Enable SSL Let’s Encrypt

Order now | Download | FAQ

For the solution to work properly, you must activate the automatic handling of SSL certificates through the Lets Encrypt service.

Requirements

The active domain name that resolves the server's IP address (IPv6 and IPv6)
Port 80 and 443 are always open, and not busy with another process

In order for the system to start the procedure for obtaining an SSL certificate from Let's Encrypt, it is necessary to:

1. In the configuration file, enable the use of SSL and enter the domain name.

nano /etc/puqvpncp/puqvpncp.conf

LetsEncrypSSL=yes
Domain=XXXXXX.XXX

2. Restart the PUQVPNCP service

service puqvpncp restart

After these steps, the first time you connect to the server via the https protocol, the system will request an SSL certificate and automatically renew it if necessary.

ATTENTION. After activating SSL, the system will only work in the https protocol on port 443.
A redirect is also set from port 80 to port 443.

To connect to the server via the https protocol, use only the domain that was set in the configuration file.
Otherwise, you will get an error that SSL is not working correctly.

System config

Firewall settings

DNS settings

License

Configuring Web Interface Redirection on PUQVPNCP Panel for Increased Security

puqvpncp.conf

Basic concepts WireGuard

Technical requirements and installation

Creating a WireGuard Configuration

Changing WireGuard Configuration

Diagnostic Information

Port Forwarding

Basic concepts IKEv2 EAP

Technical requirements and installation

Create a root certificate

Import the root certificate

Create a server certificate

Advanced settings

Enable IKEv2

Create VPN account

Editing VPN account

Diagnostic Information

WireGuard online users list

IKEv2 online users list

Basic concepts One-time link

Basic settings and customization

Active Links List

Config WireGuard section

Config IKEv2 section

Get One-time link

WireGuard Official clients

Android WireGuard client configuration

macOS WireGuard client configuration

Windows WireGuard client configuration

Linux WireGuard client configuration

Mikrotik WireGuard client configuration

iOS WireGuard client configuration

IKEv2 Official clients

Android IKEv2 client configuration

macOS IKEv2 client configuration

Windows IKEv2 client configuration

Linux IKEv2 client configuration

Mikrotik IKEv2 client configuration

iOS IKEv2 client configuration

Traffic Logging Config

rsyslog server settings for receiving logs

The concept of backups

Backup list

Automatic backup scheduler

How to recover password

API Access Hashs

System

WireGuard

Accounts

Firewall

License

DNS

System Config

IKEv2

Check online users

One-time link

Traffic Logging Config

Backups

Enable SSL Let’s Encrypt

Order now | Download | FAQ

Requirements

No Comments