Skip to content

Instantly share code, notes, and snippets.

@marfillaster

marfillaster/self-signed-docker-nginx.md

Created July 25, 2017 07:20
Show Gist options
  • Star 1 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save marfillaster/77fcb0fe96f270a5a6737dfa348e7f7e to your computer and use it in GitHub Desktop.
Save marfillaster/77fcb0fe96f270a5a6737dfa348e7f7e to your computer and use it in GitHub Desktop.
Download ZIP
Raw
self-signed-docker-nginx.md

Nginx configuration

listen       443 ssl;
ssl_certificate /etc/ssl/certs/nginx.cert;
ssl_certificate_key  /etc/ssl/private/nginx.key;
ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
ssl_prefer_server_ciphers on;
ssl_ciphers 'EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH';

Generate self signed certificate

openssl req -newkey rsa:4096 -nodes -sha256 -keyout nginx.key -x509 -days 365 -out nginx.cert \
-subj "/C=PH/L=Manila/O=Acme" \
-extensions SAN -config <(cat /etc/ssl/openssl.cnf <(printf "[SAN]\nsubjectAltName=IP:127.0.0.1"))

Run docker

docker run --rm -v./nginx.key:/etc/ssl/private/nginx.key \
-v./nginx.cert:/etc/ssl/certs/nginx.cert \
-v./nginx.conf:/etc/nginx/conf.d/default.conf -p443:443  nginx
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment