Jump to content


Photo

Let's Encrypt

SSL Certification EFF Lets Encrypt

  • Please log in to reply
7 replies to this topic

#1 John Meyers

John Meyers
  • Members
  • 4 posts

Posted 01 February 2017 - 11:36 PM

I think that there should be an option under certificates to create one using Let's Encryptsimilar to the process used by nginx waf solutions. 

 

For example :

https://www.nginx.com/blog/free-certificates-lets-encrypt-and-nginx/

 



#2 Thomas Gusenleitner

Thomas Gusenleitner
  • Members
  • 8 posts

Posted 29 March 2017 - 03:58 AM

Lets Encrypt support would be great!



#3 Jens Hildenbeutel

Jens Hildenbeutel
  • Members
  • 44 posts
  • LocationKaiserslautern, Germany

Posted 29 March 2017 - 06:06 AM

+1



#4 John Meyers

John Meyers
  • Members
  • 4 posts

Posted 30 August 2017 - 07:03 PM

I have to bump this again as I find this is a must have for websites today.



#5 Trevor Garner

Trevor Garner
  • Members
  • 2 posts

Posted 11 September 2017 - 03:44 PM

I have requested this from our Account Manager and asked Support. Nothing yet from what I hear. I too wish Barracuda WAFs had Let's Encrypt Support. Would be amazing!



#6 Jens Hildenbeutel

Jens Hildenbeutel
  • Members
  • 44 posts
  • LocationKaiserslautern, Germany

Posted 14 September 2017 - 04:00 AM

With the option to ignore the webservers certificate and us an own Let's Encry Certificate, it would be really useful to be able to automatically request new certs and simply forget about certs at all.

As there are several implementations for the ACME protocol already, that should not be impossible to craft.

 

Although I could understand if you guys are waiting for ACME 2 to be a new IETF standard.

 

Any feedback or comments by the WAF team would be highly appreciated.

 

Regard

 

Jens



#7 Eric Paul

Eric Paul
  • Members
  • 5 posts

Posted 07 May 2018 - 09:25 AM

It's been over a year since this request was made and nothing has been done.

SSL Security is a must for EVERY website. As a "security" company this should be a high priority for Barracuda and it doesn't even appear to be on the radar. If you only have one or 2 websites and you're willing to go in every 90 days and manually update the certificate then you can use Let's Encrypt. (You might also be able to use the API to automate this.)
If you have a few thousand websites then you will be forced to use the "Custom" service type to allow SSL pass-through to the web servers. When you use the custom service your expensive firewall becomes little more than an over-priced load-balancer.

We need a service type that allows the SSL to come from the web servers but still allows us to apply firewall rules and protection.



#8 Eric Paul

Eric Paul
  • Members
  • 5 posts

Posted 05 June 2018 - 08:24 AM

Update: This can be done via the API and we are in the process of implementing it. Sadly it's not software I can share in it's entirety. I still think it would be good for Barracuda to add this as a feature.