Monthly Archives: March 2017

How to Install LetsEncrypt Certificate on Shared Hosting

Introduction

Let’s Encrypt introduced free SSL certificates quite some time ago. It made possible for website owners to offer encrypted HTTPS connection for their visitors totally free of charge. Before Let’s Encrypt, the only way to get a valid SSL certificate was to purchase it from a seller.

Let’s Encrypt SSL certificate can be installed with just a few lines of code on a VPS or dedicated server, however, installation on shared hosting accounts is still a bit complicated (unless it uses cPanel).

Hostinger doesn’t yet have an auto-installer for Let’s Encrypt SSL certificates (we are working on this), but there is a workaround – it can be installed manually using ACME client written in PHP and composer.

This tutorial shows how to install free SSL from Let’s Encrypt on Gembels.com shared hosting.

The gist here is to generate the Let’s Encrypt certificate locally and install it to your server using cPanel. This is the exact steps I used for this domain.

Things Needed

  • An OS to install and run the Let’s Encrypt client. In this example I will use Ubuntu 14.04 VM on Windows.
  • cPanel access. Your cPanel should allow SSL certificates to be installed manually.
  • File upload access to the server. I used SFTP.

Installing the Let’s Encrypt Client

  1. Fire up the terminal in Ubuntu and type:
    git clone https://github.com/letsencrypt/letsencrypt
  2. Once its done, go to the directory where the client is installed. For me its: cd letsencrypt

Generating the Certificate

  1. Inside the letsencrypt directory (dont forget it for non www and www), type:
    ./letsencrypt-auto certonly -a manual --rsa-key-size 4096 -d gembels.com -d www.gembels.com

Note: Make sure to change gembels.com to the domain of your website.

  1. The client will prompt you if its OK to log your IP. Choose Yes.
  1. Now, whatever happens, do not press anything yet or you will have to restart the generation process!

Confirming Domain Ownership

Notice that below the prompt is an instruction on how to confirm ownership of your domain:

Make sure your web server displays the following content at http://gembels.com/.well-known/acme-challenge/pExN7I6LR8wMLGkwgpj2bRP5Mb8rWVnvElh5VQY3O34 before continuing:

pExN7I6LR8wMLGkwgpj2bRP5Mb8rWVnvElh5VQY3O34.mO1_yWM1oRb7oJBd5VgVuRB_szRNAqAEwsAcWfDxHX8

  1. Connect to your server and create the following directory inside your server’s public directory: .well-known/acme-challenge/
  2. Inside it create a text file named pExN7I6LR8wMLGkwgpj2bRP5Mb8rWVnvElh5VQY3O34 that contains the string
    pExN7I6LR8wMLGkwgpj2bRP5Mb8rWVnvElh5VQY3O34.mO1_yWM1oRb7oJBd5VgVuRB_szRNAqAEwsAcWfDxHX8

Note: The strings will be different for you or second domain for www. it will request 1 more time to same steps.

  1. Once you are done, go back to the terminal and press the enter. LE will generate one more confirmation for more domain. Just repeat step number 6.

Installing the Certificate in cPanel

cPanel SSL panel

  1. Type: sudo nautilus
  2. Using the file browser as root, navigate to /etc/letsencrypt/live/gembels.com
  3. Login to your cPanel. Copy and paste the SSL info from these files into the cPanel SSL panel:
    Certificate (CRT) is cert.pem
    Private Key is privkey.pem
    Certificate Authority Bundle: (CABUNDLE) or CA is chain.pem

    I used gedit to open and copy the contents of the .pem files.

    Installing the certificate in cPanel

 

Additional Resources/References

 

Setting up the FRITZ!Box 7390 as an IP client

There is an issue where you cant access your wireless router as second router and you mobile phone using the wireless thru second router and got different C class ip number. How you going to perform printing if your printer in different class C ip address ?

Example:

1st router thru NBN/ADSL with local IP 192.168.1.1 , and 2nd router as a router 192.168.1.254 / 192.168.2.1. Even you knew its 1.254 but you never can open it when you are in class 1 C ip address.

This is the solution using FRITZ!OS:06.53 Firmware:

Setting up the FRITZ!Box as an IP client

When the FRITZ!Box is used as an IP client, it shares the existing Internet connection of your other router. In this case

  • the firewall of the FRITZ!Box is disabled.
  • computers, smartphones, and other devices connected to the FRITZ!Box still obtain their IP settings from the other router.
  • all network devices have unrestricted access to all other devices, regardless of whether they are connected to the FRITZ!Box or the other router.

Preparations

Determining the throughput of the Internet connection
Determine and make note of the throughput (speed) available on the router’s Internet connection for downstream (data reception) and upstream (data transmission).
Note:You can find information on the speed of your Internet connection in the router’s user interface or contact your Internet service provider.

