Replies: 3 comments 1 reply
-
|
Hi, thanks for the suggestion. I noticed that My biggest concern with the proposed change is that As of now, I can think of two approaches to address this properly:
|
Beta Was this translation helpful? Give feedback.
-
|
Hi, For the first point, you are right because I run the commande before the renew.sh script. |
Beta Was this translation helpful? Give feedback.
-
|
hey there did you had the chance to implement one of your proposed fixes yet, so the script finally works fully automated on servers with firewall with allowed ip list? |
Beta Was this translation helpful? Give feedback.
-
|
Sorry, seems I dropped the ball, will put it on my list. |
Beta Was this translation helpful? Give feedback.
-
Hi,
Very good script and very good idea ! Thanks for the job.
I tried to use it and and I trouble with ESXi firewall. it can't validate the challenge because of firewall trouble (error 400)
If I well understood, in script renews.sh, row 84 you open the firewall :
esxcli network firewall ruleset set -e true -r httpClientbut if we have a list of allowed ip that in this ruleset (which is my case) that will not open for LE servers IPs.
so, what I propose is to use this :
esxcli network firewall ruleset set -a true -r httpClientand at the end of the script :
esxcli network firewall ruleset set -a false -r httpClientI tested it and it works.
Beta Was this translation helpful? Give feedback.
All reactions