OPNsense
  • Home
  • Help
  • Search
  • Login
  • Register

  • OPNsense Forum »
  • English Forums »
  • Web Proxy Filtering and Caching (Moderator: fabian) »
  • nginx default_server
« previous next »
  • Print
Pages: 1 [2]

Author Topic: nginx default_server  (Read 9584 times)

Fright

  • Hero Member
  • *****
  • Posts: 1777
  • Karma: 164
    • View Profile
Re: nginx default_server
« Reply #15 on: January 05, 2022, 06:08:20 pm »
sorry, why not?
of course it should be possible to enbale proxy_protocol separately for http/https and this is not a part of a "default_server" quick fix
Logged

8191

  • Jr. Member
  • **
  • Posts: 83
  • Karma: 4
    • View Profile
Re: nginx default_server
« Reply #16 on: January 05, 2022, 07:46:23 pm »
Quote from: bimbar on January 05, 2022, 04:42:30 pm
Does that even make sense for https? I intentionally only implemented it for http.
You mean because it will most likely be a certificate mismatch to the hostname in all cases? One could use wildcard certificates to overcome this.
Logged

fabian

  • Moderator
  • Hero Member
  • *****
  • Posts: 2769
  • Karma: 200
  • OPNsense Contributor (Language, VPN, Proxy, etc.)
    • View Profile
    • Personal Homepage
Re: nginx default_server
« Reply #17 on: January 05, 2022, 11:16:23 pm »
Quote from: 8191 on January 05, 2022, 07:46:23 pm
You mean because it will most likely be a certificate mismatch to the hostname in all cases? One could use wildcard certificates to overcome this.
Actually, you can use other matches than hostnames in SAN. For example IP addresses, however I think this is quite uncommon and not in use by public CAs.
Logged
  • Print
Pages: 1 [2]
« previous next »
  • OPNsense Forum »
  • English Forums »
  • Web Proxy Filtering and Caching (Moderator: fabian) »
  • nginx default_server
 

OPNsense is an OSS project © Deciso B.V. 2015 - 2024 All rights reserved
  • SMF 2.0.19 | SMF © 2021, Simple Machines
    Privacy Policy     | XHTML | RSS | WAP2