Hi,
So I have set up a firewall that has an incoming drop all rule and allowed only port 80 and a few others externally for certificates etc and access to 8006 is under an IP set list.
Testing myself on the URL it says unable to connect in browsers, however it works for certificate renewal which is what I want, are there any security considerations for keeping port 80 open if it's serving no content other than letsencrypt verification when it does that?
So I have set up a firewall that has an incoming drop all rule and allowed only port 80 and a few others externally for certificates etc and access to 8006 is under an IP set list.
Testing myself on the URL it says unable to connect in browsers, however it works for certificate renewal which is what I want, are there any security considerations for keeping port 80 open if it's serving no content other than letsencrypt verification when it does that?
