Comments (3)
RW-7
commented on May 28, 2024
works great should possibly be in the readme
from ntopng-udm.
SamErde
commented on May 28, 2024
Here's a possible alternative approach that provides automatic renewal. I'm using this project, udm-le, and udm-utilities with AdGuard Home on a UDM.
To simplify certificate configuration and renewal, I configured my udm-le instance with subject alternative names for UDM, AdGuard Home, ntopng, and a few others. I've not done SSL for ntopng yet, but was able to point AdGuard Home directly to the udm-le certificate folder after mounting it as a read-only volume. The new AdGuard container startup has one added line as you can see below. The SSL settings within AGH can then be configured through the GUI or directly in AdGuardHome.yaml.
podman run -d --network dns --restart always \
--name adguardhome \
-v "/mnt/data/AdguardHome-Confdir/:/opt/adguardhome/conf/" \
-v "/mnt/data/AdguardHome-Workdir/:/opt/adguardhome/work/" \
-v "/mnt/data/udm-le/lego/certificates/:/opt/adguardhome/certs/:ro" \
--dns=127.0.0.1 --dns=1.1.1.1 \
--hostname adguardhome \
adguard/adguardhome:latest
Does this approach potentially make it easier?
Am I creating any security problems by mounting the lego/certificates folder in another container?
Does ntopng require the PEM file to be named "ntop-cert"?
Still, the idea of having a registry of sorts for providing certificates to different containers on UDM would be amazing.
from ntopng-udm.
jsermer
commented on May 28, 2024
if you append --pem to the LEGO_ARGS value in udm-le.sh it will automatically create the combined certificate that ntopng expects..then you can simply adjust your ntopng volume mount directly to that file.
lego --help
--pem Generate a .pem file by concatenating the .key and .crt files together.
automatically restarting ntopng is another matter all together
from ntopng-udm.
Related Issues (20)
- just wanted to say thanks HOT 1
- use /mnt/data_ext for more disk space when using a hard drive installed in UDM Pro HOT 3
- ntopng.conf -W vs -w HOT 1
- Update to new version HOT 8
- smtp endpoint
- No settings are saved HOT 1
- GeoIP configured but no flags HOT 1
- help please am getting the following errors etc
- Stable ntopng 5.0 HOT 1
- Unable to change password HOT 1
- HTTPS warning on connect
- Upgrade to 5.x? HOT 4
- no WAN interface
- No podman on my UDM HOT 1
- License Ntopng HOT 1
- UniFi OS 3 HOT 2
- Multi Stage Docker Build HOT 2
- Unable to run Ping/SpeedTest Active Monitoring
- The podman run command given fails to mount the /mnt/data/ntopng/redis dir into the container... HOT 4
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from ntopng-udm.