Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

> 1) internal corporation services, websites and webapps.

When firefox started throwing warnings on my intranet sites that are accessed via OpenVPN i did this:

1) move all internal sites to valid FQDN 2) push dns settings over openvpn so that clients resolve the names with the internal dns service and dont leak names. Names withing the vpn resolve to internal ip addresses. 3) set up a catch-all website, point the wildcard *.company.name domain to it and mada letsencrypt certs for the internail domains/ 4) copy the valid certs to the intranet webserver. Done. Everything working ok.



Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: