Use acme.sh for letsencrypt
Posted: 01 Aug 2018 09:01
Although any letsencrypt support is better than no letsencrypt support, the current letsencrypt method can only use HTTP-01 and does not support DNS-01.
The advantage of using DNS-01, is that if DNS is hosted on a supported provider, there is no requirement for HTTP inbound.
Although certbot has support for some DNS providers https://certbot.eff.org/docs/using.html#dns-plugins acme.sh has support for many more https://github.com/Neilpang/acme.sh/tree/master/dnsapi
The advantage of using DNS-01, is that if DNS is hosted on a supported provider, there is no requirement for HTTP inbound.
Although certbot has support for some DNS providers https://certbot.eff.org/docs/using.html#dns-plugins acme.sh has support for many more https://github.com/Neilpang/acme.sh/tree/master/dnsapi