github.com/captn3m0/nebula.git

author	Nemo <me@captnemo.in>	2018-02-18 3:02:12.0 +05:30:00
committer	Nemo <me@captnemo.in>	2018-02-18 3:02:12.0 +05:30:00
commit	937da3dec77e135e109b20e2509c8249c47a28ec [patch]
tree	7df1994a9bdb9a0c3e108f080d933fb102fb81f0
parent	58055382d72c3e494e9ad9c6a2321cdc1426b512
download	937da3dec77e135e109b20e2509c8249c47a28ec.tar.gz

Switch over to HTTP challenge for traefik

- This is much faster and more reliable
- Unfortunately, can't work for internal domains
- so in.bb8.fun certs are up-in-the-air for now
- they will keep working till the authorizations stay valid

Diff

 docker/conf/traefik.toml      |  9 +++++++++
 docker/conf/transmission.json |  2 +-
 2 files changed, 9 insertions(+), 2 deletions(-)

diff --git a/docker/conf/traefik.toml b/docker/conf/traefik.toml
index cb6a083..d9d0e14 100644
--- a/docker/conf/traefik.toml
+++ a/docker/conf/traefik.toml
@@ -68,11 +68,18 @@
email = "acme@captnemo.in"
storage = "/acme/acme.json"
entryPoint = "https"
dnsProvider = "cloudflare"
onHostRule = false
onDemand   = false
acmelogging = true

[acme.httpChallenge]
  entryPoint = "http"

# Keep DNS challenge disabled
# for now
# [acme.dnsChallenge]
#   provider = "cloudflare"
#   delayBeforeCheck = 5
# Get wildcard once possible

[[acme.domains]]
diff --git a/docker/conf/transmission.json b/docker/conf/transmission.json
index b6d1b80..029c854 100644
--- a/docker/conf/transmission.json
+++ a/docker/conf/transmission.json
@@ -40,7 +40,7 @@
    "ratio-limit": 0.2,
    "ratio-limit-enabled": true,
    "rename-partial-files": true,
    "rpc-host-whitelist": "transmission.bb8.fun",
    "rpc-host-whitelist": "transmission.bb8.fun,transmission",
    "rpc-host-whitelist-enabled": true,
    "rpc-authentication-required": false,
    "rpc-bind-address": "0.0.0.0",