Letsencrypt/certbot with Readynas OS 6.9.3 on RN312

I just messed around including a letsencrypt certificate according to

Letsencrypt/certbot experiments with ReadyNAS OS 6.5.0 on RN202

This is my addition to the linked post and is not very helpful on its own. ;)

 

Here are the adaptions I had to make.

 

The tls-sni-01 challeng was removed in January 2018, see: https://community.letsencrypt.org/...

It was enabled again for some scenarios if I understand it correctly. Nevertheless, it didn't work for me. :/ I had to enable port-forwarding to port 80 so the http-01 challenge works.

So, to get the initial certificate I used
# ./certbot-auto certonly --standalone -d yourdomain.com,yourseconddomain.com

 

For automatic renewal I added a cronjob that runs at a random second between 2 and 3 am (https://dev-notes.eu/2018/05/set-up-an-automatic-letsencrypt-renewal-cronjob/). I hope it works. :D
# crontab -e

Add the line:
0 2 * * * /usr/bin/perl -e 'sleep int(rand(3600))' && /opt/letsencrypt/certbot-auto renew --standalone --pre-hook "service apache2 stop" --post-hook "service apache start" --renew-hook "/opt/letsencrypt/my_renew_hook"