[sdnog] Let's Encrypt behind reverse proxy
Zainelabdeen S.A Elgraeed
zainco30 at gmail.com
Sun Mar 31 23:09:01 SAST 2019
thank you mahmmoud ahmed,
my situation to provide SSL to internal web servers that have different
names shared the same public IP address throw pfsense reverse proxy,
I was tried to config ACME package put didn't work.
is it possible to do this? and how?
throughout my search, all blogs and tutorials provide SSL to pfsense itself
or created web pages inside pfsense.
later I tried to config certbot inside internal web server but it not work.
next step to make a cluster and load balancer for it
On Sun, 31 Mar 2019 at 20:46, mahmmoud ahmed <mohd_ibrah_ahmed at hotmail.com>
wrote:
> Dear Zainelabdeen
>
> Greetings ,,
>
> Its look like you have two or more severs and your using HA-PROXY to make
> load balancing between servers , and its also look like application servers
> using https :443 , so It preferable to use Lets encrypt certificate in
> Pfsense which suppose to be your gateway and mention public ip address to
> the DNS , I was done this scenario before to E-payment company in Sudan .
>
>
>
>
>
>
> Thanks
>
>
>
> Mahmoud Ibrahim Ahmed
>
>
>
> *From: *Zainelabdeen S.A Elgraeed <zainco30 at gmail.com>
> *Sent: *31 March 2019 21:43
> *To: *Sudan NOG <sdnog at sdnog.sd>
> *Subject: *[sdnog] Let's Encrypt behind reverse proxy
>
>
>
> hello, I am asking for help
>
> how to configure let's encrypt for a web server on this environment:-
>
> - ESXi virtualization.
>
> - pfsense firewall for use as a reverse proxy with haproxy.
>
> - a single public IP address.
>
> - outsource DNS server.
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.sdnog.sd/pipermail/sdnog/attachments/20190331/b37f7fcc/attachment.html>
More information about the sdnog
mailing list