many thanks for your request. Basically it's not needed to adjust any files if you use DietPi scripts to setup SSL/HTTPS. All steps are automatically done. Below a small step by step guide how to enable SSL using dietpi-letsencrypt
create a clean DietPi installation and complete initial setup
first you would need to have a DynDNS service that allow you to connect from outside world to your home network by using a dynamic domain name. If you already have a DDNS service, you can go to point 5
Well, that worked. I was hesitant to do a clean install what with other services configured but it was far faster in the end than I had thought. Thanks!
Thanks for the walk-through @Joulinar
Quick question 1: Can port-forwarding for port 80 be turned off now that everything is being redirected to 443?
Quick question 2: Is there any security advantage to chasing the port of https to something else? (security through obscurity I know but is it a worthwhile step?)
I guess you would need to keep port 80 and 443 open, otherwise letsencrypt will not be able to renew certificates if needed. But it should not be a problem if you activated automatic redirection of HTTP to HTTPS (step 12). As well I don't think it's needed to move port 443 to something else.
Pls let us know if a solution is working. This could help others if they hit by similar situation. Your DietPi Team