docker
/
d-nginx-proxy
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Compare commits

merge into: docker:master
Branches Tags
docker:master
docker:proxy
...
pull from: docker:proxy
Branches Tags
docker:master
docker:proxy

1 Commits
master ... proxy

Author SHA1 Message Date
Charles Reid 7be5dad979 whatever
6 years ago
12 changed files with 40 additions and 939 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats
  1. 12
      conf.d/_.conf
  2. 46
      conf.d/http.blue.charlesreid1.conf
  3. 76
      conf.d/http.com.charlesreid1.conf
  4. 46
      conf.d/http.red.charlesreid1.conf
  5. 165
      conf.d/https.blue.charlesreid1.conf
  6. 76
      conf.d/https.blue.charlesreid1.subdomains.conf
  7. 151
      conf.d/https.com.charlesreid1.conf
  8. 131
      conf.d/https.com.charlesreid1.subdomains.conf
  9. 165
      conf.d/https.red.charlesreid1.conf
  10. 76
      conf.d/https.red.charlesreid1.subdomains.conf
  11. 31
      conf.d/search.nihdatacommons.conf
  12. 4
      docker-compose.yml

12
conf.d/_.conf
Unescape View File

@ -1,6 +1,6 @@ @@ -1,6 +1,6 @@
# https://serverfault.com/a/525011
server {
server_name _;
listen *:80 default_server deferred;
return 444;
}
### # https://serverfault.com/a/525011
### server {
### server_name _;
### listen *:80 default_server deferred;
### return 444;
### }

46
conf.d/http.blue.charlesreid1.conf
Unescape View File

@ -1,46 +0,0 @@ @@ -1,46 +0,0 @@
####################
#
# charlesreid1.blue
# http
# 80
#
# basically, just redirects to https
#
####################
server {
listen 80;
listen [::]:80;
server_name charlesreid1.blue;
location / {
return 301 https://charlesreid1.blue$request_uri;
}
}
server {
listen 80;
listen [::]:80;
server_name www.charlesreid1.blue;
location / {
return 301 https://www.charlesreid1.blue$request_uri;
}
}
server {
listen 80;
listen [::]:80;
server_name git.charlesreid1.blue;
location / {
return 301 https://git.charlesreid1.blue$request_uri;
}
}
server {
listen 80;
listen [::]:80;
server_name files.charlesreid1.blue;
location / {
return 301 https://files.charlesreid1.blue$request_uri;
}
}

76
conf.d/http.com.charlesreid1.conf
Unescape View File

@ -1,76 +0,0 @@ @@ -1,76 +0,0 @@
####################
#
# charlesreid1.com
# http
# 80
#
# basically, just redirects to https
#
####################
server {
listen 80;
listen [::]:80;
server_name charlesreid1.com;
location / {
return 301 https://charlesreid1.com$request_uri;
}
}
server {
listen 80;
listen [::]:80;
server_name www.charlesreid1.com;
location / {
return 301 https://www.charlesreid1.com$request_uri;
}
}
server {
listen 80;
listen [::]:80;
server_name git.charlesreid1.com;
location / {
return 301 https://git.charlesreid1.com$request_uri;
}
}
server {
listen 80;
listen [::]:80;
server_name files.charlesreid1.com;
location / {
return 301 https://files.charlesreid1.com$request_uri;
}
}
server {
listen 80;
listen [::]:80;
server_name pages.charlesreid1.com;
port_in_redirect off;
location / {
return 301 https://pages.charlesreid1.com$request_uri;
}
}
server {
listen 80;
listen [::]:80;
server_name hooks.charlesreid1.com;
port_in_redirect off;
location / {
return 301 https://hooks.charlesreid1.com$request_uri;
}
}
server {
listen 80;
listen [::]:80;
server_name bots.charlesreid1.com;
port_in_redirect off;
location / {
return 301 https://bots.charlesreid1.com$request_uri;
}
}

