You can use DNS challenge to renew your certificates without opening ports! Have a look at acme.sh for automation.
You can use DNS challenge to renew your certificates without opening ports! Have a look at acme.sh for automation.