Advertisement
RingtailedFox

attempting to route etherpad through an nginx reverse proxy

Jun 2nd, 2024
69
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 3.06 KB | None | 0 0
  1. /var/logs/nginx/error.log:
  2. 2024/06/02 20:41:53 [crit] 20252#20252: *21 SSL_do_handshake() failed (SSL: error:0A00006C:SSL routines::bad key share) while SSL handshaking, client: 212.102.40.218, server: 0.0.0.0:443
  3. 2024/06/02 20:42:11 [error] 20254#20254: *22 connect() failed (111: Connection refused) while connecting to upstream, client: 2001:1970:5d2a:c500:b1e7:7516:8410:5f72, server: etherpad.thefurrycollective.ca, request: "GET / HTTP/1.1", upstream: "http://[::1]:9001/", host: "etherpad.thefurrycollective.ca"
  4. 2024/06/02 20:42:11 [error] 20254#20254: *22 connect() failed (111: Connection refused) while connecting to upstream, client: 2001:1970:5d2a:c500:b1e7:7516:8410:5f72, server: etherpad.thefurrycollective.ca, request: "GET /favicon.ico HTTP/1.1", upstream: "http://[::1]:9001/favicon.ico", host: "etherpad.thefurrycollective.ca", referrer: "https://etherpad.thefurrycollective.ca/"
  5.  
  6. 2024/06/02 20:46:41 [error] 20251#20251: *25 connect() failed (111: Connection refused) while connecting to upstream, client: 2001:1970:5d2a:c500:b1e7:7516:8410:5f72, server: etherpad.thefurrycollective.ca, request: "GET / HTTP/1.1", upstream: "http://[::1]:9001/", host: "etherpad.thefurrycollective.ca"
  7. 2024/06/02 20:46:41 [error] 20251#20251: *25 connect() failed (111: Connection refused) while connecting to upstream, client: 2001:1970:5d2a:c500:b1e7:7516:8410:5f72, server: etherpad.thefurrycollective.ca, request: "GET / HTTP/1.1", upstream: "http://[::1]:9001/", host: "etherpad.thefurrycollective.ca"
  8. 2024/06/02 20:46:41 [error] 20251#20251: *25 connect() failed (111: Connection refused) while connecting to upstream, client: 2001:1970:5d2a:c500:b1e7:7516:8410:5f72, server: etherpad.thefurrycollective.ca, request: "GET /favicon.ico HTTP/1.1", upstream: "http://[::1]:9001/favicon.ico", host: "etherpad.thefurrycollective.ca", referrer: "https://etherpad.thefurrycollective.ca/"
  9.  
  10.  
  11.  
  12. /opt/etherpad-lite/settings.json:
  13. server {
  14. listen 80;
  15. listen [::]:80;
  16. server_name etherpad.thefurrycollective.ca;
  17.  
  18. return 301 https://$host$request_uri;
  19. }
  20.  
  21. server {
  22. listen 443 ssl;
  23. listen [::]:443 ssl;
  24. server_name etherpad.thefurrycollective.ca;
  25.  
  26. ssl_certificate /etc/letsencrypt/live/thefurrycollective.ca-0002/fullchain.pem;
  27. ssl_certificate_key /etc/letsencrypt/live/thefurrycollective.ca-0002/privkey.pem;
  28.  
  29. include snippets.d/matrix-wellknown.conf;
  30.  
  31.  
  32.  
  33. location / {
  34. # note: do not add a path (even a single /) after the port in `proxy_pass`,
  35. # otherwise nginx will canonicalise the URI and cause signature verification
  36. # errors.
  37. proxy_pass http://[::1]:9001;
  38. proxy_set_header X-Forwarded-For $remote_addr;
  39. proxy_set_header X-Forwarded-Proto $scheme;
  40. proxy_set_header Host $host;
  41.  
  42. # Nginx by default only allows file uploads up to 1M in size
  43. # Increase client_max_body_size to match max_upload_size defined in homeserver.yaml
  44. client_max_body_size 5000M;
  45.  
  46. # Synapse responses may be chunked, which is an HTTP/1.1 feature.
  47. proxy_http_version 1.1;
  48. }
  49.  
  50. }
  51.  
  52.  
  53.  
  54.  
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement