natepichler
Dabbler
- Joined
- Feb 14, 2022
- Messages
- 11
I have nginx reverse proxy running in a jail, as well as some other apps (nextcloud, home assistant, plex, etc.). The reverse proxy is set up with my domain and ssl. I have also made CNAME records for each of the apps under my domain.
My issue is that I can access
On my local network, I can still use Plex at its local IP,
I figure this has something to do with how nginx is configured, but I'm getting stumped at this point.
Any ideas?
nginx.conf
ssl-params.conf
proxy-params.conf
plex.mydomain.net.conf
My issue is that I can access
plex.mydomain.net
from outside my network, but not locally. I get a "connection has timed out" error from Firefox. This is the case for all of my apps.On my local network, I can still use Plex at its local IP,
192.168.0.123:32400
.I figure this has something to do with how nginx is configured, but I'm getting stumped at this point.
Any ideas?
nginx.conf
Code:
worker_processes 1; events { worker_connections 1024; } http { include mime.types; default_type application/octet-stream; sendfile on; keepalive_timeout 65; # Redirect all HTTP traffic to HTTPS server { listen 80 default_server; listen [::]:80 default_server; return 301 https://$host$request_uri; } include "active_subdomains.conf";
ssl-params.conf
Code:
ssl_session_timeout 1d; ssl_session_cache shared:MozSSL:10m; ssl_session_tickets off; ssl_protocols TLSv1.3; ssl_ciphers #####-####-#### ssl_prefer_server_ciphers on; # HSTS (ngx_http_headers_module is required) (63072000 seconds) add_header Strict-Transport-Security "max-age=63072000" always; # OCSP stapling ssl_stapling on; ssl_stapling_verify on; resolver 192.168.0.1;
proxy-params.conf
Code:
proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header X-Forwarded-Proto $scheme; proxy_set_header X-Forwarded-Host $server_name; proxy_set_header X-Forwarded-Ssl on; proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection "upgrade"; proxy_http_version 1.1;
plex.mydomain.net.conf
Code:
server { listen 443 ssl; server_name plex.mydomain.net; access_log /var/log/nginx/plex.access.log; error_log /var/log/nginx/plex.error.log; include chunks/mydomain.net.cert.conf; include chunks/ssl-params.conf; location / { include chunks/proxy-params.conf; proxy_pass http://192.168.0.123:32400; } }