Tag: letsencrypt
Handle multiple virtual domains on one debian host | nginx + certbot/letsencrypt
For every domain create a nginx file, put it into /etc/nginx/sites-available and symlinklink it into /etc/nginx/sites/enabled: /etc/nginx/sites-available/my-domain.tld server { listen 80; listen [::]:80; server_name my-domain.tld http://www.my-domain.tld; root /var/www/my-domain.tld; index index.html index.htm; location / { try_files $uri $uri/ =404; } } Create the corresponding dirs and index.htmls (here: /var/www/my-domain.tld) Restart your nginx: Run your certbot That […]
Letsencrypt/certbot renewal problem
Renewal fails with ‘no webroot in conf’ message, but you have webroot and webroot_path entries. Comment them out and add the following block: [[webroot_map]]your.server.com = /path/to/webroot
Jitsi DIY | Debian
apt-get update apt-get dist-upgrade apt-get -y install openjdk-11-jre nginx Add default.conf to nginx/sites-available: server { listen 80 default_server; listen [::]:80 default_server; server_name _; include snippets/well-known.conf; } Link this file to nginx/sites-enabled. Add jitsi.mydomain.mytld.conf to nginx/sites-available: server_names_hash_bucket_size 64; server { listen 80; listen [::]:80; server_name jitsi.ir-media-tec.com; location ^~ /.well-known/acme-challenge/ { default_type “text/plain”; root /usr/share/jitsi-meet; } location […]
OpenBSD // letsencrypt [ certbot ] renewal for web servers listening on different ports than 80
pf.conf: # LETSENCRYPT CERTBOT TABLE table persist # CERTBOT SHUFFLE matqch in on { $ext_if $carp_ext_if } proto { tcp udp } from to { $ext_if:0 $carp_ext_if:0 } port { 80 } rdr-to $carp_ext_if:0 port 8000 tag PASS crontab:
ICECAST WITH HTTPS
1. Install and configure Icecast listenning on 127.0.0.1 port 8000 without ssl. ;) 2. Install nginx 3. Create directory .well-known in webroot ( here: /var/www/html ) 4. Install certbot 5. Configure nginx: /etc/nginx/nginx.conf: #user www; worker_processes 4; #pid /run/nginx.pid; events { worker_connections 768; # multi_accept on; } http { ## # Basic Settings ## sendfile […]