[dnsdist] dnsdist and Let's Encrypt (ACME)
Andrew Nimmo
andrew.nimmo at gmail.com
Sun Sep 15 10:20:46 UTC 2019
> On 15 Sep 2019, at 10:40, Stephane Bortzmeyer <bortzmeyer at nic.fr> wrote:
>
> [I believe I've checked the available documentation, and found
> nothing. Sorry, if I missed it.]
>
> My dnsdist setup (DoT and DoH) uses a CAcert certificate and it works
> fine. Now, I would like to move to Let's Encrypt but I do not see how
> to make it work from dnsdist.
>
> HTTP challenges? I don't think there is an ACME client in dnsdist.
>
> DNS challenges? I don't really want to switch my zones to a dynamic
> setup.
>
> Is there an obvious solution I've missed?
> ______________________________________________
The acme.sh script has a standalone mode, if you have port 80 open:
https://github.com/Neilpang/acme.sh/wiki/How-to-issue-a-cert#2-standalone-mode
Regards,
Andrew
----
Dr Andrew Nimmo
andrew.nimmo at gmail.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.powerdns.com/pipermail/dnsdist/attachments/20190915/5af5f7c7/attachment.htm>
More information about the dnsdist
mailing list