I have a UDR7 as router/firewall and some services running on my Synology NAS. Every service uses a subdomain certificate (actually a wildcard certificate provided through NGINX Proxy Manager, thanks Tom :-). No services are usually available from the internet, it’s VPN only. But to renew the certificates I currently forward ports 80 & 443 temporarily from the router to the NAS, which means every request with my WAN IP is forwarded and even a subdomain like doesnotexist.mydomain.com.
Is there a way in Unifi to only forward specific subdomain request like sub1.mydomain.com but not sub2.mydomain.com?
That is not the way to solve this, you should find a DNS provider that supports DNS challenge for cert renewal. NGINX Proxy Manager has support for quite a few of them.
1 Like