ProxyPassReverse /lool Endpoint with information about availability of various featuresĪpache2 service is stopped on the office server.ĬONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMESĨ378cb6d9ffb collabora/code "/start-collabora-on…" About an hour ago Up About an hour 127.0.0.1:9980->9980/tcp modest_shockleyĪpache2 log file (error/access) is empty.In part one of this tutorial we installed TrueNAS and created a NextCloud jail which makes the NAS content available using a web browser or the NextCloud app locally.
ProxyPass /lool/adminws wss://192.168.60.40:9980/lool/adminws Download as, Fullscreen presentation and Image upload operations ProxyPassReverse /hosting/discovery Main websocket ProxyPassReverse /loleaflet WOPI discovery URL served from loolwsd loleaflet is the client part of LibreOffice Online ProxyPreserveHost On static html, js, images, etc. Include /etc/letsencrypt/nf Encoded slashes need to be allowedĪllowEncodedSlashes NoDecode Container uses a unique non-signed certificate
ServerName :443 SSL configuration, you may want to take the easy route instead and use Lets Encrypt! Then make sure the reverse proxy can reach port 9980 on the office server, and it should work. change the hostname, change all the "127.0.0.1" to your office server's ip, change the https links to http if you're terminating ssl at the reverse proxy, etc.). Then go through and change all parts that need changing (i.e. My suggestion: Turn off apache on the office server, then take the sample virtualhost from the 2nd guide you linked, and place the entire block as a 443 virtualhost on your reverse proxy replacing your existing virtualhost. You don't even need to run apache on the office server at all, you can just place all the necessary proxypass commands into your reverse proxy virtualhost. I suspect the issue is resulting from trying to split the config across two proxies and/or trying to use an encrypted endpoint where there may not be any certs.
It also looks like the second proxy on the office server is trying to redirect to a series of encrypted urls (, etc.), but you don't mention whether your office server even has any ssl certs local to it? Are you terminating ssl at the reverse proxy, or do you have certs both places? it looks like you're running a double proxy for some reason? You have your reverse proxy redirecting traffic to an unencrypted apache proxy on your office host instead of just redirecting it directly to the office server. Ufw 80 and 443/tcp is allowed between the hosts. I cant even connect to the collabora online server (nextcloud) when I exclude the reverse proxy. # Download as, Fullscreen presentation and Image upload operations # loleaflet is the client part of LibreOffice Online # Container uses a unique non-signed certificate Office "80" apach2 configuration (office server): SSLCertificateKeyFile /etc/letsencrypt/live//privkey.pemĬustomLog /var/log/apache2/ combinedĮrrorLog /var/log/apache2/ SSLCertificateFile /etc/letsencrypt/live//fullchain.pem My Office "443" apache2 configuration (reverse proxy): Redirect from 80 -> 443 is configured. Include /etc/letsencrypt/nfĬustomLog /var/log/apache2/ combinedĮrrorLog /var/log/apache2/ SSLCertificateKeyFile /etc/letsencrypt/live//privkey.pem #Nextcloud Warning: Your web server is not propebly set up to resolve.
Header always set Strict-Transport-Security "max-age=15768000 includeSubDomains preload" My Nextcloud "443" apache2 configuration (reverse proxy): Redirect from 80 -> 443 is configured. Is it possible to use the port "443" on one host (reverse proxy) for multiple backend services? (two different apache2 configurations) Im using already a reverse proxy (apache2) which is working fine for my nextcloud instance.
I want to setup up a collabora online server (self-hosted).