pnzdevelop
Member
Вот таким скриптом обновляю сертификат у haproxy и самого сервера
В итоге haproxy обновляется. Зайти можно через 443 порт, а через 8443 пишет
Code:
#!/bin/sh
SITE=domain.ru
PWDX=password
ALI=domain.ru
# move to the correct let's encrypt directory
cd /etc/letsencrypt/live/$SITE
# cat files to make combined .pem for haproxy
cat fullchain.pem privkey.pem > /etc/haproxy/certs/$SITE.pem
# reload haproxy
service haproxy reload
# Convert the private key and certificate to a PKCS12 file
openssl pkcs12 -export -in /etc/letsencrypt/live/$SITE/fullchain.pem -inkey /etc/letsencrypt/live/$SITE/privkey.pem -out /etc/letsencrypt/live/$SITE/pkcs.p12 -name $ALI -passout pass:$PWDX
# Remove the old certificate from keystore
keytool -keystore /usr/local/FlashphonerWebCallServer/conf/wss.jks -delete -alias $ALI -storepass $PWDX
# Import the new p12 file to keystore
keytool -importkeystore -deststorepass $PWDX -destkeypass $PWDX -destkeystore /usr/local/FlashphonerWebCallServer/conf/wss.jks -srckeystore /etc/letsencrypt/live/$SITE/pkcs.p12 -srcstoretype PKCS12 -srcstorepass $PWDX -alias $ALI
# Reset server
service webcallserver restart
или ERR_CONNECTION_REFUSEDСтраница недоступна
Сайт domain.ru не отправил данных.
ERR_EMPTY_RESPONSE
Last edited: