diff --git a/.gitignore b/.gitignore new file mode 100644 index 0000000..e69de29 diff --git a/cloudflare-nginx/docker-compose.yml b/cloudflare-nginx/docker-compose.yml index 4917612..8c9b70a 100644 --- a/cloudflare-nginx/docker-compose.yml +++ b/cloudflare-nginx/docker-compose.yml @@ -1,4 +1,4 @@ -version: '2' +version: '3.5' services: nginx: image: nginx:stable @@ -9,4 +9,11 @@ services: ports: # - 80:80 - 443:443 + networks: + - felia-nginx + restart: unless-stopped + +networks: + felia-nginx: + name: felia-nginx-net diff --git a/cloudflare-nginx/nginx/conf.d/c4c.pegasust.com.conf b/cloudflare-nginx/nginx/conf.d/c4c.pegasust.com.conf new file mode 100644 index 0000000..806ec27 --- /dev/null +++ b/cloudflare-nginx/nginx/conf.d/c4c.pegasust.com.conf @@ -0,0 +1,33 @@ +# NOTE: Felia is under Cox ISP, which blocks port 80 anyways. +# we're just going to leave it like this for now +# server { +# listen 80; +# listen [::]:80; +# server_name localhost; +# return 302 https://$server_name$request_uri; +# } + +server { + # SSL configuration + listen 443 ssl http2; + listen [::]:443 ssl http2; + + include /etc/nginx/ssl_params; + + server_name c4c.pegasust.com; + + # location / { + # proxy_pass http://twitter-bot-web-1:8080; + # proxy_set_header Host $host; + # proxy_set_header X-Real-IP $remote_addr; + # proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + # } + + location / { + proxy_pass http://c4c-secret-manager-vault-1:8200; + proxy_set_header Host $host; + proxy_set_header X-Real-IP $remote_addr; + proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + } + # netsh interface portproxy add v4tov4 listenaddress=0.0.0.0 listenport=16443 connectaddress=127.0.0.1 listenport=62171 +} diff --git a/cloudflare-nginx/nginx/conf.d/felia.pegasust.com.conf b/cloudflare-nginx/nginx/conf.d/felia.pegasust.com.conf index 52dceb1..95d0a88 100644 --- a/cloudflare-nginx/nginx/conf.d/felia.pegasust.com.conf +++ b/cloudflare-nginx/nginx/conf.d/felia.pegasust.com.conf @@ -21,4 +21,5 @@ server { location / { try_files $uri $uri/ =404; } + # netsh interface portproxy add v4tov4 listenaddress=0.0.0.0 listenport=16443 connectaddress=127.0.0.1 listenport=62171 } diff --git a/cloudflare-nginx/nginx/conf.d/pdp-c4c.pegasust.com.conf b/cloudflare-nginx/nginx/conf.d/pdp-c4c.pegasust.com.conf new file mode 100644 index 0000000..4d2ed17 --- /dev/null +++ b/cloudflare-nginx/nginx/conf.d/pdp-c4c.pegasust.com.conf @@ -0,0 +1,25 @@ +# NOTE: Felia is under Cox ISP, which blocks port 80 anyways. +# we're just going to leave it like this for now +# server { +# listen 80; +# listen [::]:80; +# server_name localhost; +# return 302 https://$server_name$request_uri; +# } + +server { + # SSL configuration + listen 443 ssl http2; + listen [::]:443 ssl http2; + + include /etc/nginx/ssl_params; + + server_name pdp-c4c.pegasust.com; + + # location / { + # proxy_pass http://twitter-bot-prisma-data-proxy-1:3000; + # proxy_set_header Host $host; + # proxy_set_header X-Real-IP $remote_addr; + # proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; + # } +} diff --git a/cloudflare-nginx/nginx/conf.d/pegasust.com.conf b/cloudflare-nginx/nginx/conf.d/pegasust.com.conf index 9b1b539..44cbb4f 100644 --- a/cloudflare-nginx/nginx/conf.d/pegasust.com.conf +++ b/cloudflare-nginx/nginx/conf.d/pegasust.com.conf @@ -27,4 +27,10 @@ server { proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; } + location /felia { + rewrite ^/felia(.*)$ https://felia.pegasust.com/$1 redirect; + } + location /c4c { + rewrite ^/c4c(.*)$ https://c4c.pegasust.com/$1 redirect; + } } diff --git a/cloudflare-nginx/scripts/reload_nginx.sh b/cloudflare-nginx/scripts/reload_nginx.sh new file mode 100755 index 0000000..668500f --- /dev/null +++ b/cloudflare-nginx/scripts/reload_nginx.sh @@ -0,0 +1,3 @@ +#!/usr/bin/env bash + +docker exec -it $(docker ps -aqf "name=cloudflare-nginx-nginx-1") nginx -s reload