I want to configure OPNsense to update my Let's Encrypt certificate and to serve as a reverse proxy for the web server inside my firewall. What's the recommended way for the web server to use the same Let's Encrypt certificate when computers inside the firewall talk to it?
I can think of a few answers to my question:
The network inside the firewall (2.5GBE) is faster than the NIC in the firewall (1GBE), so #1 isn't my preferred solution.
Open to suggestions and pointers to tutorials.
I can think of a few answers to my question:
- make the computers inside the firewall use the same reverse proxy as those outside of it.
- periodically curl/wget/scp the certificate from the firewall to the web server
The network inside the firewall (2.5GBE) is faster than the NIC in the firewall (1GBE), so #1 isn't my preferred solution.
Open to suggestions and pointers to tutorials.