I have a LE cert and theres no issues with that, however when navigating the page I get this error:
Your connection is not private
Attackers might be trying to steal your information from automate.nsautomate.com.au (for example, passwords, messages or credit cards). Learn more
NET::ERR_CERT_COMMON_NAME_INVALID
My host has a private IP address and uses a public address for access using NAT on a non standard port, 6701 for HTTPS. My server block also listens on this.
Can anyone assist in working out why this error exists. Server has hostname
Thank you, I understand. So im forced to revert back to 443. Thats totally fine but Im running two instances of this, one production (works on 443) and this one (development) that runs on 6701.
No way to run both if I have the same Public IP it would seem
Thanks az, I’m a little scared ha! Sorry I’m new to unix/nginx.
So effectively I can just take my whole configuration from Dev and place it into my Production server nginx configuration. I dont require http2, so i figure I leave that as default?
What about references to the certificates for each domain? they will be different,. Sorry im confused
Decide what your "dev" domain will be (distinct to your prod domain).
Clone the port 80 and port 443 server blocks on your prod nginx, changing the server_name to your dev domain, and changing the proxy IP address to your dev OpenHAB.
Issue a Certbot certificate on your prod server for your dev domain.
Update the dev server block to use the dev domain certificate.
Decide what your “dev” domain will be (distinct to your prod domain). - already defined, oh2.domain.net is my working Prod domain. automate.nsautomate.com.au is my Dev Domain
Clone the port 80 and port 443 server blocks on your prod nginx, changing the server_name to your dev domain, and changing the proxy IP address to your dev OpenHAB. - Got it, I think i can do that
Issue a Certbot certificate on your prod server for your dev domain. - AHH! Right, so I put NEW certs onto my Prod server
Update the dev server block to use the dev domain certificate. - Roger
OK, ill back up my Prod configuration and give this a go
Thank you! ill report back
The simplest is to click on his icon.
Then click message.
That will start a direct private message.
If you can’t upload it there…
Then…
You can crate a tar file of it and place it on your server somewhere with an obscure/randomized name.
Send him the link (via private message) to it and then delete the file once he has downloaded it.
If you’re ok sending it publicly, dpaste.de , or if you want to send it privately, you can try send a private message to me. You might not have permissions to do that as a new user and a moderator might have to raise your privilege, no idea.
Edit: got a private thread going, no need for mods
Yes, it looks correct and it works fine when I test the config out locally.
One problem you might have is that you’ve maxed out the rate limits for certificates for your dev domain. So if you haven’t yet generated it on your prod server, that might be a problem. You could try copy the dev certificate from your dev server to your prod server, until the rate limit elapses.