Mkdir -p /tmp/certbot/public_html/.well-known/acme-challenge It sets up a simple web server to expose the CERTBOT_TOKEN. Scripts explanation and code:Īuth-hook.sh is executed before the verification procedure. Create this folder and place your scripts there or use any other folder of your choice. Scripts are placed in /etc/letsencrypt/scripts. Please refer to certbot docs for more details. certbot will export some environment variables to the scripts. The hooks are basically scripts executed by certbot. post-hook /etc/letsencrypt/scripts/post-hook.sh manual-cleanup-hook /etc/letsencrypt/scripts/cleanup-hook.sh \ The command to execute is this: certbot renew Certificate automatic renewalīasically you need to automate the steps presented in the previous section. If you are not using port 80 on your server you can also remove it from ufw ALLOW rules and from the port forwarding of your router. At the end of this you can kill the python webserver. Copy/paste privkey.pem and cert.pem in your qbittorrent-nox web-ui and you are done. When the verification procedure is finished, you will find key and certificate files in /etc/letsencrypt/live/. WWW is a simple configuration to allow connections on port 80. If using ufw, this is the command you want: sudo ufw allow WWW Run these commands as root in a new shell on your server.īe sure to forward port 80 from your router to the server hosting qbittorrent-nox and to open the same port on your server firewall. It will also provide a couple of commands to run a simple web server with python. At some point certbot will tell you to run a web server to verify you own the hostname. Run certbot like this: sudo certbot certonly -manual -d įollow the instructions. I managed to do this on Archlinux but I think it would be the same on Ubuntu.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |