server { listen 80 default_server; listen [::]:80 default_server; server_name _; return 301 https://$host$request_uri; } # server { # listen 443 ssl; # listen [::]:443 ssl; # server_name ha.alexmickelson.guru; # include /config/nginx/ssl.conf; # include /config/nginx/proxy.conf; # include /config/nginx/resolver.conf; # location / { # proxy_pass http://host.docker.internal:8123; # proxy_set_header Host $host; # proxy_set_header X-Real-IP $remote_addr; # proxy_http_version 1.1; # proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; # proxy_set_header Upgrade $http_upgrade; # proxy_set_header Connection $connection_upgrade; # } # } server { listen 443 ssl; listen [::]:443 ssl; server_name next.alexmickelson.guru; include /config/nginx/ssl.conf; include /config/nginx/proxy.conf; include /config/nginx/resolver.conf; add_header Strict-Transport-Security "max-age=31536000; includeSubDomains; preload" always; location /.well-known/carddav { return 301 $scheme://$host/remote.php/dav; } location /.well-known/caldav { return 301 $scheme://$host/remote.php/dav; } location / { proxy_pass http://nextcloud:80; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-Proto $scheme; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header X-Forwarded-Host $server_name; proxy_set_header X-Forwarded-Port $server_port; client_max_body_size 1G; } } server { listen 443 ssl; listen [::]:443 ssl; server_name jellyfin.alexmickelson.guru; add_header X-Frame-Options "SAMEORIGIN"; add_header X-XSS-Protection "0"; # Do NOT enable. This is obsolete/dangerous add_header X-Content-Type-Options "nosniff"; client_max_body_size 20M; location / { # Proxy main Jellyfin traffic proxy_pass http://host.docker.internal:8096; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header X-Forwarded-Proto $scheme; proxy_set_header X-Forwarded-Protocol $scheme; proxy_set_header X-Forwarded-Host $http_host; proxy_buffering off; } location /socket { # Proxy Jellyfin Websockets traffic proxy_pass http://host.docker.internal:8096; proxy_http_version 1.1; proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection "upgrade"; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header X-Forwarded-Proto $scheme; proxy_set_header X-Forwarded-Protocol $scheme; proxy_set_header X-Forwarded-Host $http_host; } } server { listen 443 ssl; listen [::]:443 ssl; server_name audiobook.alexmickelson.guru; location / { proxy_pass http://audiobookshelf:80; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header X-Forwarded-Proto $scheme; proxy_set_header Host $host; proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection "upgrade"; proxy_http_version 1.1; } } # server { # listen 443 ssl; # listen [::]:443 ssl; # server_name octoprint.alexmickelson.guru; # location / { # proxy_pass http://octoprint:80; # proxy_set_header Host $host; # proxy_set_header X-Real-IP $remote_addr; # } # } server { listen 443 ssl; listen [::]:443 ssl; server_name prometheus.alexmickelson.guru; location / { proxy_pass http://prometheus:9090; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; } } server { listen 443 ssl; listen [::]:443 ssl; server_name grafana.alexmickelson.guru; location / { proxy_pass http://grafana:3000; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; } } server { listen 443 ssl; listen [::]:443 ssl; server_name photos.alexmickelson.guru; # allow large file uploads client_max_body_size 50000M; # Set headers proxy_set_header Host $http_host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header X-Forwarded-Proto $scheme; # enable websockets: http://nginx.org/en/docs/http/websocket.html proxy_http_version 1.1; proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection "upgrade"; proxy_redirect off; # set timeout proxy_read_timeout 600s; proxy_send_timeout 600s; send_timeout 600s; location / { proxy_pass http://immich_server:2283; } } server { listen 443 ssl; listen [::]:443 ssl; server_name sound.alexmickelson.guru; location / { proxy_pass http://host.docker.internal:8095; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header X-Forwarded-Proto $scheme; proxy_set_header X-Forwarded-Protocol $scheme; proxy_set_header X-Forwarded-Host $http_host; proxy_set_header Host $host; proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection "upgrade"; } } server { listen 443 ssl; listen [::]:443 ssl; server_name home.alexmickelson.guru; location / { proxy_pass http://100.122.128.107:3001; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header X-Forwarded-Proto $scheme; proxy_set_header X-Forwarded-Protocol $scheme; proxy_set_header X-Forwarded-Host $http_host; proxy_set_header Host $host; proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection "upgrade"; } } server { listen 443 ssl; listen [::]:443 ssl; server_name copilot.alexmickelson.guru; location / { proxy_pass http://copilot-api:4444; proxy_set_header Host $host; proxy_set_header X-Real-IP $remote_addr; proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for; proxy_set_header X-Forwarded-Proto $scheme; proxy_set_header X-Forwarded-Protocol $scheme; proxy_set_header X-Forwarded-Host $http_host; proxy_set_header Host $host; proxy_set_header Upgrade $http_upgrade; proxy_set_header Connection "upgrade"; } }