46
conf.d/http.red.charlesreid1.conf
Unescape View File

@ -1,46 +0,0 @@ @@ -1,46 +0,0 @@
####################
#
# charlesreid1.red
# http
# 80
#
# basically, just redirects to https
#
####################
server {
listen 80;
listen [::]:80;
server_name charlesreid1.red;
location / {
return 301 https://charlesreid1.red$request_uri;
}
}
server {
listen 80;
listen [::]:80;
server_name www.charlesreid1.red;
location / {
return 301 https://www.charlesreid1.red$request_uri;
}
}
server {
listen 80;
listen [::]:80;
server_name git.charlesreid1.red;
location / {
return 301 https://git.charlesreid1.red$request_uri;
}
}
server {
listen 80;
listen [::]:80;
server_name files.charlesreid1.red;
location / {
return 301 https://files.charlesreid1.red$request_uri;
}
}

165
conf.d/https.blue.charlesreid1.conf
Unescape View File

@ -1,165 +0,0 @@ @@ -1,165 +0,0 @@
####################
#
# charlesreid1.blue
# https
# 443
#
# charlesreid1.blue and www.charlesreid1.blue
# should handle the following cases:
# - w/ and wiki/ should reverse proxy story_mw
# - phpMyAdmin/ should reverse proxy stormy_myadmin
#
# git.charlesreid1.blue should handle:
# - all requests should reverse proxy stormy_gitea
#
####################
server {
# https://charlesreid1.blue
listen 443;
listen [::]:443;
server_name charlesreid1.blue;
ssl on;
ssl_certificate /etc/letsencrypt/live/charlesreid1.blue/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/charlesreid1.blue/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf;
client_max_body_size 100m;
location / {
try_files $uri $uri/ =404;
root /www/charlesreid1.blue/htdocs;
index index.html;
}
location /wiki/ {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://stormy_mw:8989/wiki/;
}
location /wiki {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://stormy_mw:8989/wiki;
}
location /w/ {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://stormy_mw:8989/w/;
}
location /w {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://stormy_mw:8989/w;
}
#location /phpMyAdmin/ {
# proxy_set_header X-Real-IP $remote_addr;
# proxy_set_header X-Forwarded-For $remote_addr;
# proxy_set_header Host $host;
# proxy_pass http://stormy_myadmin:80/;
#}
# ~ means case-sensitive regex match, rather than string literal
# (ignores .git, .gitignore, etc.)
location ~ /\.git {
deny all;
}
}
server {
# https://www.charlesreid1.blue
listen 443;
listen [::]:443;
server_name www.charlesreid1.blue;
ssl on;
ssl_certificate /etc/letsencrypt/live/www.charlesreid1.blue/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/www.charlesreid1.blue/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf;
client_max_body_size 100m;
location / {
try_files $uri $uri/ =404;
root /www/charlesreid1.blue/htdocs;
index index.html;
}
location /wiki/ {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://stormy_mw:8989/wiki/;
}
location /w/ {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://stormy_mw:8989/w/;
}
location /phpMyAdmin/ {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://stormy_myadmin:80/;
}
location ~ /\.git {
deny all;
}
}
server {
# https://git.charlesreid1.blue
listen 443;
listen [::]:443;
server_name git.charlesreid1.blue;
ssl on;
ssl_certificate /etc/letsencrypt/live/git.charlesreid1.blue/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/git.charlesreid1.blue/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf;
client_max_body_size 100m;
location / {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://stormy_gitea:3000/;
}
}
server {
# https://files.charlesreid1.blue
listen 443;
listen [::]:443;
server_name files.charlesreid1.blue;
ssl on;
ssl_certificate /etc/letsencrypt/live/files.charlesreid1.blue/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/files.charlesreid1.blue/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf;
client_max_body_size 100m;
location / {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://stormy_files:8081/;
}
}

76
conf.d/https.blue.charlesreid1.subdomains.conf
Unescape View File

@ -1,76 +0,0 @@ @@ -1,76 +0,0 @@
####################
#
# charlesreid1.blue subdomains
# redirecting to blackbeard:
# - pages
# - hooks
# - bots
#
# krash = 45.56.87.232
# blackbeard = 54.191.178.27
#
####################
server {
listen 443;
listen [::]:443;
server_name pages.charlesreid1.blue;
ssl on;
ssl_certificate /etc/letsencrypt/live/pages.charlesreid1.blue/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/pages.charlesreid1.blue/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf;
client_max_body_size 100m;
location / {
# https://docs.nginx.com/nginx/admin-guide/web-server/reverse-proxy/
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://54.191.178.27:7777;
}
}
server {
listen 443;
listen [::]:443;
server_name hooks.charlesreid1.blue;
ssl on;
ssl_certificate /etc/letsencrypt/live/hooks.charlesreid1.blue/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/hooks.charlesreid1.blue/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf;
client_max_body_size 100m;
location / {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://54.191.178.27:7778;
}
}
server {
# https://bots.charlesreid1.blue
listen 443;
listen [::]:443;
server_name bots.charlesreid1.blue;
ssl on;
ssl_certificate /etc/letsencrypt/live/bots.charlesreid1.blue/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/bots.charlesreid1.blue/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf;
client_max_body_size 100m;
location / {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://54.191.178.27:7779;
}
}

151
conf.d/https.com.charlesreid1.conf
Unescape View File

@ -1,151 +0,0 @@ @@ -1,151 +0,0 @@
####################
#
# charlesreid1.com
# https
# 443
#
# charlesreid1.com and www.charlesreid1.com
# should handle the following cases:
# - w/ and wiki/ should reverse proxy story_mw
# - phpMyAdmin/ should reverse proxy stormy_myadmin
#
# git.charlesreid1.com should handle:
# - all requests should reverse proxy stormy_gitea
#
####################
server {
# https://charlesreid1.com
listen 443;
listen [::]:443;
server_name charlesreid1.com default_server;
ssl on;
ssl_certificate /etc/letsencrypt/live/charlesreid1.com/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/charlesreid1.com/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf;
client_max_body_size 100m;
location / {
try_files $uri $uri/ =404;
root /www/charlesreid1.com/htdocs;
index index.html;
}
location /wiki/ {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://stormy_mw:8989/wiki/;
}
location /w/ {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://stormy_mw:8989/w/;
}
#location /phpMyAdmin/ {
# proxy_set_header X-Real-IP $remote_addr;
# proxy_set_header X-Forwarded-For $remote_addr;
# proxy_set_header Host $host;
# proxy_pass http://stormy_myadmin:80/;
#}
# ~ means case-sensitive regex match, rather than string literal
# (ignores .git, .gitignore, etc.)
location ~ /\.git {
deny all;
}
}
server {
# https://www.charlesreid1.com
listen 443;
listen [::]:443;
server_name www.charlesreid1.com;
ssl on;
ssl_certificate /etc/letsencrypt/live/www.charlesreid1.com/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/www.charlesreid1.com/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf;
client_max_body_size 100m;
location / {
try_files $uri $uri/ =404;
root /www/charlesreid1.com/htdocs;
index index.html;
}
location /wiki/ {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://stormy_mw:8989/wiki/;
}
location /w/ {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://stormy_mw:8989/w/;
}
location /phpMyAdmin/ {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://stormy_myadmin:80/;
}
location ~ /\.git {
deny all;
}
}
server {
# https://git.charlesreid1.com
listen 443;
listen [::]:443;
server_name git.charlesreid1.com;
ssl on;
ssl_certificate /etc/letsencrypt/live/git.charlesreid1.com/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/git.charlesreid1.com/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf;
client_max_body_size 100m;
location / {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://stormy_gitea:3000/;
}
}
server {
# https://files.charlesreid1.com
listen 443;
listen [::]:443;
server_name files.charlesreid1.com;
ssl on;
ssl_certificate /etc/letsencrypt/live/files.charlesreid1.com/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/files.charlesreid1.com/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf;
client_max_body_size 100m;
location / {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://stormy_files:8081/;
}
}

131
conf.d/https.com.charlesreid1.subdomains.conf
Unescape View File

@ -1,131 +0,0 @@ @@ -1,131 +0,0 @@
####################
#
# charlesreid1.com subdomains
# redirecting to blackbeard:
# - pages
# - hooks
# - bots
#
# krash = 45.56.87.232
# blackbeard = 54.191.178.27
#
####################
server {
listen 443;
listen [::]:443;
server_name pages.charlesreid1.com;
ssl on;
ssl_certificate /etc/letsencrypt/live/pages.charlesreid1.com/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/pages.charlesreid1.com/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf;
client_max_body_size 100m;
port_in_redirect off;
location / {
# https://docs.nginx.com/nginx/admin-guide/web-server/reverse-proxy/
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header Host $host;
proxy_pass http://54.191.178.27:7777/;
proxy_redirect http://54.191.178.27:7777/ http://pages.charlesreid1.com/;
}
}
server {
listen 443;
listen [::]:443;
server_name hooks.charlesreid1.com;
ssl on;
ssl_certificate /etc/letsencrypt/live/hooks.charlesreid1.com/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/hooks.charlesreid1.com/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf;
client_max_body_size 100m;
gzip on;
gzip_http_version 1.0;
gzip_proxied any;
gzip_min_length 500;
gzip_disable "MSIE [1-6]\.";
gzip_types text/plain text/xml text/css
text/comma-separated-values
text/javascript
application/x-javascript
application/atom+xml;
location / {
# / takes user to static hooks subdomain page
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://54.191.178.27:7778;
}
location /webhook {
# /webhook* anything takes user to port 5000, api
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
proxy_set_header Host $host;
proxy_pass http://54.191.178.27:5000/webhook;
}
}
server {
# https://bots.charlesreid1.com
listen 443;
listen [::]:443;
server_name bots.charlesreid1.com;
ssl on;
ssl_certificate /etc/letsencrypt/live/bots.charlesreid1.com/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/bots.charlesreid1.com/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf;
client_max_body_size 100m;
port_in_redirect off;
location / {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://54.191.178.27:7779;
proxy_redirect http://54.191.178.27:7779/ http://bots.charlesreid1.com/;
}
}
#server {
# listen 443;
# listen [::]:443;
# server_name api.charlesreid1.com;
#
# ssl on;
# ssl_certificate /etc/letsencrypt/live/api.charlesreid1.com/fullchain.pem;
# ssl_certificate_key /etc/letsencrypt/live/api.charlesreid1.com/privkey.pem;
# include /etc/letsencrypt/options-ssl-nginx.conf;
#
# client_max_body_size 100m;
#
# location / {
# # / takes user to static api subdomain page
# proxy_set_header X-Real-IP $remote_addr;
# proxy_set_header X-Forwarded-For $remote_addr;
# proxy_set_header Host $host;
# proxy_pass http://54.191.178.27:7780;
# }
#
# #location ~ ^/[a-zA-Z0-9].* {
# # # /anything else takes user to port 5000, api
# # proxy_set_header X-Real-IP $remote_addr;
# # proxy_set_header X-Forwarded-Host $host:$server_port;
# # proxy_set_header X-Forwarded-Server $host;
# # proxy_set_header X-Forwarded-For $remote_addr;
# # proxy_set_header Host $host;
# # proxy_pass http://54.191.178.27:5000;
# #}
#
#}

165
conf.d/https.red.charlesreid1.conf
Unescape View File

@ -1,165 +0,0 @@ @@ -1,165 +0,0 @@
####################
#
# charlesreid1.red
# https
# 443
#
# charlesreid1.red and www.charlesreid1.red
# should handle the following cases:
# - w/ and wiki/ should reverse proxy story_mw
# - phpMyAdmin/ should reverse proxy stormy_myadmin
#
# git.charlesreid1.red should handle:
# - all requests should reverse proxy stormy_gitea
#
####################
server {
# https://charlesreid1.red
listen 443;
listen [::]:443;
server_name charlesreid1.red;
ssl on;
ssl_certificate /etc/letsencrypt/live/charlesreid1.red/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/charlesreid1.red/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf;
client_max_body_size 100m;
location / {
try_files $uri $uri/ =404;
root /www/charlesreid1.red/htdocs;
index index.html;
}
location /wiki/ {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://stormy_mw:8989/wiki/;
}
location /wiki {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://stormy_mw:8989/wiki;
}
location /w/ {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://stormy_mw:8989/w/;
}
location /w {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://stormy_mw:8989/w;
}
#location /phpMyAdmin/ {
# proxy_set_header X-Real-IP $remote_addr;
# proxy_set_header X-Forwarded-For $remote_addr;
# proxy_set_header Host $host;
# proxy_pass http://stormy_myadmin:80/;
#}
# ~ means case-sensitive regex match, rather than string literal
# (ignores .git, .gitignore, etc.)
location ~ /\.git {
deny all;
}
}
server {
# https://www.charlesreid1.red
listen 443;
listen [::]:443;
server_name www.charlesreid1.red;
ssl on;
ssl_certificate /etc/letsencrypt/live/www.charlesreid1.red/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/www.charlesreid1.red/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf;
client_max_body_size 100m;
location / {
try_files $uri $uri/ =404;
root /www/charlesreid1.red/htdocs;
index index.html;
}
location /wiki/ {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://stormy_mw:8989/wiki/;
}
location /w/ {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://stormy_mw:8989/w/;
}
location /phpMyAdmin/ {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://stormy_myadmin:80/;
}
location ~ /\.git {
deny all;
}
}
server {
# https://git.charlesreid1.red
listen 443;
listen [::]:443;
server_name git.charlesreid1.red;
ssl on;
ssl_certificate /etc/letsencrypt/live/git.charlesreid1.red/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/git.charlesreid1.red/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf;
client_max_body_size 100m;
location / {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://stormy_gitea:3000/;
}
}
server {
# https://files.charlesreid1.red
listen 443;
listen [::]:443;
server_name files.charlesreid1.red;
ssl on;
ssl_certificate /etc/letsencrypt/live/files.charlesreid1.red/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/files.charlesreid1.red/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf;
client_max_body_size 100m;
location / {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://stormy_files:8081/;
}
}

