudflare to make ArgoCD and the Blueberry application accessible via public URLs. Due to Cloudflare API token limitations, DNS records are created manually through the Cloudflare dashboard.

📋 Setup Steps

  1. Cloudflare DNS Setup
  2. Create A records for ArgoCD and Blueberry
  3. Configure proper TTL and proxy settings

  4. Record the DNS configuration

  5. DNS Validation

  6. Verify DNS propagation
  7. Test resolution from multiple locations

  8. Validate SSL certificate provisioning

  9. SSL Certificate Setup

  10. Understand GKE Managed Certificates
  11. Monitor certificate provisioning
  12. Troubleshoot certificate issues

🎯 Success Criteria

After completing this phase, you should have:

  1. DNS Records Created
  2. argocd.florenciacomuzzi.com → ArgoCD Static IP

  3. blueberry.florenciacomuzzi.com → Blueberry Static IP

  4. DNS Resolution Working

  5. Both domains resolve to correct IPs
  6. No caching issues

  7. Propagation complete globally

  8. SSL Certificates Provisioning

  9. GKE Managed Certificates are being issued
  10. Certificate status shows as provisioning or active

⏭️ Next Phase

Once DNS is working and certificates are provisioning, proceed to Phase 4: Kubernetes & ArgoCD

🔧 Key Commands

# Test DNS resolution
nslookup argocd.florenciacomuzzi.com
nslookup blueberry.florenciacomuzzi.com

# Check from different DNS servers
dig @8.8.8.8 argocd.florenciacomuzzi.com
dig @1.1.1.1 blueberry.florenciacomuzzi.com

# Test HTTP connectivity (before SSL)
curl -I http://argocd.florenciacomuzzi.com
curl -I http://blueberry.florenciacomuzzi.com

📊 DNS Records Required

Domain Type Target TTL Proxy
argocd.florenciacomuzzi.com A ArgoCD Static IP 300 Off
blueberry.florenciacomuzzi.com A Blueberry Static IP 300 Off

⏰ Timing Considerations

  • DNS Propagation: 5-15 minutes globally
  • SSL Certificate Provisioning: 10-15 minutes
  • Total Wait Time: Up to 30 minutes for full availability

🚨 Common Issues

  • DNS Caching: Clear local DNS cache if testing
  • Proxy Settings: Ensure Cloudflare proxy is OFF
  • Certificate Delays: GKE certificates can take 15+ minutes
  • Zone Permissions: Verify Cloudflare API token has correct permissions

📚 Documentation

Document ID: setup/03-dns/README