ive got this on my opnsense FW, its a package/plugin that you install
opnsense:master ← fraenki:issue_6
opened 12:46AM - 27 Jan 17 UTC
# Introduction
Sponsored by: [markt.de](http://www.markt.de/)
This is the fi… rst version of our acme plugin. It utilizes [acme.sh](https://github.com/Neilpang/acme.sh) and supports 14 DNS providers. Besides that, there's our integrated HTTP-01 validation which should makes it very easy to validate certificates (provided that the official IP address of the certificate hostname points to the OPNsense box).
This is the _initial_ relase and is expected to contain bugs. Support for many DNS-01 providers is largely untested. Please don't use it in production just yet. :)
# Remarks
Initially I wanted to integrate [acme-client](https://github.com/kristapsdz/acme-client), but this would have meant additional efforts to integrate DNS-01 providers. That's why I decided to switch to acme.sh.
Support for HTTP-01 validation is currently limited to the internal OPNsense provider. I plan to add support for more providers in the coming weeks.
This version lacks support for deploy/restart actions. Thus it can't automatically restart a service if a certificate was renewed. This will be addressed in a future release very soon.
# Quick start guide
### 1. Enable Let's Encrypt Plugin
### 2. Add an account
### 3. Add a validation method
#### 3a. Example: HTTP-01 OPNsense port-forward magic
#### 3b. Example: DNS-01 nslookup
### 4. Configure certificate
### 5. Issue certificate
#### 5a. Issue/Renew ALL certificates
#### 5b. Issue/Renew a specific certificate
just trying to figure out aswell as having a DDNS provider (which i do noip) whether i can have one provider that does both acme client and ddns or whether i can just have the acme client and that also does the DDNS for me
sorry if that doesnt make sense
1 Like