r/openwrt

•

5 yr. ago

throwawayagin

Best Method to use lets-encrypt on openwrt

Has anyone had success using lets-encrypt to create certificates for LuCI?

StreakCRM

•

Promoted

Say goodbye to generic email blasts. With Streak Mail Merge, send personalized mass emails right inside Gmail. Track responses and send automated follow-ups like a boss!

Learn More

streak.com

Thumbnail image: Say goodbye to generic email blasts. With Streak Mail Merge, send personalized mass emails right inside Gmail. Track responses and send automated follow-ups like a boss!

Sort by:

Best

Open comment sort options

Best

Top

New

Controversial

Old

Q&A

K2DLS

•

5y ago

After seeing this post, I got things running in short order on 2 18.06.x systems. I needed to add the following packages:

acme

acme-dnsapi

luci-app-acme

wget

luci-app-uhttpd

libuhttpd-openssl

You'll need to go through the luci-app-acme and possible the luci-app-uhttpd dashbords to get everything working. I'll assume you have used an acme.sh script before on a Linux system and know how to use the opkg command. If not, I don't recommend even trying untill you're comfortable with these two prerequisites.

Thanks for the idea. I've been wanting to do this for some time and did not realize how easy it is!

throwawayagin

•

5y ago

how did you configure the uhttp / acme specifics, I've got 80->443 redirects working, acme cert seems to be generated and presented but it's still getting a warning in the browser as self-signed.

ourobo-ros

•

5y ago

When I try to install libuhttpd-openssl I get:

* check_data_file_clashes: Package libustream-openssl wants to install file /lib/libustream-ssl.so
    But that file is already provided by package  * libustream-mbedtls20150806
 * opkg_install_cmd: Cannot install package libuhttpd-openssl.

Any ideas how to proceed? Many thanks!

More replies

throwawayagin

•

5y ago

Community! Huzzah!

More replies

[deleted]

•

5y ago

Comment deleted by user

stangri

•

5y ago

Both acme and acme-dns are also in OpenWrt packages.

throwawayagin

•

5y ago

Would you mind linking to a tutorial / documentation somewhere?

More replies

dhc710

•

5y ago

Anyone get this working using the luci-app-acme gui? Specifically using a wildcard cert? Letsencrypt says I need to use the dns mode challenge to get wildcard certs but acme.sh keeps trying to use the http type challenge, even though I'm providing my DNS api credentials. I made this issue: https://github.com/openwrt/packages/issues/11095. I'm kinda tearing my hair out over this.

dhc710

•

5y ago

If anyone sees this, check the github link, I solved the issue. I was just being dumb.

More replies

Best Method to use lets-encrypt on openwrt

Need help renewing Lets Encrypt certificate on OpenWRT router

Is OpenWRT for me? Whats the best hardware to use for it?

OpenWRT One - what to expect?

What the heck is going on with OpenWRT?

How to get rid of LuCI HTTPS certificate warnings

OpenWRT One reviews?

Simplest way of removing OpenWRT?

LetsEncrypt-compatible dynamic DNS provider?

Openwrt ONE no certificate

Free Certificate without Domain for DNS encryption?

Maybe of interest for readers of this OpenWrt forum.

I already bricked my OpenWrt One...

Adguard home need SSL certificates ?

OpenWRT hardware Europe

Deleted a certbot ssl certificate while nginx was still using it.

Best practices for a reverse proxy?

SSL for private subdomains through Traefik and Let's Encrypt

OpenWrt 24.10.0 - First Stable Release

WinAcme-Cloudflare SSL

How to trust luci with luci-ssl-openssl?

Openwrt as VPN server?

Good cheap solution for openwrt?

slow when I try to open openwrt.org other websites are ok

OpenWRT Single SSID For Multiple Networks

OpenWRT One or just buy an off-the-shelf router?

Top Posts