ssl

June 12, 2025
in traefik, ssl, docker, devops
3 min read

Goodbye Nginx, Hello Traefik! Effortless HTTPS with Let's Encrypt and Docker

If you've struggled with Nginx reverse proxy configs, certbot timers, and nginx -s reload, it's time to meet Traefik — a modern reverse proxy built for dynamic containerized environments.

Why Traefik over Nginx?

Unlike Nginx, which requires manual configuration updates and reloads, Traefik auto-discovers services via Docker labels, keeping your proxy config in sync with running containers. It also:

Automatically obtains and renews Let’s Encrypt certificates
Handles HTTP/HTTPS routing, path-based rules, load balancing, and more
Supports metrics, tracing, and even canary deployments with Traefik Enterprise

For small setups or demos, it’s a powerful, drop-in Nginx replacement — with less boilerplate.

June 4, 2025
in terraform, cloudfront, aws, route53, ssl
4 min read

Building a Reusable Terraform Static Site Module with CloudFront, S3, and Route 53

Overview

A common need in modern cloud infrastructure is hosting static websites — whether it's marketing sites, documentation portals, or Single Page Applications (SPAs) built with React, Vue, or Svelte.

At first, the AWS building blocks for this are fairly simple:

S3 for object storage
CloudFront for CDN
ACM for HTTPS
Route 53 for DNS

But quickly, managing this setup by hand or duplicating configs across environments (prod, staging, QA) becomes painful:

Too many copy/paste Terraform files
Hard to apply consistent policies
Complicated to manage uploads (especially when some sites are CI/CD and some are manual content sites)

May 30, 2025
in networking, ssl, kubernetes, aws, eks
4 min read

Automated TLS and DNS in Kubernetes with ExternalDNS, Ingress, and Let's Encrypt

Managing DNS and TLS certificates for Kubernetes applications can be tedious and error-prone. Thankfully, tools like ExternalDNS, Ingress, and Cert-Manager automate the entire process — from setting DNS records to provisioning Let's Encrypt certificates.

In this guide, we'll walk through how to:

Use ExternalDNS to automatically create DNS records.
Annotate Ingress resources to request a Let's Encrypt TLS cert.
Get HTTPS with minimal manual intervention.
Understand how these components interact.

February 26, 2025
in devops, shell script, ssl, docker, oci
3 min read

Setting Up Docker, SSL, and DuckDNS on Oracle Server

This guide will walk you through the process of setting up Docker, configuring SSL certificates, and setting up DuckDNS on an Oracle server (Oracle Linux 9).

November 30, 2024
in ssl, devops
3 min read

Let's Encrypt SSL Certificate with Certbot for GoDaddy

Securing your website with HTTPS is a critical step in establishing trust and improving SEO. This guide will show how to generate and install a free Let's Encrypt SSL certificate on a GoDaddy-hosted site using Certbot, and set up automatic certificate renewal.