Revolving around the core of technology
Hello,
As I understand I have to have port 80 open for LetsEncrypt to obtain renewal certs. I would like to restrict what IP's can access port 80 via my firewall. What IP ranges are used to access my Synaman server for the LetsEncrypt auto renewal process?
Thanks
SynaMan does not contact Synametrics servers during the certificate creation. Instead, it contacts Let's Encrypt's servers. Therefore, we do not know the exact IP address that they use.
Note that you can always restrict SynaMan to use HTTPS forcefully. In that case, every client that connects on port 80 will be redirected to 443 and no file will be transferred without encryption. Let's Encrypt still works even when this option is turned on. Therefore, there is no harm in opening port 80 publicly.