====== Let's Encrypt ======
This guide assumes you have your public DNS hosted with CloudFlare.

On Ubuntu 20.04, install ''acme.sh''
<code>git clone https://github.com/acmesh-official/acme.sh.git</code>
<code>sudo mv acme.sh /var/acme</code>
Append ''export PATH=$PATH:/var/acme'' to the end of ''/etc/profile.d/apps-bin-path.sh''
<code>sudo acme.sh --install</code>
<code>sudo vi /var/acme/dnsapi/dns_cf.sh</code>

Get your Key from https://dash.cloudflare.com/profile
Add the following to the top
<code>export CF_Key="aiwilwejif9839282ffnnd032jd9dj2039je9"
export CF_Email="username@example.com"
export CF_Token="IDJDIEW9N29FHSKSOksidjfniv838373hdndikcw"
export CF_Account_ID="aasdfawef9234r0923u90jfhf8923023"
export CF_Zone_ID="68aw4ef384asef834ase38f4ase38f48"</code>

You may also have to run those commands on the CLI before running this command.

<code>acme.sh --issue --dns dns_cf -d domain.com -d www.domain.com</code>


===== Other =====
<code>sudo su -
acme.sh --issue --dns dns_cf --keylength 4096 -d domain.com -d *.domain.com --force

cd /root/.acme.sh/domain.com/
acme.sh --deploy -d domain.com --deploy-hook ssh
acme.sh --deploy -d domain.com --deploy-hook panos --insecure</code>

  * The Accounts per IP Address limit is 50 accounts per 3 hour period per IP.
  * Production the limit is  10 Accounts per IP Address per 3 hours.
acme.sh has integrations with [[https://github.com/acmesh-official/acme.sh/blob/master/dnsapi|DNS providers]] including [[https://github.com/acmesh-official/acme.sh/blob/master/dnsapi/dns_infoblox.sh|Infoblox]].