[leaf-user] local https with lighted

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 422-6466

I just setup 7.4.0 and  https for lighttpd for managing the firewall
locally 

 Make sure openssl is loaded 

If not 

apkg -i openssl 

 openssl should be listed in leaf.cfg 

…. 

mkdir /etc/lighttpd/certs 

cd /etc/lighttpd/certs 

openssl req -new -x509 -keyout lighttpd.pem -out lighttpd.pem -days 365
-nodes 

       openssl will create the pem file 

        I entered country code US and "." for other questions 

chmod 400 lighttpd.pem 

cd .. 

edit /etc/lighttpd.conf 

add this to end of file 

$SERVER["socket"] == "*:443"{ 

    ssl.engine  =  "enable" 

    ssl.pemfile = "/etc/lighttpd/certs/lighttpd.pem" 

} 

….. 

lrcfg 

edit local.cfg 

add this to end of the file 

/etc/lighttpd/certs/lighttpd.pem 

Make sure /etc/shorewall/rules includes the something like this: 

HTTPS(ACCEPT)       loc:your.local.machine.ip,other.local.ip    fw 

Save configuration 

You may have to 

systemctl restart shorewall 

systemctl restart lighttpd 

When accessing your router, your browser will warn you that the
certificate should not be trusted but it will encrypt local connections
and allow you to manage your router with webconf. 

Victor

[leaf-user] local https with lighted

A secure, feature-rich, customizable embedded Linux network appliance

[leaf-user] local https with lighted