Skip to content
/ glinet-enable-acme Public

This script enables the Automated Certificate Management Environment (ACME) for GL.iNet routers.

License

MIT license
6 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Admonstrator/glinet-enable-acme

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

28 Commits
images
images
 
 
LICENSE
LICENSE
 
 
enable-acme.sh
enable-acme.sh
 
 
readme.md
readme.md
 
 

Repository files navigation

GL.iNet Enable ACME for DDNS

Profile Picture

The enable-acme.sh script enables the Automated Certificate Management Environment (ACME) for GL.iNet routers. It will request a certificate for the router's public IP and configure nginx to use it. Renewal of the certificate will installed as a cron job.

Prerequisites

To execute the script, the following prerequisites must be met:

  • A GL.iNet router with the latest firmware version.
  • A working internet connection.
  • DDNS must be enabled and configured.
  • DDNS IP must be the same as the router's public IP. Will be checked by the script.
  • The script will request a certificate for the router's public IP. VPN IP is not supported.

Usage

You can run it without cloning the repository by using the following command:

wget -O enable-acme.sh https://raw.githubusercontent.com/Admonstrator/glinet-enable-acme/main/enable-acme.sh && sh enable-acme.sh

The following steps are required to enable ACME using the script:

  1. Download the script onto the router.
  2. Open an SSH connection to the router.
  3. Navigate to the directory where the script is located.
  4. Enter the command sh enable-acme.sh and press Enter.
  5. Follow the on-screen instructions to complete the ACME process.

Renewal

The certificate will be renewed automatically by a cronjob. The cronjob is installed by the script. It will check for a renewal every day at 00:00

You can manually renew the certificate by executing the following command:

/usr/bin/enable-acme --renew

Notes

  • Ensure that you have sufficient permissions to execute the script.
  • The script may vary depending on the router model and firmware version. Refer to the router's documentation for specific instructions.

Reverting

To revert the changes to nginx, execute the following commands:

sed -i '/listen \[::\]:80;/c\listen \[::\]:80;' /etc/nginx/conf.d/gl.conf
sed -i '/listen \[::\]:80;/c\listen \[::\]:80;' /etc/nginx/conf.d/gl.conf
sed -i 's|ssl_certificate .*;|ssl_certificate /etc/nginx/nginx.cer;|g' /etc/nginx/conf.d/gl.conf
sed -i 's|ssl_certificate_key .*;|ssl_certificate_key /etc/nginx/nginx.key;|g' /etc/nginx/conf.d/gl.conf
/etc/init.d/nginx restart

Disclaimer

This script is provided as is and without any warranty. Use it at your own risk.

It may break your router, your computer, your network or anything else. It may even burn down your house.

You have been warned!

About

This script enables the Automated Certificate Management Environment (ACME) for GL.iNet routers.

Topics

openwrt acme glinet

Resources

Readme

License

MIT license
Activity

Stars

6 stars

Watchers

1 watching

Forks

1 fork
Report repository

Languages