sudo nano /etc/nginx/sites-available/***.conf
server {
server_name ***.fin-tech.su;
return 301 https://\$server_name\$request_uri;
}
server {
listen 443 ssl;
server_name wiki.fin-tech.su;
#ssl_certificate /etc/letsencrypt/live/fin-tech.su/fullchain.pem; # managed by Certbot
#ssl_certificate_key /etc/letsencrypt/live/fin-tech.su/privkey.pem; # managed by Certbot
include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
location / {
proxy_pass http://127.0.0.1:3000/; # Указываем нужный порт вместо 3000
}
access_log /var/log/nginx/***_access.log;
error_log /var/log/nginx/***_error.log;
}
sudo ln -s /etc/nginx/sites-available/***.conf /etc/nginx/sites-enabled/
sudo nginx -t
sudo systemctl restart nginx
apt update && apt install certbot python3-certbot-nginx nginx -y
Перед запуском certbot необходимо отключить VPN
sudo certbot certonly --cert-name fin-tech.su --expand -d fin-tech.su -d nc.fin-tech.su -d onlyoffice.fin-tech.su -d wiki.fin-tech.su
-d ***.fin-tech.su
systemctl status certbot.timer
certbot renew --dry-run