I’ve tried let’s encrypt before with my NAS, which has the interface to pull it without doing anything in the command line or too technical. I never got it to work because port 80 was blocked by my ISP and this is the port designated by my NAS to pull the certs. I tried other options but ultimately gave up.
Well, fast-forward. I had the brilliant idea of trying this again with a VPN! My VPN is not strict like my ISP, and well, since my bits go through the VPN now primarily, I can open port 80 on the VPN. So I gave it a shot. The loading icon had me waiting for at least a minute and then bam! Cert populates. It took two minutes for it to work via the web but now it’s completely legit! I have the green lock! I’m so happy, you have no idea.
A couple questions: do I need to keep port 80 open constantly on my VPN for the certificate to work? Or do I only need it open when I pull the cert from let’s encrypt through my NAS UI? In the latter case I’d have to open port and do this every 90 days…maybe I should try to automate.
Anyway, just posting it for those questions and also to anyone who has a blocked port by ISP, a VPN is a workaround.
Edit: now that I official have a cert through let’s encrypt. Does that mean all internet traffic between my NAS and a client are now encrypted (similar to SFTP?) ? Someone told me before SSL is useless…wasn’t sure how they were saying this. Encrypted content is better than naked content, no?