...
| Code Block |
|---|
server {
server_name www.server.com server.com;
listen 443 ssl;
location / {
proxy_pass http://192.168.1.60:12345/;
}
ssl_certificate /etc/letsencrypt/live/www.server.com-0001/fullchain.pem; # managed by Certbot
ssl_certificate_key /etc/letsencrypt/live/www.server.com-0001/privkey.pem; # managed by Certbot
include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
}
server {
server_name www.server.com server.com;
listen 80;
return 301 https://www.diabetease.com$request_uri;
} |
Forwarding Real IP Address
Add X-Real-IP and X-Forwarded-For headers using the proxy_set_header instruction.
| Code Block |
|---|
server {
server_name creativeattitude.com www.creativeattitude.com;
location / {
proxy_pass http://192.168.1.50:7082/;
}
listen 443 ssl;
ssl_certificate /etc/letsencrypt/live/www.creativeattitude.com-0002/fullchain.pem; # managed by Certbot
ssl_certificate_key /etc/letsencrypt/live/www.creativeattitude.com-0002/privkey.pem; # managed by Certbot
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
}
server {
listen 80;
server_name creativeattitude.com www.creativeattitude.com;
return 301 https://www.creativeattitude.com$request_uri;
} |
Customized Dockerfile
The following Dockerfile adds certbot and apache2-utils to our nginx-reverse-proxy image.
| Code Block |
|---|
| language | yml |
|---|
| title | Dockerfile |
|---|
|
FROM lerenn/nginx-reverse-proxy
RUN apt-get update
RUN apt-get install -y wget
RUN apt-get install -y apache2-utils
RUN wget https://dl.eff.org/certbot-auto
RUN chmod +x certbot-auto
RUN ./certbot-auto -n --install-only |
References