Page 1 of 1

LetsEncrypt validation behind firewall

Posted: Wed Jan 18, 2017 9:33 am
by johnrollins
Hi,

We run a hosted service for our clients where the firewall restricts access to all ip addresses except those provided by the client. In order to use the letsencrypt ssl certificate I assume I need to open the firewall for a particular ip address? I currently get an 805 error trying to set it up. Can you tell me what ip address I should allow in and if it needs to be permanently open for the auto renewal?

Thanks,
John

Re: LetsEncrypt validation behind firewall

Posted: Wed Jan 18, 2017 11:28 am
by admin
Hello,

Port 80 must be allowed in order for the SSL certificate generation tool to work properly and your domain name must be accessible from external sources, more information about this can be found here : http://www.terminalserviceplus.com/docs ... te-manager

Re: LetsEncrypt validation behind firewall

Posted: Wed Jan 18, 2017 11:50 am
by johnrollins
Thanks, I understand that port 80 must be accessible.

Is there a way of setting up tsplus so that letsencrypt can validate, but users wanting to use the web portal have to use port 443? If this is possible I can open port 80 completely but prevent access on other ports? My clients will not allow me to have an open web site for connections to the application.

Thanks,
John

Re: LetsEncrypt validation behind firewall

Posted: Wed Jan 18, 2017 7:36 pm
by admin
Hello,

Yes, you will be able to connect remotely by allowing 80 and 443 only. Connection will be available by using the web client HTML5 and RemoteApp.