How to use Evennia with Hitch plus Varnish #3292
presjpolk
started this conversation in
Community Contribs & Snippets
Replies: 1 comment
-
Thanks for the writeup! |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
How to serve Evennia with https using hitch and varnish
certificate with certbot. To do this cleanly requires you to use a specialized
certbot plugin, for example certbot-dns-route53.
Note that when setting up a wildcard certificate, you have to use two -d
directives. In this case you will want -d mydomain.com and -d *.mydomain.com.
The reasons for this is you need to put the websocket port on a separate hostname, but also behind TLS.
Example here: https://www.thesysadmin.rocks/2020/09/05/letsencrypt-ssl-certificate-with-aws-route53-dns-using-certbot-dns-route53/
When using Certbot with Hitch, this requires an extra step, catting the
certificate, chain, and private key into a single file for inclusion in
hitch.conf.
Example here: https://docs.varnish-software.com/tutorials/hitch-letsencrypt/
Your hitch.conf will end up looking like this:
Here is a sample default.vcl, commented
On ubuntu, this requires doing:
sudo systemctl edit --full varnish
to edit the ExecStart line to change:
-a :6081
to-a 127.0.0.1:6081,PROXY
Then restart with
sudo service varnish restart
Beta Was this translation helpful? Give feedback.
All reactions