How to use acme.sh for issue ssl cert with ipv6

Posted on

For this tutorial we will going to get ssl cert. For easier ways it’s acme.sh. But acme.sh for default is using ipv4. And how to use this with ipv6? Let’s read this.

Preparing

  • A ipv6 VPS
  • A domain with AAAA record for ipv6 VPS

Steps

1. Install warp or use dns64 by this command

echo -e nameserver 2a01:4f8:c2c:123f::1 > /etc/resolv.conf

2. Install acme.sh script by these command

curl https://get.acme.sh | sh -s [email protected] # Change this email for yours
source ~/.bashrc
bash ~/.acme.sh/acme.sh –upgrade –auto-upgrade
bash ~/.acme.sh/acme.sh –set-default-ca –server letsencrypt

3. Confirm 80 port is not used, then run this command

bash ~/.acme.sh/acme.sh –issue -d ${domain} –standalone -k ec-256 –listen-v6 –insecure

4. If ssl cert issuing is successful, then use this command for install cert

bash ~/.acme.sh/acme.sh –install-cert -d ${domain} –key-file /root/private.key –fullchain-file /root/cert.crt –ecc

5. All done

 

See also  What are FUSE and TUN?