mirror of https://github.com/status-im/fathom.git
1.7 KiB
1.7 KiB
Using NGINX with Fathom
Let's say you have the Fathom server listening on port 9000 and want to serve it on your domain, yourfathom.com.
We can use NGINX to redirect all traffic for a certain domain to our Fathom application by using the proxy_pass directive combined with the port Fathom is listening on.
Create the following file in /etc/nginx/sites-enabled/yourfathom.com
server {
server_name yourfathom.com;
location / {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://127.0.0.1:9000;
}
}
If you wish to protect your site using a Let's Encrypt HTTPS certificate, you can do so using the Certbot webroot plugin.
certbot certonly --webroot --webroot-path /var/www/yourfathom.com -d yourfathom.com
Your /etc/nginx/sites-enabled/yourfathom.com file should be updated accordingly:
server {
listen 443 ssl http2;
listen [::]:443 ssl http2;
server_name yourfathom.com;
ssl_certificate /path/to/your/fullchain.pem;
ssl_certificate_key /path/to/your/privkey.pem;
location /.well-known {
alias /var/www/yourfathom.com/.well-known;
}
location / {
proxy_set_header X-Real-IP $remote_addr;
proxy_set_header X-Forwarded-For $remote_addr;
proxy_set_header Host $host;
proxy_pass http://127.0.0.1:9000;
}
}
The alias directive should point to the location where your --webroot-path is specified when generating the certificate (with /.well-known appended).
Test NGINX configuration
sudo nginx -t
Reload NGINX configuration
sudo service nginx reload