apt-get install apache2

a2enmod proxy
a2enmod proxy_http
a2enmod rewrite
a2enmod ssl

a2dissite 000-default.conf
a2dissite default-tls.conf

nano /etc/apache2/site-available/monsite.conf

<VirtualHost *:443>
	
	#########GENERAL#########
	ServerName wiki.virtit.fr
	Header always set Strict-Transport-Security "max-age=63072000; includeSubdomains;"
	

	###########SSL###########
	# Il est nécessaire d'activer SSL, sinon c'est http qui sera utilisé
	SSLEngine On

	# Les clefs du serveur :
	SSLCertificateFile /etc/letsencrypt/live/wiki.virtit.fr/fullchain.pem
	SSLCertificateKeyFile /etc/letsencrypt/live/wiki.virtit.fr/privkey.pem

	# On autorise TLSv1.2, on rejette les autres
	SSLProtocol -all +TLSv1.2

	# On autorise uniquement les clefs de cryptage longue (high).
	SSLCipherSuite HIGH:!kRSA:!kDHr:!kDHd:!kSRP:!aNULL:!3DES:!MD5

	
	##########PROXY##########
	<IfModule mod_rewrite.c>
		RewriteEngine on
		RewriteCond %{REQUEST_METHOD} ^(TRACE|TRACK)
		RewriteRule .* - [F]
	</IfModule>

	<IfModule mod_rewrite.c>
		<IfModule mod_proxy.c>
			ProxyRequests Off
			ProxyPreserveHost On
			ProxyPass / http://wiki.virtit.lan/
			ProxyPassReverse / http://wiki.virtit.lan/
			RewriteRule ^/(.*) http://wiki.virtit.lan/$1 [P,L]
		</IfModule>
	</IfModule>

	<Location />
		Order deny,allow
		Allow from all
	</Location>

	
	###########LOG###########
	ErrorLog /var/log/apache2/wiki.tld-error.log
	LogLevel warn
	CustomLog /var/log/apache2/wiki.tld-access.log combined
	
</VirtualHost>

# Redirection des requettes HTTP vers l'HTTPS.
<VirtualHost *:80>
	
	ServerName wiki.virtit.fr

	<IfModule mod_rewrite.c>
		RewriteEngine on
		RewriteCond %{REQUEST_METHOD} ^{TRACE|TRACK}
		RewriteRule .* - [F]
	</IfModule>

	Redirect permanent / https://wiki.virtit.fr/

	###########LOG###########
	ErrorLog /var/log/apache2/wiki.tld-error.log
	LogLevel warn
	CustomLog /var/log/apache2/wiki.tld-access.log combined

</VirtualHost>