Skip to content

Alex-Mdau/alx-system_engineering-devops

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

157 Commits
0x00-shell_basics
0x00-shell_basics
 
 
0x01-shell_permissions
0x01-shell_permissions
 
 
0x02-shell_redirections
0x02-shell_redirections
 
 
0x03-shell_variables_expansions
0x03-shell_variables_expansions
 
 
0x04-loops_conditions_and_parsing
0x04-loops_conditions_and_parsing
 
 
0x05-processes_and_signals
0x05-processes_and_signals
 
 
0x06-regular_expressions
0x06-regular_expressions
 
 
0x07-networking_basics
0x07-networking_basics
 
 
0x08-networking_basics_2
0x08-networking_basics_2
 
 
0x09-web_infrastructure_design
0x09-web_infrastructure_design
 
 
0x0A-configuration_management
0x0A-configuration_management
 
 
0x0B-ssh
0x0B-ssh
 
 
0x0C-web_server
0x0C-web_server
 
 
0x0D-web_stack_debugging_0
0x0D-web_stack_debugging_0
 
 
0x0E-web_stack_debugging_1
0x0E-web_stack_debugging_1
 
 
0x0F-load_balancer
0x0F-load_balancer
 
 
0x10-https_ssl
0x10-https_ssl
 
 
0x11-what_happens_when_your_type_google_com_in_your_browser_and_press_enter
0x11-what_happens_when_your_type_google_com_in_your_browser_and_press_enter
 
 
0x12-web_stack_debugging_2
0x12-web_stack_debugging_2
 
 
0x13-firewall
0x13-firewall
 
 
0x15-api
0x15-api
 
 
0x16-api_advanced
0x16-api_advanced
 
 
0x17-web_stack_debugging_3
0x17-web_stack_debugging_3
 
 
0x18-webstack_monitoring
0x18-webstack_monitoring
 
 
0x19-postmortem
0x19-postmortem
 
 
0x1A-application_server
0x1A-application_server
 
 
0x1B-web_stack_debugging_4
0x1B-web_stack_debugging_4
 
 
attack_is_the_best_defense
attack_is_the_best_defense
 
 
0-world_wide_web
0-world_wide_web
 
 
1-haproxy_ssl_termination
1-haproxy_ssl_termination
 
 
100-redirect_http_to_https
100-redirect_http_to_https
 
 
README.md
README.md
 
 

Repository files navigation

HTTPS SSL Task 0-world_wide_web Configure your domain zone so that the subdomain www points to your load-balancer IP (lb-01). Let’s also add other subdomains to make our life easier, and write a Bash script that will display information about subdomains.

Requirements:

Add the subdomain www to your domain, point it to your lb-01 IP (your domain name might be configured with default subdomains, feel free to remove them) Add the subdomain lb-01 to your domain, point it to your lb-01 IP Add the subdomain web-01 to your domain, point it to your web-01 IP Add the subdomain web-02 to your domain, point it to your web-02 IP Your Bash script must accept 2 arguments: domain: type: string what: domain name to audit mandatory: yes subdomain: type: string what: specific subdomain to audit mandatory: no Output: The subdomain [SUB_DOMAIN] is a [RECORD_TYPE] record and points to [DESTINATION] When only the parameter domain is provided, display information for its subdomains www, lb-01, web-01 and web-02 - in this specific order When passing domain and subdomain parameters, display information for the specified subdomain Ignore shellcheck case SC2086 Must use: awk at least one Bash function

Task 1-haproxy_ssl_termination “Terminating SSL on HAproxy” means that HAproxy is configured to handle encrypted traffic, unencrypt it and pass it on to its destination.

Create a certificate using certbot and configure HAproxy to accept encrypted traffic for your subdomain www..

Requirements:

HAproxy must be listening on port TCP 443 HAproxy must be accepting SSL traffic HAproxy must serve encrypted traffic that will return the / of your web server When querying the root of your domain name, the page returned must contain Holberton School Share your HAproxy config as an answer file (/etc/haproxy/haproxy.cfg) The file 1-haproxy_ssl_termination must be your HAproxy configuration file

Make sure to install HAproxy 1.5 or higher, SSL termination is not available before v1.5.

Task 100-redirect_http_to_http A good habit is to enforce HTTPS traffic so that no unencrypted traffic is possible. Configure HAproxy to automatically redirect HTTP traffic to HTTPS.

Requirements:

This should be transparent to the user HAproxy should return a 301 HAproxy should redirect HTTP traffic to HTTPS Share your HAproxy config as an answer file (/etc/haproxy/haproxy.cfg)

About

No description, website, or topics provided.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages