Just wanted to know if I should expect any issues with this set-up. 1st proxy is NGINX on the host machine (Ansible-setup). 2nd proxy is NGINX on OPNsense. I’m using self signed certs on the host machine because I don’t want port 80 left open. OPNsense ACME plugin manages my certificates.
I’ve noticed that a lot of comments do not get pulled with posts. Also, I am unable to log in to my server with Jerboa.
Does lemmy use port 80 for anything besides getting SSL certs? Will the double proxy screw up federation or my ability to log in through 3rd party solutions?
I am running mine with two nginx proxies in lurbenetes for similar reasons. i run a nginx container with the standard nginx.config from the docs, then I have an ingress with let’s encrypts SSL certificate and domain info. I added a annotation for websocksts and just pointed to the first proxies / path for the parent proxies path.
Comments don’t sync right right now because of the federation setup and people hosting so many private instances / shutting them off. There is a timeout that is being exceeding so not all instances are getting the update from the main instance that there was an update.
Maybe web sockets aren’t setup properly for me on OPNSense NGINX. I’ll have to look into that. Could be that Jerboa needs websockets to log in?
My first thought when you mentioned those issues with Jerboa and comments was websockets. This is how the lemmy devs configure nginx, and I would make sure your setup on OPNSense is similar, specifically the “Upgrade” and “Connection” header bits.