Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Let's Encrypt and pfBlockerNG

    Scheduled Pinned Locked Moved pfBlockerNG
    1 Posts 1 Posters 572 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • H
      hrx
      last edited by

      Since Let's Encrypt (LE) does not advertise specific IP addresses and/or subnets or FQDNs which could be used to build exact allow rules for LE we regularly get into conflicts on sites where pfBlockerNG is running with GeoIP blocking enabled. Maybe the community has a solution here.

      We basically want to achieve the following: Pass Let's Encrypt traffic when a certificate renewal takes place. Maybe this may be solved programmatically, we just don't have an idea how to realize it cleanly.

      Thanks for your input!

      1 Reply Last reply Reply Quote 2
      • First post
        Last post
      Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.