Based on my understanding Lets Encrypt will ping a site via HTTP to verify. Even though we are using HTTPs should we be allowing HTTP? Typically this is blocked or another server will redirect http to the https server. Should I be concerned about opening up http [so lets encrypt can work]? If someone can explain why this is ok.