dreadl0ck
commented
1 year ago Sorry for the late reply. Please tag me for faster responses in the future.
The most common approach here would be to have a reverse proxy as a gateway that takes care of the certificate renewal and proxies requests to the infrastructure behind it.
If you run a cluster of servers my understanding is that you need to store the cert in a global backend in order to not be banned ?