can&#39;t use the standard ports 80 and 443 on my network #493

@MrChenhtlss commented on GitHub (Nov 11, 2023):

Thank you for your reply. All but the standard ports on my network are accessible via the Internet. SSL certificates can also be obtained in other ways. Please tell me how I should operate.

I have the same problem. Did you solve it? If so, can you help me?

@MrChenhtlss commented on GitHub (Nov 11, 2023): > Thank you for your reply. All but the standard ports on my network are accessible via the Internet. SSL certificates can also be obtained in other ways. Please tell me how I should operate. I have the same problem. Did you solve it? If so, can you help me?

saavagebueno commented

@xcstatus commented on GitHub (Nov 13, 2023):

Not solved yet, no way to deal with this problem, can only wait for the solution given by the @mlsmaycon

@xcstatus commented on GitHub (Nov 13, 2023): Not solved yet, no way to deal with this problem, can only wait for the solution given by the @mlsmaycon

saavagebueno commented

@MrChenhtlss commented on GitHub (Nov 13, 2023):

xcstatus @.***>于2023年11月13日周一13:00写道：

Not solved yet, no way to deal with this problem, can only wait for the
solution given by the @mlsmaycon https://github.com/mlsmaycon

—
Reply to this email directly, view it on GitHub
https://github.com/netbirdio/netbird/issues/1267#issuecomment-1807480407,
or unsubscribe
https://github.com/notifications/unsubscribe-auth/BC6T5SEJROTICPNK7WHDOCDYEGSOBAVCNFSM6AAAAAA6VQ3QOSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQMBXGQ4DANBQG4
.
You are receiving this because you commented.Message ID:
@.***>

If you have a solution please let me know thank you very much

@MrChenhtlss commented on GitHub (Nov 13, 2023): xcstatus ***@***.***>于2023年11月13日周一13:00写道： > Not solved yet, no way to deal with this problem, can only wait for the > solution given by the @mlsmaycon <https://github.com/mlsmaycon> > > — > Reply to this email directly, view it on GitHub > <https://github.com/netbirdio/netbird/issues/1267#issuecomment-1807480407>, > or unsubscribe > <https://github.com/notifications/unsubscribe-auth/BC6T5SEJROTICPNK7WHDOCDYEGSOBAVCNFSM6AAAAAA6VQ3QOSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQMBXGQ4DANBQG4> > . > You are receiving this because you commented.Message ID: > ***@***.***> > If you have a solution please let me know thank you very much

saavagebueno commented

@mlsmaycon commented on GitHub (Nov 14, 2023):

Hello folks, we have a guide for running NetBird that you can use to configure NetBird to run behind a reverse-proxy like Nginx, Traefik or Caddyserver. See this link for more details. It covers the advanced guide setup, then you need to configure your reverse proxy.

For traefik and nginx you have some example templates:
Nginx.conf
docker-compose.yml.tmpl.traefik

For Caddyserver you can use the following example:

{
  debug
	servers :80,:443 {
    protocols h1 h2c
  }
}

:80,mydomain.example.com:443 {
    import security_headers
    # Signal
    reverse_proxy /signalexchange.SignalExchange/* h2c://signal:10000
    # Management
    reverse_proxy /api/* management:80
    reverse_proxy /management.ManagementService/* h2c://management:80
    # Dashboard
    reverse_proxy /* dashboard:80
}

You need to replace the references to the internal services according to your local environment. e.g., if your management is running on IP 192.168.0.100, replace h2c://management:80 with h2c://192.168.0.100:80

@mlsmaycon commented on GitHub (Nov 14, 2023): Hello folks, we have a guide for running NetBird that you can use to configure NetBird to run behind a reverse-proxy like Nginx, Traefik or Caddyserver. See this [link](https://docs.netbird.io/selfhosted/selfhosted-guide#advanced-running-net-bird-behind-an-existing-reverse-proxy) for more details. It covers the advanced guide setup, then you need to configure your reverse proxy. For traefik and nginx you have some example templates: [Nginx.conf](https://github.com/netbirdio/netbird/blob/d1d01a0611771b5604bf5806f385ebb9d70c58df/infrastructure_files/nginx.tmpl.conf) [docker-compose.yml.tmpl.traefik](https://github.com/netbirdio/netbird/blob/d1d01a0611771b5604bf5806f385ebb9d70c58df/infrastructure_files/docker-compose.yml.tmpl.traefik) For Caddyserver you can use the following example: ``` { debug servers :80,:443 { protocols h1 h2c } } :80,mydomain.example.com:443 { import security_headers # Signal reverse_proxy /signalexchange.SignalExchange/* h2c://signal:10000 # Management reverse_proxy /api/* management:80 reverse_proxy /management.ManagementService/* h2c://management:80 # Dashboard reverse_proxy /* dashboard:80 } ``` You need to replace the references to the internal services according to your local environment. e.g., if your management is running on IP 192.168.0.100, replace h2c://management:80 with h2c://192.168.0.100:80

saavagebueno commented

@MrChenhtlss commented on GitHub (Nov 14, 2023):

Besides the docker-compose file, what else do I need to modify?
Maycon Santos @.***>于2023年11月14日周二16:34写道：

Hello folks, we have a guide for running NetBird that you can use to
configure NetBird to run behind a reverse-proxy like Nginx, Traefik or
Caddyserver. See this link
https://docs.netbird.io/selfhosted/selfhosted-guide#advanced-running-net-bird-behind-an-existing-reverse-proxy
for more details. It covers the advanced guide setup, then you need to
configure your reverse proxy.

For traefik and nginx you have some example templates:
Nginx.conf
https://github.com/netbirdio/netbird/blob/d1d01a0611771b5604bf5806f385ebb9d70c58df/infrastructure_files/nginx.tmpl.conf
docker-compose.yml.tmpl.traefik
https://github.com/netbirdio/netbird/blob/d1d01a0611771b5604bf5806f385ebb9d70c58df/infrastructure_files/docker-compose.yml.tmpl.traefik

For Caddyserver you can use the following example:

{
debug
servers :80,:443 {
protocols h1 h2c
}
}

:80,mydomain.example.com:443 {
import security_headers
# Signal
reverse_proxy /signalexchange.SignalExchange/* h2c://signal:10000
# Management
reverse_proxy /api/* management:80
reverse_proxy /management.ManagementService/* h2c://management:80
# Dashboard
reverse_proxy /* dashboard:80
}

You need to replace the references to the internal services according to
your local environment. e.g., if your management is running on IP
192.168.0.100, replace h2c://management:80 with h2c://192.168.0.100:80

—
Reply to this email directly, view it on GitHub
https://github.com/netbirdio/netbird/issues/1267#issuecomment-1809749979,
or unsubscribe
https://github.com/notifications/unsubscribe-auth/BC6T5SBWGHSG2RDRD22YYG3YEMUINAVCNFSM6AAAAAA6VQ3QOSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQMBZG42DSOJXHE
.
You are receiving this because you commented.Message ID:
@.***>

@MrChenhtlss commented on GitHub (Nov 14, 2023): Besides the docker-compose file, what else do I need to modify? Maycon Santos ***@***.***>于2023年11月14日周二16:34写道： > Hello folks, we have a guide for running NetBird that you can use to > configure NetBird to run behind a reverse-proxy like Nginx, Traefik or > Caddyserver. See this link > <https://docs.netbird.io/selfhosted/selfhosted-guide#advanced-running-net-bird-behind-an-existing-reverse-proxy> > for more details. It covers the advanced guide setup, then you need to > configure your reverse proxy. > > For traefik and nginx you have some example templates: > Nginx.conf > <https://github.com/netbirdio/netbird/blob/d1d01a0611771b5604bf5806f385ebb9d70c58df/infrastructure_files/nginx.tmpl.conf> > docker-compose.yml.tmpl.traefik > <https://github.com/netbirdio/netbird/blob/d1d01a0611771b5604bf5806f385ebb9d70c58df/infrastructure_files/docker-compose.yml.tmpl.traefik> > > For Caddyserver you can use the following example: > > { > debug > servers :80,:443 { > protocols h1 h2c > } > } > > :80,mydomain.example.com:443 { > import security_headers > # Signal > reverse_proxy /signalexchange.SignalExchange/* h2c://signal:10000 > # Management > reverse_proxy /api/* management:80 > reverse_proxy /management.ManagementService/* h2c://management:80 > # Dashboard > reverse_proxy /* dashboard:80 > } > > You need to replace the references to the internal services according to > your local environment. e.g., if your management is running on IP > 192.168.0.100, replace h2c://management:80 with h2c://192.168.0.100:80 > > — > Reply to this email directly, view it on GitHub > <https://github.com/netbirdio/netbird/issues/1267#issuecomment-1809749979>, > or unsubscribe > <https://github.com/notifications/unsubscribe-auth/BC6T5SBWGHSG2RDRD22YYG3YEMUINAVCNFSM6AAAAAA6VQ3QOSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQMBZG42DSOJXHE> > . > You are receiving this because you commented.Message ID: > ***@***.***> >

saavagebueno commented

@mlsmaycon commented on GitHub (Nov 14, 2023):

It depends on the scenario you are building. Can you share more about it @MrChenhtlss?

@mlsmaycon commented on GitHub (Nov 14, 2023): It depends on the scenario you are building. Can you share more about it @MrChenhtlss?

saavagebueno commented

@MrChenhtlss commented on GitHub (Nov 14, 2023):

Sorry I'm not a professional IT worker

Maycon Santos @.***>于2023年11月14日周二16:43写道：

It depends on the scenario you are building. Can you share more about it
@MrChenhtlss https://github.com/MrChenhtlss?

—
Reply to this email directly, view it on GitHub
https://github.com/netbirdio/netbird/issues/1267#issuecomment-1809763181,
or unsubscribe
https://github.com/notifications/unsubscribe-auth/BC6T5SAQT7QLQIPIIUQVAQLYEMVMPAVCNFSM6AAAAAA6VQ3QOSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQMBZG43DGMJYGE
.
You are receiving this because you were mentioned.Message ID:
@.***>

@MrChenhtlss commented on GitHub (Nov 14, 2023): Sorry I'm not a professional IT worker Maycon Santos ***@***.***>于2023年11月14日周二16:43写道： > It depends on the scenario you are building. Can you share more about it > @MrChenhtlss <https://github.com/MrChenhtlss>? > > — > Reply to this email directly, view it on GitHub > <https://github.com/netbirdio/netbird/issues/1267#issuecomment-1809763181>, > or unsubscribe > <https://github.com/notifications/unsubscribe-auth/BC6T5SAQT7QLQIPIIUQVAQLYEMVMPAVCNFSM6AAAAAA6VQ3QOSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQMBZG43DGMJYGE> > . > You are receiving this because you were mentioned.Message ID: > ***@***.***> >

saavagebueno commented

@MrChenhtlss commented on GitHub (Nov 14, 2023):

Or I would just use express install. Doc provides an advanced installation
method, but I can't understand it.

T oy @.***>于2023年11月14日周二16:49写道：

Sorry I'm not a professional IT worker

Maycon Santos @.***>于2023年11月14日周二16:43写道：

It depends on the scenario you are building. Can you share more about it
@MrChenhtlss https://github.com/MrChenhtlss?

—
Reply to this email directly, view it on GitHub
https://github.com/netbirdio/netbird/issues/1267#issuecomment-1809763181,
or unsubscribe
https://github.com/notifications/unsubscribe-auth/BC6T5SAQT7QLQIPIIUQVAQLYEMVMPAVCNFSM6AAAAAA6VQ3QOSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQMBZG43DGMJYGE
.
You are receiving this because you were mentioned.Message ID:
@.***>

@MrChenhtlss commented on GitHub (Nov 14, 2023): Or I would just use express install. Doc provides an advanced installation method, but I can't understand it. T oy ***@***.***>于2023年11月14日周二16:49写道： > Sorry I'm not a professional IT worker > > Maycon Santos ***@***.***>于2023年11月14日周二16:43写道： > >> It depends on the scenario you are building. Can you share more about it >> @MrChenhtlss <https://github.com/MrChenhtlss>? >> >> — >> Reply to this email directly, view it on GitHub >> <https://github.com/netbirdio/netbird/issues/1267#issuecomment-1809763181>, >> or unsubscribe >> <https://github.com/notifications/unsubscribe-auth/BC6T5SAQT7QLQIPIIUQVAQLYEMVMPAVCNFSM6AAAAAA6VQ3QOSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQMBZG43DGMJYGE> >> . >> You are receiving this because you were mentioned.Message ID: >> ***@***.***> >> >

saavagebueno commented

@mlsmaycon commented on GitHub (Nov 14, 2023):

@MrChenhtlss Maybe you can share more about your current server setup, like what is running on ports 80 and 443, do you have a proxy like nginx or others?

@mlsmaycon commented on GitHub (Nov 14, 2023): @MrChenhtlss Maybe you can share more about your current server setup, like what is running on ports 80 and 443, do you have a proxy like nginx or others?

saavagebueno commented

@MrChenhtlss commented on GitHub (Nov 14, 2023):

80,443 running nginx

Maycon Santos @.***>于2023年11月14日周二16:58写道：

@MrChenhtlss https://github.com/MrChenhtlss Maybe you can share more
about your current server setup, like what is running on ports 80 and 443,
do you have a proxy like nginx or others?

—
Reply to this email directly, view it on GitHub
https://github.com/netbirdio/netbird/issues/1267#issuecomment-1809788372,
or unsubscribe
https://github.com/notifications/unsubscribe-auth/BC6T5SH3YIWLPXNGOUOP2L3YEMXC3AVCNFSM6AAAAAA6VQ3QOSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQMBZG44DQMZXGI
.
You are receiving this because you were mentioned.Message ID:
@.***>

@MrChenhtlss commented on GitHub (Nov 14, 2023): 80,443 running nginx Maycon Santos ***@***.***>于2023年11月14日周二16:58写道： > @MrChenhtlss <https://github.com/MrChenhtlss> Maybe you can share more > about your current server setup, like what is running on ports 80 and 443, > do you have a proxy like nginx or others? > > — > Reply to this email directly, view it on GitHub > <https://github.com/netbirdio/netbird/issues/1267#issuecomment-1809788372>, > or unsubscribe > <https://github.com/notifications/unsubscribe-auth/BC6T5SH3YIWLPXNGOUOP2L3YEMXC3AVCNFSM6AAAAAA6VQ3QOSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQMBZG44DQMZXGI> > . > You are receiving this because you were mentioned.Message ID: > ***@***.***> >

saavagebueno commented

@MrChenhtlss commented on GitHub (Nov 14, 2023):

I have another server but my service provider disabled my ports 80 and 443
other ports are accessible from the internet

T oy @.***>于2023年11月14日周二16:59写道：

80,443 running nginx

Maycon Santos @.***>于2023年11月14日周二16:58写道：

@MrChenhtlss https://github.com/MrChenhtlss Maybe you can share more
about your current server setup, like what is running on ports 80 and 443,
do you have a proxy like nginx or others?

—
Reply to this email directly, view it on GitHub
https://github.com/netbirdio/netbird/issues/1267#issuecomment-1809788372,
or unsubscribe
https://github.com/notifications/unsubscribe-auth/BC6T5SH3YIWLPXNGOUOP2L3YEMXC3AVCNFSM6AAAAAA6VQ3QOSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQMBZG44DQMZXGI
.
You are receiving this because you were mentioned.Message ID:
@.***>

@MrChenhtlss commented on GitHub (Nov 14, 2023): I have another server but my service provider disabled my ports 80 and 443 other ports are accessible from the internet T oy ***@***.***>于2023年11月14日周二16:59写道： > 80,443 running nginx > > Maycon Santos ***@***.***>于2023年11月14日周二16:58写道： > >> @MrChenhtlss <https://github.com/MrChenhtlss> Maybe you can share more >> about your current server setup, like what is running on ports 80 and 443, >> do you have a proxy like nginx or others? >> >> — >> Reply to this email directly, view it on GitHub >> <https://github.com/netbirdio/netbird/issues/1267#issuecomment-1809788372>, >> or unsubscribe >> <https://github.com/notifications/unsubscribe-auth/BC6T5SH3YIWLPXNGOUOP2L3YEMXC3AVCNFSM6AAAAAA6VQ3QOSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQMBZG44DQMZXGI> >> . >> You are receiving this because you were mentioned.Message ID: >> ***@***.***> >> >

saavagebueno commented

@xcstatus commented on GitHub (Nov 19, 2023):

Any progress so far?

