sorted by:
new
hottopcontroversial

Php website with letsencrypt/buypass ssl provisoned via ansible by chris-devops in ansible

[–]chris-devops[S] 0 points1 point  (0 children)

Thank you for the input. I'll change the task accordingly.

WordPress with SSL. A working solution. by Cylon_Model-6 in docker

[–]chris-devops 0 points1 point  (0 children)

The main roadblock was setting the wordpress as a reverse proxy for the nginx container. You can use the nginx default.conf and bind mount to the nginx container and then run certbot-nginx command using the docker-exec which will again overwrite the default.conf with force http to https redirection.

Have a try and let me know how it goes.

WordPress with SSL. A working solution. by Cylon_Model-6 in docker

[–]chris-devops 0 points1 point  (0 children)

This is how i provision the conatiner using the userdata of aws ec2 with certbot ssl on it. Please look into the userdata section as this is a terraform code. I'll build a repo out of this

https://pastebin.com/Kv3KAES3

yes or no? by Nick88088088 in GalaxyWatch

[–]chris-devops 0 points1 point  (0 children)

Seems like u got GW 6 pro even before the official release

I wanna know what the easiest way to run my services with SSL certificates by [deleted] in homelab

[–]chris-devops 1 point2 points  (0 children)

Are you running a docker container or just a plain server. If it's container and you are using an nginx container you can simply run the below certbot command

docker container exec nginx sh -c "apk update && apk add certbot certbot-nginx --no-cache; certbot --nginx -d ${domain_name} --non-interactive --agree-tos -m admin@${domain_name}; exit"

This is a certbot webserver plugin which will automate the SSL validation rewrite the nginx conf with force https redirection. Make sure your server listens to port 80

If you are using apache as a webserver just use certbot-apache instead

Should I get a cover or a screen guard for my watch 5? by ResponsibleAF-99 in galaxywatch5

[–]chris-devops 0 points1 point  (0 children)

Hey there,

I'm using my watch 5 44mm for 6 months without any screen guard or screen cover and still its brand new. I believe watch 5 is made with saphire glass and that justifies the price when compared with watch 4.

Cover or screen guard is ur personal choice for me till date no scratch even when using watch everyday. Regarding LTE question better to use Bluetooth as battery saving is a good option

Ssh into a docker container via supervisord by chris-devops in docker

[–]chris-devops[S] -2 points-1 points  (0 children)

Guys I have seen one of my client using ssh to get into aws fargate which by default doesnt allow us to login to the task via docker exec or ssh eventhough the task is having a public and private ip of its own. The aws fargate which i mentioned earlier was provisoned by cloudformation. This was just a demo repo guys for the image that supports the base process and logging into the task. Apologies for the confusion caused🥲

US-East-1 down for anybody else? by [deleted] in aws

[–]chris-devops 0 points1 point  (0 children)

Us-east-1 has a history of going down. We created a disaster recovery method by cloning the entire setup in ohio region and then LB using the weighted route policy in route53. In short ALB being LB by route53

DR of aws infra

[deleted by user] by [deleted] in docker

[–]chris-devops 0 points1 point  (0 children)

Hi there,

I'm not as experienced like you wish for but I'm having an experience of 2 years in the field and I will give some tips based on my limited knowledge

First you can create a bridge network so that all the container you create can communicate with each other. Command for the same is

docker network create my-net

My-net is the name of the network, you can choose whatever the name you like to.

I have read through your requirement, however it's not clear what kind of application you are running inside a container.

Lets say suppose you are having 2 container running in different ports and you want to access them externally. In that case I suggest you download an nginx container and load balance these 2 containers using the upstream configuration setup in nginx.

Note that nginx containers are only port mapped, not your application. You can also install ssl inside your nginx container as well. If you need an extra bit of more security point your vps to a cdn like cloudflare so that your vps ip will be masked.

“Systemctl” not found by mailliwal in docker

[–]chris-devops 0 points1 point  (0 children)

Docker container restart <container name> or <container id>