Determining the router’s IP settings
Enable the router’s DHCP (Dynamic Host Configuration Protocol) server so that the FRITZ!Box and devices connected to it automatically receive all of the IP settings required to access the Internet and communicate with other devices,
or, if the router cannot provide a DHCP server:
Make note of the router’s IP address and subnet mask.

Configuring the FRITZ!Box

  • Click “Internet” in the FRITZ!Box user interface.
  • Click “Account Information” in the “Internet” menu.
  • Select “Other Internet service provider” from the drop-down list “Internet service provider”. With some regional settings, this entry will not be displayed until you select “More Internet service providers”.
  • Enable the option “External modem or router” in the “Connect via” or “Connection” section.
  • Select “Share existing Internet connection in the network (IP client mode)” in the “Operating Mode” section.
  • Enter the speeds of your Internet connection in the “Downstream” and “Upstream” fields.
    Example:
    Enter 32000 for a downstream of 32 Mbit/s; enter 2000 for an upstream of 2 Mbit/s.
  • Click on “Change connection settings”.
  • Configure the IP settings:

If the router in the network provides a DHCP server:
Enable the option “Obtain the IP address automatically (DHCP)”.
If the router in the network does not provide a DHCP server:
Enable the option “Configure the IP address manually”.
Enter IP settings that fit with the IP network of the router:
“IP address”: IP address from the router’s network.

Example:
The router has the IP address 192.168.100.1 (subnet mask 255.255.255.0) and is therefore in the network 192.168.100.0. In this case you can enter 192.168.100.2 as the IP address.

Important:The IP address you select may not already be used by another device in the router’s network.

“Subnet mask”: Subnet mask of the router
“Default gateway”: IP address of the router
“Primary DNS server”: IP address of the router
Click “Apply” to save your settings.
The FRITZ!Box is now configured for operation as an IP client.
Important:In this operating mode, you can no longer open the user interface with http://fritz.box. Instead, proceed as described in the section “Opening the FRITZ!Box user interface”

Connecting the FRITZ!Box with the network

Use a network cable (for example the yellow network cable included with delivery) to connect the “LAN 1” port on FRITZ!Box directly to the router, or connect it by means of a hub or switch.
Now the FRITZ!Box uses the Internet connection of the other router.

Opening the FRITZ!Box user interface

When used as an IP client, you can no longer open its user interface by entering http://fritz.box. Instead, you must enter the FRITZ!Box’s IP address to open it:
In the web browser, enter the IP address that the router’s DHCP server assigned to the FRITZ!Box (for example 192.168.100.20),
or, if you enabled the option “Configure the IP address manually” in the FRITZ!Box:
In the web browser, enter the IP address that you entered in the “IP address” field in the FRITZ!Box user interface (for example 192.168.100.2).
or, if you cannot determine or have forgotten the IP address of the FRITZ!Box,
Use the FRITZ!Box’s “emergency” IP address to open the user interface.

Setting up the FRITZ!Box to conduct calls over another router

The following step is only necessary if you would like to connect telephones to the FRITZ!Box and then use the Internet connection of the other router or a landline to conduct calls with them:
Set up the FRITZ!Box to conduct telephone calls over the other router.

Setting up the FRITZ!Box for wireless roaming

    • If the other router does not provide a wireless network, you can use the FRITZ!Box as a wireless access point and connect your wireless devices to the FRITZ!Box’s wireless network.
    • If the other router has wireless capabilities, you can use the FRITZ!Box as an additional wireless access point. This way your wireless devices can access the Internet and other devices in the home network over the FRITZ!Box, even if the wireless network of your router is not available.
    • Configure the following settings in the FRITZ!Box so that your wireless devices can always automatically connect to the wireless network with the strongest signal (wireless roaming):
  1. Click “Wireless” (“WLAN”) in the FRITZ!Box user interface.
  2. Click “Radio Network” in the “Wireless” (“WLAN”) menu.
  3. Enter the name of the router’s wireless network as the “Name of the wireless radio network (SSID)”.
  4. Click “Apply” to save your settings.
  5. Click “Radio Channel” in the “Wireless” (“WLAN”) menu.
  6. Enable the option “Adjust radio channel settings” in the “Radio Channel Settings” section.
  7. Select the channel used by the wireless router from the drop-down list “Radio channel”.
  8. Click “Apply” to save your settings.
  9. Click “Security” in the “Wireless” (“WLAN”) menu.
  10. Enable the wireless encryption used by the wireless router.
  11. Enter the wireless router’s network key in the “Network key” field.
  12. Click “Apply” to save your settings.

Done. Source: https://en.avm.de/service/fritzbox/fritzbox-7360/knowledge-base/publication/show/3244_Setting-up-the-FRITZ-Box-as-an-IP-client/