You are here
toomanylogins - Mon, 2018/10/15 - 12:45
I have the Nginx appliance running in a hyper V virtual machine acting as my proxy to my development servers. I would like to self host Bitwarden which requires docker. Therefore rather than create another virtual machine would it be a good idea to install docker on the Nginx appliance and then into install bitwarden from there. Nginx would need to proxy ports 80 and 443 based upon hostnames but already do this so should work.
Are there any security implications from this setup. I've never used docker before. Only for small number of users.
Thanks
Paul
Forum:
That should be fine.
Assuming that you trust what will be running in the Docker container, that should be fine. I just had a quick google and assuming you mean this, then on face value that seems pretty legit to me (obviously I haven't done a code review or anything...).
Docker is a pretty cool technology, but is really more-or-less a somewhat hardened chroot. So it's certainly no security silver bullet. But it is a pretty handy way to install applications and is pretty popular these days.
Installation of Docker is generally pretty straight forward, but I'll give you the more locked down method (lifted from our buildtasks setup-docker script):
As for the details of running the docker container itself, I suggest that you follow their instructions...
I hope that gets you going.
In my Seafile docker start
In my Seafile docker start script, I exposed port 3180:8080.
Now I am not sure how to configure my Nginx-Proxy.
I tried two options: a proxy pass and the same fastcgi script as written in the seafile manual.
Both don’t work for on my server. 502: Bad Gateway error.
Would anyone have an idea what I am doing wrong? I know it’s not a real Seafile issue, more an Nginx issue. But any help would be appreciated. I will keep looking as well.
and I tried the same as in the Seafile manual:
Nginx Proxy
To clarify you have nginx running on the same machine as seafile ? and do you also have a server block before the location block in you nginx config so it know which port and domain to listen on .
server {
listen 443 ssl; # was 443 ssl
server_name abc.com;
#then location
location / {
Is your Seafile server available on localhost port 3180?
502: Bad Gateway error is caused by Nginx not being able to connect to the backend server. Both of the configs you have posted are trying to connect to port 3180 on localhost (127.0.0.1 is the local IP address for localhost).
So my guess is that your Nginx server is not on the same server as your Seafile server. In which case, you'll need to adjust the proxy location to be the server which is hosting Seafile. The fastcgi config will only work if the Seafile server is running fastcgi.
Add new comment