search

acmesh-official / acme.sh

A pure Unix shell script implementing ACME client protocol
https://acme.sh
GNU General Public License v3.0
39.39k stars 4.98k forks source link

能列出防火墙要允许的项目吗?比如IP和端口 #5291

Open clouduser1024 opened 1 month ago

clouduser1024 commented 1 month ago

Steps to reproduce

Debug log

acme.sh  --issue .....   --debug 2
github-actions[bot] commented 1 month ago

Please upgrade to the latest code and try again first. Maybe it's already fixed. acme.sh --upgrade If it's still not working, please provide the log with --debug 2, otherwise, nobody can help you.

clouduser1024 commented 1 month ago

upgraded to the latest version already, tried and failed to issue a certificate unless stop the firewall completely.

ninetian commented 1 month ago

Your question is not detailed enough.

if is domain verify problem , only allow tcp 80

If you're asking about allowing specific IP addresses through a firewall, this is not practical, as IP addresses are not fixed.

When you apply for a certificate, the first thing to note is that different providers, such as ssl.com or zerossl.com, use the ACME protocol, but each provider has different domain names. Depending on the load, the resolved IP may change at any time, and if a CDN is used, the IP is likely to be random as well.