Hey,
I would like to know how to have SSL passthrought (using map $ssl_preread_server_name) where I have one main load balancer forwarding the traffic to multiple Node.js servers. The Node.js servers don't have NGINX in front except the load balancer, so the SSL configurations are in Node.js, not NGINX.
The load balancer - entry NGINX config looks like that:
--
stream {
map $ssl_preread_server_name $name {
backend.example.com backend;
}
upstream backend {
server 192.168.0.1:443;
}
server {
listen 443;
proxy_pass $name;
ssl_preread on;
}
}
--
And I would like to set x-forwarded-for real ip so that the Node.js servers can get the client IPs (not the load balancer ip).
I saw there is proxy_protocol (within a stream), but it looks like it's not working with the kind of settings I am using (SSL credentiels directly in Node.js, not NGINX).
Any idea how to accomplish this?
Thanks
I would like to know how to have SSL passthrought (using map $ssl_preread_server_name) where I have one main load balancer forwarding the traffic to multiple Node.js servers. The Node.js servers don't have NGINX in front except the load balancer, so the SSL configurations are in Node.js, not NGINX.
The load balancer - entry NGINX config looks like that:
--
stream {
map $ssl_preread_server_name $name {
backend.example.com backend;
}
upstream backend {
server 192.168.0.1:443;
}
server {
listen 443;
proxy_pass $name;
ssl_preread on;
}
}
--
And I would like to set x-forwarded-for real ip so that the Node.js servers can get the client IPs (not the load balancer ip).
I saw there is proxy_protocol (within a stream), but it looks like it's not working with the kind of settings I am using (SSL credentiels directly in Node.js, not NGINX).
Any idea how to accomplish this?
Thanks