Tailscale is working real good from my cell phone to my home with WordPress on it. I got T-Mobile home Internet now. No ports open so Tailscale works good cell phone to WordPress in my home.
But I want to add https. That is how I had it before and links in the WordPress still have https so they don’t show up when I just use http that works now.
Worked on this for weeks and just get errors trying to get this to work. Hope some one can help.
How are you getting the certificate on the wordpress server?
I don’t think so how would I do that. I did get a Site Key and Secret Key from Cloudflare were I got my domain name linked to the 100 IP got for my Ubuntu server with Tailscale. That WordPress is installed on.
Did do a curl ‘https://challenges.cloudflare.com/turnstile/v0/siteverify’ --data ‘secret=XXXXXXXXXXXXXXXXXX’ but with both Site key and Secret key but just keep getting a error like this:
{“success”:false,“error-codes”:[“invalid-input-secret”],“messages”:}root@
Been working on this for days and get no place. Reading and watching YouTube videos how and nothing seems to help.
I can go there but it says it’s not secure red but it works.
I have a tutorial here on how Cloudflare Tunnels work
I think I got the tunnel to work.
root@rday:~# curl -L --output cloudflared.deb https://github.com/cloudflare/cloudflared/releases/latest/download/cloudflared-linux-amd64.deb && sudo dpkg -i cloudflared.deb && sudo cloudflared service install XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX
Then on Cloudflare to set it up I put Private Network and https and the Tailscale 100. IP of my Ubuntu server.
It says in green “HEALTHY”
But still don’t get https not in red.
root@rday:~# certbot renew --dry-run but it get’s errors.
What is the next step or commands to do so can get a https that is secure? Now that tunnel looks like it’s working.
I am not sure if you can do that via Cloudflare tunnel. Most people let Cloudflare handle the certificate.
I installed lets encrypt certificates on wordpress in a VM using snap to install Certbot. Then I used Certbot to do a DNS challenge to Cloudflare (my DNS registrar/DNS provider) and got Let’s Encrypt certs for the instance of Wordpress. You have to enter an A record in your DNS provider for the internal IP of your Wordpress server for this method to work. In this case I ran the cloudflared connector on another VM in docker.
For Wordpress running in Docker, I added Nginx to the docker compose for Wordpress, and used Nginx to do the DNS challenge and provide a cert for wordpress runninng in Docker. In this case I made sure the cloudflared was running in the same stack/docker instance, AND you have to be sure cloudflare d is on a common bridge network with Wordpress and Nginx
In both cases I still use a Cloudflare tunnel to expose Wordpress to the internet. When configuring the tunnel, be sure to select HTTPS (instead of HTTP) on the back end connection to your service. This way you will have encrypted traffic internal to your network and external to the world.
i am installing pfsense on Cyberoam CR-15iNG its giving the error
bios drive c: is disk 0 after installation
device info
BIOS Vendor American Megatrends
Core Version 4.6.4.1
Compliancy UEFI 2.0
Project Version C6979103
Build Date and Time 02/06/2013 16:22:41
any body pls help i am in much trouble
I found out can get https with Tailscale and your own domain name on Ubuntu command line like this:
apt install certbot
certbot --manual --preferred-challenges dns certonly -d rday.me
certbot --apache
The 2nd line will ask things your should know.
I got my domain name on CloudFlare and the 2nd command will give you a long key that you have to put in your domain as a txt and then it will know it’s your and set up the https for you.
Hope they can add this to Tailscale to make it easy to use your own domain name with https.
Allso I got my 100 Tailscale ip on Cludflare to match my domain name.
Could of open your .bash_history for the commands you did. But wow easy when you know how just 3 commands.
apt install cerbot
certbot --manual --preferred-challenges dns certonly -d rday.me
certbot --apache