All is well. A while back I was able to circumvent my port 80 issue to get a cert through my Synology UI by enabling a VPN and opening the VPN port.
What I am curious about is, since I instituted the cert 6+ months ago, it has been updating automatically it seems. I was not aware was a feature on Synology. In fact, I cannot confirm the feature in the UI. But it seems to work. Is anyone aware that Synology NAS now auto-pulls new certs from LE?
Certificates issued by Let's Encrypt are valid for 90 days. Before the certificates expire, DSM will automatically renew such certificates after successful domain validation. Please make sure your Synology NAS and router have port 80 open for certificate renewal.
For synology.me domains, the Synology Let’s Encrypt client can upload a TXT record to the synology.me DNS servers for Let’s Encrypt to use for verification, instead of using a file that must be accessible on port 80.
They must have added this helpful feature between the time you first got your certificate and the time your first renewal came around, so you did get lucky.