Skip to content

fa18swiss/nginx-proxy-generator

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

17 Commits
.gitignore
.gitignore
 
 
LICENSE.md
LICENSE.md
 
 
README.md
README.md
 
 
generate.sh
generate.sh
 
 

Repository files navigation

nginx-proxy-generator

Disclamer

This tools has been only tested on :

  • Ubuntu 20.04 with nginx 1.18.0

Other version have not been tested.

On first run, this tool create a DH key of 4096 bits for perfect forward secrecy, that can take a (very) long time. Can it be generated with all CPU : check here

Prerequies

Functionnality

  1. Create www root folder
  2. Create http configuration
    1. .well-known folder for Let's Encrypt
    2. redirect to https
  3. Create https configuration
    1. .well-known folder for Let's Encrypt
    2. Diffie-Hellman 4098 bytes
    3. Only TLS 1.2 and TLS 1.3
    4. Only strong cipher suites
    5. Long time HSTS header
  4. Activate http configuration
  5. Request Let's Encrypt certificate
  6. Activate https configuration
  7. Enjoy !

Don't forget to renew regulary Let's Encrypt certificates. https://certbot.eff.org/docs/using.html#renewing-certificates

Usage

./generate.sh [host] [proxy url] [-s (use the staging version to test network)]

Example

./generate.sh foo.bar.com http://bar.foo.com:81

References :

moz://a SSL Configuration Generator

About

nginx reverse proxy generator with Let's Encrypt

Resources

Readme

License

GPL-3.0 license
Activity

Stars

3 stars

Watchers

3 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages