TrueNAS Scale - MinIO and Certificate

[kavaa]

Is there anyone that has a good writeup on how to setup MinIO on TrueNAS Scale with valid Certificates.
Keep running into multiple issues, with this. Tried both the Charts Version and Enterprise.
Since the standard S3 service is going away i've started testing with the "Apps" Version but its not very promessing.
And we need HTTPS on MinIO otherwise things that need to talk to it will not work / give a lot of erros.
I've saw some posts on the forum that people put NGINX Proxy Manger in front of it.
We have Valid Certificates (WildCard) don't know if that's the problem.
But don't really want to have extra's running that are not needed.
And if we really need to run NGINX Proxy Manager what are the correct settings for MinIO

 

[sretalla]

All you need is some valid reverse proxy to point to your console port.

That can run in TrueNAS or outside it.

That can be Nginx Proxy Manager, Traefik, Apache, Caddy.... (a long list).

You can (at the expense of security) just forward a port from your router to the MinIO port directly, which requires that the app config is set to provide the certificate.

 

[kavaa]

Thanks, this will not impact performance right? As in S3 traffic will not cause extra load on the NGINX Proxy server?

 

[sretalla]

this will not impact performance right? As in S3 traffic will not cause extra load on the NGINX Proxy server?

That's how a reverse proxy works. It may impact performance, it may not.

 

[kavaa]

Got this to work now, but all traffic (S3) is flowing through the NGINX Proxy...
Since this is only internal, its a bit of a pain since it cause extra load / reduces speed.
Any way to fix this with NGINX.
Or even better just load the certificates that we already have into the MinIO App... This is costing valuable performance.