doc: server configuration: add note on required firewall/NAT for Let's Encrypt certificates

This commit is contained in:
nodiscc 2020-08-15 19:37:24 +02:00
parent b6c9a2db30
commit e0fe33f90b

View file

@ -77,7 +77,8 @@ sudo apt install certbot
sudo systemctl stop apache2 sudo systemctl stop apache2
sudo systemctl stop nginx sudo systemctl stop nginx
# generate initial certificates - Let's Encrypt ACME servers must be able to access your server! # generate initial certificates
# Let's Encrypt ACME servers must be able to access your server! port forwarding and firewall must be properly configured
sudo certbot certonly --standalone --noninteractive --agree-tos --email "admin@shaarli.mydomain.org" -d shaarli.mydomain.org sudo certbot certonly --standalone --noninteractive --agree-tos --email "admin@shaarli.mydomain.org" -d shaarli.mydomain.org
# this will generate a private key and certificate at /etc/letsencrypt/live/shaarli.mydomain.org/{privkey,fullchain}.pem # this will generate a private key and certificate at /etc/letsencrypt/live/shaarli.mydomain.org/{privkey,fullchain}.pem