Share

Question

I have created multiple subdomains(a.example.com, b.example.com etc) and pointed them to different load balancers. How would i be able to provide SSL for all the subdomains and main domain through DigitalOcean’s Let’s Encrypt feature?

Answer 1

alexdo July 11, 2020

Hello, @demonoid92

What you can do is to use a SSL termination which decrypts SSL requests at the load balancer and sends them unencrypted to the backend via the Droplets’ private IP addresses.

Another option is the SSL passthrough, which sends encrypted SSL requests directly to the backend, via the Droplets’ private IP addresses. This secures the traffic between the load balancers and the backend servers.

You can also check our docs on the Load Balancers SSL Termination:

https://www.digitalocean.com/docs/networking/load-balancers/how-to/ssl-termination/

Hope that helps!

Regards,
Alex

Reply Report

demonoid92 July 13, 2020
Hi Alexdp, Thanks for the reply.

I tried the mentioned configuration as shown below.

abc.com –> abc load balancer

1.abc.com –> 1 load balancer

2.abc.com –> 2 load balancer

Now when i try to set Lets encrypt certificate in LB for abc.com, it works. But once when i set a new certificate for 1.abc.com, a new entry A record on domain is created in abc.com which redirects abc.com to 1.abc.com . How do i handle this.
Reply Report
- alexdo July 14, 2020
  
  Hi, @demonoid92
  
  Could you please elaborate more on this? What is the exact DNS A record that is created which redirects abc.com to 1.abc.com
  
  Also I assume that you’re using separate SSL Certificates for each subdomain and not a Wildcard that covers all the needed subdomains?
  
  Regards,
  Alex
  
  Reply Report

Answer 2

demonoid92 July 13, 2020
Hi Alexdp, Thanks for the reply.

I tried the mentioned configuration as shown below.

abc.com –> abc load balancer

1.abc.com –> 1 load balancer

2.abc.com –> 2 load balancer

Now when i try to set Lets encrypt certificate in LB for abc.com, it works. But once when i set a new certificate for 1.abc.com, a new entry A record on domain is created in abc.com which redirects abc.com to 1.abc.com . How do i handle this.
Reply Report
- alexdo July 14, 2020
  
  Hi, @demonoid92
  
  Could you please elaborate more on this? What is the exact DNS A record that is created which redirects abc.com to 1.abc.com
  
  Also I assume that you’re using separate SSL Certificates for each subdomain and not a Wildcard that covers all the needed subdomains?
  
  Regards,
  Alex
  
  Reply Report

Related

Question

Let's Encrypt for sub domains

Leave a comment

Looking for something else?

Share

Share your Question

Related

Question

Let's Encrypt for sub domains

Leave a comment

Related

question

how to enable HTTP/2 after installing SSL via letsencrypt in command line

question

Webmin - Lets' encrypt SSL_ERROR_RX_RECORD_TOO_LONG (Firefox)

question

How can I enable OTR on eJabberd server?

question

How do I get Nginx to pick changes in site config file.

Looking for something else?

Almost there!