server {
        server_name podcast.gardiol.org;
        listen 8443 ssl; # external access
        listen 443 ssl; # internal access

        access_log /var/log/nginx/podcast.gardiol.org_access_log main;
        error_log /var/log/nginx/podcast.gardiol.org_error_log info;

        location / {
                     proxy_set_header X-Forwarded-For    $proxy_add_x_forwarded_for;
                     proxy_set_header  X-Forwarded-Proto $scheme;
                     proxy_set_header  Host              $host;
                     proxy_set_header Upgrade            $http_upgrade;
                     proxy_set_header Connection         "upgrade";

                     proxy_http_version                  1.1;

                     proxy_pass                          http://127.0.0.1:13378;
                     proxy_redirect                      http:// https://;
                   }

        include org.certbot.conf;
}