76
conf.d/https.red.charlesreid1.subdomains.conf
Unescape View File

@ -1,76 +0,0 @@ @@ -1,76 +0,0 @@
####################
#
# charlesreid1.red subdomains
# redirecting to blackbeard:
# - pages
# - hooks
# - bots
#
# krash = 45.56.87.232
# blackbeard = 54.191.178.27
#
####################
server {
listen 443;
listen [::]:443;
server_name pages.charlesreid1.red;
ssl on;
ssl_certificate /etc/letsencrypt/live/pages.charlesreid1.red/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/pages.charlesreid1.red/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf;
client_max_body_size 100m;
location / {
# https://docs.nginx.com/nginx/admin-guide/web-server/reverse-proxy/
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://54.191.178.27:7777;
}
}
server {
listen 443;
listen [::]:443;
server_name hooks.charlesreid1.red;
ssl on;
ssl_certificate /etc/letsencrypt/live/hooks.charlesreid1.red/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/hooks.charlesreid1.red/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf;
client_max_body_size 100m;
location / {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://54.191.178.27:7778;
}
}
server {
# https://bots.charlesreid1.red
listen 443;
listen [::]:443;
server_name bots.charlesreid1.red;
ssl on;
ssl_certificate /etc/letsencrypt/live/bots.charlesreid1.red/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/bots.charlesreid1.red/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf;
client_max_body_size 100m;
location / {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://54.191.178.27:7779;
}
}

31
conf.d/search.nihdatacommons.conf
Unescape View File

@ -0,0 +1,31 @@ @@ -0,0 +1,31 @@
# port 80 (http) redirects to port 443 (https)
server {
listen 80;
listen [::]:80;
server_name search.nihdatacommons.us;
location / {
return 301 https://search.nihdatacommons.us$request_uri;
}
}
server {
listen 443;
listen [::]:443;
server_name search.nihdatacommons.us;
ssl on;
ssl_certificate /etc/letsencrypt/live/search.nihdatacommons.us-0001/fullchain.pem;
ssl_certificate_key /etc/letsencrypt/live/search.nihdatacommons.us-0001/privkey.pem;
include /etc/letsencrypt/options-ssl-nginx.conf;
client_max_body_size 100m;
location / {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://localhost:5000/;
}
}

4
docker-compose.yml
Unescape View File

@ -5,7 +5,7 @@ services: @@ -5,7 +5,7 @@ services:
stormy_nginx:
restart: always
image: nginx
hostname: charlesreid1.blue
hostname: search.nihdatacommons.us
command: /bin/bash -c "nginx -g 'daemon off;'"
volumes:
- "./conf.d:/etc/nginx/conf.d"
@ -15,3 +15,5 @@ services: @@ -15,3 +15,5 @@ services:
ports:
- "80:80"
- "443:443"
network_mode: "host"

Write Preview
Loading…
Cancel
Save