Menu
What's new
By:
Filters Better Search

Builtin Lets encrypt, does it mean 80 is open? Or how does it work?

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

P

Pergola Fabio

Senior Member
Hi,

i just noticed there is a builtin Lets encrypt module, this is indeed usefull, i already exported those SSL certiftcates and imported them on my synology, so that works!! :)

But, does it mean port 80 is open? the Lets Encrypt module uses domain validation, and not dns challange, so that means 80 needs to be open? while its not? or how does it work?

I want to automate it on my synology, and not redo the process every 3 months, so i tried lets encrypt on synology too, but that doesnt work

So how can it work on the router , when 80 is not open?
 
It depends on the DDNS service. If you use Asus`s own DDNS, then it will use a DNS cookie to complete the validation process.

With other providers, I believe it temporarily opens up port 80 to complete the HTTP-based validation, then closes it back. But I'm not 100% sure about it, as it's closed source.
 
I am using Synology DS220. And yes, port 80 needs to be opened when I renew the certificate (Control Panel->Security->Certificate). Once it is done, I just close the port.

RMerlin said:
It depends on the DDNS service. If you use Asus`s own DDNS, then it will use a DNS cookie to complete the validation process.

With other providers, I believe it temporarily opens up port 80 to complete the HTTP-based validation, then closes it back. But I'm not 100% sure about it, as it's closed source.
Click to expand...
 
I use asus ddns .
I have port 80 opened to the internal ip of my router in order for the certificate to auto renew itself .
So this is not necessary to do you think ?
 
criminala said:
I use asus ddns .
I have port 80 opened to the internal ip of my router in order for the certificate to auto renew itself .
So this is not necessary to do you think ?
Click to expand...
No. Asus DDNS uses DNS validation, not HTTP.
 
Pergola Fabio said:
Then it should also work with an let's encrypt bot on a Synology for example? I tried that, but then it fails
Click to expand...
The Synology client can only handle its own domain, it cannot handle the router's domain.
 
You must log in or register to reply here.

Similar threads

kaanaslan
DSL-AC88U asuscomm DDNS Lets Encrypt Problem
Replies
0
Views
762
kaanaslan
kaanaslan
E
RT-AX86U Unable to port-forward port 80 (others working)
Replies
12
Views
3K
bbunge
bbunge
H
Does VPN Director Use Routes or IPTables Rules To Route Clients Over a VPN Connection?
Replies
5
Views
1K
HarryMuscle
H
L
Unbound + Wireguard: is this combination possible at all?
Replies
6
Views
2K
louisschneider
L
M
I don’t get how VLANs work with wireless APs!
Replies
14
Views
2K
coxhaus
C
Similar threads
Thread starter Title Forum Replies Date
L Is Merlin https CERT or let's encrypt more secure? Asuswrt-Merlin 6
M DuckDNS DDNS with Let's Encrypt certificate Asuswrt-Merlin 1
S Namecheap and let’s encrypt Asuswrt-Merlin 4
J Why do I need a Let's Encrypt certificate? Asuswrt-Merlin 11

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 738 (members: 21, guests: 717)
Top