Thread Info
  • Locked Locked
  • Replies 64 replies
  • Subscribers 25 subscribers
  • Views 227509 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

[HOWTO] Let's Encrypt

rklomp

Hi all,

I have got a fully working Let's Encrypt setup for multiple domains of my Web Application Firewall on my Sophos UTM 9.4!

On github I have made a manual on how to set it up on your UTM as well. Currently it has a few manual steps to set it up, but I might script this in the future as well.

https://github.com/rklomp/sophos-utm-letsencrypt

Comments, questions and improvements are welcome! And please leave a message if you have got it working as well.

Have fun!

René
[Donate]



This thread was automatically locked due to age.
Parents

  • So the only part about those instructions that I'm confused about is the :

     

    Set ACL; The directory where to copy acme challenge file to. This should be the server that is serving the yourdomain.com webpages. Also create the folder on the server and test if http://yourdomain.com/.well-known/acme-challenge/ is reachable and if you can ssh from the UTM to the server. Maybe you need to add a firewall rulle to allow traffic.

    ACL=('ssh:<user>@<server>:/var/www/.well-known/acme-challenge')

     

    How did you set this path for your firewall directly on the UTM?

     

    I should clarify, I'm not hosting any other websites, I just want this to secure my firewall itself (gateway.mydomain.net)

Reply

  • So the only part about those instructions that I'm confused about is the :

     

    Set ACL; The directory where to copy acme challenge file to. This should be the server that is serving the yourdomain.com webpages. Also create the folder on the server and test if http://yourdomain.com/.well-known/acme-challenge/ is reachable and if you can ssh from the UTM to the server. Maybe you need to add a firewall rulle to allow traffic.

    ACL=('ssh:<user>@<server>:/var/www/.well-known/acme-challenge')

     

    How did you set this path for your firewall directly on the UTM?

     

    I should clarify, I'm not hosting any other websites, I just want this to secure my firewall itself (gateway.mydomain.net)

Children
No Data
Unfiltered HTML