Yes, ofcourse. Let’s Encrypt needs proof you have control over those domains. Currently, it needs a successful HTTP challenge to complete and therefore the host needs to be accessible by the ACME servers from the WWW.
As your domains seem to be accessible by DNS, your best chance is to wait for dns-01 challenge support.