[dnsdist] dnsdist and Let's Encrypt (ACME)

Andrew Nimmo andrew.nimmo at gmail.com
Sun Sep 15 10:20:46 UTC 2019

> On 15 Sep 2019, at 10:40, Stephane Bortzmeyer <bortzmeyer at nic.fr> wrote:
> [I believe I've checked the available documentation, and found
> nothing. Sorry, if I missed it.]
> My dnsdist setup (DoT and DoH) uses a CAcert certificate and it works
> fine. Now, I would like to move to Let's Encrypt but I do not see how
> to make it work from dnsdist.
> HTTP challenges? I don't think there is an ACME client in dnsdist.
> DNS challenges? I don't really want to switch my zones to a dynamic
> setup.
> Is there an obvious solution I've missed?
> ______________________________________________

The acme.sh script has a standalone mode, if you have port 80 open:




Dr Andrew Nimmo

andrew.nimmo at gmail.com

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.powerdns.com/pipermail/dnsdist/attachments/20190915/5af5f7c7/attachment.htm>

More information about the dnsdist mailing list