Menu

Show posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Show posts Menu

Messages - Crappysauce

Pages1
#1
Web Proxy Filtering and Caching / Re: NGINX Reverse Proxy using subdomains only?
August 09, 2021, 11:36:49 PM
Thanks fabian.

I'll play around with it, otherwise I might just go back to HAProxy for it's simplicity. Hoping I don't have to since Nginx allows for more(?) security with the WAF.

Then again, I'm still a total noob trying to learn all that I can on my own.  ::)
#2
Web Proxy Filtering and Caching / NGINX Reverse Proxy using subdomains only?
August 07, 2021, 12:49:04 AM
Hi, I have a bunch of subdomains that I wish to redirect to their respective LAN servers using NGINX.

I set the HTTP servers according to the post here: https://forum.opnsense.org/index.php?topic=19305.0

Everything seems to be find except if I enter my domain (eg. domain.com) instead of the subdomain (eg. subdomain1.domain.com), it uses the the first location that I have created.

Question is, how do I set it so that it only directs the subdomain traffic and ignore all requests to my domain?
#3
Tutorials and FAQs / Re: Tutorial 2021/07: HAProxy + Let's Encrypt Wildcard Certificates + 100% A+ Rating
August 02, 2021, 07:37:30 AM
Quote from: TheHellSite on August 01, 2021, 10:05:57 AM
Are you on the latest version of OPNsense and are the installed plugins up to date?
Just out of interest, which versions of OPNsense, HAProxy and Let's Encrypt are you running?

Everything is at the latest version:
OPNSense: 21.7
HAProxy Plugin: 3.4
Let's Encrypt: 2.6


Quote from: TheHellSite on August 01, 2021, 10:05:57 AM
The reason you couldn't connect was due to a misconfiguration in your real server, as you figured out yourself.
You enabled the "SSL -  Enable or disable SSL communication with this server. " checkbox in your real server for Vaultwarden even though the port used to connect doesn't offer SSL encryption.
https://github.com/dani-garcia/vaultwarden/wiki/Enabling-HTTPS
https://github.com/dani-garcia/vaultwarden/wiki/Private-CA-and-self-signed-certs-that-work-with-Chrome

I knew I was forgetting something  :(
I'll read up on his quides and get it all sorted.

Thank you again for your guide and help  ;D
#4
Tutorials and FAQs / Re: Tutorial 2021/07: HAProxy + Let's Encrypt Wildcard Certificates + 100% A+ Rating
August 01, 2021, 07:26:04 AM
First off, thank you so much for this guide. Really helped.

I was having issues connecting to my server due to handshake errors which I think got fixed after generating new ciphers using the Mozilla SSL Config generator and changing the HAProxy and OpenSSL versions to match my setup.

After that, HAProxy seemed to refuse to redirect me to my Vaultwarden server, unless I turned off the SSL option in my Real Server setting. It still shows that I'm secured with the proper (wildcard cert from Let's Encrypt).

Do I need the SSL option enabled? The SSL test still gave me an A+...
Pages1