NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
HTTPS certificate for ReadyNAS 312.. ReadyNAS OS 6.10.9
Hi, i have achieved in the following topic finally to get apache+php+mysql+phpmyadmin installed and working. https://community.netgear.com/t5/ReadyNAS-Storage-Apps-Current/Cant-install-MySQL-addon-c...
In order to be assigned a certificate from a certificate authority, you need a domain name to which it is assigned. You can use a dynamic DNS provider for the link to the IP address -- you don't need a fixed IP. Once you have done that, you can get a certificate. But because of the age of the Debian version ReadyNAS OS is based upon, folks are having difficulty getting certificate update utilities to continue to operate.
Furthermore, also based on the age of the OS, you need to consider that public access to a ReadyNAS may no longer be safe. Just public exposure is questionable.
I don't know what you are running on the ReadyNAS for which you need public access, but you may want to re-think it. I personally run OwnCloud on another device and link some folders on my ReadyNAS to that, but they are all mounted as read-only.
Sandshark wrote:
I don't know what you are running on the ReadyNAS for which you need public access, but you may want to re-think it.
Very true.
Now that Debian Jessie has been archived, the only security patches you will get for the NAS are ones that Netgear chooses to backport. No idea how long they will do that.
A safer path would be to run the web server on a different machine (perhaps a VM) and mount any NAS shares you might need on that server.
Hi, it's regarding hosting few websites, cause services regarding hosting prices gone crazy wild, i mean really expensive. Regarding certificate and using http/s we all know purposes, advantages and disadvantages of occurence in current IT world.
Yeah it's regarding good / old ReadyNAS 312 with currently outdated Jessie linux. There are mostly workarounds and people still developing, like not only enthusiasits, etc. It's a great piece of hardware and don't want go other alternative, cause it would result leaving Netgear ReadyNAS and using some free / open NAS solution for casual pc / server hardware. + dozens of similar problems and solving howto do this and that again.
---
So this case... is it's not regarding the webadmin, but domains, yeah ip address is not dynamic, but static, can still use no ip or some similar service for it if needed. But domains are correctly set, should be ok, it does work as it should as i have reverified. I've been also able to setup apache+php+mysql, some newer versions, that all work correctly, using IP address any webcontent is correctly interpreted and displayed to visitor/'s webbrowser. Yeah.. again there are questionable thing like security and so, merging webserver and fileserver - NAS with many ways of access, in one device and OS, etc. but please lets skip this. Trying to mantain both strictly splitted and secured.
Only thing that's problem is .. how to get.. i have read ... probably Let's Encrypt would be best, allowing up to 100 sub/domains and work with - supply to visitor/'s webbrowser the https certificate. That is what i've been looking for... Is there some previous topic/theme, that could be linked, community, or external website with such a guide, that you'd know and could link pls?
It's easy to find the various threads on this yourself - just append site:community.netgear.com to your google search.
The most recent post I am seeing is here:
I don't know if anyone has found a workaround for the "not supported" issue.
I am still using LetsEncrypt on a ReadyNas with 6.10.9 OS on it.
The only issue I have is that the certificate has to be refreshed every 3 months I think.
I used to use CertBot-Auto for that, but recently I discovered that https was no longer working.
So I ssh-ed into the Nas and run the script that runs certbot-auto to refressh the certifcate. I got the following fault message:
Your system is not supported by certbot-auto anymore.
Certbot will no longer receive updates.So you either have to run the refressments a couple of times per year manually or perhaps something like what is described on
https://community.letsencrypt.org/t/your-system-is-not-supported-by-certbot-auto-anymore/139606/6
I am considering this to0, but also looking into using the Nas as solely as an external storage device and run the real software / apps / services on a separate sever (e.g a ZimaBoard).
Since snap is not available for Debian prior to V9, that's not an option. But you should be able to set up a cron job or systemd periodic task to do the "manual" update.
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
