starred/nginx-proxy-manager-NginxProxyManager
1
0
Fork 0
mirror of https://github.com/NginxProxyManager/nginx-proxy-manager.git synced 2026-04-25 17:35:52 +03:00
Code Issues 937 Projects Releases 10 Packages Wiki Activity

[GH-ISSUE #673] Access from Global via https is not working #570

New issue
Closed
opened 2026-02-26 06:33:26 +03:00 by kerem · 10 comments
kerem commented 2026-02-26 06:33:26 +03:00
Owner
Copy link

Originally created by @GEkuL on GitHub (Oct 23, 2020).
Original GitHub issue: https://github.com/NginxProxyManager/nginx-proxy-manager/issues/673

I've set up ampache server and connected it to domain via NPM. Everything was working without SSL: I could access the service from the Global.
After the turning SSL and trying https connection, the page doesn't show up. Yet without https connection from Global is still working fine.
Moreover https is working fine from the local network. But from the global the service is not uploading((((

Could you help me please!
Got the issue since the first installation of docker. Thought it's kind of bug. But it looks like the problem on my server. And I totally don't know what causes the problem.

Firewall is seemed to be disabled.
Possibly it could be the router, but I can't imagine how can it block SSL traffic directed to global internet...

Originally created by @GEkuL on GitHub (Oct 23, 2020). Original GitHub issue: https://github.com/NginxProxyManager/nginx-proxy-manager/issues/673 I've set up ampache server and connected it to domain via NPM. Everything was working without SSL: I could access the service from the Global. After the turning SSL and trying https connection, the page doesn't show up. Yet without https connection from Global is still working fine. Moreover https is working fine from the local network. But from the global the service is not uploading(((( Could you help me please! Got the issue since the first installation of docker. Thought it's kind of bug. But it looks like the problem on my server. And I totally don't know what causes the problem. Firewall is seemed to be disabled. Possibly it could be the router, but I can't imagine how can it block SSL traffic directed to global internet...
kerem closed this issue 2026-02-26 06:33:26 +03:00
kerem commented 2026-02-26 06:33:26 +03:00
Author
Owner
Copy link

@Wadera commented on GitHub (Oct 27, 2020):

are you sure that you forwarding both ports on your router?
80 for http
443 for https

<!-- gh-comment-id:717461288 --> @Wadera commented on GitHub (Oct 27, 2020): are you sure that you forwarding both ports on your router? 80 for http 443 for https
kerem commented 2026-02-26 06:33:26 +03:00
Author
Owner
Copy link

@GEkuL commented on GitHub (Oct 27, 2020):

@Wadera yeps
I'm forwarding both ports

Could it be some docker's settings since I use the NPM in container?

<!-- gh-comment-id:717549391 --> @GEkuL commented on GitHub (Oct 27, 2020): @Wadera yeps I'm forwarding both ports Could it be some docker's settings since I use the NPM in container?
kerem commented 2026-02-26 06:33:26 +03:00
Author
Owner
Copy link

@Wadera commented on GitHub (Oct 28, 2020):

I think that everyone using NPM in docker container as that's how this tool is officially shipped ;)

make sure that you specified both ports under docker-compose.yml

Example docker composer config:
80: for http prox support
81: for NMP panel
443: for https proxy support
2500-3000: for forwarding ports for other applications under Streams

Of course you need to forward the same ports on your Router to your docker node machine IP

version: "3"
services:
  app:
    image: jc21/nginx-proxy-manager:latest
    restart: always
    ports:
      - 80:80
      - 81:81
      - 443:443
      - 2500-3000:2500-3000/tcp
      - 2500-3000:2500-3000/udp
    volumes:
      - /somewhere/on/your/local/storage/proxy/config.json:/app/config/production.json
      - /somewhere/on/your/local/storage/proxy/data:/data
      - /somewhere/on/your/local/storage/proxy/letsencrypt:/etc/letsencrypt
    depends_on:
      - db
    environment:
    # if you want pretty colors in your docker logs:
    - FORCE_COLOR=1
  db:
    image: mariadb:latest
    restart: always
    environment:
      MYSQL_ROOT_PASSWORD: "yoursecretroodpassword"
      MYSQL_DATABASE: "npm"
      MYSQL_USER: "npm"
      MYSQL_PASSWORD: "yoursecretpassword"
    volumes:
      - /somewhere/on/your/local/storage/proxy/data/mysql:/var/lib/mysql

And then to start:

# docker-compose up -d

Of if you rewrite your already existing docker compose config:

# docker-compose down && docker-compose up -d
<!-- gh-comment-id:717662599 --> @Wadera commented on GitHub (Oct 28, 2020): I think that everyone using NPM in docker container as that's how this tool is officially shipped ;) make sure that you specified both ports under `docker-compose.yml` **Example docker composer config:** **80:** for http prox support **81:** for NMP panel **443:** for https proxy support **2500-3000:** for forwarding ports for other applications under Streams Of course you need to forward the same ports on your Router to your docker node machine IP ``` version: "3" services: app: image: jc21/nginx-proxy-manager:latest restart: always ports: - 80:80 - 81:81 - 443:443 - 2500-3000:2500-3000/tcp - 2500-3000:2500-3000/udp volumes: - /somewhere/on/your/local/storage/proxy/config.json:/app/config/production.json - /somewhere/on/your/local/storage/proxy/data:/data - /somewhere/on/your/local/storage/proxy/letsencrypt:/etc/letsencrypt depends_on: - db environment: # if you want pretty colors in your docker logs: - FORCE_COLOR=1 db: image: mariadb:latest restart: always environment: MYSQL_ROOT_PASSWORD: "yoursecretroodpassword" MYSQL_DATABASE: "npm" MYSQL_USER: "npm" MYSQL_PASSWORD: "yoursecretpassword" volumes: - /somewhere/on/your/local/storage/proxy/data/mysql:/var/lib/mysql ``` And then to start: ``` # docker-compose up -d ``` Of if you rewrite your already existing docker compose config: ``` # docker-compose down && docker-compose up -d ```
kerem commented 2026-02-26 06:33:26 +03:00
Author
Owner
Copy link

@GEkuL commented on GitHub (Oct 28, 2020):

2500-3000: for forwarding ports for other applications under Streams

Am I right that if i want to set up a https connection for my Ampache server I don't need those ports, since the fact that all the traftic is going through the 443 port in this case?

<!-- gh-comment-id:718108875 --> @GEkuL commented on GitHub (Oct 28, 2020): > **2500-3000:** for forwarding ports for other applications under Streams Am I right that if i want to set up a https connection for my Ampache server I don't need those ports, since the fact that all the traftic is going through the 443 port in this case?
kerem commented 2026-02-26 06:33:26 +03:00
Author
Owner
Copy link

@GEkuL commented on GitHub (Oct 28, 2020):

Of if you rewrite your already existing docker compose config:

# docker-compose down && docker-compose up -d

Could it be the problem that I'm making docker-compose with sudo?
docker commands can only be used with it on my machine
or should I reinstall the docker in some kind of proper way?

<!-- gh-comment-id:718112480 --> @GEkuL commented on GitHub (Oct 28, 2020): > Of if you rewrite your already existing docker compose config: > > ``` > # docker-compose down && docker-compose up -d > ``` Could it be the problem that I'm making docker-compose with sudo? docker commands can only be used with it on my machine or should I reinstall the docker in some kind of proper way?
kerem commented 2026-02-26 06:33:27 +03:00
Author
Owner
Copy link

@Wadera commented on GitHub (Oct 28, 2020):

Yes, docker command need to be run by root or with sudo as standard user.
And correct - if you just need standard apache app then port 80 and 443 should be enough.

<!-- gh-comment-id:718115495 --> @Wadera commented on GitHub (Oct 28, 2020): Yes, docker command need to be run by root or with sudo as standard user. And correct - if you just need standard apache app then port 80 and 443 should be enough.
kerem commented 2026-02-26 06:33:27 +03:00
Author
Owner
Copy link

@GEkuL commented on GitHub (Oct 28, 2020):

I think that everyone using NPM in docker container as that's how this tool is officially shipped ;)

make sure that you specified both ports under docker-compose.yml

Example docker composer config:
80: for http prox support
81: for NMP panel
443: for https proxy support
2500-3000: for forwarding ports for other applications under Streams

Of course you need to forward the same ports on your Router to your docker node machine IP

version: "3"
services:
  app:
    image: jc21/nginx-proxy-manager:latest
    restart: always
    ports:
      - 80:80
      - 81:81
      - 443:443
      - 2500-3000:2500-3000/tcp
      - 2500-3000:2500-3000/udp
    volumes:
      - /somewhere/on/your/local/storage/proxy/config.json:/app/config/production.json
      - /somewhere/on/your/local/storage/proxy/data:/data
      - /somewhere/on/your/local/storage/proxy/letsencrypt:/etc/letsencrypt
    depends_on:
      - db
    environment:
    # if you want pretty colors in your docker logs:
    - FORCE_COLOR=1
  db:
    image: mariadb:latest
    restart: always
    environment:
      MYSQL_ROOT_PASSWORD: "yoursecretroodpassword"
      MYSQL_DATABASE: "npm"
      MYSQL_USER: "npm"
      MYSQL_PASSWORD: "yoursecretpassword"
    volumes:
      - /somewhere/on/your/local/storage/proxy/data/mysql:/var/lib/mysql

And then to start:

# docker-compose up -d

Of if you rewrite your already existing docker compose config:

# docker-compose down && docker-compose up -d

didn't work :(
One more question:
Should the Scheme in Details tab of Proxy Host be specified as http or https?

<!-- gh-comment-id:718130905 --> @GEkuL commented on GitHub (Oct 28, 2020): > I think that everyone using NPM in docker container as that's how this tool is officially shipped ;) > > make sure that you specified both ports under `docker-compose.yml` > > **Example docker composer config:** > **80:** for http prox support > **81:** for NMP panel > **443:** for https proxy support > **2500-3000:** for forwarding ports for other applications under Streams > > Of course you need to forward the same ports on your Router to your docker node machine IP > > ``` > version: "3" > services: > app: > image: jc21/nginx-proxy-manager:latest > restart: always > ports: > - 80:80 > - 81:81 > - 443:443 > - 2500-3000:2500-3000/tcp > - 2500-3000:2500-3000/udp > volumes: > - /somewhere/on/your/local/storage/proxy/config.json:/app/config/production.json > - /somewhere/on/your/local/storage/proxy/data:/data > - /somewhere/on/your/local/storage/proxy/letsencrypt:/etc/letsencrypt > depends_on: > - db > environment: > # if you want pretty colors in your docker logs: > - FORCE_COLOR=1 > db: > image: mariadb:latest > restart: always > environment: > MYSQL_ROOT_PASSWORD: "yoursecretroodpassword" > MYSQL_DATABASE: "npm" > MYSQL_USER: "npm" > MYSQL_PASSWORD: "yoursecretpassword" > volumes: > - /somewhere/on/your/local/storage/proxy/data/mysql:/var/lib/mysql > ``` > > And then to start: > > ``` > # docker-compose up -d > ``` > > Of if you rewrite your already existing docker compose config: > > ``` > # docker-compose down && docker-compose up -d > ``` didn't work :( One more question: Should the Scheme in Details tab of Proxy Host be specified as http or https?
kerem commented 2026-02-26 06:33:27 +03:00
Author
Owner
Copy link

@Wadera commented on GitHub (Oct 28, 2020):

So - the best to make it https to https

NPM Proxy scheme set for https
Hosting in backed need to be available under https as well (can have self-signed cert - IT will be override by NPM anyway)

<!-- gh-comment-id:718149290 --> @Wadera commented on GitHub (Oct 28, 2020): So - the best to make it https to https NPM Proxy scheme set for https Hosting in backed need to be available under https as well (can have self-signed cert - IT will be override by NPM anyway)
kerem commented 2026-02-26 06:33:27 +03:00
Author
Owner
Copy link

@GEkuL commented on GitHub (Oct 28, 2020):

@Wadera it really looks like the problem with the router. Do you know any kind of protecting mechanics in routers?
I disables firewall SPI, but nothing changed. There must be another problem(

<!-- gh-comment-id:718221145 --> @GEkuL commented on GitHub (Oct 28, 2020): @Wadera it really looks like the problem with the router. Do you know any kind of protecting mechanics in routers? I disables firewall SPI, but nothing changed. There must be another problem(
kerem commented 2026-02-26 06:33:27 +03:00
Author
Owner
Copy link

@GEkuL commented on GitHub (Jan 9, 2021):

Solution found.

It seems like the problem is in provider. Because on another one everything is working.

