When a server is connected using a domain (instead of a IP) the Let's Encrypt DNS validation fails because it expects the A lookup to be the domain name which is not happening unless it maybe is a CNAME. Same issue might be happening if you use IPv6 but I haven't tested that.
