Cloudron as reverse proxy for non-Cloudron apps
-
Cloudron admins also run other apps (e.g. Jitsi, Zammad, BlueSpice) on other non-Cloudron servers that use the subdomains of domains that exist on Cloudron. This is because these apps are not on Cloudron.
Nginx reverse proxy is an excellent tool for this multiple-server environment, creating a unified client experience and also keeps the other servers anonymous.
Since the Cloudron server's security is likely to be better than that of the other non-Cloudron servers (for an amateur Admin like me), can the Cloudron server be enabled - via a GUI - to make it easy to play this reverse proxy role for the other non-Cloudron servers?
-
Cloudron admins also run other apps (e.g. Jitsi, Zammad, BlueSpice) on other non-Cloudron servers that use the subdomains of domains that exist on Cloudron. This is because these apps are not on Cloudron.
Nginx reverse proxy is an excellent tool for this multiple-server environment, creating a unified client experience and also keeps the other servers anonymous.
Since the Cloudron server's security is likely to be better than that of the other non-Cloudron servers (for an amateur Admin like me), can the Cloudron server be enabled - via a GUI - to make it easy to play this reverse proxy role for the other non-Cloudron servers?
-
Cloudron admins also run other apps (e.g. Jitsi, Zammad, BlueSpice) on other non-Cloudron servers that use the subdomains of domains that exist on Cloudron. This is because these apps are not on Cloudron.
Nginx reverse proxy is an excellent tool for this multiple-server environment, creating a unified client experience and also keeps the other servers anonymous.
Since the Cloudron server's security is likely to be better than that of the other non-Cloudron servers (for an amateur Admin like me), can the Cloudron server be enabled - via a GUI - to make it easy to play this reverse proxy role for the other non-Cloudron servers?
@oj said in Cloudron as reverse proxy for non-Cloudron apps:
Nginx reverse proxy is an excellent tool for this multiple-server environment, creating a unified client experience and also keeps the other servers anonymous.
https://nginxproxymanager.com/
https://github.com/jc21/nginx-proxy-manager"I created this project to fill a personal need to provide users with a easy way to accomplish reverse proxying hosts with SSL termination and it had to be so easy that a monkey could do it."
-
@oj said in Cloudron as reverse proxy for non-Cloudron apps:
Nginx reverse proxy is an excellent tool for this multiple-server environment, creating a unified client experience and also keeps the other servers anonymous.
https://nginxproxymanager.com/
https://github.com/jc21/nginx-proxy-manager"I created this project to fill a personal need to provide users with a easy way to accomplish reverse proxying hosts with SSL termination and it had to be so easy that a monkey could do it."
-
@oj nice find. This may be good as a second tier reverse proxy for a (sub)domain as it runs as an App in a container and needs a DB.
The main Cloudron Nginx would be fronting it.
-
I am still on the fence if an app such as nginx proxy manager would really be useful on Cloudron.
Normally these types of apps are used to expose apps from the local system or maybe a private network to the internet. And what would be local to the app is already a Cloudron app and therefore covered. And since most Cloudron installations are running on a virtual server in a datacenter there is usually no private network either, meaning that communication to other apps would be plain text unless the app is already configured for ssl. And when you can already configure the app for ssl, you don't need a reverse proxy to do that for you.
Plus: skimming through their documentation I did not see a switch to disable their lets encrypt handling.
-
I wonder if nginxproxymanager is an app or something that we have to make sure Cloudron should integrate with? I feel it's the latter. If that's the case, let us know what is needed on the Cloudron side to make proxying work.
What I mean is: nginx proxy manager should be your "front" and Cloudron is just one of the apps it proxies to.
If there is an API, maybe we can at some point look into integrating with nginx proxy manager i.e an app installation can add entries into nginx proxy manager. Of course, this is viable only if nginx proxy manager is a supported and reasonably popular product. I remember we had similar ideas for integrating with Cloud Firewalls to open up ports automatically.
-
G girish referenced this topic on
-
F fbartels referenced this topic on
-
This post is deleted!
-
This post is deleted!
@randyisscott said in Cloudron as reverse proxy for non-Cloudron apps:
Hey there! It sounds like you're running a few different apps across multiple servers and you're looking for a way to create a unified client experience while also keeping the other servers anonymous. Using an Nginx reverse proxy can definitely help with this, and it's great to hear that you're considering using your Cloudron server to play this role. The Cloudron server's security is likely to be better than that of the other non-Cloud on servers, especially for an amateur Admin like yourself.
Enabling the Cloudron server to act as a reverse proxy via a GUI would make it much easier to manage this setup.
Keep in mind that if you're using private residential proxies, you may need to configure them correctly on the Nginx reverse proxy, as they can also be blocked by the firewall settings. -
@randyisscott said in Cloudron as reverse proxy for non-Cloudron apps:
Hey there! It sounds like you're running a few different apps across multiple servers and you're looking for a way to create a unified client experience while also keeping the other servers anonymous. Using an Nginx reverse proxy can definitely help with this, and it's great to hear that you're considering using your Cloudron server to play this role. The Cloudron server's security is likely to be better than that of the other non-Cloud on servers, especially for an amateur Admin like yourself.
Enabling the Cloudron server to act as a reverse proxy via a GUI would make it much easier to manage this setup.
Keep in mind that if you're using private residential proxies, you may need to configure them correctly on the Nginx reverse proxy, as they can also be blocked by the firewall settings. -
@randyisscott are you a bot? you post links in your comment which are not really relevant..
-
@girish it will indeed be interesting whether a discussion forum will be of any use in the future, where bots like this, enhanced by e.g ChatGPT, post nonsense and / or advertisements.
@necrevistonnezr yeah, we get around 3 such posts every day. Some of them are hard to figure whether they are bots or not. Like this account has been there since 2021. I actually think it's real humans but they are spamming for unknown reasons (I don't get what or who gains from this).