@xcstatus commented on GitHub (Nov 19, 2023): Any progress so far?

saavagebueno commented

@xcstatus commented on GitHub (Dec 18, 2023):

@MrChenhtlss

The deployment script was modified and the deployment was successful over a non-standard port. But you will need to get your own domain certificate.
Change the port number in the script.
Add the domain certificate configuration to the caddy configuration file.
3. Change the redirect Settings in zitdel.
4. Modify the address of the HttpConfig node in the renderManagementJson method, and add the port.

修改了部署脚本，通过非标准端口部署成功了。但是需要自己申请域名证书。

修改脚本中的端口号。
在caddy配置文件中增加域名证书配置。
修改zitdel中的重定向设置。
修改renderManagementJson方法中HttpConfig节点下地址，需要增加端口。

@xcstatus commented on GitHub (Dec 18, 2023): ![image](https://github.com/netbirdio/netbird/assets/40375067/0391245a-a212-4a40-9d59-8721b77c4071) @MrChenhtlss The deployment script was modified and the deployment was successful over a non-standard port. But you will need to get your own domain certificate. Change the port number in the script. Add the domain certificate configuration to the caddy configuration file. 3. Change the redirect Settings in zitdel. 4. Modify the address of the HttpConfig node in the renderManagementJson method, and add the port. 修改了部署脚本，通过非标准端口部署成功了。但是需要自己申请域名证书。 1. 修改脚本中的端口号。 2. 在caddy配置文件中增加域名证书配置。 3. 修改zitdel中的重定向设置。 4. 修改renderManagementJson方法中HttpConfig节点下地址，需要增加端口。

saavagebueno commented

@MrChenhtlss commented on GitHub (Dec 18, 2023):

非常感谢，方便给我更详细的操作方法么

xcstatus @.***>于2023年12月18日周一14:45写道：

image.png (view on web)
https://github.com/netbirdio/netbird/assets/40375067/0391245a-a212-4a40-9d59-8721b77c4071
@MrChenhtlss https://github.com/MrChenhtlss

The deployment script was modified and the deployment was successful over
a non-standard port. But you will need to get your own domain certificate.
Change the port number in the script.
Add the domain certificate configuration to the caddy configuration file.
3. Change the redirect Settings in zitdel.
4. Modify the address of the HttpConfig node in the renderManagementJson
method, and add the port.

修改了部署脚本，通过非标准端口部署成功了。但是需要自己申请域名证书。

修改脚本中的端口号。

在caddy配置文件中增加域名证书配置。

修改zitdel中的重定向设置。

修改renderManagementJson方法中HttpConfig节点下地址，需要增加端口。

—
Reply to this email directly, view it on GitHub
https://github.com/netbirdio/netbird/issues/1267#issuecomment-1859645794,
or unsubscribe
https://github.com/notifications/unsubscribe-auth/BC6T5SGW23IFWUIDM72P7WDYJ7RALAVCNFSM6AAAAAA6VQ3QOSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQNJZGY2DKNZZGQ
.
You are receiving this because you were mentioned.Message ID:
@.***>

@MrChenhtlss commented on GitHub (Dec 18, 2023): 非常感谢，方便给我更详细的操作方法么 xcstatus ***@***.***>于2023年12月18日周一14:45写道： > image.png (view on web) > <https://github.com/netbirdio/netbird/assets/40375067/0391245a-a212-4a40-9d59-8721b77c4071> > @MrChenhtlss <https://github.com/MrChenhtlss> > > The deployment script was modified and the deployment was successful over > a non-standard port. But you will need to get your own domain certificate. > Change the port number in the script. > Add the domain certificate configuration to the caddy configuration file. > 3. Change the redirect Settings in zitdel. > 4. Modify the address of the HttpConfig node in the renderManagementJson > method, and add the port. > > 修改了部署脚本，通过非标准端口部署成功了。但是需要自己申请域名证书。 > > 1. 修改脚本中的端口号。 > 2. 在caddy配置文件中增加域名证书配置。 > 3. 修改zitdel中的重定向设置。 > 4. 修改renderManagementJson方法中HttpConfig节点下地址，需要增加端口。 > > — > Reply to this email directly, view it on GitHub > <https://github.com/netbirdio/netbird/issues/1267#issuecomment-1859645794>, > or unsubscribe > <https://github.com/notifications/unsubscribe-auth/BC6T5SGW23IFWUIDM72P7WDYJ7RALAVCNFSM6AAAAAA6VQ3QOSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQNJZGY2DKNZZGQ> > . > You are receiving this because you were mentioned.Message ID: > ***@***.***> >

saavagebueno commented

@xcstatus commented on GitHub (Dec 18, 2023):

晚点我整理下，现在发现了一个问题通过pre-shard key 无法在客户端登录

@xcstatus commented on GitHub (Dec 18, 2023): 晚点我整理下，现在发现了一个问题通过pre-shard key 无法在客户端登录

saavagebueno commented

@MrChenhtlss commented on GitHub (Dec 18, 2023):

好的，非常感谢，但是官方似乎有通过nginx的部署方法，但是由于能力有限，无法完全理解官方doc的内容

status @.***>于2023年12月18日周一15:34写道：

晚点我整理下，现在发现了一个问题通过pre-shard key 无法在客户端登录

—
Reply to this email directly, view it on GitHub
https://github.com/netbirdio/netbird/issues/1267#issuecomment-1859694734,
or unsubscribe
https://github.com/notifications/unsubscribe-auth/BC6T5SFJJZ7LL2J43KD4ZWDYJ7WYZAVCNFSM6AAAAAA6VQ3QOSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQNJZGY4TINZTGQ
.
You are receiving this because you were mentioned.Message ID:
@.***>

@MrChenhtlss commented on GitHub (Dec 18, 2023): 好的，非常感谢，但是官方似乎有通过nginx的部署方法，但是由于能力有限，无法完全理解官方doc的内容 status ***@***.***>于2023年12月18日周一15:34写道： > 晚点我整理下，现在发现了一个问题通过pre-shard key 无法在客户端登录 > > — > Reply to this email directly, view it on GitHub > <https://github.com/netbirdio/netbird/issues/1267#issuecomment-1859694734>, > or unsubscribe > <https://github.com/notifications/unsubscribe-auth/BC6T5SFJJZ7LL2J43KD4ZWDYJ7WYZAVCNFSM6AAAAAA6VQ3QOSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQNJZGY4TINZTGQ> > . > You are receiving this because you were mentioned.Message ID: > ***@***.***> >

saavagebueno commented

@xcstatus commented on GitHub (Dec 18, 2023):

Netbird安装.md
getting-started-with-zitadel-xc.zip
@MrChenhtlss 这是我修改后的脚本和修改、安装说明。
@mlsmaycon Problem solved. I closed the problem. Thank you very much

@xcstatus commented on GitHub (Dec 18, 2023): [Netbird安装.md](https://github.com/netbirdio/netbird/files/13705518/Netbird.md) [getting-started-with-zitadel-xc.zip](https://github.com/netbirdio/netbird/files/13705521/getting-started-with-zitadel-xc.zip) @MrChenhtlss 这是我修改后的脚本和修改、安装说明。 @mlsmaycon Problem solved. I closed the problem. Thank you very much

saavagebueno commented

@MrChenhtlss commented on GitHub (Dec 18, 2023):

OK,这真的太棒了
xcstatus @.***>于2023年12月18日周一23:30写道：

Netbird安装.md
https://github.com/netbirdio/netbird/files/13705518/Netbird.md
getting-started-with-zitadel-xc.zip
https://github.com/netbirdio/netbird/files/13705521/getting-started-with-zitadel-xc.zip
@MrChenhtlss https://github.com/MrChenhtlss 这是我修改后的脚本和修改、安装说明。
@mlsmaycon https://github.com/mlsmaycon Problem solved. I closed the
problem. Thank you very much

—
Reply to this email directly, view it on GitHub
https://github.com/netbirdio/netbird/issues/1267#issuecomment-1860820332,
or unsubscribe
https://github.com/notifications/unsubscribe-auth/BC6T5SHRY6PUDQQQAMXG44TYKBOSHAVCNFSM6AAAAAA6VQ3QOSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQNRQHAZDAMZTGI
.
You are receiving this because you were mentioned.Message ID:
@.***>

@MrChenhtlss commented on GitHub (Dec 18, 2023): OK,这真的太棒了 xcstatus ***@***.***>于2023年12月18日周一23:30写道： > Netbird安装.md > <https://github.com/netbirdio/netbird/files/13705518/Netbird.md> > getting-started-with-zitadel-xc.zip > <https://github.com/netbirdio/netbird/files/13705521/getting-started-with-zitadel-xc.zip> > @MrChenhtlss <https://github.com/MrChenhtlss> 这是我修改后的脚本和修改、安装说明。 > @mlsmaycon <https://github.com/mlsmaycon> Problem solved. I closed the > problem. Thank you very much > > — > Reply to this email directly, view it on GitHub > <https://github.com/netbirdio/netbird/issues/1267#issuecomment-1860820332>, > or unsubscribe > <https://github.com/notifications/unsubscribe-auth/BC6T5SHRY6PUDQQQAMXG44TYKBOSHAVCNFSM6AAAAAA6VQ3QOSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQNRQHAZDAMZTGI> > . > You are receiving this because you were mentioned.Message ID: > ***@***.***> >

saavagebueno commented

getting-started-with-zitadel-xc-prompt.sh.zip

@jiangslee commented on GitHub (Dec 18, 2023):

Netbird安装.md getting-started-with-zitadel-xc.zip @MrChenhtlss 这是我修改后的脚本和修改、安装说明。 @mlsmaycon Problem solved. I closed the problem. Thank you very much

真香！

我迭代下，端口号改成交互输入，域名证书改成自动匹配。

操作步骤：

mkdir certs
在certs目录放好与域名一致的证书文件，如netbird.my-domain.com.pem，netbird.my-domain.com.key

~/docker-netbird# tree certs
certs
├── netbird.my-domain.com.key
└── netbird.my-domain.com.pem

export NETBIRD_DOMAIN=netbird.my-domain.com
bash getting-started-with-zitadel-xc.sh
按提示输入好端口号（请提前进行域名解释和及安全组端口放行：你自定义的端口号，比如我上图的TCP：8088,8443; UDP ports: 3478, 49152-65535）

目前证书需要手动维护，要是有大佬能改成自动获取及更新证书就更好了。

@jiangslee commented on GitHub (Dec 18, 2023): > [Netbird安装.md](https://github.com/netbirdio/netbird/files/13705518/Netbird.md) [getting-started-with-zitadel-xc.zip](https://github.com/netbirdio/netbird/files/13705521/getting-started-with-zitadel-xc.zip) @MrChenhtlss 这是我修改后的脚本和修改、安装说明。 @mlsmaycon Problem solved. I closed the problem. Thank you very much 真香！我迭代下，端口号改成交互输入，域名证书改成自动匹配。 ![image](https://github.com/netbirdio/netbird/assets/27892476/f9f85811-e8fc-4ab4-bcfc-8f60991d2dc1) ![image](https://github.com/netbirdio/netbird/assets/27892476/289bc0f1-95e0-4a91-9637-d247e7b76cf3) 操作步骤： 1. `mkdir certs` 2. 在`certs`目录放好与域名一致的证书文件，如`netbird.my-domain.com.pem`，`netbird.my-domain.com.key` ``` ~/docker-netbird# tree certs certs ├── netbird.my-domain.com.key └── netbird.my-domain.com.pem ``` 3. `export NETBIRD_DOMAIN=netbird.my-domain.com` 4. `bash getting-started-with-zitadel-xc.sh` 5. 按提示输入好端口号（请提前进行`域名解释`和及`安全组端口放行`：你自定义的端口号，比如我上图的TCP：`8088`,`8443`; UDP ports: `3478`, `49152-65535`） [getting-started-with-zitadel-xc-prompt.sh.zip](https://github.com/netbirdio/netbird/files/13710669/getting-started-with-zitadel-xc-prompt.sh.zip) 目前证书需要手动维护，要是有大佬能改成自动获取及更新证书就更好了。

saavagebueno commented

@xcstatus commented on GitHub (Dec 19, 2023):

👍。我一直想要这样做，但是我不太懂shell语法，所以不敢对脚本做太大的修改。这个对脚本的修改是否有必要提个pr给官方？但是需要兼容下不需要修改端口号的情况。

@xcstatus commented on GitHub (Dec 19, 2023): 👍。我一直想要这样做，但是我不太懂shell语法，所以不敢对脚本做太大的修改。这个对脚本的修改是否有必要提个pr给官方？但是需要兼容下不需要修改端口号的情况。

saavagebueno commented

@MrChenhtlss commented on GitHub (Dec 19, 2023):

Netbird安装.md getting-started-with-zitadel-xc.zip @MrChenhtlss 这是我修改后的脚本和修改、安装说明。 @mlsmaycon Problem solved. I closed the problem. Thank you very much

真香！

我迭代下，端口号改成交互输入，域名证书改成自动匹配。

操作步骤：

mkdir certs

在certs目录放好与域名一致的证书文件，如netbird.my-domain.com.pem，netbird.my-domain.com.key
~/docker-netbird# tree certs
certs
├── netbird.my-domain.com.key
└── netbird.my-domain.com.pem
export NETBIRD_DOMAIN=netbird.my-domain.com

bash getting-started-with-zitadel-xc.sh

按提示输入好端口号（请提前进行域名解释和及安全组端口放行：你自定义的端口号，比如我上图的TCP：8088,8443; UDP ports: 3478, 49152-65535）

getting-started-with-zitadel-xc-prompt.sh.zip

目前证书需要手动维护，要是有大佬能改成自动获取及更新证书就更好了。

这个真的非常棒，ssl可以申请腾讯云各大云厂商为期一年的free证书

@MrChenhtlss commented on GitHub (Dec 19, 2023): > > [Netbird安装.md](https://github.com/netbirdio/netbird/files/13705518/Netbird.md) [getting-started-with-zitadel-xc.zip](https://github.com/netbirdio/netbird/files/13705521/getting-started-with-zitadel-xc.zip) @MrChenhtlss 这是我修改后的脚本和修改、安装说明。 @mlsmaycon Problem solved. I closed the problem. Thank you very much > > 真香！ > > 我迭代下，端口号改成交互输入，域名证书改成自动匹配。 ![image](https://private-user-images.githubusercontent.com/27892476/291463697-f9f85811-e8fc-4ab4-bcfc-8f60991d2dc1.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.FvFmyzDooULHVoECW0TQD5y1KVHKoeF-fIiAk5l5cnI) ![image](https://private-user-images.githubusercontent.com/27892476/291463804-289bc0f1-95e0-4a91-9637-d247e7b76cf3.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.15s4NfgJekdjPHkKFcqDfQSkzFVq3WLoLBe_fEd57lw) > > 操作步骤： > > 1. `mkdir certs` > 2. 在`certs`目录放好与域名一致的证书文件，如`netbird.my-domain.com.pem`，`netbird.my-domain.com.key` > > ``` > ~/docker-netbird# tree certs > certs > ├── netbird.my-domain.com.key > └── netbird.my-domain.com.pem > ``` > > 3. `export NETBIRD_DOMAIN=netbird.my-domain.com` > 4. `bash getting-started-with-zitadel-xc.sh` > 5. 按提示输入好端口号（请提前进行`域名解释`和及`安全组端口放行`：你自定义的端口号，比如我上图的TCP：`8088`,`8443`; UDP ports: `3478`, `49152-65535`） > > [getting-started-with-zitadel-xc-prompt.sh.zip](https://github.com/netbirdio/netbird/files/13710669/getting-started-with-zitadel-xc-prompt.sh.zip) > > 目前证书需要手动维护，要是有大佬能改成自动获取及更新证书就更好了。这个真的非常棒，ssl可以申请腾讯云各大云厂商为期一年的free证书

saavagebueno commented

@xcstatus commented on GitHub (Dec 20, 2023):

证书自动维护可以考虑下caddy的dns质询组件。https://caddy.community/t/how-to-use-dns-provider-modules-in-caddy-2/8148

@xcstatus commented on GitHub (Dec 20, 2023): 证书自动维护可以考虑下caddy的dns质询组件。https://caddy.community/t/how-to-use-dns-provider-modules-in-caddy-2/8148

saavagebueno commented

@jiangslee commented on GitHub (Dec 20, 2023):

官方的脚本默认就是caddy自动获取证书的，不过你改的手动证书方案更适合我 😋

@jiangslee commented on GitHub (Dec 20, 2023): 官方的脚本默认就是caddy自动获取证书的，不过你改的手动证书方案更适合我 :yum:

saavagebueno commented

@MrChenhtlss commented on GitHub (Dec 21, 2023):

Netbird安装.md getting-started-with-zitadel-xc.zip @MrChenhtlss 这是我修改后的脚本和修改、安装说明。 @mlsmaycon Problem solved. I closed the problem. Thank you very much

真香！

我迭代下，端口号改成交互输入，域名证书改成自动匹配。

操作步骤：

mkdir certs

在certs目录放好与域名一致的证书文件，如netbird.my-domain.com.pem，netbird.my-domain.com.key
~/docker-netbird# tree certs
certs
├── netbird.my-domain.com.key
└── netbird.my-domain.com.pem
export NETBIRD_DOMAIN=netbird.my-domain.com

bash getting-started-with-zitadel-xc.sh

按提示输入好端口号（请提前进行域名解释和及安全组端口放行：你自定义的端口号，比如我上图的TCP：8088,8443; UDP ports: 3478, 49152-65535）

getting-started-with-zitadel-xc-prompt.sh.zip

目前证书需要手动维护，要是有大佬能改成自动获取及更新证书就更好了。

据说“acme.sh” 基于acme可以自动续签SSL证书，但是由于我不是从事IT运维的能提供的参考非常有限，希望您可以参考下是否可行
It is said that "acme.sh" can automatically update acme-based SSL certificates. Since I have no ability to engage in IT operation and maintenance, the reference provided is very limited. I hope everyone can refer to it to see if it is feasible.

@MrChenhtlss commented on GitHub (Dec 21, 2023): > > [Netbird安装.md](https://github.com/netbirdio/netbird/files/13705518/Netbird.md) [getting-started-with-zitadel-xc.zip](https://github.com/netbirdio/netbird/files/13705521/getting-started-with-zitadel-xc.zip) @MrChenhtlss 这是我修改后的脚本和修改、安装说明。 @mlsmaycon Problem solved. I closed the problem. Thank you very much > > 真香！ > > 我迭代下，端口号改成交互输入，域名证书改成自动匹配。 ![image](https://private-user-images.githubusercontent.com/27892476/291463697-f9f85811-e8fc-4ab4-bcfc-8f60991d2dc1.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.ub_1SStsqeCoY0lvyLkNCfj0moKdeRiJnqaUL9a6JA4) ![image](https://private-user-images.githubusercontent.com/27892476/291463804-289bc0f1-95e0-4a91-9637-d247e7b76cf3.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.ZouuDvOkI_rGJA8qZz9JPfd7JV7UP7aaCElhMW-eA9E) > > 操作步骤： > > 1. `mkdir certs` > 2. 在`certs`目录放好与域名一致的证书文件，如`netbird.my-domain.com.pem`，`netbird.my-domain.com.key` > > ``` > ~/docker-netbird# tree certs > certs > ├── netbird.my-domain.com.key > └── netbird.my-domain.com.pem > ``` > > 3. `export NETBIRD_DOMAIN=netbird.my-domain.com` > 4. `bash getting-started-with-zitadel-xc.sh` > 5. 按提示输入好端口号（请提前进行`域名解释`和及`安全组端口放行`：你自定义的端口号，比如我上图的TCP：`8088`,`8443`; UDP ports: `3478`, `49152-65535`） > > [getting-started-with-zitadel-xc-prompt.sh.zip](https://github.com/netbirdio/netbird/files/13710669/getting-started-with-zitadel-xc-prompt.sh.zip) > > 目前证书需要手动维护，要是有大佬能改成自动获取及更新证书就更好了。据说“acme.sh” 基于acme可以自动续签SSL证书，但是由于我不是从事IT运维的能提供的参考非常有限，希望您可以参考下是否可行 It is said that "acme.sh" can automatically update acme-based SSL certificates. Since I have no ability to engage in IT operation and maintenance, the reference provided is very limited. I hope everyone can refer to it to see if it is feasible.

saavagebueno commented

@MrChenhtlss commented on GitHub (Dec 21, 2023):

Netbird安装.md getting-started-with-zitadel-xc.zip @MrChenhtlss 这是我修改后的脚本和修改、安装说明。 @mlsmaycon Problem solved. I closed the problem. Thank you very much

真香！

我迭代下，端口号改成交互输入，域名证书改成自动匹配。

操作步骤：

mkdir certs

在certs目录放好与域名一致的证书文件，如netbird.my-domain.com.pem，netbird.my-domain.com.key
~/docker-netbird# tree certs
certs
├── netbird.my-domain.com.key
└── netbird.my-domain.com.pem
export NETBIRD_DOMAIN=netbird.my-domain.com

bash getting-started-with-zitadel-xc.sh

按提示输入好端口号（请提前进行域名解释和及安全组端口放行：你自定义的端口号，比如我上图的TCP：8088,8443; UDP ports: 3478, 49152-65535）

getting-started-with-zitadel-xc-prompt.sh.zip

目前证书需要手动维护，要是有大佬能改成自动获取及更新证书就更好了。

请问是否将8080端口写入到脚本可以支持交互式输入，因为我的8080端口已经被其他进程占用，可以的话那就太棒了！！！！

@MrChenhtlss commented on GitHub (Dec 21, 2023): > > [Netbird安装.md](https://github.com/netbirdio/netbird/files/13705518/Netbird.md) [getting-started-with-zitadel-xc.zip](https://github.com/netbirdio/netbird/files/13705521/getting-started-with-zitadel-xc.zip) @MrChenhtlss 这是我修改后的脚本和修改、安装说明。 @mlsmaycon Problem solved. I closed the problem. Thank you very much > > 真香！ > > 我迭代下，端口号改成交互输入，域名证书改成自动匹配。 ![image](https://private-user-images.githubusercontent.com/27892476/291463697-f9f85811-e8fc-4ab4-bcfc-8f60991d2dc1.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmF3LmdpdGh1YnVzZXJjb250ZW50LmNvbSIsImtleSI6ImtleTEiLCJleHAiOjE3MDMxNDIyNDMsIm5iZiI6MTcwMzE0MTk0MywicGF0aCI6Ii8yNzg5MjQ3Ni8yOTE0NjM2OTctZjlmODU4MTEtZThmYy00YWI0LWJjZmMtOGY2MDk5MWQyZGMxLnBuZz9YLUFtei1BbGdvcml0aG09QVdTNC1ITUFDLVNIQTI1NiZYLUFtei1DcmVkZW50aWFsPUFLSUFJV05KWUFYNENTVkVINTNBJTJGMjAyMzEyMjElMkZ1cy1lYXN0LTElMkZzMyUyRmF3czRfcmVxdWVzdCZYLUFtei1EYXRlPTIwMjMxMjIxVDA2NTkwM1omWC1BbXotRXhwaXJlcz0zMDAmWC1BbXotU2lnbmF0dXJlPTYwNTEzYzJiZDVkYjM2OGFhZjQ4ZmQ2YzUwNzVlZDYxNzY0ZmU5MzA4YmQzY2U0YjI2OGVkYzY2Y2QzM2NhZjAmWC1BbXotU2lnbmVkSGVhZGVycz1ob3N0JmFjdG9yX2lkPTAma2V5X2lkPTAmcmVwb19pZD0wIn0.ub_1SStsqeCoY0lvyLkNCfj0moKdeRiJnqaUL9a6JA4) ![image](https://private-user-images.githubusercontent.com/27892476/291463804-289bc0f1-95e0-4a91-9637-d247e7b76cf3.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmF3LmdpdGh1YnVzZXJjb250ZW50LmNvbSIsImtleSI6ImtleTEiLCJleHAiOjE3MDMxNDIyNDMsIm5iZiI6MTcwMzE0MTk0MywicGF0aCI6Ii8yNzg5MjQ3Ni8yOTE0NjM4MDQtMjg5YmMwZjEtOTVlMC00YTkxLTk2MzctZDI0N2U3Yjc2Y2YzLnBuZz9YLUFtei1BbGdvcml0aG09QVdTNC1ITUFDLVNIQTI1NiZYLUFtei1DcmVkZW50aWFsPUFLSUFJV05KWUFYNENTVkVINTNBJTJGMjAyMzEyMjElMkZ1cy1lYXN0LTElMkZzMyUyRmF3czRfcmVxdWVzdCZYLUFtei1EYXRlPTIwMjMxMjIxVDA2NTkwM1omWC1BbXotRXhwaXJlcz0zMDAmWC1BbXotU2lnbmF0dXJlPWUxYWI3YTU2MGE5ZTMxMDBjMjA4OTA4ZGEwZWIzZDgwOTQ0NWYyZjY3YWU2NmNkMDhiYjQ3ZDIzNzZlOTY2MDcmWC1BbXotU2lnbmVkSGVhZGVycz1ob3N0JmFjdG9yX2lkPTAma2V5X2lkPTAmcmVwb19pZD0wIn0.ZouuDvOkI_rGJA8qZz9JPfd7JV7UP7aaCElhMW-eA9E) > > 操作步骤： > > 1. `mkdir certs` > 2. 在`certs`目录放好与域名一致的证书文件，如`netbird.my-domain.com.pem`，`netbird.my-domain.com.key` > > ``` > ~/docker-netbird# tree certs > certs > ├── netbird.my-domain.com.key > └── netbird.my-domain.com.pem > ``` > > 3. `export NETBIRD_DOMAIN=netbird.my-domain.com` > 4. `bash getting-started-with-zitadel-xc.sh` > 5. 按提示输入好端口号（请提前进行`域名解释`和及`安全组端口放行`：你自定义的端口号，比如我上图的TCP：`8088`,`8443`; UDP ports: `3478`, `49152-65535`） > > [getting-started-with-zitadel-xc-prompt.sh.zip](https://github.com/netbirdio/netbird/files/13710669/getting-started-with-zitadel-xc-prompt.sh.zip) > > 目前证书需要手动维护，要是有大佬能改成自动获取及更新证书就更好了。请问是否将8080端口写入到脚本可以支持交互式输入，因为我的8080端口已经被其他进程占用，可以的话那就太棒了！！！！

saavagebueno commented

@jiangslee commented on GitHub (Dec 21, 2023):

Netbird安装.md getting-started-with-zitadel-xc.zip @MrChenhtlss 这是我修改后的脚本和修改、安装说明。 @mlsmaycon Problem solved. I closed the problem. Thank you very much

真香！
我迭代下，端口号改成交互输入，域名证书改成自动匹配。
操作步骤：

mkdir certs

在certs目录放好与域名一致的证书文件，如netbird.my-domain.com.pem，netbird.my-domain.com.key
~/docker-netbird# tree certs
certs
├── netbird.my-domain.com.key
└── netbird.my-domain.com.pem
export NETBIRD_DOMAIN=netbird.my-domain.com

bash getting-started-with-zitadel-xc.sh

按提示输入好端口号（请提前进行域名解释和及安全组端口放行：你自定义的端口号，比如我上图的TCP：8088,8443; UDP ports: 3478, 49152-65535）

getting-started-with-zitadel-xc-prompt.sh.zip
目前证书需要手动维护，要是有大佬能改成自动获取及更新证书就更好了。
请问是否将8080端口写入到脚本可以支持交互式输入，因为我的8080端口已经被其他进程占用，可以的话那就太棒了！！！！

好像那个8080没有实际用途，等会给你改一个交互输入修改8080的脚本

@jiangslee commented on GitHub (Dec 21, 2023): > > > [Netbird安装.md](https://github.com/netbirdio/netbird/files/13705518/Netbird.md) [getting-started-with-zitadel-xc.zip](https://github.com/netbirdio/netbird/files/13705521/getting-started-with-zitadel-xc.zip) @MrChenhtlss 这是我修改后的脚本和修改、安装说明。 @mlsmaycon Problem solved. I closed the problem. Thank you very much > > > > > > 真香！ > > 我迭代下，端口号改成交互输入，域名证书改成自动匹配。 ![image](https://private-user-images.githubusercontent.com/27892476/291463697-f9f85811-e8fc-4ab4-bcfc-8f60991d2dc1.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.ub_1SStsqeCoY0lvyLkNCfj0moKdeRiJnqaUL9a6JA4) ![image](https://private-user-images.githubusercontent.com/27892476/291463804-289bc0f1-95e0-4a91-9637-d247e7b76cf3.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.ZouuDvOkI_rGJA8qZz9JPfd7JV7UP7aaCElhMW-eA9E) > > 操作步骤： > > > > 1. `mkdir certs` > > 2. 在`certs`目录放好与域名一致的证书文件，如`netbird.my-domain.com.pem`，`netbird.my-domain.com.key` > > > > ``` > > ~/docker-netbird# tree certs > > certs > > ├── netbird.my-domain.com.key > > └── netbird.my-domain.com.pem > > ``` > > > > > > > > > > > > > > > > > > > > > > > > > > 3. `export NETBIRD_DOMAIN=netbird.my-domain.com` > > 4. `bash getting-started-with-zitadel-xc.sh` > > 5. 按提示输入好端口号（请提前进行`域名解释`和及`安全组端口放行`：你自定义的端口号，比如我上图的TCP：`8088`,`8443`; UDP ports: `3478`, `49152-65535`） > > > > [getting-started-with-zitadel-xc-prompt.sh.zip](https://github.com/netbirdio/netbird/files/13710669/getting-started-with-zitadel-xc-prompt.sh.zip) > > 目前证书需要手动维护，要是有大佬能改成自动获取及更新证书就更好了。 > > 请问是否将8080端口写入到脚本可以支持交互式输入，因为我的8080端口已经被其他进程占用，可以的话那就太棒了！！！！好像那个8080没有实际用途，等会给你改一个交互输入修改8080的脚本

saavagebueno commented

getting-started-with-zitadel-xc.sh.zip

@jiangslee commented on GitHub (Dec 21, 2023):

Netbird安装.md getting-started-with-zitadel-xc.zip @MrChenhtlss 这是我修改后的脚本和修改、安装说明。 @mlsmaycon Problem solved. I closed the problem. Thank you very much

真香！
我迭代下，端口号改成交互输入，域名证书改成自动匹配。
操作步骤：

mkdir certs

在certs目录放好与域名一致的证书文件，如netbird.my-domain.com.pem，netbird.my-domain.com.key
~/docker-netbird# tree certs
certs
├── netbird.my-domain.com.key
└── netbird.my-domain.com.pem
export NETBIRD_DOMAIN=netbird.my-domain.com

bash getting-started-with-zitadel-xc.sh

按提示输入好端口号（请提前进行域名解释和及安全组端口放行：你自定义的端口号，比如我上图的TCP：8088,8443; UDP ports: 3478, 49152-65535）

getting-started-with-zitadel-xc-prompt.sh.zip
目前证书需要手动维护，要是有大佬能改成自动获取及更新证书就更好了。
请问是否将8080端口写入到脚本可以支持交互式输入，因为我的8080端口已经被其他进程占用，可以的话那就太棒了！！！！

@MrChenhtlss 你试试看。

@jiangslee commented on GitHub (Dec 21, 2023): > > > [Netbird安装.md](https://github.com/netbirdio/netbird/files/13705518/Netbird.md) [getting-started-with-zitadel-xc.zip](https://github.com/netbirdio/netbird/files/13705521/getting-started-with-zitadel-xc.zip) @MrChenhtlss 这是我修改后的脚本和修改、安装说明。 @mlsmaycon Problem solved. I closed the problem. Thank you very much > > > > > > 真香！ > > 我迭代下，端口号改成交互输入，域名证书改成自动匹配。 ![image](https://private-user-images.githubusercontent.com/27892476/291463697-f9f85811-e8fc-4ab4-bcfc-8f60991d2dc1.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmF3LmdpdGh1YnVzZXJjb250ZW50LmNvbSIsImtleSI6ImtleTEiLCJleHAiOjE3MDMxNDIyNDMsIm5iZiI6MTcwMzE0MTk0MywicGF0aCI6Ii8yNzg5MjQ3Ni8yOTE0NjM2OTctZjlmODU4MTEtZThmYy00YWI0LWJjZmMtOGY2MDk5MWQyZGMxLnBuZz9YLUFtei1BbGdvcml0aG09QVdTNC1ITUFDLVNIQTI1NiZYLUFtei1DcmVkZW50aWFsPUFLSUFJV05KWUFYNENTVkVINTNBJTJGMjAyMzEyMjElMkZ1cy1lYXN0LTElMkZzMyUyRmF3czRfcmVxdWVzdCZYLUFtei1EYXRlPTIwMjMxMjIxVDA2NTkwM1omWC1BbXotRXhwaXJlcz0zMDAmWC1BbXotU2lnbmF0dXJlPTYwNTEzYzJiZDVkYjM2OGFhZjQ4ZmQ2YzUwNzVlZDYxNzY0ZmU5MzA4YmQzY2U0YjI2OGVkYzY2Y2QzM2NhZjAmWC1BbXotU2lnbmVkSGVhZGVycz1ob3N0JmFjdG9yX2lkPTAma2V5X2lkPTAmcmVwb19pZD0wIn0.ub_1SStsqeCoY0lvyLkNCfj0moKdeRiJnqaUL9a6JA4) ![image](https://private-user-images.githubusercontent.com/27892476/291463804-289bc0f1-95e0-4a91-9637-d247e7b76cf3.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.ZouuDvOkI_rGJA8qZz9JPfd7JV7UP7aaCElhMW-eA9E) > > 操作步骤： > > > > 1. `mkdir certs` > > 2. 在`certs`目录放好与域名一致的证书文件，如`netbird.my-domain.com.pem`，`netbird.my-domain.com.key` > > > > ``` > > ~/docker-netbird# tree certs > > certs > > ├── netbird.my-domain.com.key > > └── netbird.my-domain.com.pem > > ``` > > > > > > > > > > > > > > > > > > > > > > > > > > 3. `export NETBIRD_DOMAIN=netbird.my-domain.com` > > 4. `bash getting-started-with-zitadel-xc.sh` > > 5. 按提示输入好端口号（请提前进行`域名解释`和及`安全组端口放行`：你自定义的端口号，比如我上图的TCP：`8088`,`8443`; UDP ports: `3478`, `49152-65535`） > > > > [getting-started-with-zitadel-xc-prompt.sh.zip](https://github.com/netbirdio/netbird/files/13710669/getting-started-with-zitadel-xc-prompt.sh.zip) > > 目前证书需要手动维护，要是有大佬能改成自动获取及更新证书就更好了。 > > 请问是否将8080端口写入到脚本可以支持交互式输入，因为我的8080端口已经被其他进程占用，可以的话那就太棒了！！！！ ![image](https://github.com/netbirdio/netbird/assets/27892476/e04c20eb-eefd-4e15-86ab-2c08de7c20e5) [getting-started-with-zitadel-xc.sh.zip](https://github.com/netbirdio/netbird/files/13739745/getting-started-with-zitadel-xc.sh.zip) @MrChenhtlss 你试试看。

saavagebueno commented

@MrChenhtlss commented on GitHub (Dec 21, 2023):

Netbird安装.md getting-started-with-zitadel-xc.zip @MrChenhtlss 这是我修改后的脚本和修改、安装说明。 @mlsmaycon Problem solved. I closed the problem. Thank you very much

真香！
我迭代下，端口号改成交互输入，域名证书改成自动匹配。
操作步骤：

mkdir certs

在certs目录放好与域名一致的证书文件，如netbird.my-domain.com.pem，netbird.my-domain.com.key
~/docker-netbird# tree certs
certs
├── netbird.my-domain.com.key
└── netbird.my-domain.com.pem
export NETBIRD_DOMAIN=netbird.my-domain.com

bash getting-started-with-zitadel-xc.sh

按提示输入好端口号（请提前进行域名解释和及安全组端口放行：你自定义的端口号，比如我上图的TCP：8088,8443; UDP ports: 3478, 49152-65535）

getting-started-with-zitadel-xc-prompt.sh.zip
目前证书需要手动维护，要是有大佬能改成自动获取及更新证书就更好了。
请问是否将8080端口写入到脚本可以支持交互式输入，因为我的8080端口已经被其他进程占用，可以的话那就太棒了！！！！
getting-started-with-zitadel-xc.sh.zip

@MrChenhtlss 你试试看。

我的老天爷爱死你了！！！

@MrChenhtlss commented on GitHub (Dec 21, 2023): > > > > [Netbird安装.md](https://github.com/netbirdio/netbird/files/13705518/Netbird.md) [getting-started-with-zitadel-xc.zip](https://github.com/netbirdio/netbird/files/13705521/getting-started-with-zitadel-xc.zip) @MrChenhtlss 这是我修改后的脚本和修改、安装说明。 @mlsmaycon Problem solved. I closed the problem. Thank you very much > > > > > > > > > 真香！ > > > 我迭代下，端口号改成交互输入，域名证书改成自动匹配。 ![image](https://private-user-images.githubusercontent.com/27892476/291463697-f9f85811-e8fc-4ab4-bcfc-8f60991d2dc1.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.ub_1SStsqeCoY0lvyLkNCfj0moKdeRiJnqaUL9a6JA4) ![image](https://private-user-images.githubusercontent.com/27892476/291463804-289bc0f1-95e0-4a91-9637-d247e7b76cf3.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmF3LmdpdGh1YnVzZXJjb250ZW50LmNvbSIsImtleSI6ImtleTEiLCJleHAiOjE3MDMxNDIyNDMsIm5iZiI6MTcwMzE0MTk0MywicGF0aCI6Ii8yNzg5MjQ3Ni8yOTE0NjM4MDQtMjg5YmMwZjEtOTVlMC00YTkxLTk2MzctZDI0N2U3Yjc2Y2YzLnBuZz9YLUFtei1BbGdvcml0aG09QVdTNC1ITUFDLVNIQTI1NiZYLUFtei1DcmVkZW50aWFsPUFLSUFJV05KWUFYNENTVkVINTNBJTJGMjAyMzEyMjElMkZ1cy1lYXN0LTElMkZzMyUyRmF3czRfcmVxdWVzdCZYLUFtei1EYXRlPTIwMjMxMjIxVDA2NTkwM1omWC1BbXotRXhwaXJlcz0zMDAmWC1BbXotU2lnbmF0dXJlPWUxYWI3YTU2MGE5ZTMxMDBjMjA4OTA4ZGEwZWIzZDgwOTQ0NWYyZjY3YWU2NmNkMDhiYjQ3ZDIzNzZlOTY2MDcmWC1BbXotU2lnbmVkSGVhZGVycz1ob3N0JmFjdG9yX2lkPTAma2V5X2lkPTAmcmVwb19pZD0wIn0.ZouuDvOkI_rGJA8qZz9JPfd7JV7UP7aaCElhMW-eA9E) > > > 操作步骤： > > > > > > 1. `mkdir certs` > > > 2. 在`certs`目录放好与域名一致的证书文件，如`netbird.my-domain.com.pem`，`netbird.my-domain.com.key` > > > > > > ``` > > > ~/docker-netbird# tree certs > > > certs > > > ├── netbird.my-domain.com.key > > > └── netbird.my-domain.com.pem > > > ``` > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > 3. `export NETBIRD_DOMAIN=netbird.my-domain.com` > > > 4. `bash getting-started-with-zitadel-xc.sh` > > > 5. 按提示输入好端口号（请提前进行`域名解释`和及`安全组端口放行`：你自定义的端口号，比如我上图的TCP：`8088`,`8443`; UDP ports: `3478`, `49152-65535`） > > > > > > [getting-started-with-zitadel-xc-prompt.sh.zip](https://github.com/netbirdio/netbird/files/13710669/getting-started-with-zitadel-xc-prompt.sh.zip) > > > 目前证书需要手动维护，要是有大佬能改成自动获取及更新证书就更好了。 > > > > > > 请问是否将8080端口写入到脚本可以支持交互式输入，因为我的8080端口已经被其他进程占用，可以的话那就太棒了！！！！ > > ![image](https://private-user-images.githubusercontent.com/27892476/292159775-e04c20eb-eefd-4e15-86ab-2c08de7c20e5.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.lG-u21m1W4uSIdARJA4iGEIjK_jsDs4A5kS6Bmz09mo) > > [getting-started-with-zitadel-xc.sh.zip](https://github.com/netbirdio/netbird/files/13739745/getting-started-with-zitadel-xc.sh.zip) > > @MrChenhtlss 你试试看。我的老天爷爱死你了！！！

saavagebueno commented

@jiangslee commented on GitHub (Dec 21, 2023):

Netbird安装.md getting-started-with-zitadel-xc.zip @MrChenhtlss 这是我修改后的脚本和修改、安装说明。 @mlsmaycon Problem solved. I closed the problem. Thank you very much

真香！
我迭代下，端口号改成交互输入，域名证书改成自动匹配。
操作步骤：

mkdir certs

在certs目录放好与域名一致的证书文件，如netbird.my-domain.com.pem，netbird.my-domain.com.key
~/docker-netbird# tree certs
certs
├── netbird.my-domain.com.key
└── netbird.my-domain.com.pem
export NETBIRD_DOMAIN=netbird.my-domain.com

bash getting-started-with-zitadel-xc.sh

按提示输入好端口号（请提前进行域名解释和及安全组端口放行：你自定义的端口号，比如我上图的TCP：8088,8443; UDP ports: 3478, 49152-65535）

getting-started-with-zitadel-xc-prompt.sh.zip
目前证书需要手动维护，要是有大佬能改成自动获取及更新证书就更好了。
请问是否将8080端口写入到脚本可以支持交互式输入，因为我的8080端口��经被其他进程占用，可以的话那就太棒了！！！！
getting-started-with-zitadel-xc.sh.zip
@MrChenhtlss 你试试看。
我的老天爷爱死你了！！！

前面脚本有问题，稍等1分钟

@jiangslee commented on GitHub (Dec 21, 2023): > > > > > [Netbird安装.md](https://github.com/netbirdio/netbird/files/13705518/Netbird.md) [getting-started-with-zitadel-xc.zip](https://github.com/netbirdio/netbird/files/13705521/getting-started-with-zitadel-xc.zip) @MrChenhtlss 这是我修改后的脚本和修改、安装说明。 @mlsmaycon Problem solved. I closed the problem. Thank you very much > > > > > > > > > > > > 真香！ > > > > 我迭代下，端口号改成交互输入，域名证书改成自动匹配。 ![image](https://private-user-images.githubusercontent.com/27892476/291463697-f9f85811-e8fc-4ab4-bcfc-8f60991d2dc1.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.ub_1SStsqeCoY0lvyLkNCfj0moKdeRiJnqaUL9a6JA4) ![image](https://private-user-images.githubusercontent.com/27892476/291463804-289bc0f1-95e0-4a91-9637-d247e7b76cf3.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.ZouuDvOkI_rGJA8qZz9JPfd7JV7UP7aaCElhMW-eA9E) > > > > 操作步骤： > > > > > > > > 1. `mkdir certs` > > > > 2. 在`certs`目录放好与域名一致的证书文件，如`netbird.my-domain.com.pem`，`netbird.my-domain.com.key` > > > > > > > > ``` > > > > ~/docker-netbird# tree certs > > > > certs > > > > ├── netbird.my-domain.com.key > > > > └── netbird.my-domain.com.pem > > > > ``` > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > > 3. `export NETBIRD_DOMAIN=netbird.my-domain.com` > > > > 4. `bash getting-started-with-zitadel-xc.sh` > > > > 5. 按提示输入好端口号（请提前进行`域名解释`和及`安全组端口放行`：你自定义的端口号，比如我上图的TCP：`8088`,`8443`; UDP ports: `3478`, `49152-65535`） > > > > > > > > [getting-started-with-zitadel-xc-prompt.sh.zip](https://github.com/netbirdio/netbird/files/13710669/getting-started-with-zitadel-xc-prompt.sh.zip) > > > > 目前证书需要手动维护，要是有大佬能改成自动获取及更新证书就更好了。 > > > > > > > > > 请问是否将8080端口写入到脚本可以支持交互式输入，因为我的8080端口��经被其他进程占用，可以的话那就太棒了！！！！ > > > > > > ![image](https://private-user-images.githubusercontent.com/27892476/292159775-e04c20eb-eefd-4e15-86ab-2c08de7c20e5.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.lG-u21m1W4uSIdARJA4iGEIjK_jsDs4A5kS6Bmz09mo) > > [getting-started-with-zitadel-xc.sh.zip](https://github.com/netbirdio/netbird/files/13739745/getting-started-with-zitadel-xc.sh.zip) > > @MrChenhtlss 你试试看。 > > 我的老天爷爱死你了！！！前面脚本有问题，稍等1分钟

saavagebueno commented

getting-started-with-zitadel-xc.sh.zip

@jiangslee commented on GitHub (Dec 21, 2023):

可以跑了

@jiangslee commented on GitHub (Dec 21, 2023): ![image](https://github.com/netbirdio/netbird/assets/27892476/44f026a0-9121-4bca-90c4-22d6ca68313b) [getting-started-with-zitadel-xc.sh.zip](https://github.com/netbirdio/netbird/files/13739761/getting-started-with-zitadel-xc.sh.zip) 可以跑了

saavagebueno commented

@MrChenhtlss commented on GitHub (Dec 21, 2023):

getting-started-with-zitadel-xc.sh.zip

可以跑了

完美！！！
Perfect！！！

@MrChenhtlss commented on GitHub (Dec 21, 2023): > ![image](https://private-user-images.githubusercontent.com/27892476/292161347-44f026a0-9121-4bca-90c4-22d6ca68313b.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.BzM7xoE7O_ZAZBj1IqJ9lgB0pGwL1D_EYT_LopCtEyI) > > [getting-started-with-zitadel-xc.sh.zip](https://github.com/netbirdio/netbird/files/13739761/getting-started-with-zitadel-xc.sh.zip) > > 可以跑了 ![image](https://github.com/netbirdio/netbird/assets/146620104/1e1c2bad-1e8f-410a-b0c1-e7bf2643f373) 完美！！！ Perfect！！！

saavagebueno commented

@xcstatus commented on GitHub (Dec 21, 2023):

现在阿里云提供的免费证书，有效期已经改为90天，不知道其他的云服务厂商是否会跟进这项改动。90天的有效期下，手动去维护证书过于繁琐。
caddy签发证书的验证ACME challenges共有三种方式，当前使用的是第二种方式TLS-ALPN challenge，它必须使用443端口. 第一种方式必须使用80端口。而第三种方式就没有端口的要求。而且第三种方式dns质询，我们其实是经常使用，云服务商中申请免费证书使用的就是这种方式

caddy修改为第三种方式也是很便捷的，只需要修改一下caddy的镜像即可。当前dockerhub中带有dns质询的caddy镜像都太老了，不太想去使用，需要重新构建一个.

修改的步骤分为以下
1.根据你域名解析所使用的服务商选择对应的dns质询插件去构建一个docker镜像
2.替换脚本中的caddy镜像
3.到云服务商申请api调用token
4.在启动脚本中增加dns质询配置

这样就可以使用caddy来自动签发、迭代域名证书了

@xcstatus commented on GitHub (Dec 21, 2023): 现在阿里云提供的免费证书，有效期已经改为90天，不知道其他的云服务厂商是否会跟进这项改动。90天的有效期下，手动去维护证书过于繁琐。 caddy签发证书的验证ACME challenges共有三种方式，当前使用的是第二种方式TLS-ALPN challenge，它必须使用443端口. 第一种方式必须使用80端口。而第三种方式就没有端口的要求。而且第三种方式dns质询，我们其实是经常使用，云服务商中申请免费证书使用的就是这种方式 caddy修改为第三种方式也是很便捷的，只需要修改一下caddy的镜像即可。当前dockerhub中带有dns质询的caddy镜像都太老了，不太想去使用，需要重新构建一个. 修改的步骤分为以下 1.根据你域名解析所使用的服务商选择对应的dns质询插件去构建一个docker镜像 2.替换脚本中的caddy镜像 3.到云服务商申请api调用token 4.在启动脚本中增加dns质询配置这样就可以使用caddy来自动签发、迭代域名证书了

saavagebueno commented

@MrChenhtlss commented on GitHub (Dec 21, 2023):

现在阿里云提供的免费证书，有效期已经改为90天，不知道其他的云服务厂商是否会跟进这项改动。90天的有效期下，手动去维护证书过于繁琐。 caddy签发证书的验证ACME challenges共有三种方式，当前使用的是第二种方式TLS-ALPN challenge，它必须使用443端口. 第一种方式必须使用80端口。而第三种方式就没有端口的要求。而且第三种方式dns质询，我们其实是经常使用，云服务商中申请免费证书使用的就是这种方式

caddy修改为第三种方式也是很便捷的，只需要修改一下caddy的镜像即可。当前dockerhub中带有dns质询的caddy镜像都太老了，不太想去使用，需要重新构建一个.

修改的步骤分为以下 1.根据你域名解析所使用的服务商选择对应的dns质询插件去构建一个docker镜像 2.替换脚本中的caddy镜像 3.到云服务商申请api调用token 4.在启动脚本中增加dns质询配置

这样就可以使用caddy来自动签发、迭代域名证书了

在没有更好的解决方法前，我决定使用手动更新证书，您可以尝试腾讯云free证书有效期为一年,需要注意的是谨防滥用，阿里云先前有效期同为一年不知道因何故变成三个月这可能和滥用有关

@MrChenhtlss commented on GitHub (Dec 21, 2023): > 现在阿里云提供的免费证书，有效期已经改为90天，不知道其他的云服务厂商是否会跟进这项改动。90天的有效期下，手动去维护证书过于繁琐。 caddy签发证书的验证ACME challenges共有三种方式，当前使用的是第二种方式TLS-ALPN challenge，它必须使用443端口. 第一种方式必须使用80端口。而第三种方式就没有端口的要求。而且第三种方式dns质询，我们其实是经常使用，云服务商中申请免费证书使用的就是这种方式 > > caddy修改为第三种方式也是很便捷的，只需要修改一下caddy的镜像即可。当前dockerhub中带有dns质询的caddy镜像都太老了，不太想去使用，需要重新构建一个. > > 修改的步骤分为以下 1.根据你域名解析所使用的服务商选择对应的dns质询插件去构建一个docker镜像 2.替换脚本中的caddy镜像 3.到云服务商申请api调用token 4.在启动脚本中增加dns质询配置 > > 这样就可以使用caddy来自动签发、迭代域名证书了在没有更好的解决方法前，我决定使用手动更新证书，您可以尝试腾讯云free证书有效期为一年,需要注意的是谨防滥用，阿里云先前有效期同为一年不知道因何故变成三个月这可能和滥用有关 ![image](https://github.com/netbirdio/netbird/assets/146620104/50f456d7-e409-4694-a1d5-c3244906cb85)

saavagebueno commented

@xcstatus commented on GitHub (Dec 21, 2023):

阿里云发布的公告是证书厂商做的变更，所以大概率其余云服务商也会变更有效期。

@xcstatus commented on GitHub (Dec 21, 2023): 阿里云发布的公告是证书厂商做的变更，所以大概率其余云服务商也会变更有效期。

saavagebueno commented

@MrChenhtlss commented on GitHub (Dec 21, 2023):

阿里云发布的公告是证书厂商做的变更，所以大概率其余云服务商也会变更有效期。

其他厂商跟着实行的话那真的非常遗憾，到时应该会有其他的处理方法！！！

@MrChenhtlss commented on GitHub (Dec 21, 2023): > 阿里云发布的公告是证书厂商做的变更，所以大概率其余云服务商也会变更有效期。其他厂商跟着实行的话那真的非常遗憾，到时应该会有其他的处理方法！！！

saavagebueno commented

@xcstatus commented on GitHub (Dec 21, 2023):

@jiangslee 请问有兴趣做下dns质询的适配吗？我对运维相关技术了解的不太多，看一些镜像构建脚本比较头疼。

@xcstatus commented on GitHub (Dec 21, 2023): @jiangslee 请问有兴趣做下dns质询的适配吗？我对运维相关技术了解的不太多，看一些镜像构建脚本比较头疼。

saavagebueno commented

@jiangslee commented on GitHub (Dec 22, 2023):

现在阿里云提供的免费证书，有效期已经改为90天，不知道其他的云服务厂商是否会跟进这项改动。90天的有效期下，手动去维护证书过于繁琐。 caddy签发证书的验证ACME challenges共有三种方式，当前使用的是第二种方式TLS-ALPN challenge，它必须使用443端口. 第一种方式必须使用80端口。而第三种方式就没有端口的要求。而且第三种方式dns质询，我们其实是经常使用，云服务商中申请免费证书使用的就是这种方式

caddy修改为第三种方式也是很便捷的，只需要修改一下caddy的镜像即可。当前dockerhub中带有dns质询的caddy镜像都太老了，不太想去使用，需要重新构建一个.

修改的步骤分为以下 1.根据你域名解析所使用的服务商选择对应的dns质询插件去构建一个docker镜像 2.替换脚本中的caddy镜像 3.到云服务商申请api调用token 4.在启动脚本中增加dns质询配置

这样就可以使用caddy来自动签发、迭代域名证书了

DNS质询是不是要配置云厂商的ak/sk？

@jiangslee commented on GitHub (Dec 22, 2023): > 现在阿里云提供的免费证书，有效期已经改为90天，不知道其他的云服务厂商是否会跟进这项改动。90天的有效期下，手动去维护证书过于繁琐。 caddy签发证书的验证ACME challenges共有三种方式，当前使用的是第二种方式TLS-ALPN challenge，它必须使用443端口. 第一种方式必须使用80端口。而第三种方式就没有端口的要求。而且第三种方式dns质询，我们其实是经常使用，云服务商中申请免费证书使用的就是这种方式 > > caddy修改为第三种方式也是很便捷的，只需要修改一下caddy的镜像即可。当前dockerhub中带有dns质询的caddy镜像都太老了，不太想去使用，需要重新构建一个. > > 修改的步骤分为以下 1.根据你域名解析所使用的服务商选择对应的dns质询插件去构建一个docker镜像 2.替换脚本中的caddy镜像 3.到云服务商申请api调用token 4.在启动脚本中增加dns质询配置 > > 这样就可以使用caddy来自动签发、迭代域名证书了 DNS质询是不是要配置云厂商的ak/sk？

saavagebueno commented

http://www.taodudu.cc/news/show-4300117.html
https://blog.51cto.com/u_11908275/6953390

@jiangslee commented on GitHub (Dec 22, 2023):

貌似用定时任务能解决证书问题

@jiangslee commented on GitHub (Dec 22, 2023): ![image](https://github.com/netbirdio/netbird/assets/27892476/801bee25-fe3d-42ea-9187-995975689b58) http://www.taodudu.cc/news/show-4300117.html https://blog.51cto.com/u_11908275/6953390 貌似用定时任务能解决证书问题

saavagebueno commented

@xcstatus commented on GitHub (Dec 22, 2023):

在构建caddy镜像时引入对应厂商的插件即可
可以参考https://github.com/fjc0k/docker-caddy-dnspod

腾讯 DnsPod 插件
https://github.com/caddy-dns/dnspod

@xcstatus commented on GitHub (Dec 22, 2023): 在构建caddy镜像时引入对应厂商的插件即可可以参考https://github.com/fjc0k/docker-caddy-dnspod 腾讯 DnsPod 插件 https://github.com/caddy-dns/dnspod

saavagebueno commented

@MrChenhtlss commented on GitHub (Dec 23, 2023):

如果可以将caddy替换为nginx证书问题就迎刃而解
xcstatus @.***>于2023年12月22日周五18:06写道：

在构建caddy镜像时引入对应厂商的插件即可
可以参考https://github.com/fjc0k/docker-caddy-dnspod

腾讯 DnsPod 插件
https://github.com/caddy-dns/dnspod

—
Reply to this email directly, view it on GitHub
https://github.com/netbirdio/netbird/issues/1267#issuecomment-1867491839,
or unsubscribe
https://github.com/notifications/unsubscribe-auth/BC6T5SG3VKRDX52K5IFNVZLYKVLRRAVCNFSM6AAAAAA6VQ3QOSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQNRXGQ4TCOBTHE
.
You are receiving this because you were mentioned.Message ID:
@.***>

@MrChenhtlss commented on GitHub (Dec 23, 2023): 如果可以将caddy替换为nginx证书问题就迎刃而解 xcstatus ***@***.***>于2023年12月22日周五18:06写道： > 在构建caddy镜像时引入对应厂商的插件即可 > 可以参考https://github.com/fjc0k/docker-caddy-dnspod > > 腾讯 DnsPod 插件 > https://github.com/caddy-dns/dnspod > > — > Reply to this email directly, view it on GitHub > <https://github.com/netbirdio/netbird/issues/1267#issuecomment-1867491839>, > or unsubscribe > <https://github.com/notifications/unsubscribe-auth/BC6T5SG3VKRDX52K5IFNVZLYKVLRRAVCNFSM6AAAAAA6VQ3QOSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQNRXGQ4TCOBTHE> > . > You are receiving this because you were mentioned.Message ID: > ***@***.***> >

saavagebueno commented

@xcstatus commented on GitHub (Dec 24, 2023):

手动部署的方式搞定了，但是自动化部署脚本不知道怎么编写

@xcstatus commented on GitHub (Dec 24, 2023): <img width="573" alt="image" src="https://github.com/netbirdio/netbird/assets/40375067/f06c13d9-73cc-4a11-a6ed-37f5936c5237"> 手动部署的方式搞定了，但是自动化部署脚本不知道怎么编写

saavagebueno commented

@Beatirce commented on GitHub (Dec 25, 2023):

getting-started-with-zitadel-xc.sh.zip

可以跑了

脚本提示找不到文件或目录，但对应的目录和pem都创建过了。$NETBIRD_DOMAIN {下的tls也更改了。能麻烦分析一下是什么问题么？

@Beatirce commented on GitHub (Dec 25, 2023): > ![image](https://private-user-images.githubusercontent.com/27892476/292161347-44f026a0-9121-4bca-90c4-22d6ca68313b.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.QAwy81aAbAk3QuwYHtOtS2AhXgviqQ0XIT9iJYEUDI8) > > [getting-started-with-zitadel-xc.sh.zip](https://github.com/netbirdio/netbird/files/13739761/getting-started-with-zitadel-xc.sh.zip) > > 可以跑了脚本提示找不到文件或目录，但对应的目录和pem都创建过了。$NETBIRD_DOMAIN {下的tls也更改了。能麻烦分析一下是什么问题么？

saavagebueno commented

@xcstatus commented on GitHub (Dec 25, 2023):

如果没有必要，不需要修改$NETBIRD_DOMAIN节点下的配置，修改配置的前提是你知道自己在做什么。

certs文件夹是需要在脚本执行的目录中创建的。

@xcstatus commented on GitHub (Dec 25, 2023): 如果没有必要，不需要修改$NETBIRD_DOMAIN节点下的配置，修改配置的前提是你知道自己在做什么。 certs文件夹是需要在脚本执行的目录中创建的。

saavagebueno commented

@Beatirce commented on GitHub (Dec 25, 2023):

改回来了，然后我按照md文件中说明修改后执行时提示的错误，麻烦帮忙看看是哪里的问题…

如果没有必要，不需要修改$NETBIRD_DOMAIN节点下的配置，修改配置的前提是你知道自己在做什么。

certs文件夹是需要在脚本执行的目录中创建的。

@Beatirce commented on GitHub (Dec 25, 2023): ![image](https://github.com/netbirdio/netbird/assets/40710626/907426fe-2fc6-4f6a-8499-aa4a2cfd607f) 改回来了，然后我按照md文件中说明修改后执行时提示的错误，麻烦帮忙看看是哪里的问题… > 如果没有必要，不需要修改$NETBIRD_DOMAIN节点下的配置，修改配置的前提是你知道自己在做什么。 > > certs文件夹是需要在脚本执行的目录中创建的。

saavagebueno commented

@xcstatus commented on GitHub (Dec 25, 2023):

看不出来有什么问题，怀疑是 crdb这个服务没有启动起来。

@xcstatus commented on GitHub (Dec 25, 2023): 看不出来有什么问题，怀疑是 crdb这个服务没有启动起来。

saavagebueno commented

@Beatirce commented on GitHub (Dec 25, 2023):

看不出来有什么问题，怀疑是 crdb这个服务没有启动起来。

感谢，我看看这个服务。

@Beatirce commented on GitHub (Dec 25, 2023): > 看不出来有什么问题，怀疑是 crdb这个服务没有启动起来。感谢，我看看这个服务。

saavagebueno commented

@jiangslee commented on GitHub (Dec 25, 2023):

看不出来有什么问题，怀疑是 crdb这个服务没有启动起来。

感谢，我看看这个服务。

操作步骤：

mkdir certs
在certs目录放好与域名一致的证书文件，如netbird.my-domain.com.pem，netbird.my-domain.com.key

~/docker-netbird# tree certs
certs
├── netbird.my-domain.com.key
└── netbird.my-domain.com.pem

export NETBIRD_DOMAIN=netbird.my-domain.com
bash getting-started-with-zitadel-xc.sh

按提示输入好端口号（请提前进行域名解释和及安全组端口放行：你自定义的端口号; UDP ports: 3478, 49152-65535）

@jiangslee commented on GitHub (Dec 25, 2023): > > 看不出来有什么问题，怀疑是 crdb这个服务没有启动起来。 > > 感谢，我看看这个服务。操作步骤： 1. mkdir certs 2. 在certs目录放好与域名一致的证书文件，如netbird.my-domain.com.pem，netbird.my-domain.com.key ``` ~/docker-netbird# tree certs certs ├── netbird.my-domain.com.key └── netbird.my-domain.com.pem ``` 3. export NETBIRD_DOMAIN=netbird.my-domain.com 4. bash getting-started-with-zitadel-xc.sh 按提示输入好端口号（请提前进行域名解释和及安全组端口放行：你自定义的端口号; UDP ports: 3478, 49152-65535）

saavagebueno commented

@MrChenhtlss commented on GitHub (Dec 25, 2023):

如果在国内服务器上部署的话需要注释掉脚本中的 h1 h2，另外再把所需的docker镜像手动pull一下

jiangslee @.***>于2023年12月25日周一17:54写道：

看不出来有什么问题，怀疑是 crdb这个服务没有启动起来。

感谢，我看看这个服务。

操作步骤：

mkdir certs

在certs目录放好与域名一致的证书文件，如netbird.my-domain.com.pem，netbird.my-domain.com.key

~/docker-netbird# tree certs
certs
├── netbird.my-domain.com.key
└── netbird.my-domain.com.pem

export NETBIRD_DOMAIN=netbird.my-domain.com

bash getting-started-with-zitadel-xc.sh

按提示输入好端口号（请提前进行域名解释和及安全组端口放行：你自定义的端口号; UDP ports: 3478, 49152-65535）

—
Reply to this email directly, view it on GitHub
https://github.com/netbirdio/netbird/issues/1267#issuecomment-1868898029,
or unsubscribe
https://github.com/notifications/unsubscribe-auth/BC6T5SDZSR4OK4Z2QFPE3R3YLFENNAVCNFSM6AAAAAA6VQ3QOSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQNRYHA4TQMBSHE
.
You are receiving this because you were mentioned.Message ID:
@.***>

@MrChenhtlss commented on GitHub (Dec 25, 2023): 如果在国内服务器上部署的话需要注释掉脚本中的 h1 h2，另外再把所需的docker镜像手动pull一下 jiangslee ***@***.***>于2023年12月25日周一17:54写道： > 看不出来有什么问题，怀疑是 crdb这个服务没有启动起来。 > > 感谢，我看看这个服务。 > > 操作步骤： > > 1. mkdir certs > 2. > 在certs目录放好与域名一致的证书文件，如netbird.my-domain.com.pem，netbird.my-domain.com.key > > ~/docker-netbird# tree certs > certs > ├── netbird.my-domain.com.key > └── netbird.my-domain.com.pem > > > 1. export NETBIRD_DOMAIN=netbird.my-domain.com > 2. bash getting-started-with-zitadel-xc.sh > > 按提示输入好端口号（请提前进行域名解释和及安全组端口放行：你自定义的端口号; UDP ports: 3478, 49152-65535） > > — > Reply to this email directly, view it on GitHub > <https://github.com/netbirdio/netbird/issues/1267#issuecomment-1868898029>, > or unsubscribe > <https://github.com/notifications/unsubscribe-auth/BC6T5SDZSR4OK4Z2QFPE3R3YLFENNAVCNFSM6AAAAAA6VQ3QOSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQNRYHA4TQMBSHE> > . > You are receiving this because you were mentioned.Message ID: > ***@***.***> >

saavagebueno commented

@jiangslee commented on GitHub (Dec 25, 2023):

@MrChenhtlss 我也是国内服务器部署，没有注释h1 h2也能跑，关键是需要提前解释好域名、提前放行端口。

@jiangslee commented on GitHub (Dec 25, 2023): @MrChenhtlss 我也是国内服务器部署，没有注释h1 h2也能跑，关键是需要***提前解释好域名***、***提前放行端口***。

saavagebueno commented

@MrChenhtlss commented on GitHub (Dec 25, 2023):

前两天部署的时候如果不注视掉 h1 h2 会卡在zitadel 无法进行下一步

jiangslee @.***>于2023年12月25日周一17:58写道：

@MrChenhtlss https://github.com/MrChenhtlss 我也是国内服务器部署，没有注释h1
h2也能跑，关键是需要提前解释好域名、提前放行端口。

—
Reply to this email directly, view it on GitHub
https://github.com/netbirdio/netbird/issues/1267#issuecomment-1868899740,
or unsubscribe
https://github.com/notifications/unsubscribe-auth/BC6T5SGTVQ5CQ6KRGYREQW3YLFE2TAVCNFSM6AAAAAA6VQ3QOSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQNRYHA4TSNZUGA
.
You are receiving this because you were mentioned.Message ID:
@.***>

@MrChenhtlss commented on GitHub (Dec 25, 2023): 前两天部署的时候如果不注视掉 h1 h2 会卡在zitadel 无法进行下一步 jiangslee ***@***.***>于2023年12月25日周一17:58写道： > @MrChenhtlss <https://github.com/MrChenhtlss> 我也是国内服务器部署，没有注释h1 > h2也能跑，关键是需要*提前解释好域名*、*提前放行端口*。 > > — > Reply to this email directly, view it on GitHub > <https://github.com/netbirdio/netbird/issues/1267#issuecomment-1868899740>, > or unsubscribe > <https://github.com/notifications/unsubscribe-auth/BC6T5SGTVQ5CQ6KRGYREQW3YLFE2TAVCNFSM6AAAAAA6VQ3QOSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQNRYHA4TSNZUGA> > . > You are receiving this because you were mentioned.Message ID: > ***@***.***> >

saavagebueno commented

@xcstatus commented on GitHub (Dec 25, 2023):

caddy.zip
可以试试这个，构建caddy-dnspod，支持腾讯云dns质询。可以自动签名。
其余云服务上可以在Dockerfile中替换对应的插件就行

@xcstatus commented on GitHub (Dec 25, 2023): [caddy.zip](https://github.com/netbirdio/netbird/files/13766606/caddy.zip) 可以试试这个，构建caddy-dnspod，支持腾讯云dns质询。可以自动签名。其余云服务上可以在Dockerfile中替换对应的插件就行 ![098eefea0dba9c1d1ab4be23fecea62f](https://github.com/netbirdio/netbird/assets/40375067/70f90d52-fa6a-419c-8e81-c020adcb5bfe)

saavagebueno commented

@jiangslee commented on GitHub (Dec 26, 2023):

caddy.zip 可以试试这个，构建caddy-dnspod，支持腾讯云dns质询。可以自动签名。其余云服务上可以在Dockerfile中替换对应的插件就行

这是要自己构建caddy的docker镜像吗？

@jiangslee commented on GitHub (Dec 26, 2023): > [caddy.zip](https://github.com/netbirdio/netbird/files/13766606/caddy.zip) 可以试试这个，构建caddy-dnspod，支持腾讯云dns质询。可以自动签名。其余云服务上可以在Dockerfile中替换对应的插件就行 ![098eefea0dba9c1d1ab4be23fecea62f](https://private-user-images.githubusercontent.com/40375067/292766775-70f90d52-fa6a-419c-8e81-c020adcb5bfe.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmF3LmdpdGh1YnVzZXJjb250ZW50LmNvbSIsImtleSI6ImtleTEiLCJleHAiOjE3MDM1ODE2NjksIm5iZiI6MTcwMzU4MTM2OSwicGF0aCI6Ii80MDM3NTA2Ny8yOTI3NjY3NzUtNzBmOTBkNTItZmE2YS00MTljLThlODEtYzAyMGFkY2I1YmZlLnBuZz9YLUFtei1BbGdvcml0aG09QVdTNC1ITUFDLVNIQTI1NiZYLUFtei1DcmVkZW50aWFsPUFLSUFJV05KWUFYNENTVkVINTNBJTJGMjAyMzEyMjYlMkZ1cy1lYXN0LTElMkZzMyUyRmF3czRfcmVxdWVzdCZYLUFtei1EYXRlPTIwMjMxMjI2VDA5MDI0OVomWC1BbXotRXhwaXJlcz0zMDAmWC1BbXotU2lnbmF0dXJlPWYxN2Y4MTg2Zjg5Y2RlNzE2YjBhNTU3MjlkYjBhMzk4YjljYmM1NzhlYmM2NmNlZTk5ZWMzMmU5ODIzOWEwNzImWC1BbXotU2lnbmVkSGVhZGVycz1ob3N0JmFjdG9yX2lkPTAma2V5X2lkPTAmcmVwb19pZD0wIn0.FO3e4U05RIBg9eyocRFM1wV9WXFpuADLYfi0zMrVvms) 这是要自己构建caddy的docker镜像吗？

saavagebueno commented

@xcstatus commented on GitHub (Dec 26, 2023):

是的发自我的 iPhone在 2023年12月26日，17:03，jiangslee @.***> 写道：

caddy.zip 可以试试这个，构建caddy-dnspod，支持腾讯云dns质询。可以自动签名。其余云服务上可以在Dockerfile中替换对应的插件就行

这是要自己构建caddy的docker镜像吗？

—Reply to this email directly, view it on GitHub, or unsubscribe.You are receiving this because you modified the open/close state.Message ID: @.***>

@xcstatus commented on GitHub (Dec 26, 2023): 是的发自我的 iPhone在 2023年12月26日，17:03，jiangslee ***@***.***> 写道： caddy.zip 可以试试这个，构建caddy-dnspod，支持腾讯云dns质询。可以自动签名。其余云服务上可以在Dockerfile中替换对应的插件就行这是要自己构建caddy的docker镜像吗？ —Reply to this email directly, view it on GitHub, or unsubscribe.You are receiving this because you modified the open/close state.Message ID: ***@***.***>

saavagebueno commented

@xcstatus commented on GitHub (Dec 26, 2023):

使用构建的caddy-dnspod镜像可以正常运行。证书也可以自动获取。但是我不太清楚怎么把构建过程编写成脚本，通过脚本指定caddy版本、dns质询插件发自我的 iPhone在 2023年12月26日，17:03，jiangslee @.***> 写道：

caddy.zip 可以试试这个，构建caddy-dnspod，支持腾讯云dns质询。可以自动签名。其余云服务上可以在Dockerfile中替换对应的插件就行

这是要自己构建caddy的docker镜像吗？

—Reply to this email directly, view it on GitHub, or unsubscribe.You are receiving this because you modified the open/close state.Message ID: @.***>

@xcstatus commented on GitHub (Dec 26, 2023): 使用构建的caddy-dnspod镜像可以正常运行。证书也可以自动获取。但是我不太清楚怎么把构建过程编写成脚本，通过脚本指定caddy版本、dns质询插件发自我的 iPhone在 2023年12月26日，17:03，jiangslee ***@***.***> 写道： caddy.zip 可以试试这个，构建caddy-dnspod，支持腾讯云dns质询。可以自动签名。其余云服务上可以在Dockerfile中替换对应的插件就行这是要自己构建caddy的docker镜像吗？ —Reply to this email directly, view it on GitHub, or unsubscribe.You are receiving this because you modified the open/close state.Message ID: ***@***.***>

saavagebueno commented

@MrChenhtlss commented on GitHub (Dec 27, 2023):

不知道为什么我无法打开这个issues

xcstatus @.***>于2023年12月26日周二17:56写道：

使用构建的caddy-dnspod镜像可以正常运行。证书也可以自动获取。但是我不太清楚怎么把构建过程编写成脚本，通过脚本指定caddy版本、dns质询插件发自我的
iPhone在 2023年12月26日，17:03，jiangslee @.***> 写道：

caddy.zip 可以试试这个，构建caddy-dnspod，支持腾讯云dns质询。可以自动签名。
其余云服务上可以在Dockerfile中替换对应的插件就行

这是要自己构建caddy的docker镜像吗？

—Reply to this email directly, view it on GitHub, or unsubscribe.You are
receiving this because you modified the open/close state.Message ID:
@.***>

—
Reply to this email directly, view it on GitHub
https://github.com/netbirdio/netbird/issues/1267#issuecomment-1869421355,
or unsubscribe
https://github.com/notifications/unsubscribe-auth/BC6T5SGXJ2ET3D27IZXPASDYLKNN7AVCNFSM6AAAAAA6VQ3QOSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQNRZGQZDCMZVGU
.
You are receiving this because you were mentioned.Message ID:
@.***>

@MrChenhtlss commented on GitHub (Dec 27, 2023): 不知道为什么我无法打开这个issues xcstatus ***@***.***>于2023年12月26日周二17:56写道： > 使用构建的caddy-dnspod镜像可以正常运行。证书也可以自动获取。但是我不太清楚怎么把构建过程编写成脚本，通过脚本指定caddy版本、dns质询插件发自我的 > iPhone在 2023年12月26日，17:03，jiangslee ***@***.***> 写道： > > caddy.zip 可以试试这个，构建caddy-dnspod，支持腾讯云dns质询。可以自动签名。 > 其余云服务上可以在Dockerfile中替换对应的插件就行 > > 这是要自己构建caddy的docker镜像吗？ > > —Reply to this email directly, view it on GitHub, or unsubscribe.You are > receiving this because you modified the open/close state.Message ID: > ***@***.***> > > — > Reply to this email directly, view it on GitHub > <https://github.com/netbirdio/netbird/issues/1267#issuecomment-1869421355>, > or unsubscribe > <https://github.com/notifications/unsubscribe-auth/BC6T5SGXJ2ET3D27IZXPASDYLKNN7AVCNFSM6AAAAAA6VQ3QOSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMYTQNRZGQZDCMZVGU> > . > You are receiving this because you were mentioned.Message ID: > ***@***.***> >

saavagebueno commented

@xhwwstudio commented on GitHub (Jan 14, 2024):

看不出来有什么问题，怀疑是 crdb这个服务没有启动起来。

感谢，我看看这个服务。

操作步骤：
1. mkdir certs

2. 在certs目录放好与域名一致的证书文件，如netbird.my-domain.com.pem，netbird.my-domain.com.key
~/docker-netbird# tree certs
certs
├── netbird.my-domain.com.key
└── netbird.my-domain.com.pem
3. export NETBIRD_DOMAIN=netbird.my-domain.com

4. bash getting-started-with-zitadel-xc.sh
按提示输入好端口号（请提前进行域名解释和及安全组端口放行：你自定义的端口号; UDP ports: 3478, 49152-65535）

请问大佬，下载的这个文件和certs放在一个文件夹下边么？还是放里CERTS里边？

@xhwwstudio commented on GitHub (Jan 14, 2024): > > > 看不出来有什么问题，怀疑是 crdb这个服务没有启动起来。 > > > > > > 感谢，我看看这个服务。 > > 操作步骤： > > 1. mkdir certs > > 2. 在certs目录放好与域名一致的证书文件，如netbird.my-domain.com.pem，netbird.my-domain.com.key > > > ``` > ~/docker-netbird# tree certs > certs > ├── netbird.my-domain.com.key > └── netbird.my-domain.com.pem > ``` > > 3. export NETBIRD_DOMAIN=netbird.my-domain.com > > 4. bash getting-started-with-zitadel-xc.sh > > > 按提示输入好端口号（请提前进行域名解释和及安全组端口放行：你自定义的端口号; UDP ports: 3478, 49152-65535）请问大佬，下载的这个文件和certs放在一个文件夹下边么？还是放里CERTS里边？

saavagebueno commented

@xcstatus commented on GitHub (Jan 14, 2024):

docker-netbird
├── certs
└── getting-started-with-zitadel-xc-prompt.sh
同一个文件夹下

@xcstatus commented on GitHub (Jan 14, 2024): docker-netbird ├── certs └── getting-started-with-zitadel-xc-prompt.sh 同一个文件夹下

saavagebueno commented

@liuyishengaaa commented on GitHub (Jan 17, 2024):

使用构建的caddy-dnspod镜像可以正常运行。证书也可以自动获取。但是我不太清楚怎么把构建过程编写成脚本，通过脚本指定caddy版本、dns质询插件发自我的 iPhone在 2023年12月26日，17：03，jiangslee @.> 写道： caddy.zip 可以试试这个，构建caddy-dnspod，支持腾讯云dns质询。可以自动签名。其余云服务上可以在Dockerfile中替换对应的插件就行这是要自己构建caddy的docker镜像吗？ - 直接回复此电子邮件，在 GitHub 上查看或取消订阅。您收到此消息是因为您修改了打开/关闭状态。邮件 ID：@.>

可以使用cloudflare申请的免费15年证书，上面您提到的自动续签能有个详细操作流程就完美了。

@liuyishengaaa commented on GitHub (Jan 17, 2024): > 使用构建的caddy-dnspod镜像可以正常运行。证书也可以自动获取。但是我不太清楚怎么把构建过程编写成脚本，通过脚本指定caddy版本、dns质询插件发自我的 iPhone在 2023年12月26日，17：03，jiangslee ***@***.***> 写道： caddy.zip 可以试试这个，构建caddy-dnspod，支持腾讯云dns质询。可以自动签名。其余云服务上可以在Dockerfile中替换对应的插件就行这是要自己构建caddy的docker镜像吗？ - 直接回复此电子邮件，在 GitHub 上查看或取消订阅。您收到此消息是因为您修改了打开/关闭状态。邮件 ID：***@***.***> 可以使用cloudflare申请的免费15年证书，上面您提到的自动续签能有个详细操作流程就完美了。

saavagebueno commented

@xcstatus commented on GitHub (Jan 17, 2024):

使用构建的caddy-dnspod镜像可以正常运行。证书也可以自动获取。但是我不太清楚怎么把构建过程编写成脚本，通过脚本指定caddy版本、dns质询插件发自我的 iPhone在 2023年12月26日，17：03，jiangslee @.> 写道： caddy.zip 可以试试这个，构建caddy-dnspod，支持腾讯云dns质询。可以自动签名。其余云服务上可以在Dockerfile中替换对应的插件就行这是要自己构建caddy的docker镜像吗？ - 直接回复此电子邮件，在 GitHub 上查看或取消订阅。您收到此消息是因为您修改了打开/关闭状态。邮件 ID：@.>

可以使用cloudflare申请的免费15年证书，上面您提到的自动续签能有个详细操作流程就完美了。

这里有配置的方法。
https://github.com/netbirdio/netbird/pull/1464
这是我使用的构建caddy-dnspod的脚本，但是我不知道如何改造成一个通用的脚本。
caddy-builder.tar.gz

@xcstatus commented on GitHub (Jan 17, 2024): > > 使用构建的caddy-dnspod镜像可以正常运行。证书也可以自动获取。但是我不太清楚怎么把构建过程编写成脚本，通过脚本指定caddy版本、dns质询插件发自我的 iPhone在 2023年12月26日，17：03，jiangslee _**@**_._**> 写道： caddy.zip 可以试试这个，构建caddy-dnspod，支持腾讯云dns质询。可以自动签名。其余云服务上可以在Dockerfile中替换对应的插件就行这是要自己构建caddy的docker镜像吗？ - 直接回复此电子邮件，在 GitHub 上查看或取消订阅。您收到此消息是因为您修改了打开/关闭状态。邮件 ID：**_@_**.**_> > > 可以使用cloudflare申请的免费15年证书，上面您提到的自动续签能有个详细操作流程就完美了。这里有配置的方法。 https://github.com/netbirdio/netbird/pull/1464 这是我使用的构建caddy-dnspod的脚本，但是我不知道如何改造成一个通用的脚本。 [caddy-builder.tar.gz](https://github.com/netbirdio/netbird/files/13961730/caddy-builder.tar.gz)

saavagebueno commented

@shangkouyou commented on GitHub (Aug 3, 2024):

getting-started-with-zitadel-xc.sh.zip

可以跑了

这个好棒啊我也跑起来了很完美现在唯一不足的就是我想改这个默认的100.xx.xx.xx这个网段可以自定义吗大佬

@shangkouyou commented on GitHub (Aug 3, 2024): > ![image](https://private-user-images.githubusercontent.com/27892476/292161347-44f026a0-9121-4bca-90c4-22d6ca68313b.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.zsPAu1Ao-WGz2bt_n10WRVzrHreFebC5-O0XuX6epZo) > > [getting-started-with-zitadel-xc.sh.zip](https://github.com/netbirdio/netbird/files/13739761/getting-started-with-zitadel-xc.sh.zip) > > 可以跑了这个好棒啊我也跑起来了很完美现在唯一不足的就是我想改这个默认的100.xx.xx.xx这个网段可以自定义吗大佬

saavagebueno commented

@shangkouyou commented on GitHub (Aug 4, 2024):

有办法修改默认的网段嘛 100.91.0.0/24.这个

使用构建的caddy-dnspod镜像可以正常运行。证书也可以自动获取。但是我不太清楚怎么把构建过程编写成脚本，通过脚本指定caddy版本、dns质询插件发自我的 iPhone在 2023年12月26日，17：03，jiangslee @.> 写道： caddy.zip 可以试试这个，构建caddy-dnspod，支持腾讯云dns质询。可以自动签名。其余云服务上可以在Dockerfile中替换对应的插件就行这是要自己构建caddy的docker镜像吗？ - 直接回复此电子邮件，在 GitHub 上查看或取消订阅。您收到此消息是因为您修改了打开/关闭状态。邮件 ID：@.>

可以使用cloudflare申请的免费15年证书，上面您提到的自动续签能有个详细操作流程就完美了。

这里有配置的方法。
https://github.com/netbirdio/netbird/pull/1464
这是我使用的构建caddy-dnspod的脚本，但是我不知道如何改造成一个通用的脚本。
caddy-builder.tar.gz

@shangkouyou commented on GitHub (Aug 4, 2024): 有办法修改默认的网段嘛 100.91.0.0/24.这个 > > > 使用构建的caddy-dnspod镜像可以正常运行。证书也可以自动获取。但是我不太清楚怎么把构建过程编写成脚本，通过脚本指定caddy版本、dns质询插件发自我的 iPhone在 2023年12月26日，17：03，jiangslee _**@**_._**> 写道： caddy.zip 可以试试这个，构建caddy-dnspod，支持腾讯云dns质询。可以自动签名。其余云服务上可以在Dockerfile中替换对应的插件就行这是要自己构建caddy的docker镜像吗？ - 直接回复此电子邮件，在 GitHub 上查看或取消订阅。您收到此消息是因为您修改了打开/关闭状态。邮件 ID：**_@_**.**_> > > > > 可以使用cloudflare申请的免费15年证书，上面您提到的自动续签能有个详细操作流程就完美了。 > > 这里有配置的方法。 > https://github.com/netbirdio/netbird/pull/1464 > 这是我使用的构建caddy-dnspod的脚本，但是我不知道如何改造成一个通用的脚本。 > [caddy-builder.tar.gz](https://github.com/netbirdio/netbird/files/13961730/caddy-builder.tar.gz) >

saavagebueno commented

@jiangslee commented on GitHub (Aug 4, 2024):

@shangkouyou 默认给的好像是100.x.x.x/16网段，一般不会冲突，为什么要改为/24？

@jiangslee commented on GitHub (Aug 4, 2024): @shangkouyou 默认给的好像是100.x.x.x/16网段，一般不会冲突，为什么要改为/24？

saavagebueno commented

@shangkouyou commented on GitHub (Aug 4, 2024):

@shangkouyou* 默认给的好像是100.x.x.x/16网段，一般不会冲突，为什么要改为/24？

我主要是想改100.xxx.xxx.xxx 想改成自己喜欢的内网网段

@shangkouyou commented on GitHub (Aug 4, 2024): > @shangkouyou* 默认给的好像是100.x.x.x/16网段，一般不会冲突，为什么要改为/24？我主要是想改100.xxx.xxx.xxx 想改成自己喜欢的内网网段

saavagebueno commented

@jiangslee commented on GitHub (Aug 4, 2024):

@shangkouyou https://github.com/netbirdio/netbird/issues/1633

真不建议你改。

@jiangslee commented on GitHub (Aug 4, 2024): @shangkouyou https://github.com/netbirdio/netbird/issues/1633 真不建议你改。

saavagebueno commented

@shangkouyou commented on GitHub (Aug 4, 2024):

@shangkouyou* #1633*

真不建议你改。

好的吧谢谢你

@shangkouyou commented on GitHub (Aug 4, 2024): > @shangkouyou* #1633* > > 真不建议你改。好的吧谢谢你

saavagebueno commented

@shangkouyou commented on GitHub (Aug 8, 2024):

@shangkouyou* #1633*

真不建议你改。

佬我还行问哦你上面的脚本执行后安装的是老的版本可以升级最新的吗

@shangkouyou commented on GitHub (Aug 8, 2024): > @shangkouyou* #1633* > > 真不建议你改。佬我还行问哦你上面的脚本执行后安装的是老的版本可以升级最新的吗

saavagebueno commented

@1350962574 commented on GitHub (Sep 16, 2024):

证书自动维护可以考虑下caddy的dns质询组件。https://caddy.community/t/how-to-use-dns-provider-modules-in-caddy-2/8148

@xcstatus @jiangslee
这是我认为最好的方式，以Cloudflare举例可以使用iarekylew00t/caddy-cloudflare:latest镜像通过 CF 的 API 自动签发并续期，当然网上也有构建好并支持 dnspod，aliyun的docker镜像，配合上方大佬改进的安装脚本实现非 80,443完美SSL。

@1350962574 commented on GitHub (Sep 16, 2024): > 证书自动维护可以考虑下caddy的dns质询组件。https://caddy.community/t/how-to-use-dns-provider-modules-in-caddy-2/8148 @xcstatus @jiangslee 这是我认为最好的方式，以Cloudflare举例可以使用`iarekylew00t/caddy-cloudflare:latest`镜像通过 CF 的 API 自动签发并续期，当然网上也有构建好并支持 dnspod，aliyun的docker镜像，配合上方大佬改进的安装脚本实现非 80,443完美SSL。 <img width="592" alt="image" src="https://github.com/user-attachments/assets/72381bf6-319b-4d40-b765-dcbc19ab80cf"> <img width="595" alt="image" src="https://github.com/user-attachments/assets/0c758b1b-83f9-4e3b-9d6a-2c4cbd8fbfb6"> <img width="544" alt="image" src="https://github.com/user-attachments/assets/e3ae9016-48ce-478a-883d-ed212d68ff4d">

saavagebueno commented

@liuyishengaaa commented on GitHub (Oct 27, 2024):

证书自动维护可以考虑下caddy的dns质询组件。https://caddy.community/t/how-to-use-dns-provider-modules-in-caddy-2/8148

@xcstatus @jiangslee 这是我认为最好的方式，以Cloudflare举例可以使用iarekylew00t/caddy-cloudflare:latest镜像通过 CF 的 API 自动签发并续期，当然网上也有构建好并支持 dnspod，aliyun的docker镜像，配合上方大佬改进的安装脚本实现非 80,443完美SSL。

你能提供详细的部署流程？

@liuyishengaaa commented on GitHub (Oct 27, 2024): > > 证书自动维护可以考虑下caddy的dns质询组件。https://caddy.community/t/how-to-use-dns-provider-modules-in-caddy-2/8148 > > @xcstatus @jiangslee 这是我认为最好的方式，以Cloudflare举例可以使用`iarekylew00t/caddy-cloudflare:latest`镜像通过 CF 的 API 自动签发并续期，当然网上也有构建好并支持 dnspod，aliyun的docker镜像，配合上方大佬改进的安装脚本实现非 80,443完美SSL。 <img alt="image" width="592" src="https://private-user-images.githubusercontent.com/48989077/367694561-72381bf6-319b-4d40-b765-dcbc19ab80cf.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmF3LmdpdGh1YnVzZXJjb250ZW50LmNvbSIsImtleSI6ImtleTUiLCJleHAiOjE3MzAwODM1MTcsIm5iZiI6MTczMDA4MzIxNywicGF0aCI6Ii80ODk4OTA3Ny8zNjc2OTQ1NjEtNzIzODFiZjYtMzE5Yi00ZDQwLWI3NjUtZGNiYzE5YWI4MGNmLnBuZz9YLUFtei1BbGdvcml0aG09QVdTNC1ITUFDLVNIQTI1NiZYLUFtei1DcmVkZW50aWFsPUFLSUFWQ09EWUxTQTUzUFFLNFpBJTJGMjAyNDEwMjglMkZ1cy1lYXN0LTElMkZzMyUyRmF3czRfcmVxdWVzdCZYLUFtei1EYXRlPTIwMjQxMDI4VDAyNDAxN1omWC1BbXotRXhwaXJlcz0zMDAmWC1BbXotU2lnbmF0dXJlPTE1NzM4ZmE4MjFjZTM5OGZkOTljODZjYTBmMzYxODY2MTM2ODgwOTcwMjYzOTQ0MDJlNjdiZjY1NDZjNTc4NWMmWC1BbXotU2lnbmVkSGVhZGVycz1ob3N0In0.FAyq9McJ6n8-5DmvDQ1V7eN3uzJrKQHcRozfzdh7Ipw"> > > <img alt="image" width="595" src="https://private-user-images.githubusercontent.com/48989077/367694610-0c758b1b-83f9-4e3b-9d6a-2c4cbd8fbfb6.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.CiqNR-mfWCRAFAFlA0uBvpflJu6uYuWIZfncZpM8yBA"> <img alt="image" width="544" src="https://private-user-images.githubusercontent.com/48989077/367700029-e3ae9016-48ce-478a-883d-ed212d68ff4d.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmF3LmdpdGh1YnVzZXJjb250ZW50LmNvbSIsImtleSI6ImtleTUiLCJleHAiOjE3MzAwODM1MTcsIm5iZiI6MTczMDA4MzIxNywicGF0aCI6Ii80ODk4OTA3Ny8zNjc3MDAwMjktZTNhZTkwMTYtNDhjZS00NzhhLTg4M2QtZWQyMTJkNjhmZjRkLnBuZz9YLUFtei1BbGdvcml0aG09QVdTNC1ITUFDLVNIQTI1NiZYLUFtei1DcmVkZW50aWFsPUFLSUFWQ09EWUxTQTUzUFFLNFpBJTJGMjAyNDEwMjglMkZ1cy1lYXN0LTElMkZzMyUyRmF3czRfcmVxdWVzdCZYLUFtei1EYXRlPTIwMjQxMDI4VDAyNDAxN1omWC1BbXotRXhwaXJlcz0zMDAmWC1BbXotU2lnbmF0dXJlPTA4YzI2YmRmMzc4ZGFmNDQwZDdjMWVkNjJlNmVmMDcxNTYwZmEyMmY2MDA4ZTI3NzQ1Y2IwOGI1Y2Y5MmI2MmYmWC1BbXotU2lnbmVkSGVhZGVycz1ob3N0In0._qauzexEMjtZG7060e6_-_YqPPsHLPsAKNaMpkIpRr8"> 你能提供详细的部署流程？

saavagebueno commented

@MrChenhtlss commented on GitHub (Oct 27, 2024):

按照上方大佬提供的脚本部署完成后修改compose与Caddyfile文件即可

liuyishengaaa @.***>于2024年10月28日周一10:43写道：

证书自动维护可以考虑下caddy的dns质询组件。
https://caddy.community/t/how-to-use-dns-provider-modules-in-caddy-2/8148

@xcstatus https://github.com/xcstatus @jiangslee
https://github.com/jiangslee 这是我认为最好的方式，以Cloudflare举例可以使用
iarekylew00t/caddy-cloudflare:latest镜像通过 CF 的 API 自动签发并续期，当然网上也有构建好并支持
dnspod，aliyun的docker镜像，配合上方大佬改进的安装脚本实现非 80,443完美SSL。 [image: image]
https://private-user-images.githubusercontent.com/48989077/367694561-72381bf6-319b-4d40-b765-dcbc19ab80cf.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.FAyq9McJ6n8-5DmvDQ1V7eN3uzJrKQHcRozfzdh7Ipw

[image: image]
https://private-user-images.githubusercontent.com/48989077/367694610-0c758b1b-83f9-4e3b-9d6a-2c4cbd8fbfb6.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmF3LmdpdGh1YnVzZXJjb250ZW50LmNvbSIsImtleSI6ImtleTUiLCJleHAiOjE3MzAwODM1MTcsIm5iZiI6MTczMDA4MzIxNywicGF0aCI6Ii80ODk4OTA3Ny8zNjc2OTQ2MTAtMGM3NThiMWItODNmOS00ZTNiLTlkNmEtMmM0Y2JkOGZiZmI2LnBuZz9YLUFtei1BbGdvcml0aG09QVdTNC1ITUFDLVNIQTI1NiZYLUFtei1DcmVkZW50aWFsPUFLSUFWQ09EWUxTQTUzUFFLNFpBJTJGMjAyNDEwMjglMkZ1cy1lYXN0LTElMkZzMyUyRmF3czRfcmVxdWVzdCZYLUFtei1EYXRlPTIwMjQxMDI4VDAyNDAxN1omWC1BbXotRXhwaXJlcz0zMDAmWC1BbXotU2lnbmF0dXJlPTExZWZlNmNkZjMwNjUzYzk5ZDcyZTEzNzAzNzY1ZjZiOWFjNzNjNjg2ZDMyMmQwMzZjMzUwMDI5Y2JlMWMwZWQmWC1BbXotU2lnbmVkSGVhZGVycz1ob3N0In0.CiqNR-mfWCRAFAFlA0uBvpflJu6uYuWIZfncZpM8yBA [image:
image]
https://private-user-images.githubusercontent.com/48989077/367700029-e3ae9016-48ce-478a-883d-ed212d68ff4d.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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._qauzexEMjtZG7060e6_-_YqPPsHLPsAKNaMpkIpRr8

你能提供详细的部署流程？

—
Reply to this email directly, view it on GitHub
https://github.com/netbirdio/netbird/issues/1267#issuecomment-2440423496,
or unsubscribe
https://github.com/notifications/unsubscribe-auth/BC6T5SCC2JAQ2PF6N374TB3Z5WQGFAVCNFSM6AAAAAA6VQ3QOSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDINBQGQZDGNBZGY
.
You are receiving this because you were mentioned.Message ID:
@.***>

@MrChenhtlss commented on GitHub (Oct 27, 2024): 按照上方大佬提供的脚本部署完成后修改compose与Caddyfile文件即可 liuyishengaaa ***@***.***>于2024年10月28日周一10:43写道： > 证书自动维护可以考虑下caddy的dns质询组件。 > https://caddy.community/t/how-to-use-dns-provider-modules-in-caddy-2/8148 > > @xcstatus <https://github.com/xcstatus> @jiangslee > <https://github.com/jiangslee> 这是我认为最好的方式，以Cloudflare举例可以使用 > iarekylew00t/caddy-cloudflare:latest镜像通过 CF 的 API 自动签发并续期，当然网上也有构建好并支持 > dnspod，aliyun的docker镜像，配合上方大佬改进的安装脚本实现非 80,443完美SSL。 [image: image] > <https://private-user-images.githubusercontent.com/48989077/367694561-72381bf6-319b-4d40-b765-dcbc19ab80cf.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.FAyq9McJ6n8-5DmvDQ1V7eN3uzJrKQHcRozfzdh7Ipw> > > [image: image] > <https://private-user-images.githubusercontent.com/48989077/367694610-0c758b1b-83f9-4e3b-9d6a-2c4cbd8fbfb6.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.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.CiqNR-mfWCRAFAFlA0uBvpflJu6uYuWIZfncZpM8yBA> [image: > image] > <https://private-user-images.githubusercontent.com/48989077/367700029-e3ae9016-48ce-478a-883d-ed212d68ff4d.png?jwt=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpc3MiOiJnaXRodWIuY29tIiwiYXVkIjoicmF3LmdpdGh1YnVzZXJjb250ZW50LmNvbSIsImtleSI6ImtleTUiLCJleHAiOjE3MzAwODM1MTcsIm5iZiI6MTczMDA4MzIxNywicGF0aCI6Ii80ODk4OTA3Ny8zNjc3MDAwMjktZTNhZTkwMTYtNDhjZS00NzhhLTg4M2QtZWQyMTJkNjhmZjRkLnBuZz9YLUFtei1BbGdvcml0aG09QVdTNC1ITUFDLVNIQTI1NiZYLUFtei1DcmVkZW50aWFsPUFLSUFWQ09EWUxTQTUzUFFLNFpBJTJGMjAyNDEwMjglMkZ1cy1lYXN0LTElMkZzMyUyRmF3czRfcmVxdWVzdCZYLUFtei1EYXRlPTIwMjQxMDI4VDAyNDAxN1omWC1BbXotRXhwaXJlcz0zMDAmWC1BbXotU2lnbmF0dXJlPTA4YzI2YmRmMzc4ZGFmNDQwZDdjMWVkNjJlNmVmMDcxNTYwZmEyMmY2MDA4ZTI3NzQ1Y2IwOGI1Y2Y5MmI2MmYmWC1BbXotU2lnbmVkSGVhZGVycz1ob3N0In0._qauzexEMjtZG7060e6_-_YqPPsHLPsAKNaMpkIpRr8> > > 你能提供详细的部署流程？ > > — > Reply to this email directly, view it on GitHub > <https://github.com/netbirdio/netbird/issues/1267#issuecomment-2440423496>, > or unsubscribe > <https://github.com/notifications/unsubscribe-auth/BC6T5SCC2JAQ2PF6N374TB3Z5WQGFAVCNFSM6AAAAAA6VQ3QOSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDINBQGQZDGNBZGY> > . > You are receiving this because you were mentioned.Message ID: > ***@***.***> >

saavagebueno commented

@fr58386612 commented on GitHub (Mar 13, 2025):

getting-started-with-zitadel-xc.sh.zip

可以跑了

能否更新下，现在部署出来的版本事老的，能换成最新版本吗？

@fr58386612 commented on GitHub (Mar 13, 2025): > ![image](https://github.com/netbirdio/netbird/assets/27892476/44f026a0-9121-4bca-90c4-22d6ca68313b) > > [getting-started-with-zitadel-xc.sh.zip](https://github.com/netbirdio/netbird/files/13739761/getting-started-with-zitadel-xc.sh.zip) > > 可以跑了能否更新下，现在部署出来的版本事老的，能换成最新版本吗？

saavagebueno commented

@jiangslee commented on GitHub (Mar 13, 2025):

getting-started-with-zitadel-xc.sh.zip
可以跑了

能否更新下，现在部署出来的版本事老的，能换成最新版本吗？

这个分支的脚本比较新，能跑
https://raw.githubusercontent.com/jiangslee/netbird/refs/heads/main-jsl/infrastructure_files/getting-started-with-zitadel.sh

@jiangslee commented on GitHub (Mar 13, 2025): > > ![image](https://github.com/netbirdio/netbird/assets/27892476/44f026a0-9121-4bca-90c4-22d6ca68313b) > > [getting-started-with-zitadel-xc.sh.zip](https://github.com/netbirdio/netbird/files/13739761/getting-started-with-zitadel-xc.sh.zip) > > 可以跑了 > > 能否更新下，现在部署出来的版本事老的，能换成最新版本吗？这个分支的脚本比较新，能跑 https://raw.githubusercontent.com/jiangslee/netbird/refs/heads/main-jsl/infrastructure_files/getting-started-with-zitadel.sh

saavagebueno commented

@fr58386612 commented on GitHub (Mar 13, 2025):

getting-started-with-zitadel-xc.sh.zip
可以跑了

能否更新下，现在部署出来的版本事老的，能换成最新版本吗？

这个分支的脚本比较新，能跑 https://raw.githubusercontent.com/jiangslee/netbird/refs/heads/main-jsl/infrastructure_files/getting-started-with-zitadel.sh

非常感谢

@fr58386612 commented on GitHub (Mar 13, 2025): > > > ![image](https://github.com/netbirdio/netbird/assets/27892476/44f026a0-9121-4bca-90c4-22d6ca68313b) > > > [getting-started-with-zitadel-xc.sh.zip](https://github.com/netbirdio/netbird/files/13739761/getting-started-with-zitadel-xc.sh.zip) > > > 可以跑了 > > > > > > 能否更新下，现在部署出来的版本事老的，能换成最新版本吗？ > > 这个分支的脚本比较新，能跑 https://raw.githubusercontent.com/jiangslee/netbird/refs/heads/main-jsl/infrastructure_files/getting-started-with-zitadel.sh 非常感谢

saavagebueno commented

@hjchjchjc4352 commented on GitHub (May 8, 2025):

getting-started-with-zitadel-xc.sh.zip
可以跑了

能否更新下，现在部署出来的版本事老的，能换成最新版本吗？

这个分支的脚本比较新，能跑 https://raw.githubusercontent.com/jiangslee/netbird/refs/heads/main-jsl/infrastructure_files/getting-started-with-zitadel.sh

大佬，请问这个能改成host模式运行吗，脚本新建的netbird这个bridge，在openwrt里容器间无法互通，证书运行不下来

@hjchjchjc4352 commented on GitHub (May 8, 2025): > > > ![image](https://github.com/netbirdio/netbird/assets/27892476/44f026a0-9121-4bca-90c4-22d6ca68313b) > > > [getting-started-with-zitadel-xc.sh.zip](https://github.com/netbirdio/netbird/files/13739761/getting-started-with-zitadel-xc.sh.zip) > > > 可以跑了 > > > > > > 能否更新下，现在部署出来的版本事老的，能换成最新版本吗？ > > 这个分支的脚本比较新，能跑 https://raw.githubusercontent.com/jiangslee/netbird/refs/heads/main-jsl/infrastructure_files/getting-started-with-zitadel.sh 大佬，请问这个能改成host模式运行吗，脚本新建的netbird这个bridge，在openwrt里容器间无法互通，证书运行不下来

saavagebueno commented

@674904341 commented on GitHub (May 11, 2025):

@jiangslee 大佬帮忙看看
{"level":"error","ts":1746974794.439305,"logger":"http.log.error","msg":"dial tcp 172.24.0.6:80: connect: connection refused","request":{"remote_ip":"10.10.10.1","remote_port":"8386","client_ip":"10.10.10.1","proto":"HTTP/2.0","method":"GET","host":"xxxx.xxxx.xxxx:9981","uri":"/api/users","headers":{"Accept-Encoding":["gzip, deflate, br, zstd"],"Authorization":["REDACTED"],"User-Agent":["Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36"],"Content-Type":["application/json"],"Referer":["https://xxxx.xxxx.xxxx:9981/peers"],"Accept-Language":["zh-CN,zh;q=0.9"],"Priority":["u=1, i"],"Sec-Fetch-Mode":["cors"],"Sec-Ch-Ua-Platform":[""Windows""],"Sec-Ch-Ua-Mobile":["?0"],"Cookie":["REDACTED"],"Sec-Fetch-Dest":["empty"],"Accept":["application/json"],"Sec-Fetch-Site":["same-origin"],"Sec-Ch-Ua":[""Chromium";v="136", "Google Chrome";v="136", "Not.A/Brand";v="99""]},"tls":{"resumed":false,"version":772,"cipher_suite":4865,"proto":"h2","server_name":"xxxx.xxxx.xxxx"}},"duration":0.000739471,"status":502,"err_id":"tejdgypua","err_trace":"reverseproxy.statusError (reverseproxy.go:1390)"}

运行成功后管理后台一直加载中，caddy日志显示502

@674904341 commented on GitHub (May 11, 2025): @jiangslee 大佬帮忙看看 {"level":"error","ts":1746974794.439305,"logger":"http.log.error","msg":"dial tcp 172.24.0.6:80: connect: connection refused","request":{"remote_ip":"10.10.10.1","remote_port":"8386","client_ip":"10.10.10.1","proto":"HTTP/2.0","method":"GET","host":"xxxx.xxxx.xxxx:9981","uri":"/api/users","headers":{"Accept-Encoding":["gzip, deflate, br, zstd"],"Authorization":["REDACTED"],"User-Agent":["Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36"],"Content-Type":["application/json"],"Referer":["https://xxxx.xxxx.xxxx:9981/peers"],"Accept-Language":["zh-CN,zh;q=0.9"],"Priority":["u=1, i"],"Sec-Fetch-Mode":["cors"],"Sec-Ch-Ua-Platform":["\"Windows\""],"Sec-Ch-Ua-Mobile":["?0"],"Cookie":["REDACTED"],"Sec-Fetch-Dest":["empty"],"Accept":["application/json"],"Sec-Fetch-Site":["same-origin"],"Sec-Ch-Ua":["\"Chromium\";v=\"136\", \"Google Chrome\";v=\"136\", \"Not.A/Brand\";v=\"99\""]},"tls":{"resumed":false,"version":772,"cipher_suite":4865,"proto":"h2","server_name":"xxxx.xxxx.xxxx"}},"duration":0.000739471,"status":502,"err_id":"tejdgypua","err_trace":"reverseproxy.statusError (reverseproxy.go:1390)"} 运行成功后管理后台一直加载中，caddy日志显示502

saavagebueno commented

@jiangslee commented on GitHub (May 11, 2025):

@jiangslee 大佬帮忙看看 {"level":"error","ts":1746974794.439305,"logger":"http.log.error","msg":"dial tcp 172.24.0.6:80: connect: connection refused","request":{"remote_ip":"10.10.10.1","remote_port":"8386","client_ip":"10.10.10.1","proto":"HTTP/2.0","method":"GET","host":"xxxx.xxxx.xxxx:9981","uri":"/api/users","headers":{"Accept-Encoding":["gzip, deflate, br, zstd"],"Authorization":["REDACTED"],"User-Agent":["Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36"],"Content-Type":["application/json"],"Referer":["https://xxxx.xxxx.xxxx:9981/peers"],"Accept-Language":["zh-CN,zh;q=0.9"],"Priority":["u=1, i"],"Sec-Fetch-Mode":["cors"],"Sec-Ch-Ua-Platform":[""Windows""],"Sec-Ch-Ua-Mobile":["?0"],"Cookie":["REDACTED"],"Sec-Fetch-Dest":["empty"],"Accept":["application/json"],"Sec-Fetch-Site":["same-origin"],"Sec-Ch-Ua":[""Chromium";v="136", "Google Chrome";v="136", "Not.A/Brand";v="99""]},"tls":{"resumed":false,"version":772,"cipher_suite":4865,"proto":"h2","server_name":"xxxx.xxxx.xxxx"}},"duration":0.000739471,"status":502,"err_id":"tejdgypua","err_trace":"reverseproxy.statusError (reverseproxy.go:1390)"}

运行成功后管理后台一直加载中，caddy日志显示502

@674904341 家宽环境部署？

@jiangslee commented on GitHub (May 11, 2025): > [@jiangslee](https://github.com/jiangslee) 大佬帮忙看看 {"level":"error","ts":1746974794.439305,"logger":"http.log.error","msg":"dial tcp 172.24.0.6:80: connect: connection refused","request":{"remote_ip":"10.10.10.1","remote_port":"8386","client_ip":"10.10.10.1","proto":"HTTP/2.0","method":"GET","host":"xxxx.xxxx.xxxx:9981","uri":"/api/users","headers":{"Accept-Encoding":["gzip, deflate, br, zstd"],"Authorization":["REDACTED"],"User-Agent":["Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/136.0.0.0 Safari/537.36"],"Content-Type":["application/json"],"Referer":["https://xxxx.xxxx.xxxx:9981/peers"],"Accept-Language":["zh-CN,zh;q=0.9"],"Priority":["u=1, i"],"Sec-Fetch-Mode":["cors"],"Sec-Ch-Ua-Platform":[""Windows""],"Sec-Ch-Ua-Mobile":["?0"],"Cookie":["REDACTED"],"Sec-Fetch-Dest":["empty"],"Accept":["application/json"],"Sec-Fetch-Site":["same-origin"],"Sec-Ch-Ua":[""Chromium";v="136", "Google Chrome";v="136", "Not.A/Brand";v="99""]},"tls":{"resumed":false,"version":772,"cipher_suite":4865,"proto":"h2","server_name":"xxxx.xxxx.xxxx"}},"duration":0.000739471,"status":502,"err_id":"tejdgypua","err_trace":"reverseproxy.statusError (reverseproxy.go:1390)"} > > 运行成功后管理后台一直加载中，caddy日志显示502 @674904341 家宽环境部署？

saavagebueno commented

@jiangslee commented on GitHub (May 11, 2025):

getting-started-with-zitadel-xc.sh.zip
可以跑了

能否更新下，现在部署出来的版本事老的，能换成最新版本吗？

这个分支的脚本比较新，能跑 https://raw.githubusercontent.com/jiangslee/netbird/refs/heads/main-jsl/infrastructure_files/getting-started-with-zitadel.sh

大佬，请问这个能改成host模式运行吗，脚本新建的netbird这个bridge，在openwrt里容器间无法互通，证书运行不下来

hjchjchjc4352 我改的这个脚本需要手动证书，你能否先手动生成好证书？

@jiangslee commented on GitHub (May 11, 2025): > > > > ![image](https://github.com/netbirdio/netbird/assets/27892476/44f026a0-9121-4bca-90c4-22d6ca68313b) > > > > [getting-started-with-zitadel-xc.sh.zip](https://github.com/netbirdio/netbird/files/13739761/getting-started-with-zitadel-xc.sh.zip) > > > > 可以跑了 > > > > > > > > > 能否更新下，现在部署出来的版本事老的，能换成最新版本吗？ > > > > > > 这个分支的脚本比较新，能跑 https://raw.githubusercontent.com/jiangslee/netbird/refs/heads/main-jsl/infrastructure_files/getting-started-with-zitadel.sh > > 大佬，请问这个能改成host模式运行吗，脚本新建的netbird这个bridge，在openwrt里容器间无法互通，证书运行不下来 [hjchjchjc4352](https://github.com/hjchjchjc4352) 我改的这个脚本需要手动证书，你能否先手动生成好证书？

saavagebueno commented