I’m seeking advice before I try setting this up as I’ve searched the forums and not managed to find a firm answer.
I plan to use the LetsEncrypt docker image (linuxserver/letsencrypt) as a reverse proxy for multiple websites we host (on different domains). I’m ok with the configuration except one part of it.
For security reasons one of the websites needs to be https end-2-end hence traffic internally (from nginx to web server) needs to be also encrypted.
Whats the easiest way to achieve this?
- Copy the letsencrypt certificate/private key from the docker image to the web server and use the same cert/key ?
- Use a self sign cert internally on the web server (but how do I get nginx to trust this even after a reboot)?
Thanks in advance for any suggestions.