Setup a server to act as the RIPT Relay. I’ve deployed a t2.micro instance running Ubuntu 14.04.5 LTS in the Amazon AWS cloud. It’s assigned an Elastic IP so we don’t have to mess with Dynamic DNS.
To increase the security of our encrypted tunnels we are going to validate certificates where possible so it is important to register a domain name and install a valid cert. Any registrar and issuer can be used, but in our example we will deploy a certificate from Let’s Encrypt (https://letsencrypt.org/).
A good tutorial on installing Let’s Encrypt certificate’s on HAProxy (our proxy of choice) can be found here: https://www.digitalocean.com/community/tutorials/how-to-secure-haproxy-with-let-s-encrypt-on-ubuntu-14-04