Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
Skins
  • Light
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor
  • Default (No Skin)
  • No Skin
Collapse

Cloudron Forum
Apps | Demo | Docs | Install

SSL passthrough to another VM when hosting at home

Scheduled Pinned Locked Moved Solved Support
3 Posts 2 Posters 226 Views
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • ianhyzyI Offline
    ianhyzyI Offline
    ianhyzy
    wrote on last edited by ianhyzy
    #1

    I have my Cloudron hosted at home with it being the target of 80/443. I want to also host things outside of Cloudron, but I've had issues with SSL and some other things. For example, I was able to install Zulip, which uses certbot to get a cert on install. When I try to go to the setup URL that zulip generates, it tells me the certificate is invalid (it's the cloudron cert rather than the zulip cert) and throws a 500 error.

    Has anyone got examples for how to do full HTTP(s) passthrough with Cloudron? I sort of got it working for other things, but not 100% with something like the following (which currently sort of works with my Synology, but file uploading is broken). I would love to figure out exactly what to put when other apps use their own SSL and what to do when I do want the SSL to terminate on the Cloudron for apps that don't support getting their own certs (like radarr or sonarr)

    server {
  server_name syno.mydomain.com;
  location / {
    proxy_pass http://192.168.1.222:5000;
    proxy_set_header Host $host;
    proxy_redirect http:// https://;
    proxy_http_version 1.1;
    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    proxy_set_header Upgrade $http_upgrade;
    proxy_set_header Connection $connection_upgrade;
  }
}
    nebulonN 1 Reply Last reply
    0
  • nebulonN Online
    nebulonN Online
    nebulon Staff
    replied to ianhyzy on last edited by
    #2

    @ianhyzy there is currently no built-in support for those extra reverserproxy configs and they will eventually be purged or cause other side-effects after Cloudron updates, as we think of :owning" the nginx configs fully. Mainly because this limits the potential edge-cases we have to test for.

    So far we would recommend creating a custom Cloudron app package for those apps, so they can be managed properly, however I understand this is a lot more work. Not sure if in the future we could provide some structured way, also via the dashboard, to manage such proxy pass routes.

    ianhyzyI 1 Reply Last reply
    0
  • ianhyzyI Offline
    ianhyzyI Offline
    ianhyzy
    replied to nebulon on last edited by
    #3

    @nebulon thanks, i did get this figured out with zulip's docs on reverse proxying and using certbot on the cloudron host again but I know I'm playing with fire. I get why this isn't a common use case, I can't imagine a lot of people host at home

    1 Reply Last reply
    0

  • Login
  • Don't have an account? Register
  • Login or register to search.
  • First post
    Last post
0
  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
  • Login
  • Don't have an account? Register
  • Login or register to search.