-
Notifications
You must be signed in to change notification settings - Fork 228
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Configuration questions #335
Comments
I will answer myself partially. As far as I understand, the issue of having a domain resolvable through your regular DNS provider is solved by creating a permanent
Having looked through the code, it seems like Double backslash should be used to escape dots in I am still uncertain of what purpose the |
Hi,
Don't know whether this is the appropriate place for questions, but I could not find any other support channel.
Trying to get started with this, and I've read the readme, but I am not clear on a few configuration parameters. I'd like to think I understand how things work conceptually, having previously set up different DNS servers for the same purpose.
I intend to get certificates for a few subdomains of my domain
example.com
, such as*.system.example.com
and*.intra.example.com
. I have set up DNS records in my "real" DNS server:acme-ns.example.com A <acme-dns-public-ip>
system.example.com NS acme-ns.example.com
intra.example.com NS acme-ns.example.com
My confusion lies with some of the configuration parameters. In the example configuration the same domain is used pretty much for all parameters. I feel like my
nsname
would beacme-ns.example.com
, but I don't know whatdomain
refers to.The
*.intra
subdomains are resolvable only internally, and I have that sorted out already, but*.system
subdomains need to be globally resolvable. Do I then need to define those in acme-dns in therecords
parameter, or can I delegate those requests elsewhere, or can I manage those in some way other than having to edit the configuration file?Also, for the
nsadmin
, is the substituted @ just for the sake of the example, or how would it work where multiple dots are involved? Is this the address that would get used for Let's Encrypt notifications?The text was updated successfully, but these errors were encountered: