I have a few websites which are not publicly available and are used for internal company business only. We have recently started to move everything over to Let’s Encrypt.
I’m struggling to find a definitive answer to this question online: is it possible to automatically renew certs which do not have public http/https? I have seen reference to using the DNS-01 method, but from what I can tell this is not supported by the official cerbot client.
All I want to do is renew certs without having to change my firewall settings each time I do it (as this means it needs to be done manually). Can anyone recommend the best way to do this (and ideally some kind of tutorial?).