I am quite new in terms of Let’sEncrypt. Please excuse if my question might sound kind of wooden…
I am using a mail server at some provider which has mail.provider.tld as domain name (both: a- and mx-record).
Now I want to beautify the thing a bit with the goal to have mail.mysite.tld point to their web and mail services. In order to have LetsEncrypt I guess I need to run a redirecting proxy service and have Certbot renew towards that one.
Or could I have DNS point to the provider’s IP address and have Certbot renew without running an own redirecting service, as well? I know, I needed to have my provider’s machines respond to requests on mail.mysite.tld … but this should not be an issue.
I am just kind of confused if it might be possible to avoid running something else than Certbot myself.