Hi all,
I am testing NetSecurity on LOCAL LAN and I would like to request a Let’s Encrypt certificate for NethSecurity using its ACME DNS challenges.
Where do I configure the domain name on NethSecurity?
According to:
[OpenWrt Wiki] System configuration /etc/config/system.
In the file: /etc/config/system
config system
option hostname 'OpenWrt'
The hostname for this system. Avoid points, even if they are within quotes. For example ’ my.hostname ’ will show only the ’ my ’ part
Thank you,
Michel-André
Hi all,
Ref: Should I use FQDN or hostname only in OpenWrt - #11 by Quazil - Network and Wireless Configuration - OpenWrt Forum.
#### ORIGINAL /etc/hosts
root@nethsec-1:~# cat /etc/hosts
127.0.0.1 localhost
::1 localhost ip6-localhost ip6-loopback
ff02::1 ip6-allnodes
ff02::2 ip6-allrouters
root@nethsec-1:~#
#### ORIGINAL HOST NAME
root@nethsec-1:~# cat /proc/sys/kernel/hostname
nethsec-1
root@nethsec-1:~#
#### ORIGINAL DOMAIN NAME
root@nethsec-1:~# cat /proc/sys/kernel/domainname
(none)
root@nethsec-1:~#
#### GIVE DOMAIN NAME
root@nethsec-1:~# echo "kernel.domainname=tototiti.org" > /etc/sysctl.d/12-domainname.conf
root@nethsec-1:~#
#### VERIFICATION
root@nethsec-1:~# cat /etc/sysctl.d/12-domainname.conf
kernel.domainname=tototiti.org
root@nethsec-1:~#
#### AJUST /etc/host FOR FQDN & DOMAIN
root@nethsec-1:~# echo "192.168.71.66 nethsec-1.tototiti.org nethsec-1" >> /etc/hosts
root@nethsec-1:~# echo "192.168.71.66 tototiti.org" >> /etc/hosts
#### VERIFICATION
root@nethsec-1:~# cat /etc/hosts
127.0.0.1 localhost
::1 localhost ip6-localhost ip6-loopback
ff02::1 ip6-allnodes
ff02::2 ip6-allrouters
192.168.71.66 nethsec-1.tototiti.org nethsec-1
192.168.71.66 tototiti.org
root@nethsec-1:~#
#### INSTEAD OF: reboot
root@nethsec-1:~# /etc/init.d/sysctl restart
root@nethsec-1:~#
#### VERIFICATION OF HOSTNAME
root@nethsec-1:~# cat /proc/sys/kernel/hostname
nethsec-1
root@nethsec-1:~#
#### VERIFICATION OF DOMAIN NAME
root@nethsec-1:~# cat /proc/sys/kernel/domainname
tototiti.org
root@nethsec-1:~#
#### VERIFICATION OF PING OF HOST NAME
root@nethsec-1:~# ping -c 2 nethsec-1
PING nethsec-1.tototiti.org (192.168.71.66) 56(84) bytes of data.
64 bytes from nethsec-1.tototiti.org (192.168.71.66): icmp_seq=1 ttl=64 time=0.100 ms
64 bytes from nethsec-1.tototiti.org (192.168.71.66): icmp_seq=2 ttl=64 time=0.147 ms
--- nethsec-1.tototiti.org ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 1049ms
rtt min/avg/max/mdev = 0.100/0.123/0.147/0.023 ms
root@nethsec-1:~#
#### VERIFICATION OF PING OF DOMAIN
root@nethsec-1:~# ping -c 2 tototiti.org
PING tototiti.org (192.168.71.66) 56(84) bytes of data.
64 bytes from nethsec-1.tototiti.org (192.168.71.66): icmp_seq=1 ttl=64 time=0.068 ms
64 bytes from nethsec-1.tototiti.org (192.168.71.66): icmp_seq=2 ttl=64 time=0.088 ms
--- tototiti.org ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 1052ms
rtt min/avg/max/mdev = 0.068/0.078/0.088/0.010 ms
root@nethsec-1:~#
#### VERIFICATION OF PING OF FQDN
root@nethsec-1:~# ping -c 2 nethsec-1.tototiti.org
PING nethsec-1.tototiti.org (192.168.71.66) 56(84) bytes of data.
64 bytes from nethsec-1.tototiti.org (192.168.71.66): icmp_seq=1 ttl=64 time=0.073 ms
64 bytes from nethsec-1.tototiti.org (192.168.71.66): icmp_seq=2 ttl=64 time=0.084 ms
--- nethsec-1.tototiti.org ping statistics ---
2 packets transmitted, 2 received, 0% packet loss, time 1033ms
rtt min/avg/max/mdev = 0.073/0.078/0.084/0.005 ms
root@nethsec-1:~#
I do not know if it will survive an update/upgrade ???
Michel-André
EDIT:
It survived an update.
2 Likes