No. There is an alternative if you cannot expose your server to the public internet. If it's supposed to be public, make it so. Http validation is easier.
You can use the dns-01 challenge instead of the http-01 you're trying to use. It's not as immediate to configure, as it depends on your domain nameservers and whoever hosts them.
There are several Certbot plugins for different DNS hosting companies. Your DNS looks like it's on ovh, so read here: Welcome to certbot-dns-ovh’s documentation! — certbot-dns-ovh 0 documentation