Hi, is there any way to make Certbot work normally using ports other than 80 and 443? I mean to create and normally renew the certificate. I need to use those two ports both in the local network and in the external network for other purposes.
Thanks
No, probably not like you want to use it. The usage of those ports are mandated by the CA/Browser Forum Baseline Requirements to which all publicly trusted CAs need to adhere.
Certbot itself can listen on other ports than port 80 for the challenge, but the validation server of the CA will always start with trying to connect to HTTP port 80 for the http-01 challenge, due to the rules I mentioned earlier. Certbot can listen to other ports so e.g. the external port 80 can be portmapped to a different port internally. But the external port will always be 80.
If you cannot use the http-01 challenge on port 80 or port 443 (for the tls-alpn-01 challenge which Certbot doesn't support), you can use the dns-01 challenge.
5 Likes
This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.