Page 2 of 4

Re: Let's Encrypt - How to use

Posted: Mon Aug 15, 2016 9:57 pm
by Spheerys
OK I have found the solution. In fact my host for this server is Scaleway.com
It's using a strange system for NAT their servers, with private IP and public IP
Anyway... the v-add-letsencrypt-domain script doesn't detect this subtility and instead of set the Internal IP (as it should to make apache2 and nginx works), it set "ips" instead of internal IP

I did this for next cert :

Code: Select all

  find /home/*/conf/web/ -name "sapache2.conf" -exec sed -i 's/ips:/10.2.77.131:/g' {} \;
  service apache2 restart

  find /home/*/conf/web/ -name "snginx.conf" -exec sed -i 's/ips:/10.2.77.131:/g' {} \;
  service nginx restart

Re: Let's Encrypt - How to use

Posted: Tue Aug 16, 2016 6:18 am
by SS88

Code: Select all

ips
should be

Code: Select all

%ip%
But it's OK to not change it back if you will never use more than 1 IP address.
Spheerys wrote:OK I have found the solution. In fact my host for this server is Scaleway.com
It's using a strange system for NAT their servers, with private IP and public IP
Anyway... the v-add-letsencrypt-domain script doesn't detect this subtility and instead of set the Internal IP (as it should to make apache2 and nginx works), it set "ips" instead of internal IP

I did this for next cert :

Code: Select all

  find /home/*/conf/web/ -name "sapache2.conf" -exec sed -i 's/ips:/10.2.77.131:/g' {} \;
  service apache2 restart

  find /home/*/conf/web/ -name "snginx.conf" -exec sed -i 's/ips:/10.2.77.131:/g' {} \;
  service nginx restart

Re: Let's Encrypt - How to use

Posted: Thu Oct 13, 2016 3:10 am
by Spooney
Thanks, the vim-common solution did not work, but the file edit line 44 'agreement=' etc. did work.
Much appreciated!

Re: Let's Encrypt - How to use

Posted: Fri Nov 25, 2016 6:52 pm
by Spheerys
Very nice implementation of LE in VestaCP :)

One question : is the renew is automatically done by vesta or should we add a daily cron with "v-update-letsencrypt-ssl" ?

Re: Let's Encrypt - How to use

Posted: Fri Nov 25, 2016 9:12 pm
by jamesk7
I agree, a great implementation of Let's Encrypt!

I was running the previous version of vesta 0.9.8-16 and just upgradeded to the new version today 0.9.8-17. Previously I created Let's Encrypt ssl certs using

Code: Select all

v-add-letsencrypt-domain USER DOMAIN 


I logged into vesta cp today and noticed there was a Let's Encrypt Support checkbox displayed for each website in the web panel. If I click it and save I get an error message.

I was wondering also how do I updated these certificates? especially as I created with v-add-letsencrypt-domain USER DOMAIN .

Great work Vesta!

Re: Let's Encrypt - How to use

Posted: Fri Nov 25, 2016 10:03 pm
by skurudo
jamesk7 wrote:I logged into vesta cp today and noticed there was a Let's Encrypt Support checkbox displayed for each website in the web panel. If I click it and save I get an error message.
I have some prob too with old certs, then I uncheck SSL Support box and enable SSL Support with Let'sEncrypt.
For new domains and certs there is no such problem.
jamesk7 wrote:I was wondering also how do I updated these certificates? especially as I created with v-add-letsencrypt-domain USER DOMAIN .
Cron?

Code: Select all

sudo /usr/local/vesta/bin/v-update-letsencrypt-ssl

Re: Let's Encrypt - How to use

Posted: Fri Nov 25, 2016 10:07 pm
by skurudo
Spheerys wrote:One question : is the renew is automatically done by vesta or should we add a daily cron with "v-update-letsencrypt-ssl" ?
In .17 version when you add domain with LE support from GUI, cron task will be added automaticly.
If you used CLI from .16 version, then I doubt about auto cron task.

Re: Let's Encrypt - How to use

Posted: Fri Nov 25, 2016 10:10 pm
by Spheerys
OK it's clear :)
I'm using .17

Re: Let's Encrypt - How to use

Posted: Fri Nov 25, 2016 10:16 pm
by jamesk7
Cron?

Code: Select all

sudo /usr/local/vesta/bin/v-update-letsencrypt-ssl
Thanks! What would you suggest for the cron time?

Re: Let's Encrypt - How to use

Posted: Sat Nov 26, 2016 12:31 am
by mestresan
trying create cert .17

sed: can't read /usr/local/vesta/data/queue/letsencrypt.pipe: No such file or directory