Generate a wildcard TLS certificate using Certbot's manual DNS challenge mode.
certbot certonly \
--manual \
--preferred-challenges dns \
--server https://acme-v02.api.letsencrypt.org/directory \
--manual-public-ip-logging-ok \
-d '*.dvirus.co.il' \
-d dvirus.co.il
Note: Certbot will prompt you to add a
_acme-challengeTXT record to your DNS before it validates. Wait for DNS propagation before continuing.
Warning: Wildcard certificates require DNS-01 challenge — HTTP challenge will not work.