1、下载acme client
2、打开letsencrypt.exe进行认证
配置alias 配置ssl证书要验证是否拥有域名
按letsencrypt.exe顺序填写
3、配置nginx ssl
pem证书
server {
listen 80;
server_name wyxxt.org.cn;
rewrite ^(.*)$ https://$(server_name)$1 permanent;
}
server {
listen 443;
server_name wyxxt.org.cn;
ssl on;
ssl_certificate ssl/wyxxt.org.cn-chain.pem;
ssl_certificate_key ssl/wyxxt.org.cn-key.pem;
location /.well-known/ {
alias D:/www/wyxxt.org.cn/.well-known/;
}
location / {
proxy_pass http://192.168.0.10:8080;
}
}