It's a long video but it covers all the bases. Your ISP modem, your router, Cloudflare DNS, Certbot, Apache settings, and NGINX settings. I show you how it all comes together.
In this video I want to go down the required rabbit holes and remove the mystery entirely. I try to break it down as simply as is possible. Hope this video helps you avoid the days or weeks of searching that it took for me.
Some helpful snippets :
sudo certbot certonly --force-renewal --installer nginx -vvv --pre-hook 'service nginx stop' --dns-cloudflare-propagation-seconds 10 --rsa-key-size 4096 --post-hook 'service nginx start' --dns-cloudflare --agree-tos --email admin@youremail.com --eff-email --dns-cloudflare-credentials /root/.secrets/cloudflare.ini -d yourdomain.com,*.yourdomain.com --preferred-challenges dns-01
server {
listen 80;
server_name yourdomain.com www.yourdomain.com ~^test.*\.*\.biz$ ~^firewall.*\.*\.biz$ ~^pass.*\.*\.biz$ ~^backups.*\.*\.biz$ ~^jobs.*\.*\.biz$ ~^hr.*\.*\.biz$ ~^portal.*\.*\.biz$ ~^crm.*\.*\.biz$ ~^vitals.*\.*\.biz$;
error_log /SM/data-drive/sm_logs/nginx-apache.log;
include sm-snippets/force-https.ini;
include sm-snippets/proxy_pass;
}
server {
listen 443 ssl http2;
listen [::]:443 ssl http2;
server_name yourdomain.com www.yourdomain.com ~^test.*\.*\.biz$ ~^firewall.*\.*\.biz$ ~^pass.*\.*\.biz$ ~^backups.*\.*\.biz$ ~^jobs.*\.*\.biz$ ~^hr.*\.*\.biz$ ~^portal.*\.*\.biz$ ~^crm.*\.*\.biz$ ~^vitals.*\.*\.biz$;
error_log /SM/data-drive/sm_logs/nginx-apache.log;
ssl_certificate /etc/letsencrypt/live/cmcmatter.biz/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/cmcmatter.biz/privkey.pem;
include sm-snippets/proxy_pass;
}
Негізгі бет Тәжірибелік нұсқаулар және стиль A - Z : NGINX Reverse Proxy to Apache with SSL (using Cloudflare DNS)
Пікірлер: 3