Allow acme challenge public, but all other ip-restricted?

kotip

Hi,
Would it be possible to configure all other content as ip restricted, but let just acme challenge as public without any limits?
Idea is that I would like to limit all access to page as internal (ip-address restricted like 10.0.0.*), but still let lestsencrypt ssl-sertificates to work. Access to internal pages is handled by vpn.
Any ideas wellcome, thanks in advance!

admin

kotip wrote
Hi,
Would it be possible to configure all other content as ip restricted, but let just acme challenge as public without any limits?
Idea is that I would like to limit all access to page as internal (ip-address restricted like 10.0.0.*), but still let lestsencrypt ssl-sertificates to work. Access to internal pages is handled by vpn.
Any ideas wellcome, thanks in advance!

You shouldn't really care about IP access to ACME challenge. It is automatically handled and allowed by Abyss Web Server. So you can still configure and restrict all your Web pages but the challenge will remain reachable for Let's Encrypt.
This is very different from other Web server where the ACME bot is external to them and where you should care about it and the way the challenge is accessed.