Hi
I have my Synology NAS running various things and I'm looking to get an SSL via Lets Encrypt. I have a static IPv4 and a static /56 IPv6 address. The IPv4 is used for another aspect on 80/443 so I'm attempting to get lets encrypt through IPv6 but it keeps failing.
I've got Cloudflare DNS setup for my domain (IPv4 is working fine), my unifi setup has the firewall setup to allow connections via 80/443 to the NAS on the IPv6 address so all should be good.. but its not.
If I use an external checker such as https://www.subnetonline.com/pages/ipv6-network-tools/online-ipv6-port-scanner.php to check via the IPv6 address 80/443 show as open as expected but if I use the hostname (storage.domain.com) then the ports are shown as either filtered or closed.
Is there something I need to do either in cloudflare, Unifi or the Synology Control Panel to get this working? Note that I am running an Active Directory setup and the DNS servers have both IPv4/6 address in the DNS list and internal routing via the hostname works fine.
Any thoughts?
Thanks,
Chris
I have my Synology NAS running various things and I'm looking to get an SSL via Lets Encrypt. I have a static IPv4 and a static /56 IPv6 address. The IPv4 is used for another aspect on 80/443 so I'm attempting to get lets encrypt through IPv6 but it keeps failing.
I've got Cloudflare DNS setup for my domain (IPv4 is working fine), my unifi setup has the firewall setup to allow connections via 80/443 to the NAS on the IPv6 address so all should be good.. but its not.
If I use an external checker such as https://www.subnetonline.com/pages/ipv6-network-tools/online-ipv6-port-scanner.php to check via the IPv6 address 80/443 show as open as expected but if I use the hostname (storage.domain.com) then the ports are shown as either filtered or closed.
Is there something I need to do either in cloudflare, Unifi or the Synology Control Panel to get this working? Note that I am running an Active Directory setup and the DNS servers have both IPv4/6 address in the DNS list and internal routing via the hostname works fine.
Any thoughts?
Thanks,
Chris