maska/letsencrypt-routeros
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Update README.md

Browse Source
This commit is contained in:
Konstantin Gimpel 2017-11-28 15:07:05 +02:00 committed by GitHub
parent 160d2e78d6
commit a4cfc37365
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 18 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

28
README.md
View File

@ -44,9 +44,7 @@ Generate DSA Key for RouterOS
ssh-keygen -t dsa -f /opt/letsencrypt-routeros/id_dsa -N "" ssh-keygen -t dsa -f /opt/letsencrypt-routeros/id_dsa -N ""
``` ```
Send DSA Send Generated DSA Key to RouterOS / Mikrotik
*You will need to*
```sh ```sh
source /opt/letsencrypt-routeros/letsencrypt-routeros.settings source /opt/letsencrypt-routeros/letsencrypt-routeros.settings
scp -P $ROUTEROS_SSH_PORT /opt/letsencrypt-routeros/id_dsa.pub "$ROUTEROS_USER"@"$ROUTEROS_HOST":"id_dsa.pub" scp -P $ROUTEROS_SSH_PORT /opt/letsencrypt-routeros/id_dsa.pub "$ROUTEROS_USER"@"$ROUTEROS_HOST":"id_dsa.pub"
@ -54,7 +52,9 @@ scp -P $ROUTEROS_SSH_PORT /opt/letsencrypt-routeros/id_dsa.pub "$ROUTEROS_USER"@
### Setup RouterOS / Mikrotik side ### Setup RouterOS / Mikrotik side
*Check that user is the same as in the settings file letsencrypt-routeros.settings* *Check that user is the same as in the settings file letsencrypt-routeros.settings*
*Check mikrotik ssh port in /ip services ssh* *Check mikrotik ssh port in /ip services ssh*
*Check mikrotik firewall to accept on SSH port* *Check mikrotik firewall to accept on SSH port*
```sh ```sh
:put "Enable SSH" :put "Enable SSH"
@ -66,7 +66,8 @@ scp -P $ROUTEROS_SSH_PORT /opt/letsencrypt-routeros/id_dsa.pub "$ROUTEROS_USER"@
### CertBot Let's Encrypt ### CertBot Let's Encrypt
Install CertBot using official manuals https://certbot.eff.org/#ubuntuxenial-other Install CertBot using official manuals https://certbot.eff.org/#ubuntuxenial-other
For Ubuntu 16.04
*for Ubuntu 16.04*
```sh ```sh
apt update apt update
apt install software-properties-common -y apt install software-properties-common -y
@ -76,17 +77,24 @@ apt install certbot -y
``` ```
***In the first time you will need to create Certificates manually and put domain TXT record*** ***In the first time you will need to create Certificates manually and put domain TXT record***
*follow the certbot instructions*
*follow CertBot instructions*
```sh ```sh
source /opt/letsencrypt-routeros/letsencrypt-routeros.settings source /opt/letsencrypt-routeros/letsencrypt-routeros.settings
certbot certonly --preferred-challenges=dns --manual -d $DOMAIN --manual-public-ip-logging-ok" certbot certonly --preferred-challenges=dns --manual -d $DOMAIN --manual-public-ip-logging-ok
``` ```
### Usage: ### Usage of the script
*To use settings form the settings file:*
```sh ```sh
letsencrypt-routeros.sh ./opt/letsencrypt-routeros/letsencrypt-routeros.sh
``` ```
or: *To use script without settings file:*
```sh ```sh
letsencrypt-routeros.sh [RouterOS User] [RouterOS Host] [SSH Port] [SSH Private Key] [Domain] ./opt/letsencrypt-routeros/letsencrypt-routeros.sh [RouterOS User] [RouterOS Host] [SSH Port] [SSH Private Key] [Domain]
```
*To use script with CertBot hooks:*
```sh
certbot certonly --preferred-challenges=dns --manual -d $DOMAIN --manual-public-ip-logging-ok --post-hook ./opt/letsencrypt-routeros/letsencrypt-routeros.sh
``` ```