Dockerize Secure Web Server using Nginx and Letsencrypt
HTML-код
- Опубликовано: 19 апр 2019
- This video explaining how to setup secure webserver using nginx and letsencrypt. Dockerize certbot ssl letsencrypt and install letsencrypt docker on nginx.
You can find out configuration in my github:
github.com/dimzrio/docker-com... 
Наука
Perfect. Short, sweet, and to the point. Everything I needed and nothing I didn't. Thank you for saving me a bunch of time. 👍
Absolutely perfect. It worked immediately. Thank you very much, very much appreciated!
Hi Dimzrio, this was a great tutorial and it worked perfectly the way you showed/explained. Thanks a lot; Been trying to figure this and having gone through several hours of trial and errors (following other people's posts etc..), glad I found this link!! Keep up the good work.
Thanks to you I was able to get a secure connection. I was lost for many hours. Good tutorial!
Man i am excited to share that your tutorial helped me to get my first website ready for production . I am a developer not a devops guy so things like certbot or openssl configuration was tough for me .
Your video was such a big help. Thank you!
Very good tutorial, you helped me very much. Thank you!
Hi @Dimzrio; how do we renew the certificates? Is there a command for that or do we need to install a new certificate?
Thanks for the strait forward explanations
Thanks bro
thank you for the video. it's a straight forward explanation and it's working
Did you follow the tutorial using a VPS?
@@latlov yes
Thanks bro ... for the great tutorials :)
It worked for me.
Thank you!
You save my life!
Thank you for video!
thanks for you video. I'm stucking on this, there is no live folder on certbot/conf
Thank you so much :)
Thank you man! i have an issue about reverse proxy. Can u explain how can i make a reverse proxy on running docker port 90 to domain/api for my nodejs api? Let's say I did, SSL still work on domain/api ?
6:53 I don't have live folder. Can u help me out :(
Good work. But now how do we renew letsencrypt certificate.
How do you do this for a Laravel application?
Thanks for this video, I have a docker-compose file with 7+ containers running on different ports like 8080,8081,8082....
I want to add ssl for all those containers, how to do this? I am new to this and nginx reverse proxy.
yes u can put ssl to your nginx configurations, and you create vhost for reverse proxy to each container.
for example:
container1.example.com --> container1:8080
container2.example.com --> container2:8081
...
and than, register ssl as *.example.com.
Hi Atharva where you able to do it?
Hello your video is a big help. but I have question how do we auto renew the certificate?
you can use crontab every for renew the cerficate..
makasih bang, mantap!
you are great man thanks so much.. how can i redirect my api which listen 8099 ?
how was ssl_cipher field value generated?
Where did you get the value of ssl_ciphhers from at 8:38?
+
he gave everything on a platter except this. i think he has given us a subtle homework.
@Soubhik Chatterjee Yep, that's what I did a year back lol
Thank you for this video. However, there's an error when running "docker-compose up" - "/usr/share/nginx/letsencrypt does not exist or is not a directory". Did you have such error?
pull thee images from docker website. you need to do this only once
gan kalo cara renew certificate gimana ya biar dia misal 2 bulan sekali auto renew gitu dibuat cronjob, caranya gimana ya?
Thank you for the video. Is the ssl certificate still working after 3 months ?
You need renew certificate
Bang.. kalo untuk video sebelumnya yg nginx php-fpm mau diisntall lets encrypt settingannya bangaimana Bang? trims
kurang lebih sama kok, tinggal di tambahin konfigurasi certbot nya aja.
Thank you for creating such an amazing tutorial. Worked like a charm
Thank you for you tutorials, i'm experiencing an issue with the letsencrypt, can you help me please?
First i want to change "centz.dimasrio.com" to my localhost domain and i get an error like thí
"Domain name does not end with a valid public suffix"
And then i revert all the code and user your default code but this times i get this error
"DNS problem: NXDOMAIN looking up A for centz.dimasrio.com - check that a DNS record exists for this domain"
at my created this video, domain youtube.dimasrio.com is public domain..
let's encrypt need public domain for validations. i don't know it's can be installed in localhost.
When I try follow this in Ubuntu from Digitalocean I am not able to see the certificates even if I use same domain. I tried with actual live domain that's pointed to the server IP and that also had the same result.
I don't see the certificates either for dimasrio.com or my actual live domain or local /etc/hosts entry based domain. tested all three ways.
root@ubuntu-s-1vcpu-1gb-nyc1-01:/opt/nginx-ssl# ls certbot/conf/
accounts csr keys renewal renewal-hooks
I copied the updates directly from github.com/dimzrio/docker-compose/tree/master/nginx-ssl-letsencrypted and verified with the video by running all commands, everything is matching but still it didn't work for me.
did you see log certbot container?
I keep getting this error but if i run the script in standalone mode it works
To fix these errors, please make sure that your domain name was
entered correctly and the DNS A/AAAA record(s) for that domain
contain(s) the right IP address. Additionally, please check that
your computer has a publicly routable IP address and that no
firewalls are preventing the server from communicating with the
client. If you're using the webroot plugin, you should also verify
that you are serving files from the webroot path you provided.
DNS Records settings take a loooong time.
Sometimes I can reach my website on mobile but not on desktop due to different connected servers.
Its working. Thank You. Can you link nginx to django web?
yes, u can..
you can using proxy_pass or uwsgi_pass in nginx to django..
@@dimzrio i have tried several times, but still not working.. if u have time, can u continue with django. :)
noted.
mantap mas keren tutorialnya, kalo mau nambahin reverse proxy untuk beberapa subdomain/domain aplikasi2 yang jalan di container caranya gimana ya mas?
Untuk reverse proxy tinggal di tambahin config aja mas di nginx nya.
trusn untuk command nya certbot nya di tambahin jg.
misal:
certbot --webroot xxxxxx -d youtube.dimasrio.com -d test.example.com
only subdomain?
not only subdomain
working?
as you can see in video..
👓
This amazing tutorial helped me fix certbot bugs in Laradock github.com/Prince-254/laradock, Thank you very much
Great video! How can I do with renew certificate?
run a crontab script. you can find it via letsencrypt website
Your title says Letsencrypt, but you use OpenSSL 🙂
Don't use ssl_protocols TLSv1.2 TLSv1.1 TLSv1;
Use ssl_protocols TLSv1.2 TLSv1.1;
Disable TLSv1 to avoid possible mitm attacks