pull down to refresh
1 sat \ 4 replies \ @orangesurf OP 4 Mar 2023 \ parent \ on: nginx configuration question (10k sat bounty) bitcoin
Thank you. That guide is great, but is for running the nginx server on the umbrel directly.
I am running the nginx server on a VPS which is using tailscale to connect to the umbrel remotely.
I am not clear on the security tradeoff this has and whether I need to adjust the nginx configuration as a result.
OK in this case, take a look at the guides from @hakuna.
He wrote especially for Lnbits but are the same for BTCpay, you just have to change the app port.
He wrote various ones, depending on specific case using VPS. Are very good.
https://github.com/TrezorHannes
I am sure could help you find a solution.
Good luck!
I am upvoting your post to get more visibility. Is a very interesting project and I would like also to know the final solution.
reply
I had a useful response on nostr from https://stacker.news/sethforprivacy note1j3hzfu2h72f363x6r6apzgsvz7wt3fdun5ch9kazd4leguzng3lsqu9u4q
Use this generator as your base (update nginx/SSL versions appropriately if you run into issues) and add in your custom well-known block in the first server block and your proxy_pass location block in the SSL server block: https://ssl-config.mozilla.org/#server=nginx&version=1.17.7&config=intermediate&openssl=1.1.1k&ocsp=false&guideline=5.6
Tipped you both 10k sats.
reply
Oh man, no need to tip me, I did nothing, just point you in the right direction.
Thanks anyways.
reply
reply