i use the cert-manager in kubernetes cluster, to create certificates for my sites.
The cert-manager traffic going out through the ip x.x.x.212 and the site have the ip x.x.x.219 (dns entry is pointed to this ip). The traffic from ip x.x.x.219 will be redirected through the firewall to the cluster. So I can reach the well-known site from both ips.
But if, if the dns entry have the ip x.x.x.219, then I get the error
Error preparing issuer for certificate dmz/gitlab.external: http-01 self check failed for domain “gitlab-test.external”
If I changed the dns to ip x.x.x.212 it’s working without any error.
my question is, it’s this configuration (with different ips) possible?