Hi Uroni,
will you ever implement https connections?
P.S. I’m using Windows Server version
Use reverse proxy and everything is good.
I prefer reverse proxy because, this makes it very simple for me to maintain let’s encrypt certificate with my nginx server.
Hey there ressel, I wonder if you might be willing to share a sanitized version of your nginx config. I’m having a bear of a time getting it working reliably.
Cheers!
S
This is how I do it.
Remember to change: urbackup_ip
and: my_backup_servername
server {
listen 80;
server_name my_backup_servername;
return 301 https://$host$request_uri;
}
server {
listen 443;
server_name my_backup_servername;
ssl_certificate /etc/letsencrypt/live/my_backup_servername/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/my_backup_servername/privkey.pem;
ssl on;
# intermediate configuration. tweak to your needs.
ssl_protocols TLSv1.2;
ssl_ciphers 'ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256';
ssl_prefer_server_ciphers on;
# HSTS (ngx_http_headers_module is required) (15768000 seconds = 6 months)
add_header Strict-Transport-Security max-age=15768000;
access_log /var/log/nginx/my_backup_servername_access.log;
error_log /var/log/nginx/my_backup_servername_error.log;
error_page 404 /404.html;
error_page 500 502 503 504 /50x.html;
location / {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header Host $host;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_pass http://urbackup_ip:55414;
proxy_read_timeout 90;
}
2 Likes
Thanks, Ressel. Appreciate the help! 