<html><head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
</head>
<body>
<div dir="ltr">
<div></div>
<div style="">
<div>You could you DNS challenge to validate with letsencrypt </div>
<div dir="ltr"><a rel="noreferrer noopener" href="https://www.digitalocean.com/community/tutorials/how-to-acquire-a-let-s-encrypt-certificate-using-dns-validation-with-acme-dns-certbot-on-ubuntu-18-04">https://www.digitalocean.com/community/tutorials/how-to-acquire-a-let-s-encrypt-certificate-using-dns-validation-with-acme-dns-certbot-on-ubuntu-18-04</a><br>
</div>
<div id="ms-outlook-mobile-signature">
<div><br>
</div>
<div><br>
</div>
<div style="direction:ltr">Best Regards,</div>
<div><br>
</div>
<div style="direction:ltr">Gerry Kernan</div>
<div style="direction:ltr">Infinity IT</div>
</div>
</div>
</div>
<hr style="display:inline-block;width:98%" tabindex="-1">
<div id="divRplyFwdMsg" dir="ltr"><font face="Calibri, sans-serif" style="font-size:11pt" color="#000000"><b>From:</b> Trent Creekmore <trent@lindows.org><br>
<b>Sent:</b> Friday, March 24, 2023 10:03:29 PM<br>
<b>To:</b> spce-user <spce-user@lists.sipwise.com><br>
<b>Subject:</b> Re: [Spce-user] New to SipWise CE. Trying to use Let's Encrypt</font>
<div> </div>
</div>
<div style="min-width:100%!important; padding:0!important; margin:0!important; text-align:left">
<p>So, in the config.yml I have tried the following to try to also get port 80 open</p>
<p>port: '443'</p>
<p>port: '80'</p>
<p>That failed.<br>
</p>
<p>Then on to:</p>
<p><br>
</p>
<p>port: '443' '80'</p>
<p>and</p>
<p>port: '443', '80'</p>
<p><br>
</p>
<p>Those also failed.<br>
</p>
<p>Any guidance on the correct syntax on also listening on port 80?<br>
</p>
<p><br>
</p>
<p><br>
</p>
<p><br>
</p>
<div class="x_moz-cite-prefix">On 3/24/23 03:05, Walter Klomp wrote:<br>
</div>
<blockquote type="cite">
<div dir="ltr">Hi Trent,</div>
<div dir="ltr"><br>
</div>
<div dir="ltr">I use this script to renew…</div>
<div dir="ltr"><br>
</div>
<div dir="ltr">
<div dir="ltr">#!/bin/bash</div>
<div dir="ltr">if [ `certbot renew 2>&1|grep -c "Cert not yet due"` -lt 2 ]</div>
<div dir="ltr">then</div>
<div dir="ltr">service nginx stop</div>
<div dir="ltr">sleep 2</div>
<div dir="ltr">certbot renew</div>
<div dir="ltr">chown -R kamailio:ssl-cert /etc/letsencrypt</div>
<div dir="ltr">service nginx start</div>
<div dir="ltr">service kamailio-lb restart</div>
<div dir="ltr">ngcp-kamctl lb fifo debug 0</div>
<div dir="ltr">fi</div>
<div dir="ltr"><br>
</div>
<div dir="ltr">in /etc/group </div>
<div dir="ltr">make sure ssl-cert have this</div>
<div dir="ltr">ssl-cert:x:112:prosody,www-data,kamailio<br>
</div>
<div dir="ltr"><br>
</div>
<div dir="ltr">you may still need to set the chmod to 750 in /etc/letsencrypt/archive and /etc/letsencrypt/live</div>
<div>
<div class="x_gmail_signature"><br>
</div>
<div class="x_gmail_signature"><br>
</div>
<div class="x_gmail_signature" dir="ltr">first time installing cert (which I guess you have already done)</div>
<div class="x_gmail_signature" dir="ltr"><br>
</div>
<div class="x_gmail_signature" dir="ltr">certbot certainly -d <domain name> -d <domain name> if you listen to multiple domain names</div>
<div class="x_gmail_signature" dir="ltr">choose standalone and make sure nginx is stopped - that will only affect the panel and api - not a traffic stopper.</div>
<div class="x_gmail_signature" dir="ltr"><img src="https://scribe-mail.myrepublic.net/s2/ywna1b07.gif" alt="Email header" width="1" height="1">
<table dir="ltr" width="500" cellspacing="0" cellpadding="0" style="border:0">
<tbody>
<tr>
<td colspan="2" height="16" style="line-height:0"><br>
</td>
</tr>
<tr>
<td valign="top" style="width:1%; padding-right:24px"><a href="https://scribe-mail.myrepublic.net/s2/5cp2v6ux" target="_blank" style="text-decoration:none; line-height:88px; font-size:0"><img src="https://scribe-mail.myrepublic.net/s2/4usrwi2n.jpg" alt="Company logo" width="144" height="88" border="0" style="display:block"></a>
</td>
<td valign="top">
<table cellspacing="0" cellpadding="0" style="border:0">
<tbody>
<tr>
<td align="left" style="color:#7C04FC; font-size:15px; line-height:18px">Walter Klomp
</td>
</tr>
<tr>
<td align="left" style="color:#7C838B; font-size:14px; line-height:21px">Head of Voice Network
</td>
</tr>
<tr>
<td height="16" style="line-height:0"><br>
</td>
</tr>
<tr>
<td>
<table cellspacing="0" cellpadding="0" style="border:0">
<tbody>
<tr>
<td width="20" valign="middle"><img src="https://scribe-mail.myrepublic.net/s2/j5bnwhgx.png" alt="Phone" width="10" height="10"></td>
<td style="color:#364A61; font-size:14px; line-height:21px"><a href="tel:+6568161120" target="_blank" style="color:#364A61; text-decoration:none; font-weight:normal"><strong style="color:#364A61; text-decoration:none; font-weight:normal">+6568161120</strong></a></td>
</tr>
<tr>
<td width="20" valign="middle"><img src="https://scribe-mail.myrepublic.net/s2/41j4ffwb.png" alt="Phone" width="10" height="10"></td>
<td style="color:#364A61; font-size:14px; line-height:21px"><a href="mailto:walter@myrepublic.net" target="_blank" style="color:#364A61; text-decoration:none; font-weight:normal"><strong style="color:#364A61; text-decoration:none; font-weight:normal">walter@myrepublic.net</strong></a></td>
</tr>
</tbody>
</table>
</td>
</tr>
<tr>
<td height="16" style="line-height:0"><br>
</td>
</tr>
<tr>
<td align="left" style="font-size:14px; line-height:21px">Beyond Work: <span style="color:#7C04FC">
VR Sim Racing, F1, Travel</span> </td>
</tr>
<tr>
<td height="16" style="line-height:0"><br>
</td>
</tr>
<tr>
<td align="left" style="font-size:14px; line-height:21px; color:#8D8F99">11 Lorong 3 Toa Payoh, #04-11/15, Jackson Square, Block B, Singapore 319579
</td>
</tr>
<tr>
<td align="left" style="font-size:14px; line-height:21px; color:#364A61"><a href="https://scribe-mail.myrepublic.net/s2/tidact0m" target="_blank" style="color:#364A61; text-decoration:none; font-weight:normal"><strong style="color:#364A61; text-decoration:none; font-weight:normal">www.myrepublic.net</strong></a>
</td>
</tr>
<tr>
<td valign="top" style="padding-top:16px">
<table cellspacing="0" cellpadding="0" style="border:0">
<tbody>
<tr>
<td width="30" valign="middle" align="left" style="line-height:0; color:#7C04FC; margin-right:6px; margin-bottom:1px">
<a href="https://scribe-mail.myrepublic.net/s2/xx0nq9qs" target="_blank" style="text-decoration:none; color:#7C04FC"><strong style="text-decoration:none; font-weight:normal; color:#7C04FC"><img alt="facebook-f" src="https://scribe-mail.myrepublic.net/s2/wzp14gw6.png" width="24" height="24" style="display:block">
</strong></a></td>
<td width="36" valign="middle" align="center" style="line-height:0; color:#7C04FC; margin-left:6px; margin-right:6px; margin-bottom:1px">
<a href="https://scribe-mail.myrepublic.net/s2/jrh0tzt9" target="_blank" style="text-decoration:none; color:#7C04FC"><strong style="text-decoration:none; font-weight:normal; color:#7C04FC"><img alt="instagram" src="https://scribe-mail.myrepublic.net/s2/lrif4x8i.png" width="24" height="24" style="display:block">
</strong></a></td>
<td width="36" valign="middle" align="center" style="line-height:0; color:#7C04FC; margin-left:6px; margin-right:6px; margin-bottom:1px">
<a href="https://scribe-mail.myrepublic.net/s2/jo8r4exb" target="_blank" style="text-decoration:none; color:#7C04FC"><strong style="text-decoration:none; font-weight:normal; color:#7C04FC"><img alt="twitter" src="https://scribe-mail.myrepublic.net/s2/5izp6wvd.png" width="24" height="24" style="display:block">
</strong></a></td>
<td width="30" valign="middle" align="right" style="line-height:0; color:#7C04FC; margin-left:6px; margin-right:1px; margin-bottom:1px">
<a href="https://scribe-mail.myrepublic.net/s2/37lmu5mw" target="_blank" style="text-decoration:none; color:#7C04FC"><strong style="text-decoration:none; font-weight:normal; color:#7C04FC"><img alt="linkedin-in" src="https://scribe-mail.myrepublic.net/s2/uu1c8ot8.png" width="24" height="24" style="display:block">
</strong></a></td>
</tr>
</tbody>
</table>
</td>
</tr>
<tr>
<td height="16" style="line-height:0"><br>
</td>
</tr>
<tr>
<td height="12" style="border-top:1px solid #F5F5F5"><br>
</td>
</tr>
<tr>
<td style="font-size:11px; line-height:16px">The information in this message is privileged and confidential. If you are not the intended recipient of this email, please don't read, copy, use, distribute or tell anyone about it; kindly destroy it and notify
the sender by return email. Please advise immediately if you or your employer does not consent to email for messages of this kind. Any content that is not concerned with MyRepublic business reflects the views of the sender only and not those of MyRepublic.
