API tools faq
paste
Advertisement
hotleadsingerguy

Reverse Proxy

hotleadsingerguy
Jun 25th, 2018
120
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 9.98 KB | None | 0 0
raw download clone embed print report
  1. # Send all HTTP to HTTPS
  2. server {
  3. listen 80 default_server;
  4. server_name 127.0.0.1 10.0.0.XXX 10.0.0.XXX DOMAIN.com www.DOMAIN.com DOMAIN.com www.DOMAIN.com deluge.DOMAIN.com radarr.DOMAIN.com sonarr.DOMAIN.com music.DOMAIN.com plexpy.DOMAIN.com plex.DOMAIN.com stats.DOMAIN.com comics.DOMAIN.com DOMAIN.com www.DOMAIN.com requests.DOMAIN.com;
  5.  
  6. location / {
  7. return 301 https://$host$request_uri;
  8. }
  9. }
  10.  
  11. #####################
  12. # DOMAIN
  13. #####################
  14.  
  15. server {
  16. listen 443 ssl http2 sndbuf=32k;
  17. server_name 10.0.0.XXX DOMAIN.com www.DOMAIN.com DOMAIN.com www.DOMAIN.com;
  18.  
  19. root /var/www/html/sub;
  20. index index.php index.html index.htm;
  21. ssl_certificate /etc/letsencrypt/live/DOMAIN.com-0002/fullchain.pem; # managed by Certbot
  22. ssl_certificate_key /etc/letsencrypt/live/DOMAIN.com-0002/privkey.pem; # managed by Certbot
  23. include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
  24.  
  25. error_log /var/log/nginx/sub.log notice;
  26. client_max_body_size 64M;
  27.  
  28. add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;
  29.  
  30. location ~ \.php$ {
  31. include snippets/fastcgi-php.conf;
  32. include fastcgi_params;
  33. }
  34.  
  35. location / {
  36.  
  37. }
  38. }
  39.  
  40.  
  41. #####################
  42. # SSL
  43. #####################
  44.  
  45. server {
  46. listen 443 ssl http2 default_server;
  47. server_name 10.0.0.XXX:8080 DOMAIN.com www.DOMAIN.com;
  48.  
  49. root /var/www/html;
  50. index index.php index.html index.htm index.nginx-debian.html index.asmx;
  51. ssl_certificate /etc/letsencrypt/live/DOMAIN.com-0002/fullchain.pem; # managed by Certbot
  52. ssl_certificate_key /etc/letsencrypt/live/DOMAIN.com-0002/privkey.pem; # managed by Certbot
  53. include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
  54.  
  55. error_log /var/log/nginx/error.log notice;
  56. client_max_body_size 64M;
  57.  
  58. add_header Strict-Transport-Security "max-age=31536000; includeSubDomains" always;
  59.  
  60. location /tfs {
  61. proxy_pass http://10.0.0.XXX:8080/tfs;
  62. proxy_http_version 1.1;
  63. proxy_set_header Connection "";
  64. proxy_set_header Host $host;
  65. proxy_set_header X-Real-IP $remote_addr;
  66. proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
  67. }
  68.  
  69. location ~ \.php$ {
  70. include snippets/fastcgi-php.conf;
  71. include fastcgi_params;
  72. }
  73.  
  74. location / {
  75. auth_basic "Restricted Content";
  76. auth_basic_user_file /etc/nginx/.htpasswd;
  77. }
  78.  
  79.  
  80. }
  81.  
  82. #####################
  83. # Radar
  84. #####################
  85.  
  86. server {
  87. listen 443 ssl http2;
  88. server_name 10.0.0.XXX:7878 radarr.DOMAIN.com;
  89. ssl_certificate /etc/letsencrypt/live/DOMAIN.com-0002/fullchain.pem; # managed by Certbot
  90. ssl_certificate_key /etc/letsencrypt/live/DOMAIN.com-0002/privkey.pem; # managed by Certbot
  91. include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
  92.  
  93. location / {
  94. proxy_pass http://127.0.0.1:7878;
  95. proxy_set_header Host $host;
  96. proxy_set_header X-Real-IP $remote_addr;
  97. proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
  98. }
  99.  
  100. }
  101.  
  102. #####################
  103. # Sonarr
  104. #####################
  105.  
  106. server {
  107. listen 443 ssl http2;
  108. server_name 10.0.0.XXX:8989 sonarr.DOMAIN.com;
  109. ssl_certificate /etc/letsencrypt/live/DOMAIN.com-0002/fullchain.pem; # managed by Certbot
  110. ssl_certificate_key /etc/letsencrypt/live/DOMAIN.com-0002/privkey.pem; # managed by Certbot
  111. include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
  112.  
  113. location / {
  114. proxy_pass http://127.0.0.1:8989;
  115. proxy_set_header Host $host;
  116. proxy_set_header X-Real-IP $remote_addr;
  117. proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
  118. }
  119.  
  120. }
  121.  
  122. #####################
  123. # Plexpy
  124. #####################
  125.  
  126. server {
  127. listen 443 ssl http2;
  128. server_name 10.0.0.XXX:8181 plexpy.DOMAIN.com;
  129. ssl_certificate /etc/letsencrypt/live/DOMAIN.com-0002/fullchain.pem; # managed by Certbot
  130. ssl_certificate_key /etc/letsencrypt/live/DOMAIN.com-0002/privkey.pem; # managed by Certbot
  131. include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
  132.  
  133. location / {
  134. error_log /var/log/nginx/tautulli.log info;
  135. proxy_pass http://127.0.0.1:8181;
  136. }
  137.  
  138. }
  139.  
  140. #####################
  141. # Ombi
  142. #####################
  143.  
  144. server {
  145. listen 443 ssl http2;
  146. server_name 10.0.0.XXX:5000 requests.DOMAIN.com;
  147. ssl_certificate /etc/letsencrypt/live/DOMAIN.com-0002/fullchain.pem; # managed by Certbot
  148. ssl_certificate_key /etc/letsencrypt/live/DOMAIN.com-0002/privkey.pem; # managed by Certbot
  149. include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
  150.  
  151. location / {
  152. proxy_pass http://127.0.0.1:5000;
  153. error_log /var/log/nginx/ombi.log info;
  154. proxy_set_header Host $host;
  155. proxy_set_header X-Forwarded-Host $server_name;
  156. proxy_set_header X-Real-IP $remote_addr;
  157. proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
  158. proxy_set_header X-Forwarded-Ssl on;
  159. proxy_set_header X-Forwarded-Proto $scheme;
  160. proxy_read_timeout 90;
  161. proxy_max_temp_file_size 0;
  162. proxy_buffers 16 16k;
  163. proxy_buffer_size 16k;
  164. proxy_redirect http://127.0.0.1:5000 https://$host;
  165. }
  166.  
  167. }
  168.  
  169. #####################
  170. # Music
  171. #####################
  172.  
  173. server {
  174. listen 443 ssl http2;
  175. server_name 10.0.0.XXX:4040 music.DOMAIN.com;
  176. ssl_certificate /etc/letsencrypt/live/DOMAIN.com-0002/fullchain.pem; # managed by Certbot
  177. ssl_certificate_key /etc/letsencrypt/live/DOMAIN.com-0002/privkey.pem; # managed by Certbot
  178. include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
  179.  
  180. location / {
  181. proxy_pass http://127.0.0.1:4040/;
  182. error_log /var/log/nginx/music_log.log info;
  183. proxy_set_header X-Real-IP $remote_addr;
  184. proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
  185. proxy_set_header Host $host;
  186. proxy_redirect http:// https://;
  187. }
  188.  
  189. }
  190.  
  191. #####################
  192. # Deluge
  193. #####################
  194.  
  195. server {
  196. listen 443 ssl http2;
  197. server_name 10.0.0.XXX:8112 deluge.DOMAIN.com;
  198. ssl_certificate /etc/letsencrypt/live/DOMAIN.com-0002/fullchain.pem; # managed by Certbot
  199. ssl_certificate_key /etc/letsencrypt/live/DOMAIN.com-0002/privkey.pem; # managed by Certbot
  200. include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
  201.  
  202. location / {
  203. proxy_pass http://10.0.0.XXX:8112/;
  204. proxy_set_header X-Deluge-Base "/";
  205. add_header X-Frame-Options SAMEORIGIN;
  206. }
  207.  
  208. }
  209.  
  210. #####################
  211. # UseNet
  212. #####################
  213.  
  214. server {
  215. listen 443 ssl http2;
  216. server_name 10.0.0.XXX:8085 use.DOMAIN.com;
  217. ssl_certificate /etc/letsencrypt/live/DOMAIN.com-0002/fullchain.pem; # managed by Certbot
  218. ssl_certificate_key /etc/letsencrypt/live/DOMAIN.com-0002/privkey.pem; # managed by Certbot
  219. include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
  220.  
