diff --git a/nginx/certs.md b/nginx/certs.md
index 3c58711..e7d2c18 100644
--- a/nginx/certs.md
+++ b/nginx/certs.md
@@ -1,3 +1,6 @@
 ```sh
 sudo certbot certonly --standalone
+```
+```
+nilstrieb.dev,private-docker-registry.nilstrieb.dev
 ```
\ No newline at end of file
diff --git a/nginx/nginx.conf b/nginx/nginx.conf
index ee32ede..28bcc5c 100644
--- a/nginx/nginx.conf
+++ b/nginx/nginx.conf
@@ -4,14 +4,22 @@ events {
 
 http {
     server {
-        listen 80;
+        listen 443 ssl;
+
+        ssl_certificate /etc/nginx/certs/live/nilstrieb.dev/fullchain.pem;
+        ssl_certificate_key /etc/nginx/certs/live/nilstrieb.dev/privkey.pem;
+
+        server_name "private-docker-registry.nilstrieb.dev";
 
         server_name nilstrieb.dev;
-        return 302 http://blog.nilstrieb.dev$request_uri;
+        return 302 https://blog.nilstrieb.dev$request_uri;
     }
 
     server {
-        listen 80;
+        listen 443 ssl;
+
+        ssl_certificate /etc/nginx/certs/live/nilstrieb.dev/fullchain.pem;
+        ssl_certificate_key /etc/nginx/certs/live/nilstrieb.dev/privkey.pem;
 
         server_name "private-docker-registry.nilstrieb.dev";
 
diff --git a/nginx/run.sh b/nginx/run.sh
index 90e7b19..0717c69 100755
--- a/nginx/run.sh
+++ b/nginx/run.sh
@@ -6,8 +6,9 @@ if docker container inspect nginx > /dev/null 2>&1 ;
 then
     echo "nginx container exists already..."
 else
-    docker run -d -p 80:80 --restart=always --name nginx \
+    docker run -d -p 80:80 -p 443:443 --restart=always --name nginx \
         -v "$SCRIPT_DIR/nginx.conf:/etc/nginx/nginx.conf:ro" \
+        -v "/etc/letsencrypt:/etc/nginx/certs" \
         --net internal \
         nginx:latest
 fi
\ No newline at end of file