Hey, HA found a way to to it in pfSense Webgui. Not very comfortable but it should work:
Create Domain -> User DNS manuel -> Run issue -Y it will show you want to put in your DNS (Record and TXT entry) Update DNS and renew ;) Voila: [Thu Feb 16 19:57:06 CET 2017] Verifying:cluster.dus.fcse.io <http://cluster.dus.fcse.io/> [Thu Feb 16 19:57:10 CET 2017] Success [Thu Feb 16 19:57:10 CET 2017] Verify finished, start to sign. [Thu Feb 16 19:57:11 CET 2017] Cert success. And the main Goal is - Its an internal IP ;) But now it seems that the acme gui stores all certs in /tmp/ Now i need to know how i can import these Certs to pfsense :-( I thought its doing automatically Cheers daniel > Am 16.02.2017 um 19:48 schrieb Arthur Wiebe <arthur.wi...@nerdsonsite.com>: > > OK yeah I am using the DNS method on a load balancer as well but using this > https://github.com/lukas2511/dehydrated > <https://github.com/lukas2511/dehydrated> instead which could be used on > pfsense as well, you'd just have to configure it all from the CLI manually. > > On Thu, Feb 16, 2017 at 1:33 PM Daniel <dan...@linux-nerd.de > <mailto:dan...@linux-nerd.de>> wrote: > Hi, > > sounds cool but did not fit my needs. > I run domain www.blabla.de <http://www.blabla.de/> on my firewall on a public > IP which points to haproxy. > So i cant redirect port in this case. > > It seems the best an easiest way for me is to use DNS. > I can chosse PowerDNS which we are using. But it seems that it is the > commercial Service from PowerDNS. > But in any case DNS seems to correct solution for me but never used it before. > > Cheers > > Daniel > > >> Am 16.02.2017 um 19:14 schrieb Arthur Wiebe <arthur.wi...@nerdsonsite.com >> <mailto:arthur.wi...@nerdsonsite.com>>: >> >> Hey Daniel, I did write this >> https://blog.artooro.com/2017/02/16/quick-easy-lets-encrypt-setup-on-pfsense-using-acme/ >> >> <https://blog.artooro.com/2017/02/16/quick-easy-lets-encrypt-setup-on-pfsense-using-acme/> >> let me know if that works for you or if you have any feedback. >> >> On Thu, Feb 16, 2017 at 12:56 PM Daniel <dan...@linux-nerd.de >> <mailto:dan...@linux-nerd.de>> wrote: >> Hi there, >> >> is there any Documentation and configuration Examples for acme to manage it >> via the GUI? >> >> For Example local DocRoot or DNS Setup or what ever. I use PowerDNS but i >> didnt know what for Information he wants to have to update the zones. >> >> Cheers >> >> Daniel >> _______________________________________________ >> pfSense mailing list >> https://lists.pfsense.org/mailman/listinfo/list >> <https://lists.pfsense.org/mailman/listinfo/list> >> Support the project with Gold! https://pfsense.org/gold >> <https://pfsense.org/gold> >> -- >> Arthur Wiebe | +1 519-670-5255 <tel:(519)%20670-5255> > > -- > Arthur Wiebe | +1 519-670-5255 _______________________________________________ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