  221. location / {
  222. proxy_pass http://10.0.0.XXX:8085;
  223. }
  224.  
  225. }
  226.  
  227. #####################
  228. # Stats
  229. #####################
  230.  
  231. #server {
  232. # listen 443 ssl http2;
  233. # server_name 10.0.0.XXX:19999 stats.DOMAIN.com;
  234. #ssl_certificate /etc/letsencrypt/live/DOMAIN.com-0002/fullchain.pem; # managed by Certbot
  235. #ssl_certificate_key /etc/letsencrypt/live/DOMAIN.com-0002/privkey.pem; # managed by Certbot
  236. # include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
  237. #
  238. # location / {
  239. # error_log /var/log/nginx/stats_log.log notice;
  240. # auth_basic "Restricted Content";
  241. # auth_basic_user_file /etc/nginx/.htpasswd;
  242. # proxy_pass http://127.0.0.1:19999/;
  243. # proxy_set_header Host $host;
  244. # proxy_set_header X-Real-IP $remote_addr;
  245. # proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
  246. # }
  247. #}
  248.  
  249. #####################
  250. # Comics
  251. #####################
  252.  
  253. server {
  254. listen 443 ssl http2;
  255. server_name 10.0.0.XXX:2202 comics.DOMAIN.com;
  256. ssl_certificate /etc/letsencrypt/live/DOMAIN.com-0002/fullchain.pem; # managed by Certbot
  257. ssl_certificate_key /etc/letsencrypt/live/DOMAIN.com-0002/privkey.pem; # managed by Certbot
  258. include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
  259.  
  260. location / {
  261. #error_log /var/log/nginx/stats_log.log notice;
  262. #auth_basic "Restricted Content";
  263. #auth_basic_user_file /etc/nginx/.htpasswd;
  264. proxy_pass http://127.0.0.1:2202/;
  265. proxy_set_header Host $host;
  266. proxy_set_header X-Real-IP $remote_addr;
  267. proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
  268. }
  269.  
  270. location /admin {
  271. rewrite ^/admin/(.*) /$1 break;
  272. proxy_pass http://127.0.0.1:2022/admin;
  273. #proxy_set_header Host $host;
  274. #proxy_set_header X-Real-IP $remote_addr;
  275. #proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
  276. }
  277.  
  278. }
  279.  
  280.  
  281. #####################
  282. # Plex
  283. #####################
  284.  
  285. server {
  286. listen 443 ssl http2;
  287. server_name 10.0.0.XXX:32400 plex.DOMAIN.com;
  288. send_timeout 100m;
  289. ssl_certificate /etc/letsencrypt/live/DOMAIN.com-0002/fullchain.pem; # managed by Certbot
  290. ssl_certificate_key /etc/letsencrypt/live/DOMAIN.com-0002/privkey.pem; # managed by Certbot
  291. include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
  292.  
  293. proxy_set_header Host $host;
  294. proxy_set_header X-Real-IP $remote_addr;
  295. proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
  296. proxy_set_header X-Forwarded-Proto $scheme;
  297.  
  298. location / {
  299. # if ($http_x_plex_device_name = '') {
  300. # rewrite ^/$ http://$http_host/web/index.html;
  301. # }
  302. proxy_pass http://10.0.0.XXX:32400/;
  303. }
  304.  
  305. }
  306.  
  307. #####################
  308. # Emby
  309. #####################
  310.  
  311. server {
  312. listen 443 ssl http2;
  313. server_name 10.0.0.XXX:8096 stats.DOMAIN.com;
  314. send_timeout 100m;
  315. ssl_certificate /etc/letsencrypt/live/DOMAIN.com-0002/fullchain.pem; # managed by Certbot
  316. ssl_certificate_key /etc/letsencrypt/live/DOMAIN.com-0002/privkey.pem; # managed by Certbot
  317. include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
  318.  
  319. proxy_set_header Host $host;
  320. proxy_set_header X-Real-IP $remote_addr;
  321. proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
  322. proxy_set_header X-Forwarded-Proto $scheme;
  323.  
  324. location / {
  325. proxy_pass http://10.0.0.XXX:8096;
  326. }
  327.  
  328. }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!