Written by #xxaxxelxx

OpenBSD // letsencrypt [ certbot ] renewal for web servers listening on different ports than 80

pf.conf:

# LETSENCRYPT CERTBOT TABLE
table  persist

# CERTBOT SHUFFLE
matqch in on { $ext_if $carp_ext_if } proto { tcp udp } from  to { $ext_if:0 $carp_ext_if:0 } port { 80 } rdr-to $carp_ext_if:0 port 8000 tag PASS

crontab:

Leave a Reply

Please log in using one of these methods to post your comment:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.