joltcan · November 10, 2017 09:45
diff --git a/acme server nginx b/acme server nginx
 server {
    listen 80;
    listen 443;
    server_name acme.int.<domain>;

    if ($scheme = http) {
        return 301 https://$server_name$request_uri;
    }

    include ssl-params.conf;

    ssl_certificate /etc/openvpn/ca/keys/acme.int<domain>.crt;
    ssl_certificate_key /etc/openvpn/ca/keys/acme.int.<domain>.key;

    index index.html;
    
    root /var/www/acme;

    # basic IP check here, just in case
    allow 127.0.0.1;
    allow ::1;
    allow 172.0.0.0/21; # all our local subnets
    deny all;

    location / {
        try_files $uri $uri/ =404;
    }
 }
	server {
	listen 80;
	listen 443;
	server_name acme.int.<domain>;

	if ($scheme = http) {
	return 301 https://$server_name$request_uri;
	}

	include ssl-params.conf;

	ssl_certificate /etc/openvpn/ca/keys/acme.int<domain>.crt;
	ssl_certificate_key /etc/openvpn/ca/keys/acme.int.<domain>.key;

	index index.html;

	root /var/www/acme;

	# basic IP check here, just in case
	allow 127.0.0.1;
	allow ::1;
	allow 172.0.0.0/21; # all our local subnets
	deny all;

	location / {
	try_files $uri $uri/ =404;
	}
	}