Differences
This shows you the differences between two versions of the page.
| Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
| selfhost:nginx [2025/02/13 11:47] – willy | selfhost:nginx [2025/09/16 10:15] (current) – [Reverse Proxy propagation] willy | ||
|---|---|---|---|
| Line 1: | Line 1: | ||
| - | ====== The Reverse Proxy concept ====== | + | ====== |
| The use of a **reverse proxy** is the key at the foundation of ensuring security, isolation and flexibility in accessing your self-hosted services. | The use of a **reverse proxy** is the key at the foundation of ensuring security, isolation and flexibility in accessing your self-hosted services. | ||
| Line 62: | Line 62: | ||
| * Port 8443: HTTPS for **external** access | * Port 8443: HTTPS for **external** access | ||
| - | **Note:** for Let's Encrypt CertBot to work properly you **need** to redirect **both** port 80 and 443 from your external server to your internal server. CertBot will shutdown your NGINX and spin a custom NGINX server that you cannot tweak so it's critical that your SSH tunnels are properly forwarding ports 80 and 443 from the external server to the internal one, or it will not work. | + | **Note:** for Let's Encrypt CertBot to work properly you **need** to redirect **both** port 80 and 443 from your external server to your internal server. CertBot will shutdown your NGINX and spin a custom NGINX server that you cannot tweak so it's critical that your Wireguard or SSH tunnels are properly forwarding ports 80 and 443 from the external server to the internal one, or it will not work. |