Options
Support for Let's Encrypt certificates
Thomas_Buergis
Enthusiast ✭✭
in SSL VPN
We need support for Let's Encrypt certificates. All the main competitors do have Let's Encrypt support on their firewalls.
SonicWall supports Let's Encrypt on the SMA 100 and 1000 product lines. Let's Encrypt for the SSL-VPN on the firewall; it is a no-brainer.
Category: SSL VPN
Tagged:
1
Comments
@Thomas_Buergis on one hand I would love the idea to get LE certs easily on the Firewall but on the other hand I don't like the idea of having Ports 80 and 443 open to the public connecting directly to the Firewall. I stick to the rule to keep the attack surface as small as possible.
With a single IP assigned to the WAN it wouldn't be easy to accomplish that anyways if you're running a Webserver in the DMZ.
Sadly there is no way to limit the Access, because LE does not disclose a list of validation servers.
--Michael@BWC