That happens sometimes. Let's Encrypt is especially capable of triggering paranoid DDoS systems because it can send a modestly large amount of queries, for a "weird" type (CAA), and for things that don't exist (CAA again, and misconfigured domains).
Yes.
https://unboundtest.com/ is a public service with an ~identical configuration, but it's totally unrelated infrastructure.