I have some questions about limits. I read the documentation about rate limits request so no problem with that and I didn't find another topic with these questions.
I want to know if there is some limits to certificate delivery for the same public IP ?
I have heard something about a maximum of 500 certificates for the same public IP, is it true ?
If there are for exemple 800 differents domains, is it possible to request 800 certificats from the same public IP / web server ?
Another question, do you think is it possible to store / host 500 certificates on the same virtual machine (with Nginx Proxy Manager for example) or there is a limit or difference between physical server and VM for Let's encrypt certificates and the SSL connection management ?
With enough vCPU and RAM, do you think a VM can handle the same number of certificates / SSL connections than a physical server ?
There is (was?) a rate limit on requests from an IP on the CDN side of things, but it's not documented. I speculate it's on the order of thousands of requests per second.
Some ACME clients perform poorly at scale. Certbot is historically miserable with large Nginx deployments; the performance degrades substantially as the number of clients increases. This is largely due to how it parses and manages the config files; performance returns to normal if you switch to the webroot or standalone plugins.
Loading large numbers of Certificates
"Certificates" have two components: The actual Certificate and the Private Key. Depending on your server and how it manages memory/certs, you may be able to optimize memory by recycling the same Private Key across multiple certificates. You can't do this if there are multiple domain owners, and they have access to the Private Keys (it violates the Subscriber Agreement to expose the keys to different entities), but if you have sole access to the Private Key this is allowed. For large installations, I recycle the same Private Key on a periodic basis (i.e. all certs within one week use the same key).