diff --git a/roles/webserver/files/etc/apache2/sites-available/dev.thunix.cf-le-ssl.conf b/roles/webserver/files/etc/apache2/sites-available/dev.thunix.cf-le-ssl.conf
new file mode 100644
index 0000000..f62a0a2
--- /dev/null
+++ b/roles/webserver/files/etc/apache2/sites-available/dev.thunix.cf-le-ssl.conf
@@ -0,0 +1,17 @@
+<IfModule mod_ssl.c>
+<VirtualHost *:443>
+    ServerAdmin webmaster@thunix.net
+    ServerName dev.thunix.cf
+    DocumentRoot /var/www/dev.thunix.cf
+    ErrorLog ${APACHE_LOG_DIR}/error.log
+    CustomLog ${APACHE_LOG_DIR}/access.log combined
+    <Directorymatch "^/.*/\.git/">
+		Order deny,allow
+		Deny from all
+	</Directorymatch>
+
+Include /etc/letsencrypt/options-ssl-apache.conf
+SSLCertificateFile /etc/letsencrypt/live/phoenix.thunix.cf/fullchain.pem
+SSLCertificateKeyFile /etc/letsencrypt/live/phoenix.thunix.cf/privkey.pem
+</VirtualHost>
+</IfModule>
diff --git a/roles/webserver/files/etc/apache2/sites-available/dev.thunix.cf.conf b/roles/webserver/files/etc/apache2/sites-available/dev.thunix.cf.conf
new file mode 100644
index 0000000..df8dcb8
--- /dev/null
+++ b/roles/webserver/files/etc/apache2/sites-available/dev.thunix.cf.conf
@@ -0,0 +1,14 @@
+<VirtualHost *:80>
+    ServerAdmin webmaster@thunix.net
+    ServerName dev.thunix.cf
+    DocumentRoot /var/www/dev.thunix.cf
+    ErrorLog ${APACHE_LOG_DIR}/error.log
+    CustomLog ${APACHE_LOG_DIR}/access.log combined
+    <Directorymatch "^/.*/\.git/">
+		Order deny,allow
+		Deny from all
+	</Directorymatch>
+RewriteEngine on
+RewriteCond %{SERVER_NAME} =dev.thunix.cf
+RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,NE,R=permanent]
+</VirtualHost>
diff --git a/roles/webserver/files/etc/apache2/sites-available/dev.thunix.net.conf b/roles/webserver/files/etc/apache2/sites-available/dev.thunix.net.conf
new file mode 100644
index 0000000..e0a3db3
--- /dev/null
+++ b/roles/webserver/files/etc/apache2/sites-available/dev.thunix.net.conf
@@ -0,0 +1,11 @@
+<VirtualHost *:80>
+    ServerAdmin webmaster@thunix.net 
+    ServerName www.thunix.net
+    DocumentRoot /var/www/thunix.cf
+    ErrorLog ${APACHE_LOG_DIR}/error.log
+    CustomLog ${APACHE_LOG_DIR}/access.log combined
+    <Directorymatch "^/.*/\.git/">
+		Order deny,allow
+		Deny from all
+	</Directorymatch>
+</VirtualHost>
diff --git a/roles/webserver/files/etc/apache2/sites-available/ftp.thunix.net.conf b/roles/webserver/files/etc/apache2/sites-available/ftp.thunix.net.conf
new file mode 100644
index 0000000..0ae1a48
--- /dev/null
+++ b/roles/webserver/files/etc/apache2/sites-available/ftp.thunix.net.conf
@@ -0,0 +1,28 @@
+<VirtualHost *:80>
+    ServerAdmin webmaster@thunix.net
+    ServerName ftp.thunix.cf
+    DocumentRoot /var/www/ftp.thunix.cf
+    ErrorLog ${APACHE_LOG_DIR}/error.log
+    CustomLog ${APACHE_LOG_DIR}/access.log combined
+    <Directorymatch "^/.*/\.git/">
+                Order deny,allow
+                Deny from all
+        </Directorymatch>
+</VirtualHost>
+
+    <IfModule mod_ssl.c>
+    <VirtualHost *:443>
+    ServerAdmin webmaster@thunix.net
+    ServerName ftp.thunix.cf
+    DocumentRoot /var/www/ftp.thunix.cf
+    ErrorLog ${APACHE_LOG_DIR}/error.log
+    CustomLog ${APACHE_LOG_DIR}/access.log combined
+    <Directorymatch "^/.*/\.git/">
+                Order deny,allow
+                Deny from all
+        </Directorymatch>
+    SSLCertificateFile /etc/letsencrypt/live/ftp.thunix.cf/fullchain.pem
+    SSLCertificateKeyFile /etc/letsencrypt/live/ftp.thunix.cf/privkey.pem
+    Include /etc/letsencrypt/options-ssl-apache.conf
+    </VirtualHost>
+    </IfModule>
\ No newline at end of file
diff --git a/roles/webserver/files/etc/apache2/sites-available/phoenix.thunix.cf-le-ssl.conf b/roles/webserver/files/etc/apache2/sites-available/phoenix.thunix.cf-le-ssl.conf
new file mode 100644
index 0000000..60e0635
--- /dev/null
+++ b/roles/webserver/files/etc/apache2/sites-available/phoenix.thunix.cf-le-ssl.conf
@@ -0,0 +1,17 @@
+<IfModule mod_ssl.c>
+<VirtualHost *:443>
+    ServerAdmin webmaster@thunix.net
+    ServerName phoenix.thunix.cf
+    DocumentRoot /var/www/thunix.cf
+    ErrorLog ${APACHE_LOG_DIR}/error.log
+    CustomLog ${APACHE_LOG_DIR}/access.log combined
+    <Directorymatch "^/.*/\.git/">
+		Order deny,allow
+		Deny from all
+	</Directorymatch>
+
+Include /etc/letsencrypt/options-ssl-apache.conf
+SSLCertificateFile /etc/letsencrypt/live/phoenix.thunix.cf/fullchain.pem
+SSLCertificateKeyFile /etc/letsencrypt/live/phoenix.thunix.cf/privkey.pem
+</VirtualHost>
+</IfModule>
diff --git a/roles/webserver/files/etc/apache2/sites-available/phoenix.thunix.cf.conf b/roles/webserver/files/etc/apache2/sites-available/phoenix.thunix.cf.conf
new file mode 100644
index 0000000..7024ae9
--- /dev/null
+++ b/roles/webserver/files/etc/apache2/sites-available/phoenix.thunix.cf.conf
@@ -0,0 +1,14 @@
+<VirtualHost *:80>
+    ServerAdmin webmaster@thunix.net
+    ServerName phoenix.thunix.cf
+    DocumentRoot /var/www/thunix.cf
+    ErrorLog ${APACHE_LOG_DIR}/error.log
+    CustomLog ${APACHE_LOG_DIR}/access.log combined
+    <Directorymatch "^/.*/\.git/">
+		Order deny,allow
+		Deny from all
+	</Directorymatch>
+RewriteEngine on
+RewriteCond %{SERVER_NAME} =phoenix.thunix.cf
+RewriteRule ^ https://%{SERVER_NAME}%{REQUEST_URI} [END,NE,R=permanent]
+</VirtualHost>
diff --git a/roles/webserver/files/etc/apache2/sites-available/thunix.net-le-ssl.conf b/roles/webserver/files/etc/apache2/sites-available/thunix.net-le-ssl.conf
new file mode 100644
index 0000000..df4da28
--- /dev/null
+++ b/roles/webserver/files/etc/apache2/sites-available/thunix.net-le-ssl.conf
@@ -0,0 +1,23 @@
+<IfModule mod_ssl.c>
+<VirtualHost *:443>
+    ServerAdmin webmaster@thunix.net 
+    ServerName thunix.net
+    DocumentRoot /var/www/thunix.cf
+    ErrorLog ${APACHE_LOG_DIR}/error.log
+    CustomLog ${APACHE_LOG_DIR}/access.log combined
+    <Directorymatch "^/.*/\.git/">
+		Order deny,allow
+		Deny from all
+	</Directorymatch>
+RewriteEngine on
+# Some rewrite rules in this file were disabled on your HTTPS site,
+# because they have the potential to create redirection loops.
+
+ RewriteCond %{SERVER_NAME} =thunix.net
+ RewriteRule ^ https://www.%{SERVER_NAME}%{REQUEST_URI} [END,NE,R=permanent]
+
+Include /etc/letsencrypt/options-ssl-apache.conf
+SSLCertificateFile /etc/letsencrypt/live/thunix.net-0001/fullchain.pem
+SSLCertificateKeyFile /etc/letsencrypt/live/thunix.net-0001/privkey.pem
+</VirtualHost>
+</IfModule>
diff --git a/roles/webserver/files/etc/apache2/sites-available/www.thunix.net-le-ssl.conf b/roles/webserver/files/etc/apache2/sites-available/www.thunix.net-le-ssl.conf
new file mode 100644
index 0000000..d8ef640
--- /dev/null
+++ b/roles/webserver/files/etc/apache2/sites-available/www.thunix.net-le-ssl.conf
@@ -0,0 +1,17 @@
+<IfModule mod_ssl.c>
+<VirtualHost *:443>
+    ServerAdmin webmaster@thunix.net
+    ServerName www.thunix.net
+    DocumentRoot /var/www/thunix.cf
+    ErrorLog ${APACHE_LOG_DIR}/error.log
+    CustomLog ${APACHE_LOG_DIR}/access.log combined
+    <Directorymatch "^/.*/\.git/">
+		Order deny,allow
+		Deny from all
+	</Directorymatch>
+
+SSLCertificateFile /etc/letsencrypt/live/www.thunix.net/fullchain.pem
+SSLCertificateKeyFile /etc/letsencrypt/live/www.thunix.net/privkey.pem
+Include /etc/letsencrypt/options-ssl-apache.conf
+</VirtualHost>
+</IfModule>
diff --git a/roles/webserver/tasks/apache.yml b/roles/webserver/tasks/apache.yml
index c273c65..99c1bbc 100644
--- a/roles/webserver/tasks/apache.yml
+++ b/roles/webserver/tasks/apache.yml
@@ -42,3 +42,8 @@
   copy:
     src: ../files/etc/apache2/sites-available/www.thunix.net.conf
     dest: /etc/apache2/sites-available/www.thunix.net.conf
+
+- name: Deploy apache2 site conf for ftp.thunix.net.conf
+  copy:
+    src: ../files/etc/apache2/sites-available/ftp.thunix.net.conf
+    dest: /etc/apache2/sites-available/ftp.thunix.net.conf