Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    ACME certs on Virtual IPs?

    ACME
    2
    3
    307
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • S
      sgw
      last edited by

      Didn't find something in the Search here... forgive asking an FAQ:

      I have a pfSense with some Virtual IPs (Type "IP Alias") assigned to WAN.

      So far all the Certs issued were for FQDNs pointing to the original/first IP of the WAN interface.

      Now there should be services hosted on a Virtual IP. So far the http-challenge fails, even when I add another FW-rule with destination "$virtual_ip_1" and Port 80 to WAN.

      Does the ACME http-server listen on all the virtual IPs as well?

      hints appreciated! thanks

      GertjanG 1 Reply Last reply Reply Quote 0
      • GertjanG
        Gertjan @sgw
        last edited by

        @sgw said in ACME certs on Virtual IPs?:

        ACME

        "ACME" uses Letsencrypt, or comparable services, and these do not accept IP addresses. Only host names - domains names.

        If the FQDN points to an A or AAAA or nothing, or something else, doesn't matter.

        No "help me" PM's please. Use the forum, the community will thank you.
        Edit : and where are the logs ??

        S 1 Reply Last reply Reply Quote 0
        • S
          sgw @Gertjan
          last edited by

          The question is:

          how to let the ACME-package run the http-challenge on the Virtual IPs?

          But I worked around this already (customer wanted traefik for the additional services).

          1 Reply Last reply Reply Quote 0
          • First post
            Last post
          Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.