Listing all the tasks which needed to be done:
1. Change default port of SSH server
by editing
/etc/ssh/sshd_config
#Port = 22 <-- change this to something else.
2. install and set up mysql
How To Install MySQL on Ubuntu 22.04 | DigitalOcean
3. Set up DNS in cloudflare.
4. Set up Apache virtual servers
sudo apt install apache2
needed to see the documentation, in /var/www/html/index.html, which says that
"By default, Ubuntu does not allow access through the web browser to any file outside of those located in /var/www, public_html directories (when enabled) and /usr/share (for web applications). If your site is using a web document root located elsewhere (such as in /srv) you may need to whitelist your document root directory in /etc/apache2/apache2.conf."
So, added like this,
<Directory our/custom/www/home>
AllowOverride None
Require all granted
</Directory>
and also, needed read permission for the entire directory tree in /our/custom/www/home,
Why apache throwing forbidden when directory is in home? - Stack Overflow
5. Set up ssl with cloudflare server origin cert - this did not work till I first set up SSL using certbot, then replaced the private key and certificate paths to point to the cloudflare origin cert. Most probably because certbot automatically set up the required configuration with
Include /etc/letsencrypt/options-ssl-apache.conf
in the virtual host file.
How To Secure Apache with Let's Encrypt on Ubuntu 22.04 | DigitalOcean
sudo apt install certbot python3-certbot-apache
sudo certbot
Link dump of other stuff I tried:
Origin server · Cloudflare SSL/TLS docs
Ubuntu with Apache2: CSR & SSL Installation (OpenSSL) (digicert.com)
(We saved it in /etc/ssl/certs/ )
How To Troubleshoot Common Apache Errors | DigitalOcean
needed to enable modssl, so
/etc/apache2/mods-available
sudo a2enmod ssl
sudo a2enmod headers
from SSL: How to enable HTTPS with Apache 2 on Ubuntu 20.04 | ArubaCloud.com
Syntax error on line 33 of /etc/apache2/sites-enabled/002-our-site-ssl.conf:
May 06 10:28:11 ip-10-0-0-73 apachectl[2467]: SSLCertificateKeyFile: file '/etc/ssl/private/cloudflare-oursite.org.privatekey.pem'
sudo apachectl configtest
SSLCertificateKeyFile: file '/etc/ssl/private/cloudflare-oursite.org.privatekey.pem' does not exist or is empty
(This was because of saving the private key elsewhere instead of in this path).
sudo apt install certbot
Certbot doesn't know how to automatically configure the web server on this system.
(This was because python3-certbot-apache also needed to be installed.)
After changing the cert to cloudflare origin cert, I wanted to disable the cron job to get updated letsencrypt certs - but
no crontab for root. The cron job for certbot was at
/etc/cron.d/certbot
- commented out everything.
Then just copied the same thing for uat virtual server.
6. Set up dot net
https://www.syncfusion.com/blogs/post/hosting-multiple-asp-net-core-apps-in-ubuntu-linux-server-using-apache.aspx
find which dot net core version is used by your application in IIS - Google Search
dotnet --version
3.1.410
So we need to use "Microsoft feed"
.NET and Ubuntu overview - .NET | Supported distributions
https://learn.microsoft.com/en-us/dotnet/core/install/linux-package-mixup?pivots=os-linux-ubuntu#i-need-a-version-of-net-that-isnt-provided-by-my-linux-distribution
https://manpages.ubuntu.com/manpages/xenial/man5/sources.list.5.html
https://learn.microsoft.com/en-us/dotnet/core/install/linux-ubuntu#register-the-microsoft-package-repository
https://tecadmin.net/how-to-install-dotnet-core-on-ubuntu-22-04/
Does not support 3.1
Would need to migrate
https://learn.microsoft.com/en-us/aspnet/core/migration/31-to-60?view=aspnetcore-7.0&tabs=visual-studio
No comments:
Post a Comment