cf: https://pimylifeup.com/raspberry-pi-ssl-lets-encrypt/
Some settings about firewall:
- sudo vim /etc/arno-iptables-firewall/conf.d/00debconf.conf,
add 443 for OPEN_TCP and OPEN_UDP - Add 443 port forward in wifi web page
- Two more things:
sudo a2enmod ssl
sudo a2ensite default-ssl - If it can be connected but shows secure error try this again:
sudo certbot --apache
IMPORTANT NOTES:
- Congratulations! Your certificate and chain have been saved at:
/etc/letsencrypt/live/kpchiao9600k.sino.tw/fullchain.pem
Your key file has been saved at:
/etc/letsencrypt/live/kpchiao9600k.sino.tw/privkey.pem
Your cert will expire on 2023-05-29. To obtain a new or tweaked
version of this certificate in the future, simply run certbot again
with the "certonly" option. To non-interactively renew *all* of
your certificates, run "certbot renew"
- Your account credentials have been saved in your Certbot
configuration directory at /etc/letsencrypt. You should make a
secure backup of this folder now. This configuration directory will
also contain certificates and private keys obtained by Certbot so
making regular backups of this folder is ideal.
- If you like Certbot, please consider supporting our work by:
Donating to ISRG / Let's Encrypt: https://letsencrypt.org/donate
Donating to EFF: https://eff.org/donate-le
Run this to update certificaion:
sudo certbot certonly --standalone -d example.com -d www.example.com
沒有留言:
張貼留言