You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I've set-up my Nextcloud docker like this:
Internet > Nginx proxy > nextcloud nginx frontend > nextcloud app
OS: CentOS7 (up to date)
Docker: version 19.03.1, build 74b1e89
Nextcloud-app image: nextcloud:fpm-alpine
Nextcloud-web image: nginx:alpine
Nginx Proxy:
This is where I enable HTTPS, TLS, strong encryption and the whole shebang. I basically run this nginx proxy because I have several HTTP services on my VPS
Nextcloud nginx frontend:
Configuration from the installation instructions
Nextcloud app backend:
Nextcloud container
Everything works perfectly fine except for the passing on of the real IP. I've tested with putting my nginx r-proxy in Host mode, this made the right IPs (external / internet IPs) show up in his log files and it was also the last IP in the nginx frontend's log. But they still don't show up correctly in my Nextcloud app log. I've tested by adding the following to the config.php:
This still made the actual IP of the nginx frontend show up in my app log. The trusted proxy IPs are the IPs and gateways from the nextcloud app and the nextcloud nginx frontend.
What am I doing wrong? How can I make this setup, or a set up which is still secure enough to expose it to the internet, work with having bruteforce protection and fail2ban enabled?
I've read to all the related issues I could find and also through the installation instructions in the manual but nothing made this work for me.
The text was updated successfully, but these errors were encountered:
I've set-up my Nextcloud docker like this:
Internet > Nginx proxy > nextcloud nginx frontend > nextcloud app
OS: CentOS7 (up to date)
Docker: version 19.03.1, build 74b1e89
Nextcloud-app image: nextcloud:fpm-alpine
Nextcloud-web image: nginx:alpine
Nginx Proxy:
This is where I enable HTTPS, TLS, strong encryption and the whole shebang. I basically run this nginx proxy because I have several HTTP services on my VPS
Nextcloud nginx frontend:
Configuration from the installation instructions
Nextcloud app backend:
Nextcloud container
Everything works perfectly fine except for the passing on of the real IP. I've tested with putting my nginx r-proxy in Host mode, this made the right IPs (external / internet IPs) show up in his log files and it was also the last IP in the nginx frontend's log. But they still don't show up correctly in my Nextcloud app log. I've tested by adding the following to the config.php:
This still made the actual IP of the nginx frontend show up in my app log. The trusted proxy IPs are the IPs and gateways from the nextcloud app and the nextcloud nginx frontend.
What am I doing wrong? How can I make this setup, or a set up which is still secure enough to expose it to the internet, work with having bruteforce protection and fail2ban enabled?
I've read to all the related issues I could find and also through the installation instructions in the manual but nothing made this work for me.
The text was updated successfully, but these errors were encountered: