BW port handling for Let's Encrypt question

Hi guys,

Please help me understand how acme client for LE cert operates under self-hosted Ubuntu setup.

Suppose I choose this method and open an inbound port 80 on my firewall for LE communication.
I guess then, I want my main web-server port to be on the different port for a security concerns?

How does BW handle it?

My other Linux server (FreePBX) has built in mechanism that you can chose different main GUI port, and it will reserve port 80 for LE/ACME communication and open it only during renewal.


Does anyone have input? I’m trying to find an optimal way and automate the process of renewal.