Merge pull request #84 from injabie3-moe/dns-upstream

Add custom upstream DNS resolver
kchristensen · Jan 1, 2024 · 98a5079 · 98a5079
2 parents f5b4a20 + 089b1bd
commit 98a5079
Show file tree

Hide file tree

Showing 2 changed files with 6 additions and 1 deletion.
diff --git a/udm-le.env b/udm-le.env
@@ -30,6 +30,11 @@ ENABLE_RADIUS="no"
 # Leave this disabled if you don't know what this means as most configurations don't need it.
 LEGO_EXPERIMENTAL_CNAME_SUPPORT=false
 
+# The DNS resolver used to verify records. Change this to a public DNS resolver if you have
+# modified your UDM's upstream DNS servers to point to an internal resolver that is the
+# authoritative name server for any domain that you are trying to request certificates for.
+DNS_RESOLVER="127.0.0.1:53"
+
 #
 # DNS provider configuration
 # See README.md file for more details

diff --git a/udm-le.sh b/udm-le.sh
@@ -9,7 +9,7 @@ source /data/udm-le/udm-le.env
 set +a
 
 # Setup additional variables for later
-LEGO_ARGS="--dns ${DNS_PROVIDER} --email ${CERT_EMAIL} --key-type rsa2048"
+LEGO_ARGS="--dns ${DNS_PROVIDER} --dns.resolvers ${DNS_RESOLVER} --email ${CERT_EMAIL} --key-type rsa2048"
 LEGO_FORCE_INSTALL=false
 RESTART_SERVICES=false