I use a domain that, for the most part, is internal to my homelab. The primary DNS server to the world is Cloudflare, but like many homelabbers, I use internal DNS servers to resolve my hosts and services. Running Certwarden in a Docker container on a Proxmox host internally works fine, but I noticed when I tried to request a certificate using DNS-01 through Cloudflare, it was timing out. Upon closer inspection, it is because the docker LXC and container are using my internal DNS for this domain and not Cloudflare.
This was easily resolved by changing the default DNS of the docker host to point to 8.8.8.8, which then resolved the TXT record, but I would prefer to keep it at the default. I'm assuming the system is using an nslookup to look for the TXT record (which gets set properly), and if so, I'm wondering if there could be an option added for this use case to use a specific name server (external) to do the resolution and verify the TXT record. I understand it is a unique use-case, but probably not just to me.
Curious if anyone else has experienced a similar issue and would benefit from this.
