Skip to content

Email: admin@alshowto.com

Al's Down`N Dirty KB

Al's Down`N Dirty KB

Get`Er Done

  • Home
  • Uncategorized
  • Proxmox Manual Update Certs

Proxmox Manual Update Certs

Posted on October 20, 2022October 20, 2022 By admin No Comments on Proxmox Manual Update Certs
Let's Encrypt, Linux, Networking, Uncategorized

So Proxmox is awsome! I have been using it for about 3 years now. I have to say it has been wonderful as it runs on almost anything. Also, it supports clusting and ceph. Heck, I may even start selling some VPS(Virtual Private Servers)’s on a separate fiber connection at my home utilizing Proxmox as the hypervisor. Anyway, that would really test it for me, but I have no time for that at this point.

Major Flaw Is Certs

Now, for 90 percent of use cases the default Proxmox will work. The difficulty is in DNS mode with Alias’s.

That is, where a DNS server has a CNAME that is setup to redirect to a sub domain. See this post for more on this process. So, for now I am going to show a workaround that I am using. Suposidly, there is a fix for this on Proxmox. See this article for info on that workaround. At of now, I have not got this to work. So, enough, let get certs loaded that work for me.

Get the Certs Using SCP

Push or Pull, two ways to do this option. Any way that works in your position.

Push Example

pfSense Settings Example

Turn on “Write Certificates” in pfSense Acme Settings

Write Certificates in pfSense Acme Plugin

ssh into Proxmox server

ssh root@pve5.ad.alshowto.com
cp /etc/pve/nodes/pve5/pve-ssl.pem /etc/pve/nodes/pve5/pve-ssl.pem.bck
cp /etc/pve/nodes/pve5/pve-ssl.key /etc/pve/nodes/pve5/pve-ssl.key.bck

SSH into pfSense

change to /conf/acme directory

cd to /conf/acme

Example of /conf/acme Directory

Since I am working in ad.alshowto.com; then, I need the key and fullchain from this dir.

scp real-ad.alshowto.com.fullchain root@pve5.ad.alshowto.com:/etc/pve/nodes/pve5/pve-ssl.pem
scp real-ad.alshowto.com.key root@pve5.ad.alshowto.com:/etc/pve/nodes/pve5/pve-ssl.key

Related

Tags: ProxMox

Post navigation

❮ Previous Post: Configure SSH for Different Port
Next Post: CDC Goes Crazy on COVID ❯

You may also like

Domain
Let’s Encrypt and Sub-Doman Wildcards
October 11, 2022
Networking
Proxmox Mail Behind HAProxy
October 16, 2022
Linux
Specific PHP in Apache
January 23, 2023
Linux
UnBorg Meraki Devices
September 17, 2022

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Copyright © 2023 Al's Down`N Dirty KB.

Theme: Oceanly Premium by ScriptsTown