Nginx proxymanager ssl

Hi! I’m using nginx proxymanager for my projects. I also wanted to add a new meteor project here with MUP:

I used the default mup.js, adapted the server credentials and made sure the ROOT_URL starts with http://. At proxymanager i created a new proxy host with the internal IP of the server an port 80. All good so far and it works as expected. However I’m now trying to get this done with ssl support.

So i changed the ROOT_URL to https:// but I’m struggeling now with ssl certification creation and the further config. I think it makes sense to let proxymanager create the ssl certificate (as all the other servers’ certificates are created with proxymanager as well and it gives a nice overview). But what do i need then in my mup.js file? - I think there is no need for a proxy then?

I tried some deployments with different configs (defining a proxy, forceSSL: true, …) However none of them worked. I’m also not 100% sure how to configure proxymanager for the internal server address then (is it https? or http? and which port?).

It would be great if someone of you could share her/his experience.

Thanks

Use certbot and choose dns authentication it will work like a charm

Thanks for the answer! But proxymanager already uses certbot (GitHub - jc21/nginx-proxy-manager: Docker container for managing Nginx proxy hosts with a simple, powerful interface). So I’m quite sure it will work with the right config, however all my attempts failed.

I want to use proxymanager because my environment needs to provide different projects on several servers (all of them non-meteor projects). And it even works with meteor like a charm, but not yet for SSL in my case.

You need to use vhosts in nginx (How To Set Up Nginx Server Blocks (Virtual Hosts) on Ubuntu 16.04 | DigitalOcean)

Set the SSL for each one with certbot e.g

sudo certbot -d my-domain-name.com --manual --preferred-challenges dns certonly

You cannot have a catch all ssl for all domains it must be run per domain