</td>
</tr>
</tbody>
</table>
</td>
</tr>
<tr>
<td colspan="2" height="40"><br>
</td>
</tr>
</tbody>
</table>
</div>
</div>
<br>
</div>
<br>
<div class="x_gmail_quote">
<div dir="ltr" class="x_gmail_attr">On 24 Mar 2023 at 6:33:35 AM, Trent Creekmore <<a href="mailto:trent@lindows.org" class="x_moz-txt-link-freetext">trent@lindows.org</a>> wrote:<br>
</div>
<blockquote class="x_gmail_quote" type="cite" style="margin:0 0 0 0.8ex; border-left:1px solid #CCCCCC; padding-left:1ex">
<div>
<div>
<meta name="Generator" content="Microsoft Word 15
(filtered medium)">
</div>
<div lang="EN-US" style="word-wrap:break-word">
<div class="x_WordSection1">
<p class="x_MsoNormal"> </p>
<p class="x_MsoNormal">I installed it about a month ago, and have been doing some reading up on it in the documentation. I do wish there was a “getting started quick” guide.</p>
<p class="x_MsoNormal"> </p>
<p class="x_MsoNormal">On to the issue at hand, Let’s Encrypt. Looking at the history of this mailing list, I see it was mentioned maybe 2-3 times, but that was quite a few years ago. Those threads were not helpful.
</p>
<p class="x_MsoNormal"> </p>
<p class="x_MsoNormal">The issue is Let’s Encrypt needs port 80 to send requests to, and I see nothing Is listening on port 80.</p>
<p class="x_MsoNormal"> </p>
<p class="x_MsoNormal">Digging on my own, I found out the Nginx config files are read only, and I should instead be editing the /etc/ngcp-config/config.yml file.</p>
<p class="x_MsoNormal"> </p>
<p class="x_MsoNormal">Looking in config.yml, I see http_csc which appears to be the section which handles the client portal with port 443 set. Not being familiar with this config.yml, how is it possible to have it both listen on ports 89 and 443?</p>
<p class="x_MsoNormal"> </p>
<p class="x_MsoNormal">Any other suggestions on correctly using Let’s Encrypt?</p>
<p class="x_MsoNormal"> </p>
<p class="x_MsoNormal">Thanks!</p>
<p class="x_MsoNormal"> </p>
<p class="x_MsoNormal">Trent</p>
</div>
</div>
</div>
<div>
<div>-- <br>
Spce-user mailing list<br>
<a href="mailto:Spce-user@lists.sipwise.com" class="x_moz-txt-link-freetext">Spce-user@lists.sipwise.com</a><br>
<a href="http://lists.sipwise.com/mailman/listinfo/spce-user_lists.sipwise.com" class="x_moz-txt-link-freetext">http://lists.sipwise.com/mailman/listinfo/spce-user_lists.sipwise.com</a><br>
</div>
</div>
</blockquote>
</div>
<br>
<span style="color:#222222; font-family:sans-serif; background-color:#FFFFFF"><font size="1"><span style="font-family:Arial; color:#666666; font-style:italic; vertical-align:baseline; white-space:pre-wrap">The contents of this email and any attachments are
confidential and may also be privileged. You must not disseminate the contents of this email and any attachments without permission of the sender. If you have received this email by mistake, please delete all copies and inform the sender immediately. You may
refer to our company's Privacy Policy </span><span style="color:#666666; font-family:Arial; font-style:italic; vertical-align:baseline; white-space:pre-wrap"><a href="https://myrepublic.net/sg/legal/terms-of-use-policies/privacy-policy/" target="_blank">here</a></span><span style="font-family:Arial; color:#666666; font-style:italic; vertical-align:baseline; white-space:pre-wrap">.</span></font></span>
</blockquote>
</div>
</body></html>