So if you got the same issue, check up firewall and the provider first. :)

<!-- gh-comment-id:757113571 --> @GEkuL commented on GitHub (Jan 9, 2021): Solution found. It seems like the problem is in provider. Because on another one everything is working. So if you got the same issue, check up firewall and the provider first. :)
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
develop
dependabot/npm_and_yarn/backend/liquidjs-10.25.7
dependabot/npm_and_yarn/frontend/prod-minor-updates-2a16bf3987
dependabot/npm_and_yarn/frontend/dev-patch-updates-754666cf41
dependabot/npm_and_yarn/backend/basic-ftp-5.3.0
dependabot/npm_and_yarn/test/follow-redirects-1.16.0
dependabot/npm_and_yarn/test/axios-1.15.0
dependabot/npm_and_yarn/frontend/lodash-4.18.1
dependabot/npm_and_yarn/backend/lodash-4.18.1
dependabot/npm_and_yarn/test/lodash-4.18.1
dependabot/npm_and_yarn/frontend/vite-7.3.2
dependabot/npm_and_yarn/backend/prod-minor-updates-5ec19a7f21
dependabot/npm_and_yarn/frontend/lodash-es-4.18.1
dependabot/npm_and_yarn/frontend/happy-dom-20.8.9
dependabot/npm_and_yarn/backend/path-to-regexp-8.4.0
dependabot/npm_and_yarn/frontend/picomatch-4.0.4
dependabot/npm_and_yarn/backend/picomatch-2.3.2
dependabot/npm_and_yarn/frontend/yaml-1.10.3
dependabot/npm_and_yarn/test/flatted-3.4.2
dependabot/npm_and_yarn/test/tar-7.5.11
dependabot/npm_and_yarn/frontend/immutable-5.1.5
master
dependabot/npm_and_yarn/test/glob-10.5.0
dependabot/npm_and_yarn/frontend/mdast-util-to-hast-13.2.1
dependabot/npm_and_yarn/test/form-data-4.0.4
v3-abandoned
bump-freedns
openidc
ssl-passthrough-hosts
static-content
v2.14.0
v2.13.7
v2.13.6
v2.13.5
v2.13.4
v2.13.3
v2.13.2
v2.13.1
v2.13.0
v2.12.6
v2.12.5
v2.12.4
v2.12.3
v2.12.2
v2.12.1
v2.12.0
v2.11.3
v2.11.2
v2.11.1
v2.11.0
v2.10.4
v2.10.3
v2.10.2
v2.10.1
v2.10.0
v2.9.22
v2.9.21
v2.9.20
v2.9.19
v2.9.18
v2.9.17
v2.9.16
v2.9.15
v2.9.14
v2.9.13
v2.9.12
v2.9.11
v2.9.10
v2.9.9
v2.9.8
v2.9.7
v2.9.6
v2.9.5
v2.9.4
v2.9.3
v2.9.2
v2.9.1
v2.9.0
v2.8.1
v2.8.0
v2.7.3
v2.7.2
v2.7.1
v2.7.0
v2.6.2
v2.6.1
v2.6.0
v2.5.0
v2.4.0
v2.3.1
v2.3.0
v2.2.4
v2.2.3
v2.2.2
v2.2.1
v2.2.0
v2.1.2
v2.1.1
v2.1.0
2.0.14
2.0.13
2.0.12
2.0.11
2.0.10
2.0.9
2.0.8
2.0.7
2.0.6
2.0.5
2.0.4
2.0.3
2.0.2
2.0.0
v2.0.0
1.1.2
1.1.1
1.0.1
Labels
Clear labels   
awaiting feedback

   
bug

   
cannot reproduce

   
dns provider request

   
duplicate

   
enhancement

   
enhancement

   
enhancement

   
good first issue

   
help wanted

   
invalid

   
need more info

   
no certbot plugin available

   
product-support

   
pull-request

Mirrored from GitHub Pull Request

  
question

   
stale

   
troll

   
upstream issue

   
v2

   
v2

   
v2

   
v3

   
wontfix
No labels
awaiting feedback
bug
cannot reproduce
dns provider request
duplicate
enhancement
enhancement
enhancement
good first issue
help wanted
invalid
need more info
no certbot plugin available
product-support
pull-request
question
stale
troll
upstream issue
v2
v2
v2
v3
wontfix
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
starred/nginx-proxy-manager-NginxProxyManager#570
No description provided.