Scribd
Upload
21 views

Comandos Server Test

The document outlines the steps to install and configure an Ookla speed test server on a Linux system using systemd, including obtaining an SSL certificate from Let's Encrypt for HTTPS. It installs required packages and tools, downloads and runs the Ookla server installation script, generates a systemd service file, enables and starts the service, then uses Certbot to request a certificate and configures the Ookla server to use the new certificate. After restarting the service, it checks that the server is running properly.

Uploaded by

deivine59
Copyright
© © All Rights Reserved
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
21 views

Comandos Server Test

The document outlines the steps to install and configure an Ookla speed test server on a Linux system using systemd, including obtaining an SSL certificate from Let's Encrypt for HTTPS. It installs required packages and tools, downloads and runs the Ookla server installation script, generates a systemd service file, enables and starts the service, then uses Certbot to request a certificate and configures the Ookla server to use the new certificate. After restarting the service, it checks that the server is running properly.

Uploaded by

deivine59
Copyright
© © All Rights Reserved
Available Formats
Download as TXT, PDF, TXT or read online on Scribd
You are on page 1/ 2

apt install vim wget unzip net-tools

mkdir /usr/local/src/ooklaserver
cd /usr/local/src/ooklaserver
wget https://install.speedtest.net/ooklaserver/ooklaserver.sh
chmod +x ooklaserver.sh
./ooklaserver.sh install
./ooklaserver.sh stop
vim /usr/local/src/ooklaserver/ooklaServer.properties
cp /usr/local/src/ooklaserver/OoklaServer.properties
/usr/local/src/ooklaserver/OoklaServer.properties.default
vim /lib/systemd/system/ooklaserver.service
[Unit]
Description=OoklaServer-SpeedTest
After=network.target

[Service]
User=root
Group=root
Type=simple
RemainAfterExit=yes

WorkingDirectory=/usr/local/src/ooklaserver
ExecStart=/usr/local/src/ooklaserver/ooklaserver.sh start
ExecReload=/usr/local/src/ooklaserver/ooklaserver.sh restart
ExecStop=/usr/local/src/ooklaserver/ooklaserver.sh stop

TimeoutStartSec=60
TimeoutStopSec=300

[Install]
WantedBy=multi-user.target
Alias=speedtest.service

systemctl daemon-reload
systemctl status ooklaserver
systemctl enable ooklaserver
systemctl status ooklaserver
systemctl start ooklaserver
systemctl status ooklaserver
reboot
systemctl status ooklaserver
systemctl status speedtest

---------------------------------------------------
Solución de certificado
Instalemos Certbot, que generará certificados con Let's Encrypt.

apt install certbot


certbot certonly --standalone

Responde: email (null@SEU DOMINIO.com.br), Y, N, tu dominio

Saving debug log to /var/log/letsencrypt/letsencrypt.log


Plugins selected: Authenticator standalone, Installer None
Enter email address (used for urgent renewal and security notices)
(Enter 'c' to cancel): null@SEU DOMINIO.com.br
<<<<<<<<<<<<<<<<<<<<<
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Please read the Terms of Service at
https://letsencrypt.org/documents/LE-SA-v1.2-November-15-2017.pdf. You must
agree in order to register with the ACME server. Do you agree?
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
(Y)es/(N)o: Y
<<<<<<<<<<<<<<<<<<<<<

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Would you be willing, once your first certificate is successfully issued, to
share your email address with the Electronic Frontier Foundation, a founding
partner of the Let's Encrypt project and the non-profit organization that
develops Certbot? We'd like to send you email about our work encrypting the web,
EFF news, campaigns, and ways to support digital freedom.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
(Y)es/(N)o: N
<<<<<<<<<<<<<<<<<<<<<
Account registered.
Please enter in your domain name(s) (comma and/or space separated) (Enter 'c'
to cancel): teste.remontti.com.br
<<<<<<<<<<<<<<<<<<<<<
Requesting a certificate for SEU DOMINIO
Performing the following challenges:
http-01 challenge for teste.remontti.com.br
Waiting for verification...
Cleaning up challenges

IMPORTANT NOTES:
- Congratulations! Your certificate and chain have been saved at:
/etc/letsencrypt/live/teste.remontti.com.br/fullchain.pem
Your key file has been saved at:
/etc/letsencrypt/live/teste.remontti.com.br/privkey.pem
Your certificate will expire on 2022-02-03. To obtain a new or
tweaked version of this certificate in the future, simply run
certbot again. To non-interactively renew *all* of your
certificates, run "certbot renew"
- If you like Certbot, please consider supporting our work by:

Donating to ISRG / Let's Encrypt: https://letsencrypt.org/donate


Donating to EFF: https://eff.org/donate-le

vim /usr/local/src/ooklaserver/OoklaServer.properties
openSSL.server.certificateFile =
/etc/letsencrypt/live/SUB.DOMINIO.XXX.XX/fullchain.pem
openSSL.server.privateKeyFile =
/etc/letsencrypt/live/SUB.DOMINIO.XXX.XX/privkey.pem

cp /usr/local/src/ooklaserver/OoklaServer.properties
/usr/local/src/ooklaserver/OoklaServer.properties.default
systemctl restart ooklaserver.service

You might also like