3

Add IP addresses in certificate Subject Alt Names

To allow bypassing the bootstrap step it would be nice that IP addresses are added in the nextdns certificate Subject Alt Names, like cloudflare does. Otherwise DoH won't work if port 53 is blocked or dns.nextdns.io fails to be resolved with a local DNS query. And then the following url could be used for DoH:

https://<nextdns_ip_addr>/<id>/<desc>

I'm not sure this is doable with Letsencrypt though...

Thanks

Reply

null

Content aside

  • 3 Likes
  • 3 yrs agoLast active
  • 54Views
  • 1 Following