Let’s Encrypt with Certbot and Firewalld
The next step towards making Fossadventures.com a great website is enabling HTTPS. This was much easier than I expected thanks to Let’s Encrypt and the fantastic Certbot tool. I used this openSUSE instruction page.
Step 1: add the required repo with the command:
sudo zypper addrepo https://download.opensuse.org/repositories/devel:/languages:/python/openSUSE_Tumbleweed/devel:languages:python.repo
Step 2: update the repositories:
sudo zypper refresh
Step 3: install the Certbot application:
sudo zypper install certbot python-certbot python-certbot-nginx
Step 4: run the Certbot application:
sudo certbot --nginx
I needed to answer some basic questions:
- For which domains the certificates needed to be applied (www.fossadventures.com, fossadventures.com)
- Whether HTTPS access is required or optional (required)
- Verification of the DNS records
- If you want to be added to the EFF mailing list
And “voila” the setup was finished.
Step 5: update the firewall. I used the commands below. The last command was used to see if the updates were properly applied.
sudo firewall-cmd --zone=public --add-service=https --permanent sudo firewall-cmd --zone=public --add-port=443/tcp --permanent sudo firewall-cmd --reload sudo firewall-cmd --list-all
The final test was to access my website with Firefox… and… success! Wow. That was much easier than expected.
Published on: 10 April 2018