SSL secure for an Icecast stream

[Le BoQ!]

Hello everyone !
I've been stuck on the same problem for several months when creating our radio station and it's tiring me out. I absolutely cannot SSL secure my Icecast stream.
I have already managed to SSL secure my VPS (which runs on Ubuntu 20.04) with LetsEncrypt and Certbot but I only managed to secure port 443 and not port 8000 (the one on which Icecast is), so I am really not far but I must misunderstand what a port is or perhaps many other things.
I found quite a few resources on the internet that explain how to do this so if you have any good references to give me I'm super interested.
Thank you all
Aristide

[Radiologo]

Hello Aristide

You must secure port 8443 with your hostname certificate converted into a .pem format. Ensure you open port 8443 in your Windows® firewall and create a rule for TCP and UDP.

Your secure URL should look something like this https://hostname.com:8443/your-icecast-mountpoint.

Your hostname MUST be SSL bidding to allow the .pem certificate to be read by Icecast. The .pem certificate combines the domain certificate and private key, so renaming a site certificate with the extension .pem will do the trick.

An easier way to accomplish this is to replace your Icecast instance with Rocket Streaming Audio Server (RSA), which allows 100 users under the free license. The RS makes SSL binding easy!

RSA is a drop replacement of icecast using the existing configuration.

Something to consider is that the current version of Icecast has some issues with the SSL certificate (MS WINDOWS®).

(*) I'm not associated with any of the companies/services as referred.

I hope this helps!

Radiologo

[stevewa]

lol, windoz advice when he says he's on Ubunutoo   

[Radiologo]

Ops!!! LOL my bad