Project

General

Profile

Actions

Feature #7221

closed

ACME package : add standalone mode & specify port used

Added by Frederic Lietart almost 5 years ago. Updated almost 5 years ago.

Status:
Resolved
Priority:
Normal
Assignee:
Category:
ACME
Target version:
-
Start date:
02/06/2017
Due date:
% Done:

0%

Estimated time:
Plus Target Version:

Description

Added the standalone mode, to be able to specify port used for the challenge and the possibility to automatically open the port during the request in the rules of the firewall

Actions #1

Updated by Frederic Lietart almost 5 years ago

In acme.sh there are several options:

Standalone mode:
acme.sh --issue -d aa.com --standalone --httpport 88

Standalone tls mode:
acme.sh --issue -d aa.com --tls --tlsport 8443

Add this option "--local-address" could be interesting for multi-wan

Actions #2

Updated by Jim Thompson almost 5 years ago

  • Assignee set to Jim Pingle
Actions #3

Updated by Jim Pingle almost 5 years ago

  • Status changed from New to Feedback

Added standalone HTTP and TLS options with configurable port.

A bind address isn't going to be viable at the moment, but maybe in the future. You can always bind to a high port then port forward on your second WAN to that port on localhost for Multi-WAN.

I added some notes in the GUI to reiterate that for security reasons, Let's Encrypt requires 80 for HTTP and 443 for TLS checks. If you bind to any other port you must forward port 80/443 to that other port or the check will fail.

Actions #4

Updated by Mathieu Arnold almost 5 years ago

Having the package automatically open/close ports 80 and 443 when issuing/renewing certificates would be great. I don't really like having to keep both fully openned.

Actions #5

Updated by Jim Pingle almost 5 years ago

  • Status changed from Feedback to Resolved
Actions

Also available in: Atom PDF